Principal Engineer — Kubernetes & OpenShift Virtualization
29 years in enterprise infrastructure. Now building the migration path off legacy virtualization — VMware, RHV — onto KubeVirt.
The Single Thread
A production-grade Kubernetes governance framework: a Go admission webhook paired with a three-tier Kyverno policy layer, including KubeVirt-specific VM policies, full Prometheus/Grafana observability with formal SLOs, and a measured 39% FinOps efficiency gain via Kubecost.
view repo →ESO / Vault Lab
A from-scratch External Secrets Operator and Vault integration, documenting the trust chain failure modes most walkthroughs skip — including a breaking API change in ESO v2.x that none of the tutorials mention.
view repo →Field Notes
Writing on infrastructure history and the operational boundary between enterprise virtualization and cloud-native — including "From ulimits to Admission Controllers," on resource governance as a thirty-year-old discipline.
read articles →