Browse Skills

Designs security awareness programs including phishing simulations, training curricula, social engineering awareness campaigns, and security culture metrics. Builds measurable programs that change behavior, not just check compliance boxes.

Assesses and remediates cloud security misconfigurations across AWS, GCP, and Azure using CIS benchmarks. Designs automated CSPM workflows, drift detection, and compliance-as-code guardrails for multi-cloud environments.

Provides expert guidance on digital forensics methodology including evidence preservation, chain of custody, log analysis, memory forensics, disk forensics, and forensic reporting — strictly defensive and investigative in nature.

Expert guide for building Laravel admin panels, dashboards, and CRUD applications with Filament v5 and the TALL stack (Tailwind, Alpine, Livewire, Laravel).

Expert guidance for Craft CMS development: flexible content modeling, Twig templates, Element API, GraphQL, plugin development, multi-site, and headless patterns.

Designs comprehensive software supply chain security strategies including SBOM generation, SLSA framework compliance, build provenance, dependency integrity verification, and protection against supply chain attacks using Sigstore and in-toto.

Expert architect for designing and implementing cloud Identity and Access Management security — from IAM policy design, least-privilege enforcement, and role-based access control to cross-account trust relationships, service account hardening, conditional access policies, and multi-cloud IAM federation strategies.

Designs vulnerability management programs with CVE tracking, risk-based prioritization using CVSS and SSVC, patching strategies, scanner deployment, and remediation SLA frameworks that balance security urgency with operational stability.

Content-focused web development with Astro island architecture, content collections, hybrid rendering, and zero-JavaScript-by-default philosophy.

Build, deploy, and operate production-grade serverless functions on Supabase using the Deno runtime with integrated auth, database, and storage access.

Expert guidance for building production applications with Bun — the fast all-in-one JavaScript runtime. Covers HTTP servers, bundling, testing, package management, SQLite, FFI, and Node.js migration strategies.

Design and implement production-grade Service Worker strategies for offline-first web applications, covering caching patterns, lifecycle management, background sync, and Workbox configuration.

Expert-level ProcessWire development combining code-driven schema management with RockMigrations, flexible content modelling with ProFields Repeater Matrix, custom admin backends via Process modules, and production deployment pipelines. Covers the full professional PW stack: idempotent migrations, MagicPages pattern, block-type content architecture, hook system mastery, and role-based access control.

Expert Moodle LMS developer specializing in plugin architecture, Mustache templating, DML/DDL database layers, web services API, and e-learning platform customization.

Expert-level guidance for Magento 2 and Adobe Commerce development, covering module architecture, DI, EAV, GraphQL APIs, MSI, B2B, performance tuning, and cloud deployment.

Audits browser extensions for permissions abuse, content script vulnerabilities, CSP violations, and malicious code patterns across Chrome/Firefox extension ecosystems.

Privacy by Design implementation covering data pseudonymization, consent architecture, GDPR/CCPA compliance engineering, data minimization, and privacy-preserving analytics.

Production-grade Kubernetes security configuration including RBAC policies, network policies, pod security standards, secrets management, and supply chain security with admission controllers.

Expert Nextcloud app development, deployment, and administration using the OCP API, QBMapper, Vue.js frontend, WebDAV/CalDAV/CardDAV, and scaling with Redis/S3.

Design production-grade GitLab CI/CD pipelines with optimized caching, DAG parallelism, security scanning integration, and multi-environment deployment strategies.

Design, optimize, and debug regular expressions with expert guidance on named groups, lookahead/lookbehind, Unicode handling, performance optimization, catastrophic backtracking prevention, and cross-language regex compatibility.

Designs and optimizes Security Information and Event Management (SIEM) architectures, including log collection strategies, correlation rules, alert tuning, and SOC workflow integration for enterprise threat detection.

Build type-safe database layers for TypeScript applications using Drizzle ORM, with proper schema design, migration workflows, query optimization, and deployment-target-specific driver configuration.

Enterprise PIM, DAM, CMS, and DXP platform specialist built on Symfony for structured data modeling, multi-channel output, and digital commerce workflows.