Senior Platform Engineer / AI Infrastructure

Lucas Possamai

I build secure, compliance-ready cloud platforms and the AI systems that run on them.

My work sits where platform engineering, DevSecOps, and applied AI meet: landing zones, hardened Kubernetes and container platforms, RAG pipelines, CI/CD automation, observability, and incident response workflows.

View systems Contact
10+
years in platform and cloud engineering
6.4x
CI build speedup delivered through automation
90%
manual platform tasks automated
platform-console
$ deploy secure-ai-platform --env production
policy checks passed: pci-dss, iso-27001, soc-2
terraform plan: 0 to add, 0 to change, 0 to destroy
rag pipeline: hybrid search + rerank online
observability: traces, logs, metrics streaming
$ ship reliable systems
cost Infracost gates before merge
observe metrics, traces, and logs linked
deploy policy checks block risky changes

Operator profile

Platform work with security built in

I lead platform security and infrastructure across public cloud, Kubernetes, and containerized workloads. I design multi-cloud foundations with Terraform and Terragrunt, policy guardrails, centralized logging, least-privilege access, and audit-ready deployment paths.

I also build AI infrastructure: RAG systems, vector search, model invocation audit trails, and human-in-the-loop workflows. The goal is practical reliability: systems that are secure, observable, cost-aware, and clear enough for teams to operate.

Current focus

  • Security-first landing zones and platform guardrails
  • RAG pipelines, vector databases, and LLM integration
  • Compliance automation for PCI-DSS, ISO 27001, and SOC 2
  • CI/CD performance, cloud cost control, and incident response

Systems I build

From cloud foundations to AI runtime

01

Cloud Platforms

Landing zones, account and subscription vending, network segmentation, container platforms, and production-grade deployment foundations.

Public cloud Kubernetes Containers Networking
02

Security & Compliance

Control mapping, vulnerability management, least-privilege access, audit evidence, incident response, and hardened runtime design.

PCI-DSS v4 ISO 27001 SOC 2 CIS
03

Automation

Infrastructure as Code, GitOps workflows, CI/CD pipelines, policy checks, security scanning, and repeatable multi-environment delivery.

Terraform Terragrunt Ansible CI/CD
04

AI Infrastructure

RAG pipelines, hybrid retrieval, embedding workflows, reranking, model audit logging, and secure platform patterns for AI-powered products.

RAG Vector search Hybrid search LLM ops
05

Observability

Metrics, logs, traces, alerting, post-incident review, and operational dashboards that make production behavior visible.

Metrics Logs Tracing SLOs
06

Data Platforms

Relational databases, replication, migration planning, performance tuning, and storage patterns for high-throughput production systems.

PostgreSQL MySQL Replication SQL

Writing

Latest technical articles

Fresh posts from my developer writing feed.

Loading articles...
View all articles

Contact

Let us talk systems

Reach out for platform engineering, AI infrastructure, compliance automation, security hardening, or production reliability work.

@ [email protected]
# Auckland, New Zealand