Felix Otieno Arogo

Cloud Solutions Architect AWS & GCP Security-focused engineer building scalable, secure cloud solutions

☁️ Cloud Architecture Portfolio

A curated collection of cloud architecture case studies across AWS and Google Cloud Platform (GCP), covering modernization, automation, resilience, networking, and security.

🚀 Enterprise Modernization & Cloud-Native Architecture

Modernizing a Legacy Web Application

Modernizing a Legacy Web Application

Focus: Cloud Transformation

EC2, RDS, ALB, Auto Scaling, IAM, VPC

 Monolith to Microservices on ECS

Monolith to Microservices (ECS)

Focus: Containerization

Docker, ECS, ECR, ALB, Node.js

 Event-Driven Image Processing System

Event-Driven Image Processing System

Focus: Distributed Systems

SQS, SNS, S3 Events, EC2

 Scaling and Rolling Updates of Containerized Workloads on GKE

Scaling and Rolling Updates on GKE

Focus: Kubernetes Workload Operations

GKE, Docker, GCR, Rolling Updates, Replica Scaling, LoadBalancer

 Managing Application Deployments on Google Kubernetes Engine

GKE Deployment Strategies

Focus: Release Engineering

GKE, Kubernetes, Rolling Updates, Canary, Blue-Green, kubectl

 Serverless Inventory Intelligence

Serverless Inventory Intelligence

Focus: Real-Time Processing

Lambda, DynamoDB, Streams, SNS

 Serverless Reporting Architecture

Serverless Reporting Architecture

Focus: Event Automation

Lambda, EventBridge, SNS, RDS

 Containerized Application Deployment on Google Kubernetes Engine

Containerized Application Deployment (GKE)

Focus: Cloud-Native Application Delivery

GKE, Docker, GCR, Kubernetes Deployments, Services

 Event-Driven Image Processing Pipeline on Google Cloud

Event-Driven Image Processing Pipeline (GCP)

Focus: Serverless Event-Driven Architecture

Cloud Storage, Cloud Run Functions, Pub/Sub, Eventarc, Node.js

⚙️ Infrastructure Automation & Governance

IaC CI/CD Pipeline

IaC CI/CD Pipeline

Focus: Automated Deployment

CloudFormation, CodePipeline, Git

 Infrastructure Automation with CloudFormation

Infrastructure Automation with CloudFormation

Focus: Change Management

CloudFormation, Change Sets, VPC

 Scalable VM Initialization using Remote Startup Scripts on GCP

Scalable VM Initialization (GCP)

Focus: Infrastructure Automation

Cloud Storage, Compute Engine, Startup Scripts, IAM, Firewall Rules

 Provisioning Compute Engine Infrastructure with Terraform on Google Cloud

Terraform Fundamentals on GCP

Focus: Infrastructure as Code

Terraform, Compute Engine, IaC, Terraform Plan, Apply, State

 Infrastructure as Code with Terraform on Google Cloud

Terraform Infrastructure Lifecycle (GCP)

Focus: Infrastructure as Code

Terraform, VPC, Compute Engine, Dependencies, Provisioners

 Using and Building Terraform Modules on Google Cloud

Terraform Modules on GCP

Focus: Modular Infrastructure as Code

Terraform, Modules, VPC, Cloud Storage, Inputs, Outputs, Reuse

 Managing Terraform State and Import Workflows on Google Cloud

Managing Terraform State (GCP)

Focus: State, Backends & Import

Terraform, GCS Backend, State Refresh, Import, Docker, Drift Management

 End-to-End Infrastructure Provisioning with Terraform on Google Cloud

End-to-End Terraform Infrastructure (GCP)

Focus: Modular Infrastructure Provisioning

Terraform, GCP, Remote State, Modules, VPC, Compute Engine, Firewall

🌐 Hybrid Architecture & Resilience

Hybrid Cloud Storage Architecture

Hybrid Cloud Storage Architecture

Focus: Disaster Recovery

Storage Gateway, S3, Replication

🔐 Security & Identity Architecture

Secure Bastion Host Architecture on GCP

Secure Bastion Host Architecture (GCP)

Focus: Secure Administrative Access

GCP VPC, Compute Engine, Firewall Rules, RDP, Network Segmentation

 Data Encryption with KMS S3 and EBS

Data Encryption (KMS, S3, EBS)

Focus: Data Protection

KMS, S3, EBS, CloudTrail

 Secure Web Application with Cognito

Secure Web Application (Cognito)

Focus: Identity & Access

Cognito, CloudFront, DynamoDB

 IAM Access Control Validation on GCP

IAM Access Control & RBAC Validation (GCP)

