Alex Keyr — Infrastructure Security Engineer

Alex Keyr

Infrastructure & Security Engineer

Stockholm, Sweden a.keyr@proton.me github.com/akeyr

About

Infrastructure and security engineer with 10+ years of experience designing and operating distributed systems across cloud and on-premise environments. Focused on network hardening, zero-trust architectures, and automation of security operations. Open-source contributor.

Technical Skills

Network & Security

WireGuard / OpenVPN
iptables / nftables
IDS/IPS (Suricata)
TLS / PKI
DPI bypass

Infrastructure

Linux (Debian/RHEL)
Docker / Kubernetes
Terraform / Ansible
nginx / HAProxy
BGP / OSPF

Development

Python / Go
Bash scripting
REST API design
GitLab CI/CD
Prometheus / Grafana

Projects

netwall

Declarative firewall rule manager for Linux with dry-run support, audit logging, and Ansible integration. Handles complex multi-zone topologies without rule flush operations.

Python nftables Ansible Open Source

tlsprobe

Fast TLS fingerprinting and certificate transparency monitoring tool. Detects misconfigurations and weak cipher suites across large server inventories via concurrent scanning.

Go TLS Security Audit

Experience

Nexor Systems AB

Senior Infrastructure Security Engineer

2020 — present

Designed and maintained network security infrastructure for financial services clients. Led migration from legacy VPN to zero-trust architecture, reducing attack surface by 60%. Implemented automated certificate lifecycle management across 800+ endpoints.

DataCore Networks

Network Security Engineer

2016 — 2020

Managed BGP routing and network segmentation for tier-2 ISP. Developed IDS rule sets and DDoS mitigation procedures. Automated infrastructure provisioning reducing deployment time by 4x.