Neon beach at night

~*+ AquaOctet +*~

dominic's tech log // from the neon depths

NEW POST >>DEPLOY OPEN WEBUI IN DOCKER SWARM WITH CHROMA DB AND OLLAMAPROJECT >>OpenZephyrPROJECT >>Jordle3 TRANSMISSIONS IN ARCHIVE#DOCKER#SWARM#OLLAMA#CHROMADB#AI#SELF-HOSTEDSTACK >>Kubernetes / Terraform / Docker / Helm / ArgoCD / AnsibleALSO >>Install Gitlab Runners on KubernetesALSO >>Install OPNSense and Linux on Cisco ASANEW POST >>DEPLOY OPEN WEBUI IN DOCKER SWARM WITH CHROMA DB AND OLLAMAPROJECT >>OpenZephyrPROJECT >>Jordle3 TRANSMISSIONS IN ARCHIVE#DOCKER#SWARM#OLLAMA#CHROMADB#AI#SELF-HOSTEDSTACK >>Kubernetes / Terraform / Docker / Helm / ArgoCD / AnsibleALSO >>Install Gitlab Runners on KubernetesALSO >>Install OPNSense and Linux on Cisco ASA
_x
RESUME.exe // last updated 02.2026
Dominic Polizzi

DOMINIC POLIZZI

Senior DevOps Engineer // LLM-Ops

loc: Tokyo, Japan // remote OK

email: [email protected]

web: openzephyr.com // gitlab: @DomPolizzi

github: @DomPolizzi // linkedin: dominic-polizzi

dominic@aquaoctet:~$ cat about.txt

Versatile Engineer spanning cloud infrastructure, cybersecurity, networking, and AI/MLOps. I architect production-grade Kubernetes environments, build ephemeral GPU clusters for LLM workloads, and harden everything from the first commit to continuous deployment. Currently based in Tokyo, shipping infra for Offensive Security and building privacy-focused AI deployments through OpenZephyr.

>> EXPERIENCE.log

Senior DevOps Engineer (LLM-Ops)

@ Offensive Security (Offsec)

[2024-06 - Present]
  • Architected ephemeral CUDA/Ollama Kubernetes infrastructure on AWS; reduced LLM provisioning to <30s via Packer AMIs.
  • Migrated 80% of core infrastructure (AWS/Cloudflare) to Terraform, automating networking and certificate lifecycle management.
  • Acted as technical liaison, aligning project requirements with C-suite stakeholders for high-impact business initiatives.
  • Developed Rust microservice to automate isolated GitLab environments with secure service accounts and OAuth tokens.
  • Standardized observability using Prometheus/Victoria Metrics/Grafana; managed vendor relations for monitoring infrastructure.
KubernetesAWSTerraformRustPackerGrafanaGitLab CI/CDOllama
[2021-11 - 2024-06]
  • Designed CI/CD pipelines and Celery automation to provision multi-cloud (AWS/Azure/GCP) VMs and containers on-demand.
  • Achieved 15% cost savings through infrastructure audits and seamless migration to open-source alternatives.
  • Developed Go-based Kubernetes operators, reducing EKS/CI-CD costs by 20% via optimized API and registry integration.
  • Accelerated SDLC by consolidating hundreds of redundant pipelines and automating security scans with Jira integration.
  • Streamlined container orchestration by migrating legacy Docker Swarm services to Kubernetes.
GoDockerKubernetesAWSAzureGCPCeleryArgoCD

CloudOps / Compute & Security Engineer

@ XTIUM (EvolveIP)

[2021-02 - 2021-11]
  • Managed multi-cloud infrastructure (VMware/AWS) via APIs and IaC, optimizing datastores and network clusters.
  • Hardened network security using Snort IDS/IPS and Cisco firewalls; implemented VLAN segmentation and port mirroring.
  • Tier-3 security escalation for breaches/ransomware; conducted threat analysis and remediation to harden client posture.
  • Led end-to-end cloud migrations (consulting to production) for enterprise clients moving to AWS/Azure.
  • Optimized hybrid cloud connectivity (PaaS/IaaS/SaaS) using VPNs, reverse proxies, and Cloudflare Tunnels.
VMwareAWSCiscoSnortCloudflareAzureTerraform

Network & IT Engineer

@ Total Technology Resources

[2019-05 - 2021-02]
  • Enforced network access control via DHCP, private DNS, and MAC filtering on managed switches/routers.
  • Architected hybrid WFH infrastructure, including VPN/RDP access to Hyper-V, databases, and AD/AzureAD.
  • Centralized authentication by configuring SSO within Google Workspace, reducing organization-wide security risks.
Hyper-VActive DirectoryAzure ADGoogle WorkspaceVPN

Additional experience (3+ years) available on request, or LinkedIn.

>> SKILLS.dat

// cloud & platforms

AWSGCPAzureCloudflare

// containers & orchestration

DockerKubernetesOCIEKSAKSGKETanzu

// iac & automation

TerraformAnsiblePowershellGithub ActionsGitlab CI/CDArgoCD

// languages

RustGoPythonBashC++ReactRubyNode.jsVue.js

// virtualization

VMwareHyper-VOpenStack

// observability

VictoriaMetricsGrafanaCloudwatchDatadogHoneyCombSnowflake

// ai & ml

LangChainLangsmithLangfuseOllamaMCPAgentic AILlamaIndex

// security

Kali LinuxMetasploitNessusOpnSensepfSenseCiscoUbiquiti
Kubernetes / Cloud Infra95%
DevOps / CI-CD / IaC92%
Security / Networking85%
AI / MLOps / LLM-Ops80%
Rust / Go / Systems75%
Frontend / React / Node65%
>> PROJECTS.log

OpenZephyr

[02/2025 - Present]

Architecting on-premises AI/LLM deployments for privacy-focused clients.

https://openzephyr.com

C2Society

[04/2023 - Present]

Non-Profit CyberSecurity organization focused on educational events that foster collaboration among security professionals.

>> EDUCATION.log

Certificate in Cybersecurity

Woz-U (Online Technology University) // 2022

NanoDegree in Fullstack Engineering

Udacity // 2020

CompTIA Network+ & Security+

Previously held certifications

_x
>> GUESTBOOK.exe <<

*~* leave a transmission via github issues *~*

entries are pulled from github issues labeled 'guestbook'.

sign the guestbook by opening a new issue:

>> SIGN GUESTBOOK ON GITHUB <<

fetching transmissions from the void

loading...

=====[ END OF TRANSMISSION ]=====

(c) 2004-2026 AquaOctet // dominic

~ visitors ~

∞∞∞∞∞∞

tracked via cloudflare

~* you have reached the bottom of the ocean *~