~ $ whoami
Staff Software Engineer at Slack · Melbourne, Australia
I build and operate large-scale cloud platforms — the deployment systems, fleet management, and automation that tens of thousands of production systems depend on.
writing — slack.engineering
Moving ~60,000 EC2 instances across 17 AWS regions to IMDSv2 — closing off an entire class of credential-theft attacks, with SCP enforcement and automated remediation.
Inside one of the larger Terraform installations around: ~1,400 state files across four providers, with the tooling that keeps it upgradeable and safe.
Re-architecting Chef from a single stack into sharded infrastructure, and making cookbook deploys versioned, staged, and reversible.
The follow-up: six AZ-aligned production environments with a canary-and-release-train rollout, so a bad config change can no longer reach the whole fleet at once.
Rebuilding Slack from scratch on AWS GovCloud — FedRAMP High, DoD IL4, and ITAR compliance with fully isolated environments. Co-authored with Andrew Martin.
The story of Whitecastle: replacing hundreds of peered VPCs with a shared-VPC, multi-region Transit Gateway mesh, validated in real time by a network tester built in Go.
One year on: what migrating live workloads onto Whitecastle actually taught us, from proxy pitfalls to Transit Gateway scaling at hyperscale.
experience
Slack · Melbourne
Fleet-wide security migrations, Chef re-architecture, GovCloud infrastructure for GovSlack, the Terraform platform, and Shipyard — Slack's next-generation EC2 platform.
Slack · Melbourne
Co-designed and delivered Whitecastle, the ground-up redesign of Slack's global AWS network, and built its Go-based real-time network validation tooling.
Australia Post
Architected AEM platforms on AWS serving 250M+ hits per year across Australia Post's public websites.
National Australia Bank
Led migration of NAB's internet banking API microservices from IBM cloud to AWS.
stack
certifications