AI + Cloud Security
Threat-model the stack before it becomes a customer problem.
Secure model access, data paths, IAM boundaries, secrets handling, and deployment controls across AWS, Azure, Hetzner, and modern AI workloads.
AI & Cloud Security Architect
Secure AI and cloud infrastructure for startups under security and compliance pressure.
I help founders and technical teams fix cloud, security, compliance, and delivery problems without adding more process theater.
Best fit for Europe-based or Europe-facing startups building AI or SaaS products that need stronger architecture, GDPR-aware systems, and senior hands-on technical judgment across AWS, Azure, Hetzner, and hybrid environments.
CTO
AWS
Azure
Hetzner
AI
Security
Compliance
GDPR
Data Residency
What I Do
Architecture that works under real pressure.
I help founders and technical teams fix the systems underneath delivery, cloud, security, and compliance pressure so the business can keep moving.
Compliance-Ready Systems
Controls built into engineering, not taped on for audit week.
ISO 27001 and SOC 2 readiness through practical architecture decisions, logging, recovery, evidence, and operating discipline across single-cloud or hybrid estates, including GDPR and sovereignty-sensitive requirements.
Fractional CTO
Senior technical leadership without waiting on a long hiring cycle.
Clear decisions, calmer delivery, and hands-on support for founders who need both architecture judgment and execution across multiple vendors.
Key Offers
Three focused ways to bring me in.
AI Security Audit
Find the architectural risks before they turn into controls debt.
For startups running AI workloads on AWS, Azure, Hetzner, or mixed environments that need a clear report, threat picture, remediation plan, and guidance on security, compliance, and data-residency tradeoffs.
- Architecture review
- Security risk report
- Prioritized action plan
- Residency and sovereignty considerations
Fractional CTO
Ongoing architecture, delivery, and compliance leadership.
For founders who need senior technical direction, calmer decision-making, and a stronger operating model.
- Architecture decisions
- Compliance readiness
- Monthly strategic support
Build Secure AI Systems
Design and deploy AI infrastructure that is ready for production.
From RAG pipelines to local model deployments, with security controls and platform discipline built in from the start for regulated and sovereignty-sensitive environments.
- RAG pipelines
- Local LLM infrastructure
- Production deployment
Case Study Preview
Raposa.ai: cloud security visibility through AI-assisted analysis.
Reframing infrastructure telemetry into an AI-driven analysis platform: cloud-native foundations, RAG-style retrieval patterns, and operator-focused threat visibility for cloud security use cases.
Read the case studyLatest Writing
Five foundational pieces for AI security and compliance.
- How to build a secure RAG pipeline on AWS
- Why most AI systems fail compliance
- Local LLMs vs cloud LLMs for regulated environments
How Engagements Work
Simple process. Clear decisions. Useful output.
Every engagement is designed to get from ambiguity to a practical plan quickly, without a long advisory runway.
Diagnostic
We review the current architecture, delivery pressure, cloud footprint, and compliance constraints.
Risk Map
I identify the real bottlenecks, security gaps, and high-cost design decisions that matter first.
Fix Plan
You get a prioritized technical plan with tradeoffs, sequence, and practical next actions.
Execution
We either close out the audit cleanly or continue into hands-on support, CTO work, or implementation.
Ready To Talk
Book a call or request an audit.
If you are building AI features on real infrastructure and need stronger security, clearer architecture, compliance readiness, or help with GDPR and data-residency constraints, we should talk.