Testimonial background
Sea landscape background
Coastal background

Red G / DevSecOps / AppSec / Automation

I build, automate, and secure.

Security-minded engineering, automation, and applied AI for real-world product delivery. I combine application security, automation, cloud engineering, and applied AI to build secure, useful, production-ready software faster.

AppSecDevSecOpsApplied AIAutomationCloud securityProduct delivery
View work
Profile photo

About me

I build, automate, and secure: writing software that removes manual work, then making sure what remains is hard to break.

Automation has been the thread through my career, from programming Olympiads and laser research systems to enterprise integrations, DevSecOps, application security, and AI-assisted workflows.

After software and integration roles at Hewlett Packard, I moved deep into Application Security: helping grow Swyftx security from scratch to 20+ specialists, rolling out scanning and threat assessment practices at Officeworks, and maturing secure software delivery lifecycle work at Belong.

AI is not a separate side interest for me. It is part of how I research, design, build, secure, document, and ship software — using tools like ChatGPT, Gemini, NotebookLM, Claude Desktop, Cursor, Antigravity, Flow, Pomelli, Ollama, Hermes, and local LLMs to move faster while still applying security judgement and practical delivery discipline.

I stay hands-on outside of work too, building production apps like Alfie's Almanac, automated trading systems, local LLM experiments, and creative AI workflows. The best way to know what is possible is to keep building it myself.

  • Location:QLD, Australia
  • Interests:Coding, Surfing
  • Study:Computer Science / Physics

Expertise

Capability Stack

I combine application security, automation, cloud engineering, and applied AI to build secure, useful, production-ready software faster.

Application Security & SSDLC

Threat modelling, secure software delivery, OWASP, SCA/SAST rollout, vulnerability management, developer engagement, and practical security uplift across engineering teams.

Applied professionallySecurity reviewedDeveloper enablementRisk reduction
Threat ModellingOWASP ASVSSCASASTSSDLCVulnerability ManagementSecure Code ReviewDeveloper Enablement

DevSecOps & Automation

Automating security and delivery workflows through CI/CD, GitHub/GitLab pipelines, Docker, policy checks, dependency scanning, and repeatable engineering processes.

Applied professionallyAutomated with itBuilt with itUsed in real workflows
GitHub ActionsGitLab CI/CDDockerDependabotSnykPipeline SecurityAutomationPolicy Gates

Applied AI Engineering

Hands-on use of AI across the full product lifecycle, including research, design, coding, security review, documentation, content, automation, creative workflows, and production product delivery.

Built with itShipped to productionAutomated with itUsed in real workflows
ChatGPTGeminiNotebookLMClaude DesktopCursorAntigravityFlowPomelliOllamaHermesLocal LLMsAI Review Loops

Cloud & Container Security

Practical cloud and container security across AWS, identity, secrets, logging, deployment hardening, infrastructure design, and production environments.

Applied professionallySecurity reviewedShipped to productionUsed in real workflows
AWSIAMDockerContainersSecrets ManagementLoggingDeployment SecurityInfrastructure Hardening

Product Engineering

Full-stack product building from concept to production, combining frontend delivery, backend services, databases, authentication, storage, user experience, and deployment.

Built with itShipped to productionAutomated with itUsed in real workflows
Next.jsReactTypeScriptNode.jsPostgreSQLSupabaseVercelGitHubAPI DesignProduct Delivery

Governance, Privacy & Compliance

Security-aware delivery with consideration for privacy, risk, governance, documentation, and regulated environments.

Applied professionallySecurity reviewedRisk reductionUsed in real workflows
Privacy ActISMISO 27001NISTSecurity DocumentationRisk ManagementSBOMSupplier Review

Delivery multiplier

Applied AI Capability

I use AI across the full product lifecycle, from idea exploration and research through to design, coding, testing, security review, content creation, documentation, and production delivery.

My practical AI toolkit includes ChatGPT, Gemini, NotebookLM, Claude Desktop, Cursor, Google Antigravity, Google Flow, Pomelli, Ollama, Hermes, and local model experimentation.

I use these tools not as isolated assistants, but as part of real workflows for building, validating, explaining, securing, and improving software.

AI toolkit by function

AI reasoning & research

ChatGPTGeminiClaudeNotebookLM

AI software delivery

CursorAntigravityAI-assisted codingRepo-based development workflows

Local and private AI

OllamaHermesLocal model experimentation

Creative and product media

Google FlowPomelliImage/video/content workflows

Automation and review

AI agentsPrompt chainsDocumentationTestingCode reviewHallucination controlProduct iteration

AI workflow loop

A practical lifecycle I use across real product work — not isolated prompts, but connected stages from idea to production.

