Penetration testing & security assessment
Authorized vulnerability assessments and penetration testing — probing infrastructure, servers and web applications, then hardening whatever's exposed.
I'm Nerses Antonyan, a DevOps engineer and system administrator. After 13 years keeping regulated banking systems accurate and online, I now design, automate and operate production infrastructure across Linux and Windows — with monitoring, CI/CD and infrastructure-as-code built in from day one.
A rare combination: someone who has lived inside systems where an error or an hour of downtime has real consequences — and who now builds the automation and observability that prevent both.
Hardened servers, least-privilege access and hands-on penetration testing — finding weaknesses before attackers do.
13+ years in banking, where downtime and inaccuracy weren't options — now built into how every system runs.
Prometheus, Grafana and Zabbix wired in from the start, so incidents surface — and get resolved — before users notice.
Terraform, Ansible and Bash turn manual, error-prone work into reproducible, version-controlled infrastructure.
A career built on operational accountability — carried from financial institutions into modern infrastructure.
Designing, provisioning and operating production infrastructure for clients — Linux and Windows servers, containerized workloads, CI/CD pipelines and infrastructure-as-code, with monitoring and alerting in place from the first deploy. Everything built to be secure, reliable and observable — now expanding into penetration testing and security assessments.
// case-study links coming in a future update
Authorized vulnerability assessments and penetration testing — probing infrastructure, servers and web applications, then hardening whatever's exposed.
End-to-end build, test and release with zero-downtime rollouts and automatic rollback on failed health checks.
Metrics, dashboards and alert routing across a fleet of services — surfacing incidents before they reach users.
Reproducible environments provisioned declaratively, versioned in git and rolled out through peer review.
Orchestration for stateful and stateless services, with resource limits, secrets management and rolling updates.
Provisioning, SSH hardening, DNS/DHCP and least-privilege access for secure, maintainable server fleets.
I'm available now for remote or on-site roles and infrastructure consulting. Bring me your servers, pipelines and uptime targets — I'll bring the discipline to keep them running.