Website · Writing · Certifications · Non-AI thesis proofreader · LinkedIn · Credly
I am a hands-on cloud and infrastructure engineer who has spent 25 years keeping systems running, helping development and operations teams work better together, and turning fragile manual processes into repeatable documented workflows.
Most recently, that has meant helping security-conscious organisations adopt containers and Kubernetes without losing the controls they need. Across that time, it has also meant being the person responsible for most things with a plug, and certainly most things with an IP address.
- Build and improve secure platforms with Terraform, Kubernetes, Azure, AWS, Linux, and Bash
- Bridge the gap between Ops and Dev teams without turning either side into the villain
- Translate business requirements into technical plans that can actually be delivered
- Distil messy processes into scripts, checklists, runbooks, and readable documentation
- Platform experiments around local Kubernetes, Lima, and repeatable infrastructure workflows
- Small practical tools for certificates, smoke testing, and developer utilities
- Writing about cloud, security, AI-assisted development, and web tooling at nickromney.com
- Teaching with the Terraform AKS baseline clusters course
| Project | What it is |
|---|---|
| certconv | Non-invasive certificate inspection and conversion tool with an optional TUI |
| website-testing | Minimal smoke-testing framework that is evolving from bash helpers into a Go CLI and TUI |
| platform | Platform-engineering experiments across kind, Lima, Kubernetes, and local lab environments |
| visualsubnetcalc | Visual subnet design tool for planning networks and collaborating on address layouts |
| frankenphp-moodle | Container baseline for running Moodle on FrankenPHP and MariaDB with repeatable verification |
| laemp | Debian and Ubuntu host provisioning script with optional Moodle deployment |
I hold the CISSP, recognised as comparable to the U.K. Master's degree standard, alongside certifications across Terraform, Kubernetes, security, AWS, Azure, and Oracle Cloud Infrastructure.
The hands-on ones matter to me as much as the paper ones, so that list includes CKA, CKAD, CKS, the HashiCorp Terraform Associate, and a fairly deep run through AWS and Azure tracks.
I occasionally describe myself as an "internet plumber".
The job is not finished when the system works once. It is finished when the process is tuned, the boring parts are automated, and the documentation exists for the next person.