1

Research

Explore ideas, compare approaches, summarise research, understand complex topics, and turn vague concepts into structured direction.

ChatGPTGeminiNotebookLMClaude
2

Design

Shape product concepts, visual direction, storytelling, UX ideas, content structure, and creative assets.

FlowPomelliGeminiChatGPT
3

Build

Generate, refactor, debug, and review code while maintaining ownership of architecture and implementation decisions.

CursorAntigravityChatGPTClaude
4

Review

Review code, challenge assumptions, test logic, improve documentation, and compare implementation options.

Claude DesktopChatGPTGemini
5

Secure

Threat model features, review secrets handling, consider privacy risks, check dependency/security concerns, and strengthen delivery practices.

ChatGPTClaudeSecurity tooling
6

Ship

Move from idea to deployed product with version control, deployment workflows, and production feedback.

GitHubVercelDockerCI/CD workflows
7

Improve

Iterate from feedback, refine copy, improve UX, create documentation, and build better workflows over time.

ChatGPTGeminiNotebookLMHermes

Featured proof point

Alfie's Almanac

Alfie's Almanac

Alfie's Almanac is a production web app I designed, built, and shipped myself. It demonstrates how I use AI practically across product thinking, frontend development, creative direction, content generation, iteration, and deployment. It is proof of hands-on AI-enabled product delivery, not just AI experimentation.

View live app

AI is not a separate side interest for me. It is now part of how I research, design, build, secure, document, and ship software. I use tools like ChatGPT, Gemini, NotebookLM, Claude Desktop, Cursor, Antigravity, Flow, Pomelli, Ollama, Hermes, and local LLMs to move faster while still applying security, engineering judgement, and practical delivery discipline.

Selected work

Projects that show the craft

A mix of automation, security thinking, product design, and hands-on build work.

Featured
Alfie's Almanac screenshot 1

Alfie's Almanac

A production web app I designed, built, and shipped myself. It demonstrates how I use AI practically across product thinking, frontend development, creative direction, content generation, iteration, and deployment — proof of hands-on AI-enabled product delivery, not just experimentation.

Hermes Stack screenshot 1

Hermes Stack

A hardened, privacy-first AI agent platform using the Nous Research Hermes agent with local Ollama models over Tailscale, dual-model review for hallucination control, Docker sandbox execution, and Discord/Telegram workflows for crypto research and community operations.

Strategy Factory screenshot 1

Strategy Factory

A hands-on trading automation project exploring strategy dashboards, risk controls, AI health checks, position monitoring, and evolution reels for product storytelling.

Yeah Nah Dosh Muncher screenshot 1
Yeah Nah Dosh Muncher screenshot 2

Yeah Nah Dosh Muncher

A personal finance and small-business tracking app with authenticated login and an operations dashboard — clients, projects, revenue, income vs expenses, and expense categories — delivered in a deliberately informal Australian tone so money management feels approachable rather than spreadsheet-heavy.

Red G and I worked together in Swyftx security. For our entire time together, he was always supremely adaptable, eager to learn, kind hearted, and passionate about making Swyftx great. He has strong technical skills, stretching across a broad range of topics. He was most recently in an Application Security role, in which he was supporting a number of our engineering squads. I will be eagerly following where your career will take you!

-- Head of Security at Swyftx

I thoroughly enjoyed working with Red G during his time at Swyftx. Given his previous experience at Microfocus with Fortify, I found Red G to have a good knowledge of the AppSec space and was engaged & inquisitive to learn more on Snyk’s approach. During the roll out Snyk, our Customer Success Team who assisted during implementation, found Red G to be a great communicator and his proactive nature resulted in a huge amount of progress in a short period of time. I wish Red G all the best and look forward to seeing what his next move is.

-- Senior Account Executive at Snyk

Red G is a fantastic teammate to work alongside. He is diligent, thorough, knowledgeable, and considerate of the needs of others. He brings humour and a unique perspective and I have enjoyed all the time spent working with him.

-- Peer at Swyftx

Red G is a very thorough individual, Always ensuring that tasks are completed to ensure that customers of our team are aware of what we expect of them as well as what they should expect from us. Red G is incredibly knowledgeable across many disciplines and applies his knowledge learned elsewhere to all aspects of his work.

-- Lead Solution Architect at Micro Focus

Contact

Want to automate the boring and secure the rest?

I am always interested in practical security, automation, AI workflow, and product engineering conversations, especially when there is something real to build.