Infrastructure & Application Support Engineer
I’m an Application Support Engineer with experience supporting enterprise web and server based applications in regulated financial environments. My background includes troubleshooting complex multi tier issues across IIS, networking, databases, and mainframe connected systems using log analysis, SQL, and monitoring tools. I’ve worked extensively with proprietary Fiserv platforms to maintain system stability, improve reliability, and resolve high impact production incidents. Outside of work, I run a personal homelab where I build and manage self hosted services, containerized applications, multi terabyte storage arrays, and segmented networks. It’s become both a learning experience and a passion project that lets me explore infrastructure, automation, networking, and security in a hands on environment. I enjoy building reliable systems and services, solving difficult technical problems, and continuously expanding my knowledge across IT and cybersecurity. I currently hold the Google IT Support and CompTIA Network+ certifications and am working toward earning my CompTIA Security+.
I designed, built, and actively maintain a centralized self hosted server using Unraid, running a variety of containerized services like Plex, Nextcloud, Immich, SearXNG, BookStack, and NGINX, backed by MariaDB and PostgreSQL. It’s set up as a personal homelab that supports multiple users (including friends and family) with a strong focus on reliability, performance, and secure access both locally and over VPN.
I built and maintain a Linux based web server (Ubuntu Server) to host this portfolio, using NGINX to handle routing and delivery. I set it up for secure public access with Cloudflare and a custom domain, handling HTTPS, DNS, and traffic management to keep things fast, reliable, and protected. Along the way, I’ve gained hands on experience with web hosting and what it takes to run a site on the public internet.
Designed and built a segmented homelab network using VLANs with firewall policies configured in TP-Link Omada to ensure traffic isolation and enhance device security. Deployed a self hosted DNS server (Pi-hole) across all VLANs for centralized traffic filtering and control. Configured VPN access with VLAN specific routing to provide secure, role based remote access to designated network segment.
Built a centralized DNS filtering and ad blocking server on a Raspberry Pi 5, running Pi-hole to enhance network security, visibility, and traffic control. Deployed PiVPN on the same host to enable secure remote access with VLAN based access controls.
Built a centralized smart home system using Home Assistant to control and monitor devices including lighting, thermostats, and cameras. Utilized Zigbee for device connectivity, reducing reliance on Wi-Fi and Bluetooth. Eliminated dependence on cloud based platforms such as Google Home and Amazon Alexa, allowing local control, enhanced privacy, and improved security.
