Platform leadership · DevSecOps · Multi-tenant systems
Hi, I’m Viswaroop — I design and operate secure, multi-tenant cloud platforms.
I blend Kubernetes, GitOps, and open-source identity (ORY Hydra/Kratos) to ship fast without breaking governance. Principal-track mindset: systems first, teams unblocked, security by design.
What I build
Systems I lead
Identity & tenancy
Replacing AWS Cognito with open-source IAM
ORY Hydra/Kratos/Keto, token flows tuned for tenant isolation, auditable governance, and predictable onboarding for every new app.
- Auth boundaries that survive org growth and audits
- Revocation, rotation, and SSO flows modeled up front
- Cost/lock-in tradeoffs made explicit for stakeholders
Platform engineering
GitOps-first multi-cloud platform
ArgoCD + Kustomize + Helm to normalize app delivery across EKS/GKE, with golden paths for networking, secrets, and observability.
- Promotion pipelines that align blast radius with risk
- Tenant-aware namespaces, quotas, and policy as code
- Operational readiness baked into templates (logging/SLOs)
Reliability & operations
Guardrails that keep teams moving
SLOs, incident learnings, and paved-road patterns so platform changes ship fast without whiplash for security or compliance.
- Runbooks and dashboards owned with product teams
- Pre-flight checks for identity, policy, and secrets
- Cost/reliability tradeoffs documented with decision records
Case studies I’m writing up
Replacing Cognito with ORY
Context, constraints, and why open-source IAM beat managed services for multi-tenant growth.
GitOps repo design beyond 5 teams
ArgoCD app-of-apps vs. tenant-per-repo, promotion lanes, and minimizing blast radius.
EKS/GKE platform hardening
Golden path for networking, secrets, TLS, and SSO across clouds—without slowing delivery.
Want the deep dives? Ask for the drafts or check back soon.