I turn broken infrastructure into systems that never go down.

The hospital's security and access request system was a 15–20 year old Microsoft Access file. User onboarding was almost entirely manual — no audit trail, no role-based access, no compliance visibility. Nobody knew who had access to what, roles never expired, and there was zero insight into login patterns or suspicious activity. With SOX requirements tightening, the process was a liability.

Built a full .NET Core MVC application from scratch. A background service syncs users, groups, and manager chains from Active Directory across multiple OUs on a configurable schedule, with caching and zero-result abort protection. RBAC controls who can request, approve, and audit — with role expiration dates, automatic reversion to default roles, and separation-of-duty conflict detection. High-privilege role assignments auto-trigger access reviews.

A custom middleware tracks every login with IP, hostname, device type, and maps IPs to physical locations using database-driven network range rules. A Security Monitoring command center surfaces login history, access pattern alerts, and role assignments — all filterable, paginated, and exportable to CSV. Real-time notifications push via SignalR. Every change — role assignments, AD group modifications, user status — is audit-logged with full before/after history, filterable by date range and change type. All admin settings (SMTP, sync intervals, feature flags) are database-backed and configurable from the UI without redeployment.

Replaced a decades-old Access file with a SOX-compliant web application. Automated user provisioning cut onboarding time dramatically. The admin dashboard surfaces KPIs (stale requests, orphaned users, disabled physicians) in real time. Security auditors can export full audit trails filtered by date, user, and action type. Role conflicts are detected automatically. The system runs as a hosted background service with no manual intervention required.

Nurses needed Cerner tracking boards visible 24/7 on dedicated screens, but the process required opening a browser, navigating a Citrix URL, and entering credentials — time they didn't have. The original automation script broke constantly on slow page loads, ran once with no recovery, stored passwords in plain text, and logged nothing for troubleshooting.

Rewrote the system from scratch. The script auto-detects the hostname from a config file (devices.ini) mapping 20+ hospital endpoints to their Citrix URLs and workflows. Added retry logic with exponential backoff (tenacity) so slow Citrix loads don't crash the process. Moved credentials to Windows Credential Manager (keyring) with a drag-and-drop setup tool non-technical staff can use. Added structured logging (structlog) so issues can be diagnosed remotely. Built a self-bootstrapping batch launcher that auto-creates Python venvs and installs dependencies.

A zero-touch system: plug in the PC, it boots, auto-detects which tracking board to show, logs into Citrix, and goes fullscreen — no nurse interaction required. Handles three distinct workflows (SurgiNet, FirstNet/Lab TAT, FetaLink), recovers from failures automatically, and produces diagnosable logs. Deployed across surgery, ER, radiology, maternity, pharmacy, and ICU departments.

Enterprise monitoring tools (Nagios, PRTG) are overkill and expensive for home labs and small networks. But flying blind isn't an option.

Custom SNMP & ICMP monitor built on Django. Real-time device status, historical uptime data, and alerting — all in a clean dashboard.

Lightweight network monitoring that runs on minimal resources. Real-time visibility into every device on the network.