David Lihor
19-year-old Cloud & Platform Engineer with AWS Solutions Architect - Associate certification. I build production-ready infrastructure with EKS, Terraform, GitOps, and event-driven AWS services, and I am looking for internship opportunities in cloud, platform, and DevOps teams.
Open to opportunitiesAbout
I am a high school student (grade 11) from Cluj-Napoca, self-taught in cloud architecture, container orchestration, and infrastructure automation through hands-on building.
My focus is practical platform engineering on AWS: provisioning infrastructure with Terraform, deploying microservices on EKS, enforcing service-to-service security with Istio mTLS, and running GitOps delivery with ArgoCD and Argo Rollouts.
I enjoy building systems end-to-end: from VPC and IAM design to CI/CD security gates, secrets management with Vault and AWS Secrets Manager, and observability with the LGTM stack and CloudWatch.
Cloud Infrastructure Projects
Selected projects from my CV focused on AWS, Kubernetes, Terraform, GitOps, and DevSecOps automation.
Microservices Platform with Service Mesh & GitOps
EKS microservices architecture deployed with Terraform, Helm, and ArgoCD ApplicationSets. Implemented Istio mTLS, REGISTRY_ONLY egress rules, and AuthorizationPolicy controls with progressive delivery via Argo Rollouts.
Serverless Task Platform
Event-driven AWS architecture with API Gateway, Lambda, Step Functions, EventBridge Pipes, DynamoDB, and S3. Includes VPC networking, CloudFront delivery, Cognito auth, and Terraform modularization.
Vault Secrets Management on EKS
HashiCorp Vault deployed in HA mode on EKS with Raft storage, cert-manager TLS, and AWS KMS auto-unseal through IRSA. Integrated Kubernetes auth, KV-v2 policies, and External Secrets synchronization.
EKS Infrastructure with Multi-Stage DevSecOps Pipeline
Terraform AWS foundation with multi-AZ EKS, private networking, and managed data services. GitLab CI pipeline uses OIDC keyless auth and runs staged checks with Gitleaks, Trivy, and Checkov before controlled Terraform apply.
Portfolio CI/CD
Infrastructure behind this portfolio: automated deployment on push, AWS hosting with CDN, HTTPS, and infrastructure managed as code.
Homelab
Current focus areas in platform engineering.
Focus 1: Kubernetes Platform Delivery
Designing and operating EKS environments with Terraform, Helm, and GitOps workflows. I focus on secure service communication with Istio, progressive delivery with Argo Rollouts, and reliable runtime secret delivery.
Focus 2: Cloud Automation & Observability
Building event-driven AWS systems with Lambda, Step Functions, and EventBridge, while integrating CI/CD security checks (Gitleaks, Trivy, Checkov) and practical observability using CloudWatch and the LGTM stack.
I aim to build systems that are easy to deploy, easy to monitor, and easy to operate by teams at scale.
Skills
Tools and platforms used across my projects.
Certifications
Certification validating AWS architecture fundamentals and practical cloud design skills.
