$ whoami
Sven Nellemann

Hi, I'm Sven a |

Securing Critical Infrastructure & Industrial Systems

OT-focused DevSecOps Engineer with 3+ years specializing in containerized platform security, operational resilience, and securing industrial workloads. Expert in infrastructure hardening, disaster recovery automation, and translating technical risks into actionable business decisions for senior stakeholders.

View ProjectsGet in Touch

Technical Skills

Comprehensive expertise across the full technology stack, from development to deployment and security

🔒

OT Security & Infrastructure

OT security fundamentalsSecurity architectureInfrastructure hardeningNetwork dependenciesIdentity & secrets managementVulnerability management
🐳

DevOps & Containerization

Docker SwarmDockerLinux (Alpine/BusyBox)CI/CD pipelinesGit workflowsInfrastructure automation
⚙️

Backend Development

C#ASP.NET CoreGoNode.jsJavaScriptTypeScriptREST APIsSOAP/WSDL integrationsMicroservices
🗄️

Databases & Data

PostgreSQLT-SQL / MS SQL ServerMongoDBRedisEntity FrameworkSSRS
⚛️

Frontend Development

AngularVue.jsReactTypeScriptHTML/CSSResponsive design
🛡️

Security Tools & Practices

VaultMinIO/S3Code quality toolsCheckmarxBlack DuckSonarQubeSecure build pipelines

Soft Skills

Professional competencies that drive effective leadership, communication, and problem-solving in complex technical environments

💬

Communication & Leadership

  • Cyber risk summarisation for senior stakeholders
  • Translating technical risks into practical business impact
  • Clear incident communication and status reporting
  • Remote team collaboration and coordination
🔍

Problem Solving & Analysis

  • Incident triage and troubleshooting under pressure
  • Root cause analysis and permanent fix implementation
  • Control gaps identification and remediation planning
  • Technical risk assessment and prioritization

Operational Excellence

  • Production system reliability and resilience
  • Time-pressure decision making with senior stakeholders
  • Operational runbook creation and documentation
  • Disaster recovery and business continuity planning
🛡️

Security & Compliance

  • Security posture benchmarking and reporting
  • Control gap remediation planning
  • Compliance assurance evidence gathering
  • Security architecture guidance for stakeholders
📋

Project & Process Management

  • Feature sign-off through regression and functionality checks
  • Version control discipline and change management
  • CI/CD pipeline optimization and improvement
  • Structured export packaging and environment transfers
👥

Technical Mentoring

  • Mentoring teams on security best practices
  • Knowledge sharing through comprehensive documentation
  • Cross-functional collaboration with development teams
  • Training on DevSecOps principles and tools

Professional Approach

🎯

Reliability-Focused

Committed to ensuring continuous availability and resilience of production systems

🔄

Process-Oriented

Documenting and improving processes through automation and standardization

📈

Impact-Driven

Translating technical work into measurable business value and risk mitigation

DevSecOps Expertise

2+ years specializing in integrating security into every phase of the software development lifecycle, delivering measurable business impact through secure, automated, and compliant systems.

Secure CI/CD Pipelines

Implemented automated security scanning in build pipelines, reducing vulnerabilities by 80% before production deployment.

Business Impact:

80% reduction in production vulnerabilities

GitHub ActionsSnykSonarQubeOWASP

Infrastructure as Code Security

Automated infrastructure provisioning with built-in security controls and compliance checks using Terraform and policy-as-code.

Business Impact:

100% infrastructure audit compliance

TerraformOPACheckovAWS Config

Container Security

Established container security baseline with image scanning, runtime protection, and security policy enforcement.

Business Impact:

Zero critical container vulnerabilities

TrivyFalcoDocker BenchK8s PSP

Secrets Management

Implemented centralized secrets management and rotation, eliminating hardcoded credentials across all environments.

Business Impact:

100% secrets rotation automation

HashiCorp VaultAWS Secrets ManagerSOPS

Security Monitoring

Built comprehensive security monitoring and incident response pipeline with real-time threat detection.

