Gideon Oteng
Network engineer building operational systems that don't fall over.
Tier-1 ISP backbone work at Cogent Communications. Multi-vendor enterprise networks at CDW. Self-hosted infrastructure for the curiosity tax — Proxmox cluster, wildcard TLS, Cloudflare Tunnel, the works. Currently studying for the next layer up.
// Selected work
Things I've built
SecureBytes Platform
Self-managed Proxmox cluster running production-style network and security infrastructure — wildcard TLS, public status page, and selective Cloudflare Tunnel exposure.
AWS Detection Engineering Portfolio
Production-quality Sigma rules for AWS IAM privilege escalation, each validated end-to-end against CloudGoat scenarios using Stratus Red Team and CloudTrail.
Tailscale Zero-Trust Access
Identity-based remote access to private infrastructure over a WireGuard overlay. No open inbound ports, deny-by-default ACLs as policy-as-code, Pi-hole as subnet router. The internal network is never directly reachable from the internet.
// Field notes
Recent writing
// /now
What I'm working on
Day job
Operations Analyst at CDW — supporting hundreds of enterprise networks across SD-WAN, firewall, and cloud-connected environments.
Building
Self-hosted platform on Proxmox — nine services behind nginx with wildcard TLS, public exposure via Cloudflare Tunnel, IDS/SIEM via Security Onion.
Studying
Network automation with Python and Ansible. Migrating platform configurations toward infrastructure-as-code.