Cybersecurity Engineering
- Threat modeling & secure design
- IAM, MFA, least privilege
- Network segmentation & hardening
- Vulnerability management cadence
Cybersecurity & DevOps Professional
Hardening infrastructure, automating delivery, and building secure systems that scale.
I work at the intersection of security and operations — from least-privilege access and safe secrets handling to repeatable CI/CD, observable production environments, and incident-ready runbooks.
Replace placeholder links in the Contact section with your real profiles.
security-ops — bash
$ posture --check
✓ IAM & least privilege
✓ Secrets & rotation hygiene
✓ CI/CD with gated promotions
✓ Container & image supply chain
✓ Logging, metrics, tracing
✓ Backup & recovery drills
→ status: production_hardened
Abdullah Al Noman Patwary is a professional in Cybersecurity and DevOps, focused on long-term resilience rather than one-off fixes. His work emphasizes threat-aware design, safe automation, measurable reliability, and operational clarity so teams can ship faster without trading away security.
Expertise
Defense in depth, delivery with discipline
Horizontal timeline on desktop — stacked on mobile.
Cybersecurity Engineering
- Threat modeling & secure design
- IAM, MFA, least privilege
- Network segmentation & hardening
- Vulnerability management cadence
DevOps & Platform Delivery
- Git workflows & release hygiene
- Jenkins / GitHub Actions CI
- Docker builds & registries
- Safe rollout patterns
IaC & Cloud Operations
- Terraform / IaC mindset
- AWS / Azure core services
- Linux server administration
- Backup & DR readiness
Observability & Reliability
- Centralized logging
- Metrics & dashboards
- Alerting & on-call readiness
- Incident learning loops
DevSecOps & Pipeline Security
- Dependency & secret scanning in CI
- Policy-as-code for deploys
- SBOM & supply chain awareness
- Audit trails & change control
Stack
Security × delivery capability map
Bento layout — typical tools and practices across SecOps and DevOps.
Security & identity
- OWASP-aware design reviews
- TLS, cert lifecycle, HSTS patterns
- RBAC / ABAC patterns
- WAF & edge protection concepts
- Secrets managers & rotation
- SIEM-style signal routing
DevOps & automation
- Docker & Compose
- Kubernetes fundamentals
- Jenkins / GitHub Actions
- Ansible-style configuration
- Bash & Python scripting
- Git, branching, protected environments
Cloud & infrastructure
- AWS EC2, S3, IAM, VPC
- Azure fundamentals
- Terraform / IaC
- Nginx reverse proxy
- Linux administration (RHEL/Ubuntu)
- PM2 / systemd services
Observability & resilience
-
Prometheus / Grafana
ELK / OpenSearch patterns
Structured logging
Tracing hooks
SLOs & error budgets
Game days & chaos drills
Databases & data hygiene
-
PostgreSQL / MySQL
MongoDB operations basics
Redis for caching & queues
Encryption at rest & in transit
Principles
Operate like you expect an incident
Great platforms stay understandable under pressure — observable, reversible, and owned end-to-end.
01
Hardened
Defaults that fail closed, least privilege everywhere.
02
Observable
Signals that answer “what changed?” before blame.
03
Automated
Repeatable pipelines — fewer manual gates, more guardrails.
04
Accountable
Audit trails, approvals, and post-incident learning.
Need a security-minded DevOps partner?
Abdullah brings disciplined delivery and a defender’s mindset to teams that care about uptime, integrity, and velocity.
Update mailto and social URLs to your real contact details.
Email Abdullah