Cloud & DevOps
Engineer.

AWS-certified Cloud & DevOps Engineer who builds secure, reviewable AWS systems from real operator workflows: Terraform infrastructure, serverless APIs, container platforms, data workflows, and CloudOps governance.

AWS Solutions Architect AWS Developer Associate HashiCorp Terraform
AWS x2Certified
TerraformAssociate
Production-StyleSystems
200+Projects Delivered
View Cloud Systems GitHub LinkedIn ▣ Resume ✉ Contact
Aiden Rhaa
Based in
Atlanta Metro, GA
AWS Cloud
Terraform IaC
AWS x2Certified
TerraformAssociate
Production-StyleSystems
200+Projects Delivered
00 // Why Hiring Managers Should Care

Operator context makes the cloud work sharper.

I bring operator context into cloud engineering. I do not just deploy services; I map messy workflows into secure, cost-aware systems with documentation, observability, teardown discipline, and handoff paths.

Workflow Translation

Translates business workflows into AWS systems.

Lead operations, GovCon capture, bid qualification, inventory, OCR, transcription, and CloudOps workflows become concrete architecture instead of abstract demos.

Operational Discipline

Builds with reviewability and operations in mind.

Terraform, auth, audit trails, CloudWatch, cost controls, approval gates, private data paths, and teardown plans are treated as part of the product.

Inspectable Proof

Documents enough for another engineer to inspect, run, and trust.

Repos, live demos, architecture notes, tests, runbooks, and evidence labels make the systems easier to evaluate quickly.

01 // Story

Operator workflows turned into cloud systems.

aiden@cloud ~ whoami
cat professional_summary.txt
AWS Cloud Engineer with AWS Solutions Architect Associate,
AWS Developer Associate, and Terraform Associate credentials -
backed by real operator experience building business automation,
cloud workflows, and production-style AWS systems.
cat portfolio_signal.json | jq '.proof'
"proof": {
  "business_validated_systems": "GovCon, electrical bids, inventory, lead operations",
  "cloud_depth": "Terraform, ECS Fargate, EKS/GitOps, Lambda, RDS, DynamoDB, Bedrock",
  "operating_standard": "auth, audit logs, observability, cost controls, runbooks, teardown discipline"
}

My edge is business context. I started by building systems I needed to run real operations: lead intake, public-record research, CRM/API workflows, client-facing web systems, automation, and structured data handoff.

I now use that operator lens to design AWS systems that are practical, secure, cost-aware, and built around workflows teams actually need to run.

Core positioning: I build production-style cloud systems from real operator workflows and verified business problems.

Location
Atlanta Metropolitan Area, GA
Email
aidenrhaacloud@gmail.com
Credentials
AWS Certified Solutions Architect - Associate
AWS Certified Developer - Associate
HashiCorp Certified: Terraform Associate
Education
Berklee College of Music — Songwriting
Saint Louis University — Engineering Physics
Languages
English & Korean
02 // Credentials

Certified foundation. Systems-first proof.

The credentials establish the baseline. The public systems show how that baseline becomes architecture, automation, operating discipline, and business value.

Amazon Web Services

AWS Certified Solutions Architect - Associate

Architecture, reliability, security, cost controls, and service selection across practical AWS systems.

Amazon Web Services

AWS Certified Developer - Associate

Serverless APIs, application integration, observability, deployment workflows, and AWS service implementation.

HashiCorp

HashiCorp Certified: Terraform Associate

Infrastructure as code, Terraform workflow discipline, plan review, modules, and repeatable cloud delivery.

03 // Stack

Systems Toolkit

The toolkit behind the systems: AWS services, infrastructure delivery, container platforms, application code, security operations, and real workflow domains.

AWS Services

Core AWS services used across production-style systems, short-lived validation runs, public demos, and cost-aware serverless/container backends.

Core
VPC IAM ECS Fargate EKS Lambda API Gateway Step Functions S3 S3 Vectors DynamoDB RDS PostgreSQL RDS Proxy Bedrock Textract Transcribe Cognito CloudFront WAF ALB ECR SQS EventBridge CloudWatch CloudTrail Secrets Manager SSM Cost Explorer
Infrastructure & CI/CD

Reviewable delivery practices for repeatable infrastructure, policy checks, automation, and handoff discipline.

