Khemmapon
Tawantham

DevSecOps & Cybersecurity Engineer · Tech Lead

Profile Image

About

I secure systems before they become incidents.

DevSecOps & Cybersecurity Engineer with 3+ years in security on top of a 10-year engineering background spanning full-stack development → DevOps (AWS, CI/CD) → DevSecOps — embedding security into every layer of the development lifecycle while tech-leading distributed teams from architecture to production. Specialties: Zero-Trust networking (NetBird), SIEM deployment and tuning (Wazuh, Zabbix), pipeline security (Jenkins, SonarQube, Semgrep, Trivy), and secrets management (Infisical). Off the clock, I run a Proxmox-based homelab where I pressure-test hardening and segmentation ideas before they touch production.

Skills

Security & Infrastructure

DevSecOpsCybersecurityCI/CD SecurityOWASPZero-Trust NetworkingSIEM (Wazuh, Zabbix)Threat Detection & Incident ResponseNetBird VPNNetwork SegmentationInfrastructure HardeningSecrets Management (Infisical)On-Premise Server Management

Infrastructure & Platforms

Proxmox VEOPNsenseTrueNASDockerGrafanaAWSn8n

DevSecOps Toolchain

JenkinsGitLab CISonarQubeSemgrepTrivySentryAI Workflow Automation

Development

TypeScriptJavaScriptReact.jsReact NativeVue.jsNuxt.jsRuby on RailsNestJSNode.jsRubyPostgreSQL

Version Control & OS

GitGitHubGitLabBashUbuntuLinux
View portfolio

Bio

On the web

  • @khemmapon
  • @khemmapon
  • khemmapon-tawantham