Business Impact:

<5 minute threat detection time

PrometheusGrafanaELKFalco

Compliance Automation

Automated compliance reporting and remediation for SOC2, ISO 27001, and industry standards.

Business Impact:

90% reduction in audit preparation time

AWS ConfigCloud CustodianCompliance as Code

Security-First Approach

Shifted security left in the development process, integrating automated security checks from code commit to production deployment. This proactive approach has prevented countless security incidents and saved significant remediation costs.

Featured Projects

Key projects demonstrating DevSecOps expertise and business impact

Secure CI/CD Platform

Built enterprise-grade CI/CD platform with integrated security scanning, automated compliance checks, and zero-trust deployment pipeline.

Impact:

Deployed 500+ applications securely, reduced deployment time by 70%

KubernetesGitLab CIVaultArgoCDTerraform
GitHubLive Demo

Cloud Security Automation

Developed automated security remediation system for cloud infrastructure, continuously monitoring and fixing security misconfigurations.

Impact:

Prevented 1000+ security incidents, 95% auto-remediation rate

PythonAWSLambdaCloudWatchTerraform
GitHub

Container Security Scanner

Created custom container security scanning solution integrated with CI/CD, providing vulnerability assessment and policy enforcement.

Impact:

Scanned 10,000+ images, blocked 200+ vulnerable deployments

GoDockerTrivyPostgreSQLREST API
GitHub

Infrastructure Monitoring Dashboard

Built comprehensive monitoring and alerting system for microservices architecture with custom security metrics and compliance tracking.

Impact:

Real-time visibility for 100+ services, <5min incident response

PrometheusGrafanaELKPythonK8s
GitHubLive Demo

Secret Rotation Service

Implemented automated secret rotation and management system, eliminating manual credential management and improving security posture.

Impact:

Automated rotation for 500+ secrets, zero credential leaks

PythonVaultAWSKubernetesTerraform
GitHub

Compliance Automation Framework

Developed policy-as-code framework for automated compliance checking and reporting across multiple cloud environments.

Impact:

Achieved SOC2 compliance, reduced audit time by 90%

OPAPythonTerraformAWS ConfigAzure Policy
GitHub

Professional Experience

Multi-year journey from software development to specialized DevSecOps expertise

DevSecOps Engineer (OT Cybersecurity)

Deltaflare
August 2022 - January 2026London / Hybrid

Progressed from microservices development to production operations and security. Initially developed Go-based microservices for PKI-based device enrollment and provisioning, then transitioned to operating and securing containerised OT cyber platform protecting industrial workloads.

Key Achievements:

  • Architected and developed Go microservices for time-critical secure device enrollment and provisioning leveraging PKI and HTTPS-auth mechanisms
  • Built resilient microservices handling high-throughput provisioning workflows with robust error handling and recovery patterns
  • Documented all services with design docs, system requirements, API definitions, and test coverage documentation
  • Operated production Docker Swarm infrastructure (multi-node orchestration) with secure configuration and controlled upgrades
  • Improved system resilience by automating disaster recovery processes with consistent backups and point-in-time recovery
  • Built automation tooling for backups/restores including timestamp-based recovery, snapshot handling, and integrity verification
  • Engineered centralized authentication mechanisms supporting MFA workflows and fine-grained access controls across OT environments
  • Provided incident troubleshooting across container runtime, networking, and resource constraints with permanent fixes and runbooks
  • Onboarded sales executives on product offerings, business value, and client impact across OT cyber solutions
  • Delivered comprehensive reliability reporting to senior stakeholders on service disruptions and maintenance events
GoDocker SwarmLinuxPostgreSQLRedisMongoDBVaultMinIO/S3PKIHTTPSGitCI/CDMicroservices

Senior Applications Developer

TransUnion
April 2020 - August 2022Johannesburg, South Africa

Designed and implemented critical business solutions including document management services, billing execution, and third-party integrations.