Core
Terraform Terraform plan review Modular IaC GitHub Actions OIDC role assumption Docker Docker Compose Checkov TFLint CI/CD pipelines Runbooks ADRs
Containers & Platform

Validated platform paths for containerized services, GitOps, ingress, secrets, and observability.

Core
Kubernetes Amazon EKS ECS Fargate Helm ArgoCD IRSA External Secrets Prometheus Grafana GitOps ALB ingress
Programming & Data

Backend APIs, frontend apps, database workflows, public-source ingestion, vector search, and data handoff systems.

Core
Python TypeScript JavaScript React Next.js FastAPI PostgreSQL SQL JSONB pgvector Bash REST APIs Data pipelines
Security & Operations

Controls that make systems reviewable: least privilege, network boundaries, auth, auditing, telemetry, cost management, and approval gates.

Core
Least-privilege IAM Private subnets Security groups Cognito/JWT auth OPA/Rego Presigned S3 URLs WAF/rate limiting Secrets management Audit logging OpenTelemetry Approval gates CloudWatch alarms Cost controls
Workflow Systems

Business domains used to validate that the cloud systems are built around real operator pressure.

Core
GovCon capture Electrical bid qualification Inventory optimization Lead-intelligence APIs OCR workflows Transcription APIs CloudOps governance Infrastructure change review
04 // Systems

Built & Shipped

Production-style cloud systems built around real operator workflows. Each one is designed to show architecture, security, cost control, observability, handoff discipline, and business value.

Featured Business-Validated AWS SaaS System
PursuitDesk - GovCon Capture & Proposal Platform
Repo Live demo
Business problem GovCon consultants need a repeatable way to intake clients, score readiness, triage opportunities, make go/no-go decisions, and draft proposals without scattered spreadsheets and one-off handoffs.
Cloud system built Serverless AWS backend with FastAPI Lambda, API Gateway, RDS PostgreSQL/pgvector, DynamoDB async jobs, Bedrock workflows, EventBridge, Terraform, CloudWatch, and Cloudflare Pages.
Confidence signals Live demo, repo, public data ingestion, async jobs, proposal exports, Terraform infrastructure, and documented architecture paths.
Live demo Repo Public ingestion Async jobs Exports Terraform CloudWatch
PursuitDesk AWS architecture View diagram
AWS Lambda API Gateway RDS PostgreSQL pgvector DynamoDB Bedrock EventBridge Secrets Manager CloudWatch Terraform FastAPI Cloudflare Pages

Platform & CloudOps Proof

Review, governance, containers, GitOps
Repo Live demo
TerraGate - Terraform PR Risk Gate
Business problem Infrastructure PRs are hard to trust when cost, security, reliability, sensitive values, and blast radius are buried inside raw Terraform plans.
Cloud system built Deterministic-first Terraform review platform that parses plan JSON, redacts secrets, runs policy checks, persists findings, and gates GitHub checks/comments.
Confidence signals Live demo, repo, Terraform plan parsing, approval gates, audit persistence, redaction, and repeatable CI workflows.
Live demo Repo Terraform GitHub checks Audit persistence
TerraGate AWS architecture View diagram
FastAPI Next.js PostgreSQL LangGraph Terraform GitHub Actions Docker Alembic
Repo Live demo
AegisDesk - Self-Hosted CloudOps AI Control Plane
Business problem CloudOps work gets fragmented across tickets, incidents, cost reviews, access requests, policies, and tribal knowledge.
Cloud system built Governed AI control plane for incident triage, access requests, cost review, policy enforcement, redaction, audit replay, and trusted-source answers.
Confidence signals Live demo, repo, Cognito/JWKS auth, OPA/Rego policy checks, Bedrock workflows, audit replay, OpenTelemetry, and Terraform.
Live demo Repo OPA/Rego Audit replay Terraform
AegisDesk AWS architecture View diagram
Next.js FastAPI Cognito OPA/Rego Bedrock DynamoDB Cost Explorer OpenTelemetry Terraform
Repo
Clearpath - AWS Fargate Lead Intelligence API
Business problem Acquisition workflows need dependable lead intake, source quality scoring, county resolution, CRM events, and structured handoff instead of scattered manual research.
Cloud system built Production-style ECS Fargate API with FastAPI, private RDS PostgreSQL, RDS Proxy, ALB, CloudFront/WAF, Secrets Manager, CloudWatch, Terraform, and Checkov.
Confidence signals Repo, real workflow mapping, Terraform, Checkov validation, CloudWatch alarms, private database path, and teardown discipline.
Repo Terraform Checkov CloudWatch Runbook
Clearpath AWS architecture View diagram
FastAPI ECS Fargate Docker ALB CloudFront WAF RDS PostgreSQL RDS Proxy Secrets Manager CloudWatch Terraform Checkov
Repo Live demo
Pulpit V2 - Validated EKS/GitOps Platform
Business problem A working serverless Bedrock RAG product needs a credible platform migration path without losing observability, secrets discipline, tenant boundaries, or cost control.
Cloud system built Validated EKS/GitOps path with Terraform-managed EKS/ECR, Helm workloads, ArgoCD app-of-apps, External Secrets from SSM, Prometheus/Grafana, tenant ALB ingress, CI validation, and teardown discipline.
Confidence signals Repo, live demo, EKS validation, ArgoCD, Prometheus/Grafana, Terraform, External Secrets, and explicit teardown discipline.
Live demo Repo Terraform ArgoCD Runbook
Pulpit V2 AWS architecture View diagram
EKS Kubernetes Terraform Helm ArgoCD External Secrets SSM Prometheus Grafana Cloudflare Pages