Focus: Identity & Access Management

IAM, RBAC, Least Privilege, Cloud Storage, Access Control

🌍 Networking & High Availability

Highly Available Web Application

Highly Available Web Application

Focus: Multi-AZ Resilience

VPC, EC2, Auto Scaling, ALB

 Scalable Café Architecture

Scalable Café Architecture

Focus: Elastic Scaling

Auto Scaling, ALB, Launch Templates

 VPC Peering Architecture

VPC Peering Architecture

Focus: Secure Connectivity

VPC, Routing, Security Groups

 Secure VPC Networking Environment

Secure VPC Networking Environment

Focus: Segmentation

Subnets, NAT, Bastion Host

 Web Application Deployment and Troubleshooting on GCP

Web Deployment & Troubleshooting (GCP)

Focus: Public Access & Connectivity

Compute Engine, Apache, Firewall Rules, Networking

 Multi-VPC Network Segmentation on GCP

Multi-VPC Segmentation & Multi-NIC Design (GCP)

Focus: Network Architecture & Isolation

VPC, Subnets, Firewall Rules, Routing, Multi-NIC

 Multi-Tier Google Cloud Network and Kubernetes WordPress Environment

Multi-Tier GCP Network & WordPress on GKE

Focus: Network Architecture & Application Hosting

VPC, Subnets, Bastion Host, Cloud SQL, GKE, Kubernetes, Monitoring

 Designing a Custom VPC Network and Firewall Rules on Google Cloud

Custom VPC Networking on Google Cloud

Focus: VPC Design, Subnets & Firewall Rules

Google Cloud VPC, Subnets, Firewall Rules, Network Tags, Routes

 Configuring a Passthrough Network Load Balancer on Google Cloud

Network Load Balancer on Google Cloud

Focus: Layer 4 Traffic Distribution

Compute Engine, Network Load Balancer, Target Pools, Forwarding Rules, Health Checks

 Configuring an Application Load Balancer on Google Cloud

Application Load Balancer on Google Cloud

Focus: Layer 7 Application Delivery

Compute Engine, MIGs, Backend Services, URL Maps, Health Checks, Forwarding Rules

 Building a Two-Tier Application with an Internal Application Load Balancer on Google Cloud

Internal Application Load Balancer on Google Cloud

Focus: Private Service Delivery & Two-Tier Architecture

Internal ALB, MIGs, Backend Services, Forwarding Rules, Health Checks, Compute Engine

🗄️ Data & Database Architecture

Database Migration and Application Reconfiguration using Google Cloud SQL

Database Migration with Cloud SQL (GCP)

Focus: Database Modernization

Cloud SQL, MySQL, WordPress, Migration, Application Reconfiguration

📊 Data & Analytics Architecture

BigQuery to Cloud SQL Data Pipeline

Focus: Data Processing & Analytics

BigQuery, Cloud SQL, Cloud Storage, SQL

📈 Operations, Monitoring & Reliability

Cloud Monitoring and Observability on GCP

Cloud Monitoring & Observability (GCP)

Focus: Monitoring, Alerting & Reliability

Cloud Monitoring, Logging, Uptime Checks, Dashboards, Ops Agent

 Managing a Multi-Tenant GKE Cluster with Namespaces, RBAC, and Usage Metering

Multi-Tenant GKE Governance & Usage Metering

Focus: Namespace Isolation, Quotas & Cost Visibility

GKE, Namespaces, RBAC, IAM, Resource Quotas, Monitoring, BigQuery, Looker Studio

 Cost Optimization for GKE Nodes and Regional Workloads on Google Cloud

GKE Cost Optimization & Workload Placement

Focus: Node Efficiency & Cross-Zonal Cost Reduction

GKE, Node Pools, Machine Types, Regional Clusters, Flow Logs, BigQuery, Affinity

 Combining GKE Autoscaling Strategies for Cost and Availability Optimization

GKE Autoscaling Strategies for Cost & Availability

Focus: HPA, VPA, Cluster Autoscaler & NAP

GKE, HPA, VPA, Cluster Autoscaler, Node Auto Provisioning, PDBs, Pause Pods

 Optimizing GKE Workloads with Container-Native Load Balancing and Reliability Controls

GKE Workload Optimization & Reliability Controls

Focus: Ingress, Load Testing, Probes & PDBs

GKE, Ingress, NEGs, Locust, Liveness, Readiness, Pod Disruption Budgets

 Optimizing Cost and Scalability for OnlineBoutique on Google Kubernetes Engine

OnlineBoutique Cost & Scaling Optimization on GKE

Focus: Rightsizing, Safe Updates & Autoscaling

GKE, Namespaces, Custom Node Pools, PDBs, HPA, Cluster Autoscaler, Load Testing