Key Achievements:

  • Designed document upload and management service for dispute workflows, reducing client tickets by ~90%
  • Owned monthly billing execution for major clients via SQL Server stored procedures and scheduled automation
  • Integrated third-party verification services (biometrics, document fraud detection, phone verification) using API and SOAP/WSDL
  • Implemented CI/CD improvements using Azure DevOps and security tools (Checkmarx, Black Duck, SonarQube)
  • Delivered custom role-based authentication solution using Angular 8, ASP.NET Core Identity, JWT and Node.js
C#ASP.NET CoreAngularSQL ServerAzure DevOpsEntity FrameworkNode.js

Junior Developer

Singular Systems
December 2018 - May 2020Johannesburg, South Africa

Full-stack development building document management systems and automated reporting solutions for enterprise clients.

Key Achievements:

  • Built document upload and file management system for insurance client using C# and Vue.js, reducing document handling time by ~80%
  • Transformed manual customer statement processes via automated SSRS reporting solutions
  • Supported Salary Finance solution by debugging React issues and investigating SQL data warehouse problems
  • Developed automated test coverage using TestCafe, xUnit and Moq to reduce regression risk
C#Vue.jsReactSQL ServerSSRSEntity FrameworkHTML/CSS

IT Consultant (Part-time)

IT Solutions
January 2015 - November 2018Grahamstown, South Africa

Provided IT support and managed infrastructure for small-to-medium businesses.

Key Achievements:

  • Provided IT support to ~27 small-to-medium businesses including workstation troubleshooting and server management
  • Managed server backups and scheduled maintenance visits to ensure business continuity
Windows ServerLinuxActive DirectoryNetworking

About Me

Passionate about building secure, scalable systems that drive business value

My Journey

My career started with software development and evolved into specializing in secure, resilient infrastructure. I began as a Junior Developer, building full-stack web applications, then progressed through software engineering roles at TransUnion before transitioning into DevSecOps engineering.

At Deltaflare, I've spent the last 3+ years operating and securing containerized OT cyber platforms protecting industrial workloads. This role deeply shaped my understanding of operational resilience, incident troubleshooting, and translating technical risks into actionable business decisions for senior stakeholders.

My expertise spans secure CI/CD pipelines, disaster recovery automation, containerization technologies, and secure application development across .NET and modern web frameworks. I'm passionate about designing systems that balance security with operational efficiency.

I focus on bridging the gap between development and operations, ensuring production systems remain reliable, secure, and resilient under pressure. Outside of work, I'm continuously exploring emerging technologies and security methodologies.

🔐

OT Security

Designing and implementing security solutions for industrial control systems and critical infrastructure

🤖

Automation

Building disaster recovery and infrastructure automation tools for operational resilience

📚

Continuous Learning

Staying current with DevSecOps practices, containerization technologies, and security frameworks

🎯

Incident Resilience

Developing incident response procedures and operational runbooks for production systems

Certifications

AWS Solutions Architect Practitioner

Amazon Web Services2020

Hyperion Software Engineer Bootcamp

Oracle2019

Core Values

  • Security First: Security should be built in, not bolted on
  • Automation: If you do it twice, automate it
  • Collaboration: DevSecOps is a team sport
  • Continuous Improvement: Always learning, always evolving

Download CV

Download my CV in your preferred format (UK formatted)

📕

PDF

Print to PDF or view formatted document

📄

Plain Text

Simple text format for ATS systems

📋

HTML

Formatted web document

⚙️

JSON

Structured data format

💡 Tip: Use "Print to PDF" for the best formatted CV document

Latest Articles

Sharing insights, tutorials, and best practices on DevSecOps, cloud security, and automation

View All Articles

Get In Touch

Interested in collaboration or have questions about DevSecOps? Let's connect!

Send a Message

Download CV

Get a comprehensive overview of my experience, skills, and certifications in multiple formats.

View CV Download Options

Connect

🔗GitHub💼LinkedIn📧Email

Quick Response

I typically respond within 24-48 hours. For urgent matters, please reach out via LinkedIn.

💡Open to freelance projects, consulting opportunities, and full-time roles

Built with Next.js, TypeScript, and Tailwind CSS • Deployed with Docker

© 2026 Sven Nellemann. All rights reserved.