Banner Image

Skills

  • ColdFusion
  • Enterprise Software
  • Oauth2
  • Amazon Web Services
  • Angular
  • API
  • API Development
  • Api Security
  • App Development
  • Application Stabilization
  • Authorization
  • Azure AD
  • Azure Entra Id
  • Back End Development
  • Cloud Computing

Sign up or Log in to see more.

Services

  • ColdFusion Legacy Modernization & Risk

    $125/hr Starting at $1K Ongoing

    Dedicated Resource

    Legacy ColdFusion systems are not “old code problems”—they’re business continuity risks. Rewrites are tempting but often fail budgets, timelines, and change‑management reality. What most organizations...

    AngularAPIApp DevelopmentApplication StabilizationColdFusion

  • Azure Entra ID SSO: Design & Fixes

    $90/hr Starting at $1K Ongoing

    Dedicated Resource

    SSO looks simple in diagrams and gets messy in production. Real estates mix legacy web apps (ColdFusion/.NET/IIS), modern SPAs/APIs, proxies, cookie policies, and security controls. When users see loops...

    Amazon Web ServicesAzure ADAzure Entra IdCloud ComputingDesign

  • API Security Hardening & Review

    $100/hr Starting at $1K Ongoing

    Dedicated Resource

    APIs are the contract of your business—and the favorite target for attackers. Many pass functional tests while silently failing security posture: permissive scopes, weak validation, inconsistent JWT checks,...

    API DevelopmentApi SecurityAuthorizationBack End DevelopmentData Management

About

Senior Enterprise Engineer specializing in ColdFusion legacy modernization, Azure Entra ID SSO, and API security—focused on risk reduction, stability, and calm modernization of critical syst

I’m a senior enterprise engineer with over two decades of experience working on business‑critical systems—the kind organizations depend on every day and cannot afford to break. My work sits at the intersection of legacy application modernization, identity & acces management, and API security, with a strong focus on risk reduction, stability, and long‑term maintainability.
Over the years, I’ve learned that most organizations do not fail because of technology—they struggle because systems evolved faster than understanding. Legacy platforms become fragile, security gaps quietly grow, and identity integrations are added without a clear trust model. My role is to bring clarity, calm, and structure back into such environments.
I specialize in modernizing ColdFusion (Adobe CF / Lucee) applications that have grown complex over time. Rather than forcing disruptive rewrites, I focus on stabilizing what works, hardening security, refactoring safely, and creating a controlled modernization roadmap leadership can trust. This approach significantly reduces operational risk while keeping critical systems running.
In parallel, I work extensively with Azure Entra ID (Azure AD) to design, implement, and troubleshoot enterprise‑grade Single Sign‑On (SSO) using SAML, OAuth2, and OpenID Connect. I help organizations move from fragile or inconsistent authentication setups to predictable, auditable identity flows across legacy and modern applications alike.
I also provide API security reviews and hardening for enterprise and integration‑heavy systems. My approach is practical and threat‑driven: validating authentication and authorization models, tightening OAuth2/JWT usage, reducing attack surface, and ensuring APIs are secure without becoming overly restrictive or brittle.
Clients value my work not just for technical depth, but for sound judgment and restraint. I document systems clearly, explain trade‑offs honestly, and prioritize changes that lower risk before adding complexity. I’m often brought in when systems feel “too important to touch” and stakeholders need someone who understands both technology and consequences.
If you’re looking for someone who treats your systems with care, understands enterprise realities, and modernizes without chaos, I’d be happy to help.

Work Terms

I prefer to work in a clear, transparent, and low‑stress engagement model that aligns expectations on both sides. My focus is on delivering reliable outcomes for business‑critical systems while maintaining steady communication and predictable progress.
Engagement Model

Available for hourly, assessment‑based, or short retainer engagements
Fixed‑scope work is accepted only when requirements and dependencies are well understood
I commonly begin with a paid assessment or discovery phase before larger modernization efforts

Availability & Communication

Primary communication via Guru messaging, or scheduled video calls
Regular progress updates provided during active engagements
I value responsible response times rather than rushed, always‑online expectations

Working Hours

Aligned primarily with US and European business hours
Flexible overlap for planning, reviews, and critical coordination when required
Emergency or after‑hours support can be discussed separately for production‑critical situations

Change & Scope Management

I work best with clearly defined objectives and practical milestones
Scope changes are discussed openly and handled through agreed adjustments
I prioritize stability and risk management over rapid, unreviewed changes

Confidentiality & Professional Conduct

Client confidentiality and data protection are strictly respected
NDAs are welcome and commonly supported
Any shared artifacts, or documentation are handled with enterprise‑grade discretion

Code Quality & Handover

Deliverables emphasize clarity, security, and maintainability, not shortcuts
I document decisions and changes to support long‑term ownership by your team
My goal is to leave systems calmer, safer, and easier to manage than when I arrived

Payment & Ethics

Work begins after the engagement terms are agreed and funded via Guru
I do not accept work that involves unethical practices, unsafe shortcuts, or misrepresentation
Long‑term relationships are prioritized over short‑term gains