Skip to content
View 7twoduo's full-sized avatar
🎯
Focusing
🎯
Focusing

Block or report 7twoduo

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Maximum 250 characters. Please don’t include any personal information such as legal names or email addresses. Markdown is supported. This note will only be visible to you.
Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse
7twoduo/README.md

Gavin Fogwe

Cloud Infrastructure & Security Engineer
AWS · GCP · Terraform · DevSecOps · IAM · Private Networking

Portfolio · LinkedIn · Repositories


Engineering Focus

I design, automate, and secure cloud infrastructure across AWS and Google Cloud.

My work focuses on:

  • Terraform-based infrastructure delivery
  • Private and hybrid cloud networking
  • Least-privilege identity and temporary access
  • Multi-region and multi-cloud architecture
  • Edge security, encryption, logging, and monitoring
  • Deployment validation, evidence collection, and operational documentation

I build complete systems—not isolated service demos. Each flagship project includes architecture decisions, infrastructure code, security controls, deployment instructions, and validation evidence.

Featured Engineering Work

Project Architecture What It Demonstrates
Secure Multi-Cloud Medical Platform AWS Tokyo, AWS São Paulo, and GCP Iowa connected with Transit Gateway, HA VPN, and BGP Data residency, private multi-cloud routing, WAF, RDS, observability, and Terraform automation
Zero-Trust Vendor Access Control Plane API Gateway, Lambda, DynamoDB, STS, S3, KMS, and CloudTrail Approval-based access, short-lived credentials, least privilege, automatic expiration, and audit evidence
Secure Multi-Tier AWS Application Platform ALB, ECS on EC2, private RDS MySQL, VPC networking, and Terraform Network segmentation, controlled application entry, and private application-to-database connectivity
Enterprise Serverless API Security Platform API Gateway, Lambda, WAF, CloudWatch, SNS, and EventBridge API protection, usage controls, alerting, event automation, and serverless operations
Secure GCP Global Web Platform Global HTTPS load balancing, Cloud CDN, Cloud Armor, private Compute Engine, and Cloud NAT Secure global delivery, private backends, managed TLS, encryption, monitoring, and Terraform
AWS–GCP Private VPN Connectivity Bridge AWS VPN, GCP HA VPN, Cloud Router, and BGP Cross-cloud private connectivity, dynamic routing, route validation, and troubleshooting

Core Stack

Cloud: AWS, Google Cloud
Infrastructure as Code: Terraform, HCL
AWS: VPC, IAM, EC2, ECS, RDS, Lambda, API Gateway, CloudFront, WAF, Transit Gateway, Route 53, CloudWatch, KMS, S3, DynamoDB, STS, CloudTrail
Google Cloud: VPC, Compute Engine, Cloud Load Balancing, Cloud Armor, Cloud CDN, Cloud NAT, Cloud Router, HA VPN, Cloud DNS, Cloud Monitoring, Cloud KMS
Delivery and Automation: GitHub Actions, GitLab CI/CD, Jenkins, Bash, Python
Security: Least privilege, temporary access, network segmentation, encryption, audit logging, edge protection, secrets management

Certifications

  • AWS Certified Security – Specialty
  • AWS Certified Solutions Architect – Associate
  • AWS Certified AI Practitioner
  • HashiCorp Certified: Terraform Associate
  • CompTIA CySA+
  • CompTIA Security+
  • ISC2 Certified in Cybersecurity

Current Development

I am continuing to deepen my skills in Kubernetes, Helm, GitOps, Argo CD, container security, and production-grade CI/CD while expanding the operational depth of my cloud projects.

Contact

Pinned Loading

  1. Secure-Multi-Cloud-Medical-Application-Platform-with-Japan-Resident-Database-Connectivity Secure-Multi-Cloud-Medical-Application-Platform-with-Japan-Resident-Database-Connectivity Public

    A secure multi-cloud medical application platform for a Japanese organization, built across AWS and GCP using Terraform, Transit Gateway, HA VPN, BGP, CloudFront, WAF, private Japan-hosted RDS conn…

    Shell

  2. Secure-Multi-Tier-AWS-Application-Platform-with-Private-Database-Connectivity Secure-Multi-Tier-AWS-Application-Platform-with-Private-Database-Connectivity Public

    Secure multi-tier AWS platform with ECS on EC2, ALB, RDS MySQL, VPC peering, Terraform, and private app-to-database connectivity.

    HCL 1

  3. Secure-GCP-Global-Web-Platform Secure-GCP-Global-Web-Platform Public

    Secure GCP global web platform built with Terraform, Cloud Armor, Cloud CDN, HTTPS load balancing, private Compute Engine backends, Cloud NAT, KMS encryption, DNS, monitoring, and alerting.

    HCL

  4. Zero-Trust-Vendor-Access-Control-Plane-on-AWS Zero-Trust-Vendor-Access-Control-Plane-on-AWS Public

    Approval-based temporary vendor access control plane using AWS Lambda, DynamoDB, STS, S3 evidence, KMS, CloudTrail, and Terraform.

    HCL

  5. Enterprise-Serverless-API-Security-Platform-on-AWS Enterprise-Serverless-API-Security-Platform-on-AWS Public

    Production-inspired AWS serverless API security platform using Terraform, API Gateway, Lambda, WAF, API keys, usage plans, CloudWatch, SNS, EventBridge, and advanced alerting.

    HCL

  6. AWS-GCP-Private-VPN-Connectivity-Bridge AWS-GCP-Private-VPN-Connectivity-Bridge Public

    HCL