Brian Lasky Cloud Architect | Senior SRE

Agentic AI Infrastructure · Fiscal SecOps · Multi-Cloud DR

I transform uncontrolled agentic autonomy into audit-ready, policy-driven financial clearing systems. Specializing in high-stakes infrastructure that balances AI innovation with rigorous operational reliability.

View Resilience Control PlaneRead Traceability Matrix

Infrastructure-as-Code: Provisioned via Terraform and governed by GitHub Actions.

Bridging Industrial Reliability with Cloud-Native Architecture

Agentic AI Infrastructure

Design and deploy autonomous cloud ecosystems with decoupled governance to safely scale AI workloads.

Fiscal SecOps

Implement proactive fiscal guardrails and atomic state operations to prevent AI token runaway.

Multi-Cloud Resilience

Architect zero-trust disaster recovery models that guarantee business continuity across AWS and GCP.

My approach to cloud architecture is fundamentally different from traditional software engineering. It is rooted in 17+ years of physical production operations and over 125 regulatory-grade incident investigations. I spent my early career managing safety-critical, high-pressure equipment where downtime wasn't just an inconvenience—it was a critical failure.

Today, I bring that exact same industrial incident command discipline to distributed systems. I specialize in the initial architectural blueprinting and systems design phase, believing the most critical engineering happens before a single line of code is written.

Whether I am decoupling business logic from governance to prevent AI "token runaway," or designing zero-trust multi-cloud failovers, my goal is to build systems that isolate blast radiuses, protect enterprise budgets, and fail safely.

Architectural Capabilities

☁️ Cloud Infrastructure

  • GKE Autopilot & GKE 1.27+
  • AWS ECS Fargate & Lambda
  • Hybrid/Multi-Cloud Architectures
  • Next.js & Vercel Edge

🤖 Agentic AI Governance

  • OPA/Rego Policy-as-Code
  • Fiscal SecOps & Circuit Breakers
  • Real-time Token Budgeting
  • Autonomous Remediation

🛡️ Reliability & Security

  • Incident Investigation (RCA)
  • RTO/RPO Validation
  • Keyless WIF/OIDC Auth
  • Supply Chain Security (Trivy)

🏗️ IaC & Automation

  • Terraform 1.7 (Modular)
  • GitHub Actions (Event-Driven)
  • AsyncIO Python Development
  • GitOps Patterns

Flagship Architectural Projects

Agentic Governance Controller

Fiscal SecOps Middleware for Autonomous AI

KubernetesAtomic StateSidecar

Challenge

Autonomous AI lacks native fiscal circuit breakers, risking 'token runaway'.

Solution

Architected a proxy enforcing fail-closed budget gating via atomic state.

Impact

Eliminated race conditions, securing $250k+ in API budget exposure.

NorthStar Multi-Cloud DR

Active-passive resilience across AWS & GCP

TerraformOIDCZero-Trust

Challenge

Mitigating the 'Disaster Recovery Gap' and manual secret rotation.

Solution

Declarative state management with keyless Workload Identity Federation.

Impact

Targeted 0s RTO and 1s RPO without exposing static credentials.

The Tombstone Protocol

Automated Crash Forensics & Telemetry

PrometheusOpenTelemetrySRE

Challenge

Pod termination during P0 events destroys critical root-cause data.

Solution

Sever network intent via policy while preserving local memory state.

Impact

Ensured regulatory-grade forensic audits for AI hallucinations.

Architecture

Serverless portfolio infrastructure on AWS

BrowserNext.js 16TypeScriptHTTPSRoute 53brian-lasky.comDNSRESTAPI Gateway4wuinyvkr0POST /contactInvokeLambdacontact-formNode.js 18.xSendEmailSESnoreply@brian-lasky.comSMTPInboxbrian.lasky@outlook.comLogsCloudWatchLogs & Metrics/aws/lambda/*AWS Serverless Architecturebrian-lasky.com Contact Form Flow

Frontend

Next.js 16 with Turbopack. TypeScript, Tailwind CSS, React hooks with hydration-safe rendering.

API Layer

API Gateway (4wuinyvkr0) routes POST /contact to Lambda with CORS and OPTIONS preflight support.

Email

Lambda uses AWS SDK v3 SendEmailCommand via SES. Verified domain and recipient. 0% bounce rate.