geyvin@homelab:~$ whoami

Geyvin Ediezca

Security Engineer · DevOps Engineer · Philippines

I build and secure backend systems and cloud infrastructure — and run a Kubernetes homelab to keep the ops sharp.

  • 10+years of experience
  • 8certifications
Portrait of Geyvin Ediezca
profile-image-v3.jpg

~/about

About me

Backend Security Engineer with 10+ years of experience across Software Engineering, DevOps, and Quality Assurance. Experienced in designing and securing backend systems, implementing Information Security Management Systems (ISMS), and establishing IT risk management processes to strengthen organizational security posture.

Proficient in developing secure backend services using Python and FastAPI and building scalable cloud architectures on AWS. Skilled in implementing secure infrastructure and access controls, including VPN-based architectures using WireGuard to protect internal services and APIs from public exposure.

Strong background in security assessments, vulnerability remediation, authentication and authorization design, and role-based access control (RBAC) for multi-tenant systems. Adept at automation, CI/CD, and maintaining local and cloud environments to support developers, testers, and production workloads. Leverages AI-assisted workflows such as Claude Code and agentic tooling to accelerate development, automate routine operations, and strengthen code and security reviews.

~/skills

Skills

Security

  • Information Security
  • Threat & Vulnerability Management
  • Penetration Testing
  • VPN / WireGuard
  • Wazuh
  • Auth0
  • RBAC

Cloud & Infrastructure

  • Amazon Web Services (AWS)
  • Kubernetes
  • Docker
  • Terraform
  • Ansible
  • Linux
  • Networking
  • System Administration
  • Cloud Computing

Development

  • Python
  • FastAPI
  • PostgreSQL
  • Shell Script
  • Ruby on Rails
  • Python Django
  • JavaScript
  • VueJS
  • HTML
  • CSS
  • Stripe

Delivery & Observability

  • Azure DevOps
  • Git
  • Github Actions
  • Grafana
  • Prometheus
  • Telegraf
  • Chronograf
  • Test Automation
  • API Testing
  • Agile Methodologies
  • Team Management

AI & Automation

  • Claude Code
  • Claude Chat
  • Claude Cowork
  • Claude Integrations

~/projects

Homelab projects

Everything below runs on a Kubernetes cluster in my homelab — deployed, secured, and monitored the same way I'd run it in production.

operational k8s · homelab

Observability Stack

Centralized metrics, logs, and traces from Windows, Linux, and macOS machines into one Grafana stack on Kubernetes — Prometheus, Loki, and Tempo fed by Alloy agents over a Tailscale mesh. No public exposure; HTTPS terminates at the tailnet edge.

  • Kubernetes
  • Helm
  • Grafana
  • Prometheus
  • Loki
  • Tempo
  • Alloy
  • Tailscale
homelab-k8s-observability-stack
operational k8s · homelab

Wazuh SIEM

A distributed Wazuh deployment — indexer, master and worker managers, and dashboard — on Kubernetes. Agent enrollment, event reporting, and API access are reachable only through the tailnet, with automatic Let's Encrypt TLS and persistent StatefulSet storage.

  • Kubernetes
  • Wazuh
  • Helm
  • Kustomize
  • Tailscale
  • Let's Encrypt
homelab-k8s-wazuh-siem
operational k8s · homelab

Pi-hole DNS

Network-wide ad blocking and DNS filtering for the whole LAN, served from Kubernetes behind a stable MetalLB virtual IP that survives pod restarts. Real client IPs preserved in query logs; the admin UI is exposed remotely over Tailscale only.

  • Kubernetes
  • Pi-hole
  • MetalLB
  • Calico
  • Helm
  • Tailscale
homelab-k8s-pihole-dns

~/certifications

Certifications

AWS Certified Solutions Architect — Associate

Comprehensive understanding of AWS services and technologies: building secure, robust solutions using architectural design principles — well-architected distributed systems that are scalable, resilient, efficient, and fault-tolerant.

Verify on Credly
AWS Certified Solutions Architect – Associate badge

AWS Certified Cloud Practitioner

Fundamental understanding of IT services and their uses in the AWS Cloud: demonstrated cloud fluency, foundational AWS knowledge, and the ability to identify essential AWS services for AWS-focused projects.

Verify on Credly
AWS Certified Cloud Practitioner badge