Azure Cloud Portfolio · AZ-104
From billing support to building production-grade cloud infrastructure on Azure — one real deployment at a time.
This portfolio documents a deliberate journey through Azure infrastructure — no tutorials nor sandboxes. Only production-pattern deployments built from scratch using Azure CLI, Bicep, and GitHub Actions.
Every project here reflects a real architectural decision: why this service over that one, what the tradeoffs are at scale, and what I would do differently next time. The lessons learned sections are honest.
Currently pursuing the AZ-104 Microsoft Certified: Azure Administrator certification, with AI, Security and Identity specializations planned next.
Role-based access control, Entra ID configuration, Azure Policy enforcement, and Management Group hierarchy — the security and compliance layer everything else runs on.
View projectsHub-spoke VNet architecture, NSG design, load balancing, private endpoints, DNS, Application Gateway with WAF, and Bastion — production network topology built from scratch.
View projectsWindows and Linux VMs, App Service, Container Registry and Container Apps, blob storage, backup, and site recovery — the full compute and data tier.
View projectsModular Bicep deployments, Key Vault with managed identity for zero-credential architecture, CI/CD pipelines, and parameterized multi-environment deployments.
View projectsLog Analytics workspaces, KQL queries, Application Insights, diagnostic settings, Microsoft Defender for Cloud, and alert rules — full observability across the stack.
View projectsAzure OpenAI, AI-integrated monitoring, Copilot-assisted infrastructure, and intelligent automation pipelines. Coming next.
Coming soon