Skip to main content
MH
Open to opportunities

Manuel Gutierrez Hernandez

@maguher

DevSecOps & SRE engineer building Zero Trust cloud platforms, automating secure deployments with IaC, GitOps, and observability.

Spain
Message

What I'm looking for

I want to take direct technical ownership of platform and architecture decisions—building secure, stable systems end to end. I’m looking for a team where I can run Zero Trust infrastructure, automate safe releases, and improve reliability for operators.

What drives me is owning the full lifecycle of a system: laying the security foundations at design time and ensuring production is stable and efficient for everyone who operates it. Over the past year and a half, I’ve put this into practice by migrating a production SOC from bare metal to Kubernetes with a Zero Trust architecture, cutting the attack surface by 85% and leaving zero ports exposed to the internet.

At ClickDefense S.L., I design, harden, and operate the cloud infrastructure of a SOC platform, including a migration to EKS multi-AZ with Zero Trust (segmented VPC, VPN-only access, internal NLB). I deliver faster, safer releases through Terraform and Ansible-driven Infrastructure as Code, autoscaling with Karpenter and KEDA, and Shift Left Security in GitLab CI/CD using SAST and Trivy on every merge request with secrets lifecycle management. With GitOps via ArgoCD, granular RBAC, and Kubernetes Network Policies, I’ve reduced MTTR with sub-3-minute rollbacks and built an observability stack using Prometheus and Grafana integrated with the SIEM platform.

Beyond day-to-day operations, I build security tooling in Go and Python that I run in real environments. I designed and built anchor, an open source, self-hosted vault alternative to HashiCorp Vault featuring AES-256-GCM encryption and zero-knowledge SSH, plus SPA-style protection using WireGuard with Single Packet Authorization. I’m looking for a team where I can take direct technical ownership of the platform and the architecture decisions.

Experience

Work history, roles, and key accomplishments

CS
Current

DevSecOps & SRE

ClickDefense S.L.

Feb 2025 - Present (1 year 5 months)

Designed, hardened, and operated the cloud infrastructure of a SOC platform, including migration from bare metal to Kubernetes on AWS. Implemented Zero Trust architecture, shift-left security in GitLab CI/CD, Terraform/Ansible-driven automation, and GitOps with ArgoCD, plus observability with Prometheus/Grafana integrated with the SIEM platform.

Education

Degrees, certifications, and relevant coursework

DI

Digitech

Master's Degree in Cybersecurity, Cybersecurity

2025 - 2026

Grade: Best Academic Record of the cohort

Master's Degree in Cybersecurity with coursework in Ethical Hacking, Digital Forensics, Network & Systems Hardening, Incident Management, and Secure Production Deployment. Awarded Best Academic Record of the cohort.

DI

Digitech

Higher Technician in Network Systems Administration (ASIR), Network Systems Administration

2023 - 2025

Higher Technician in Network Systems Administration (ASIR).

Get matched with your dream remote job

Sign up now and join over 250,000+ remote workers who receive personalized job alerts, curated job matches, and more for free!

Sign up
Himalayas profile for an example user named Frankie Sullivan