Skip to content
View rikelmy-matos's full-sized avatar
1 follower · 10 following

Highlights

  • Pro

Block or report rikelmy-matos

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Maximum 250 characters. Please don’t include any personal information such as legal names or email addresses. Markdown is supported. This note will only be visible to you.
Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse
rikelmy-matos/README.md

Platform & DevSecOps Engineer

Kubernetes • Azure • GitOps • Cloud Security • Platform Engineering

👋 About Me

I'm a Platform & DevSecOps Engineer focused on building secure, scalable and standardized cloud-native platforms for enterprise environments.

Experienced in Kubernetes, Azure and GitOps, working with AKS, Infrastructure as Code, secure CI/CD pipelines and cloud governance in highly restricted and enterprise-grade environments.

My work is focused on:

  • Platform Engineering
  • Enterprise Kubernetes Platforms
  • DevSecOps Automation
  • GitOps Workflows
  • Cloud Security
  • Supply Chain Security
  • Infrastructure Standardization
  • Cloud-Native Architecture

🚀 What I Do

  • Build and operate enterprise Kubernetes platforms
  • Design GitOps-based deployment workflows
  • Standardize CI/CD and DevSecOps pipelines
  • Implement cloud-native security practices
  • Automate infrastructure provisioning using Terraform
  • Integrate security scanning into software delivery pipelines
  • Improve reliability, governance and operational scalability
  • Support cloud modernization and workload migration initiatives

🧠 DevSecOps Platform Architecture

flowchart TD

subgraph SOURCE["Source Control"]
Developer[Developer]
GitHub[GitHub Repository]
end

subgraph CI["CI/CD Pipelines"]
GitHubActions[GitHub Actions]
AzurePipelines[Azure DevOps Pipelines]
end

subgraph SECURITY["Security & Compliance"]
Semgrep[Semgrep - SAST]
Gitleaks[Gitleaks - Secrets]
KICS[KICS - IaC Security]
Trivy[Trivy / Grype - SCA]
Sonar[SonarQube - Code Quality]
SBOM[Syft - SBOM Generation]
end

subgraph BUILD["Container Build"]
DockerBuild[Docker Build / BuildKit]
Registry[(Container Registry)]
end

subgraph SUPPLYCHAIN["Supply Chain Security"]
DepTrack[Dependency Track]
DefectDojo[DefectDojo]
end

subgraph GITOPS["GitOps Platform"]
GitOpsRepo[GitOps Repository]
ImageUpdater[ArgoCD Image Updater]
ArgoCD[ArgoCD]
Helm[Helm]
Kustomize[Kustomize]
end

subgraph K8S["Kubernetes Platform"]
Cluster[Kubernetes Cluster]
end

subgraph OBS["Observability"]
Prometheus[Prometheus]
Grafana[Grafana]
Loki[Loki]
end

Developer --> GitHub

GitHub --> GitHubActions
GitHub --> AzurePipelines

GitHubActions --> Semgrep
GitHubActions --> Gitleaks
GitHubActions --> KICS
GitHubActions --> Trivy
GitHubActions --> Sonar

AzurePipelines --> Semgrep
AzurePipelines --> Gitleaks
AzurePipelines --> KICS
AzurePipelines --> Trivy
AzurePipelines --> Sonar

GitHubActions --> DockerBuild
AzurePipelines --> DockerBuild

DockerBuild --> Registry
DockerBuild --> SBOM

SBOM --> DepTrack

Semgrep --> DefectDojo
Gitleaks --> DefectDojo
KICS --> DefectDojo
Trivy --> DefectDojo

GitHubActions --> GitOpsRepo
AzurePipelines --> GitOpsRepo

Registry --> ImageUpdater
ImageUpdater --> GitOpsRepo

GitOpsRepo --> ArgoCD

ArgoCD --> Helm
ArgoCD --> Kustomize

Helm --> Cluster
Kustomize --> Cluster

Cluster --> Prometheus
Cluster --> Grafana
Cluster --> Loki
Loading

☁️ Cloud & Platform Engineering

Azure

AWS

Kubernetes

Docker

Terraform

Helm

ArgoCD

Azure DevOps

GitHub Actions

🔐 DevSecOps & Cloud Security

Trivy

Docker Scout

Grype

Syft

Semgrep

SonarQube

KICS

Gitleaks

OWASP ZAP

DefectDojo

Dependency Track

📊 Observability & Reliability

Prometheus

Grafana

Loki

OpenTelemetry

💻 Backend Engineering

Java

Spring Boot

Python

Django

REST API

🗄 Databases

PostgreSQL

MySQL

MongoDB

🎯 Current Focus

  • Platform Engineering
  • Enterprise Kubernetes Platforms
  • GitOps at Scale
  • DevSecOps Automation
  • Secure Software Supply Chain
  • Internal Developer Platforms (IDP)
  • Cloud Governance
  • Cloud-Native Security

📊 GitHub Stats

📫 Contact

Building secure, scalable and cloud-native platforms.

Pinned Loading

  1. Agenda_terminal_Python Agenda_terminal_Python Public

    Agenda utilizando a linguagem python

  2. AUTOMATA AUTOMATA Public

    With this program you can save your mouse (left/right) and keyboard (text) inputs (and execute them)

  3. ExchangerPY ExchangerPY Public

    With this program you can exchange the currency value between two countries (origin and destination)

  4. Projeto-Integrador-1-A---VacJava Projeto-Integrador-1-A---VacJava Public

    Cartão de Vacina desenvolvido em JAVA

  5. SNAKEGAME---python SNAKEGAME---python Public

    SnakeGame feito em python 3 utilizando a biblioteca pygame

  6. crud_clientes crud_clientes Public

    Desafio de criação de CRUD clientes

    Java