Siro Collins

Cloud & DevOps Engineer · Site Reliability Engineer
AWS · Azure · Kubernetes · Terraform · CI/CD · GitOps · Chaos Engineering · Security
Kubernetes Terraform AWS · Azure GitOps (ArgoCD) LitmusChaos Prometheus + Grafana Vault + Trivy SLOs + Error Budgets HPA Autoscaling Self-hosted Runners

About Me

I build cloud infrastructure that's secure, observable, and recovers from failure automatically.

My GitHub proves I can operate systems, not just deploy them. Every project includes working code, screenshots, and documentation. 12 production-grade projects across Kubernetes, AWS, Terraform, GitOps, security, and SRE practices.

Available for full-time DevOps, Cloud Engineering, and SRE roles. Also open to freelance and contract work on Upwork.

Featured: Kubernetes Incident Response

k8s-incident-response Flagship

LitmusChaos | Prometheus | Grafana | Alertmanager | k6 | Kubernetes

Complete incident response system: chaos injection → alerting → auto-healing → runbook documentation.

  • Pod kill experiment → Kubernetes rescheduled in ~8 seconds
  • Prometheus alerts fire on PodCrashLooping and NodeCPUSaturation
  • Alertmanager routes critical alerts to Slack, warnings to email
  • 3 runbooks — pod crash, high latency, CPU saturation — linked from alert annotations
  • k6 synthetic monitoring — smoke tests and load tests running during chaos
GitHub → Screenshots →

Projects by Category

Kubernetes & GitOps

argocd-gitops-demo

ArgoCD | Kubernetes | GitOps | GitHub

Declarative Kubernetes deployments via Git. Proved automated sync, self-healing (pod restored in 10 seconds), and drift correction. No manual kubectl apply in the deployment workflow.

GitHub →

k8s-autoscaling

HPA | Metrics Server | Kubernetes | Load Testing

Full autoscaling cycle proved end to end. CPU exceeded 50% threshold, HPA scaled from 1 to 3 replicas automatically. Load removed, scaled back to 1 after cooldown.

GitHub →

k8s-rbac-network-policies

RBAC | NetworkPolicy | Namespace Isolation

Least-privilege RBAC and default-deny network policies. Proved yes/no/no with kubectl auth can-i. Blocked cross-namespace traffic then restored selective access with allow rule.

GitHub →

k8s-monitoring-stack

Prometheus | Grafana | Loki | Alertmanager | Helm

Full observability platform: metrics, logs, dashboards, and alerting. Deployed via Helm on Minikube. Dashboards showing pod health, resource usage, and application metrics.

GitHub →

k8s-vault-secrets

HashiCorp Vault | Kubernetes | Helm | RBAC

Zero hardcoded credentials. Vault agent injects secrets at runtime into the pod filesystem. No Kubernetes secrets, no env vars, no credentials in Git. Scoped least-privilege policy.

GitHub →

k8s-slo-observability

SLOs | SLIs | Prometheus | Error Budgets | Grafana

99% availability SLO with error budget tracking and multi-window burn rate alerts. Simulated SLO breach and measured error budget consumption in real time. SRE practices in production.

GitHub →

k8s-actions-runners

ARC | GitHub Actions | Kubernetes | cert-manager

Self-hosted GitHub Actions runners on Kubernetes using Actions Runner Controller. Jobs execute inside the cluster — no secrets leaving internal infrastructure. Ephemeral runners per job.

GitHub →

Infrastructure as Code & Cloud

aws-terraform-infrastructure

Terraform | AWS | VPC | ALB | EC2 | IAM

Production-grade AWS infrastructure entirely in code. Custom VPC, EC2 behind ALB, least-privilege IAM roles. Reproducible in any region with a single terraform apply.

GitHub →

multi-env-terraform

Terraform | AWS | S3 Remote State | Modules

Three isolated environments (dev, staging, prod) from a shared VPC module with S3 remote state and versioning. Each has its own CIDR range and state file. No hardcoded values anywhere.

GitHub →

CI/CD & Security

microservices-cicd-pipeline

Jenkins | Docker | Kubernetes | GitHub Actions

End-to-end pipeline from commit to production in minutes. GitHub Actions triggers the chain — Jenkins tests, Docker containerises, Kubernetes orchestrates. Zero-downtime with automated rollback.

GitHub →

container-security-scanning

Trivy | Snyk | GitHub Actions | Docker

Shift-left security. Trivy scans every image for CVEs — critical vulnerabilities block deployment automatically. Detected and remediated OpenSSL heap buffer overflow before it reached production.

GitHub →

cicd-demo-app

GitHub Pages | GitHub Actions | HTML

Live site auto-deployed on every push. The pipeline itself is the demo.

GitHub →

Technical Skills

Cloud

AWS (S3, EC2, VPC, IAM, ALB, RDS, CloudWatch, CloudTrail) Azure (VMs, Blob Storage, AAD, Monitor)

Containers & Orchestration

Docker Kubernetes Helm Minikube ArgoCD HPA Metrics Server

IaC & Automation

Terraform Ansible GitHub Actions Jenkins ARC (self-hosted runners) GitOps

Observability & SRE

Prometheus Grafana Loki Alertmanager k6 SLOs Error Budgets Burn Rate Alerts

Chaos Engineering

LitmusChaos Synthetic Monitoring Incident Runbooks Postmortem Facilitation

Security

HashiCorp Vault Trivy Snyk RBAC Network Policies cert-manager IAM Least Privilege

Languages

Python Bash YAML HCL PowerShell

Soft Skills

Cross-functional Collaboration Technical Documentation Incident Communication Problem Solving Agile Workflows

GitHub Activity

GitHub Streak

Available For

Full-time DevOps · SRE · Cloud Engineering roles · Freelance & contract work · Cloud setup and migration · DevOps audits · Kubernetes deployments · Ongoing cloud operations on AWS and Azure

GitHub LinkedIn Email Upwork