Cloud, Security & AI Architect

Cloud, security, and compliance support for teams under delivery pressure.

I help founders and technical teams fix cloud, security, compliance, and delivery problems without adding more process theater.

My background is cloud-first, with more than 14 years working across infrastructure, platform, security, and delivery. AI is part of the modern toolset, not the whole service: I help organizations use it safely inside products and operations without losing control of the cloud foundations underneath.

Book a Call Request Audit

14+ years in cloud Europe-aware Founder-friendly Hands-on architecture

Built for founders, trusted by technical teams.

Best-fit situations

Your cloud platform, delivery workflow, or security posture needs senior hands-on support
Enterprise deals are exposing compliance gaps
You are introducing AI into products or operations and want to do it safely
Data residency or sovereignty requirements are shaping architecture decisions
You need architecture depth without a full-time CTO
Your platform has to be production-ready, not demo-ready

01 Audit the architecture

02 Prioritize the risks

03 Move into delivery

CTO AWS Azure Hetzner AI Security Compliance GDPR Data Residency

What I Do

Architecture that works under real pressure.

I help founders and technical teams fix the systems underneath delivery, cloud, security, and compliance pressure so the business can keep moving without expensive rewrites or process-heavy slowdown.

Cloud Security

Fix the foundation before security and delivery problems compound.

Cloud architecture, IAM boundaries, secrets handling, deployment controls, and the operational guardrails that keep modern systems workable in production.

Compliance-Ready Systems

Controls built into engineering, not taped on for audit week.

ISO 27001 and SOC 2 readiness through practical architecture decisions, logging, recovery, evidence, and operating discipline across single-cloud or hybrid estates, including GDPR and sovereignty-sensitive requirements.

AI As An Addition

Use AI where it helps, without pretending it replaces platform discipline.

Bring AI into products and operations as part of a wider cloud, DevOps, security, and compliance strategy rather than as an isolated experiment.

Key Offers

Three focused ways to bring me in.

See full services

Cloud & Security Audit

Find the architectural risks before they turn into controls debt.

For organizations on AWS, Azure, Hetzner, or mixed environments that need a clear report, threat picture, remediation plan, and guidance on security, compliance, AI adoption, and data-residency tradeoffs.

Architecture review
Security risk report
Prioritized action plan
AI usage and data-flow review
Residency and sovereignty considerations

Fractional CTO

Ongoing architecture, delivery, and compliance leadership.

For founders who need senior technical direction, calmer decision-making, and a stronger operating model.

Architecture decisions
Compliance readiness
Monthly strategic support

Platform & AI Delivery

Extend your platform safely when AI becomes part of the stack.

From modern cloud architecture to RAG pipelines and local model deployments, with security controls and platform discipline built in from the start for regulated and sovereignty-sensitive environments.

RAG pipelines
Local LLM infrastructure
Production deployment

Case Study Preview

Raposa.ai: cloud security visibility through AI-assisted analysis.

Reframing infrastructure telemetry into an AI-driven analysis platform: cloud-native foundations, RAG-style retrieval patterns, and operator-focused threat visibility for cloud security use cases.

Read the case study

Latest Writing

Five foundational pieces for AI security and compliance.

Browse all writing

How Engagements Work

Simple process. Clear decisions. Useful output.

Every engagement is designed to get from ambiguity to a practical plan quickly, without a long advisory runway.

Shared operating pattern

Every engagement follows the same progression from ambiguity to action.

Diagnostic

We review the current architecture, delivery pressure, cloud footprint, and compliance constraints.

Risk Map

I identify the real bottlenecks, security gaps, and high-cost design decisions that matter first.

Fix Plan

You get a prioritized technical plan with tradeoffs, sequence, and practical next actions.

Execution

We either close out the audit cleanly or continue into hands-on support, CTO work, or implementation.

Ready To Talk

Book a call or request an audit.

If your organization is using AI on real infrastructure and needs stronger security, clearer architecture, compliance readiness, or help with GDPR and data-residency constraints, we should talk.

Book a Call Request Audit