Manuel Gutierrez Hernandez
@maguher
DevSecOps & SRE engineer building Zero Trust cloud platforms, automating secure deployments with IaC, GitOps, and observability.
What I'm looking for
What drives me is owning the full lifecycle of a system: laying the security foundations at design time and ensuring production is stable and efficient for everyone who operates it. Over the past year and a half, I’ve put this into practice by migrating a production SOC from bare metal to Kubernetes with a Zero Trust architecture, cutting the attack surface by 85% and leaving zero ports exposed to the internet.
At ClickDefense S.L., I design, harden, and operate the cloud infrastructure of a SOC platform, including a migration to EKS multi-AZ with Zero Trust (segmented VPC, VPN-only access, internal NLB). I deliver faster, safer releases through Terraform and Ansible-driven Infrastructure as Code, autoscaling with Karpenter and KEDA, and Shift Left Security in GitLab CI/CD using SAST and Trivy on every merge request with secrets lifecycle management. With GitOps via ArgoCD, granular RBAC, and Kubernetes Network Policies, I’ve reduced MTTR with sub-3-minute rollbacks and built an observability stack using Prometheus and Grafana integrated with the SIEM platform.
Beyond day-to-day operations, I build security tooling in Go and Python that I run in real environments. I designed and built anchor, an open source, self-hosted vault alternative to HashiCorp Vault featuring AES-256-GCM encryption and zero-knowledge SSH, plus SPA-style protection using WireGuard with Single Packet Authorization. I’m looking for a team where I can take direct technical ownership of the platform and the architecture decisions.
Experience
Work history, roles, and key accomplishments
External Collaborator
CloudyOle
Jan 2026 - Present (6 months)
Collaborated with a cybersecurity and cyber-intelligence team across design, validation, and deployment phases. Reduced false positives via structured beta testing of detection solutions and reviewed network architecture to propose segmentation and hardening strategies.
DevSecOps & SRE
ClickDefense S.L.
Feb 2025 - Present (1 year 5 months)
Designed, hardened, and operated the cloud infrastructure of a SOC platform, including migration from bare metal to Kubernetes on AWS. Implemented Zero Trust architecture, shift-left security in GitLab CI/CD, Terraform/Ansible-driven automation, and GitOps with ArgoCD, plus observability with Prometheus/Grafana integrated with the SIEM platform.
Education
Degrees, certifications, and relevant coursework
Digitech
Master's Degree in Cybersecurity, Cybersecurity
2025 - 2026
Grade: Best Academic Record of the cohort
Master's Degree in Cybersecurity with coursework in Ethical Hacking, Digital Forensics, Network & Systems Hardening, Incident Management, and Secure Production Deployment. Awarded Best Academic Record of the cohort.
Digitech
Higher Technician in Network Systems Administration (ASIR), Network Systems Administration
2023 - 2025
Higher Technician in Network Systems Administration (ASIR).
Availability
Location
Authorized to work in
Social media
Job categories
Skills
Interested in hiring Manuel?
You can contact Manuel and 90k+ other talented remote workers on Himalayas.
Message ManuelGet matched with your dream remote job
Sign up now and join over 250,000+ remote workers who receive personalized job alerts, curated job matches, and more for free!