Business-Validated Cloud Systems

Bids, inventory, grid intelligence
Repo Live demo
ElecBidSpec AI - Electrical Bid Intelligence Platform
Business problem Electrical infrastructure teams need a faster way to evaluate public opportunities, parse RFP/spec language, score fit, and produce proposal-ready artifacts.
Cloud system built Bid intelligence platform with public-source ingestion, RFP/spec upload, scope extraction, fit scoring, compliance matrix, alerts, optional Bedrock enhancement, AWS Lambda Function URL, S3, PostgreSQL, and Terraform.
Confidence signals Live demo, repo, 49 backend tests, proposal artifacts, saved searches, watched opportunities, Terraform, and Cloudflare Pages deployment.
Live demo Repo Tests Terraform Artifacts
Next.js FastAPI PostgreSQL SQLAlchemy Alembic AWS Lambda Function URL S3 Bedrock Terraform Cloudflare Pages
Repo Live demo
StockSense AI - Expiration-Aware Inventory Optimization
Business problem Food and CPG teams need to reduce expiration waste, avoid stockouts, and make reorder decisions from messy product, lot, order, customer, and inbound shipment exports.
Cloud system built Inventory optimization MVP that turns CSV/XLSX exports into FEFO priorities, waste-risk alerts, forecasts, reorder recommendations, ROI metrics, and safe natural-language planning answers.
Confidence signals Live demo, repo, low-idle AWS backend, import workflows, executive metrics, EventBridge, DynamoDB, S3, SSM, and Terraform.
Live demo Repo MVP Imports Terraform
Next.js FastAPI PostgreSQL Pandas CSV/XLSX imports Lambda Function URL S3 DynamoDB EventBridge SSM Terraform
Repo Live demo
QueueWatch - Serverless Grid-Capacity Intelligence
Business problem Energy and infrastructure research workflows need source-backed signals from changing ISO/RTO interconnection queues without manually checking official documents.
Cloud system built AWS serverless data product that monitors official sources, detects changed documents, captures S3 evidence, normalizes project rows, stores DynamoDB signals, and uses Bedrock/Textract fallback paths.
Confidence signals Live demo, repo, official-source monitoring, S3 evidence capture, EventBridge scheduling, DynamoDB signals, CloudWatch, Terraform, and SQS DLQ.
Live demo Repo S3 evidence CloudWatch Terraform
AWS Lambda EventBridge S3 DynamoDB Bedrock Textract SQS DLQ CloudWatch Terraform Cloudflare Pages

Supporting AWS Patterns

More proof systems
Repo Live demo
PhotoScribe AI - Governed Serverless Media Search
Serverless media search platform with S3, Lambda, API Gateway, Cognito, Bedrock Nova/Titan, S3 Vectors, DynamoDB policy/audit tables, SQS/DLQ, CloudWatch, Terraform, and Cloudflare Pages.
Live demo Repo Terraform Audit tables
Lambda API Gateway Cognito Bedrock S3 Vectors DynamoDB
Repo Live demo
DocuFlow OCR - Step Functions + Textract Workflow
Invoice OCR workflow with S3 presigned uploads, API Gateway, Step Functions, Textract, Python Lambda parsing/scoring, DynamoDB jobs/audit, review queue, SQS DLQ, CloudWatch alarms, and Terraform.
Live demo Repo Step Functions Terraform
S3 API Gateway Step Functions Textract Lambda DynamoDB
Repo Live demo
Super Transcriber API - API-First Serverless Transcription Backend
Developer-facing transcription API with API-key auth, SQS workers, Amazon Transcribe, EventBridge completion handling, DynamoDB usage limits, webhooks, OpenAPI contract, TypeScript SDK, Terraform, and Cloudflare Pages docs.
Live demo Repo OpenAPI SDK
SQS Transcribe EventBridge DynamoDB OpenAPI Terraform
Repo Live demo
Pulpit V1 - Serverless Bedrock RAG Application
Korean-English sermon search app with API Gateway, Lambda, Cognito, DynamoDB, S3 index, Bedrock, audit records, Guardrails, Terraform, GitHub Actions, and Cloudflare Pages.
Live demo Repo Terraform Audit records
Bedrock API Gateway Lambda Cognito DynamoDB Terraform
05 // Origin

Where the operator lens came from.

Business ownership and client delivery experience became the foundation for building practical cloud infrastructure, automation, and operational workflows.

Business ownership background with hands-on technical responsibility across automation, web infrastructure, CRM/API workflows, and operational systems.
Founder / Automation & Systems Lead
Dec 2016 – Present
Clearpath Property Group / Boston Probate Solutions · Atlanta Metropolitan Area
  • Owned real-world acquisition and operations workflows across lead intake, public-record research, market data, CRM integration, seller communication, and automation
  • Built Python ingestion and scraping workflows that normalized county/public-record data into structured research outputs
  • Designed CRM/API automation and AI-assisted handoff workflows for lead qualification, voice AI guardrails, transcript summaries, and structured data routing
  • Translated real workflow requirements into AWS portfolio systems including Clearpath Fargate API and related lead-intelligence architecture
Creative Director / Operations
Oct 2010 – Present
Aiden Rhaa Photography / Visual Impact Studios · Atlanta Metropolitan Area
  • Delivered 200+ client projects across a 15-year service business, balancing technical execution, vendor coordination, customer communication, and budget constraints
  • Managed client-facing web properties, DNS records, SSL/TLS certificates, Cloudflare configuration, hosting, GitHub-based deployments, Supabase/Netlify workflows, cPanel, SFTP/SSH access, and WordPress administration
  • Directed cross-functional creative, technical, and contractor workflows for deadline-driven client projects with high service expectations
  • Built, rebuilt, or maintained static and CMS websites with focus on performance, SEO, image optimization, mobile responsiveness, and low operating cost
  • Translated client and business requirements into working web infrastructure, publishing workflows, and operational processes
Multimedia Producer / Technical Workflow Lead
May 2009 – Dec 2016
ProMedia Productions · Boston, MA
  • Managed full project lifecycle for audio and video productions across small business, corporate, and education sectors
  • Built a macOS Automator workflow to bulk sort and rename thousands of media files by structured naming conventions, reducing manual file-management work
  • Designed custom recording studio configurations including acoustic treatment planning, noise reduction analysis, and equipment layout
  • Sourced and coordinated per-project freelance crews across diverse production scopes
06 // Connect

Cloud systems with operator context.

I build AWS infrastructure, automation, and platform workflows for teams that care about reliability, cost awareness, security, and ownership.

AWS Systems Platform Automation DevOps Reliability CloudOps Governance
The through-line: connect operator workflows to AWS architecture, automation, reliability, runbooks, and working deployments.
LinkedIn GitHub
Architecture diagram

Press Esc or click outside the diagram to close