Skip to content
View mdixon47's full-sized avatar
21 followers · 48 following

Achievements

Achievement: YOLOAchievement: Arctic Code Vault ContributorAchievement: Pull Shark

Achievements

Achievement: YOLOAchievement: Arctic Code Vault ContributorAchievement: Pull Shark

Block or report mdixon47

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Maximum 250 characters. Please don’t include any personal information such as legal names or email addresses. Markdown is supported. This note will only be visible to you.
Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse
mdixon47/README.md

Hi, I'm Malik Dixon πŸ‘‹

Cloud Engineering | DevOps | DevSecOps

I build secure, scalable, and automated cloud solutions with a focus on reliability, security, and clean delivery pipelines. My interests sit at the intersection of cloud infrastructure, CI/CD, infrastructure as code, observability, and security-first engineering.

I enjoy designing systems that are not just functional, but resilient, maintainable, and production-ready.

About Me

  • Cloud-focused engineer with interests in AWS, Azure, DevOps, and DevSecOps
  • Passionate about automation, security, infrastructure as code, and platform reliability
  • Interested in building solutions that improve developer experience, governance, and deployment speed
  • Continuously learning and exploring modern cloud-native tooling and best practices

What I Work On

  • Cloud infrastructure design and deployment
  • CI/CD pipeline automation
  • Infrastructure as Code with Terraform and CloudFormation
  • Containerized application delivery
  • Security controls in DevOps pipelines
  • Monitoring, logging, and operational visibility
  • Identity, access, and secrets management

Tech Stack

Cloud

AWS Azure

DevOps & IaC

Terraform CloudFormation GitHub Actions Docker

Security & Ops

Linux SonarQube OWASP Git

Featured Projects

1. Operation Aegis: Docker-Driven DevSecOps Security Pipeline

DSB Capstone Project
Built a GitHub Actions-based DevSecOps pipeline for a simulated fintech platform, using Docker across every testing stage to automate security checks from pull request to staging deployment.

Highlights

  • Dockerized unit, integration, smoke, and DAST testing
  • Automated SAST, SCA, secrets scanning, and IaC/config scanning
  • GitHub Actions workflows for PR gates, staging validation, and nightly audits
  • Production and test image separation for cleaner, safer deployments
  • Security enforcement built directly into CI/CD for faster, safer releases

Repo: operation-aegis Story operation-aegis

2. I Built an AWS Compliance Auditor That Uses No Static Keys β€” and AWS Still Fought Me

DSB Capstone Project A DSB capstone project that inventories AWS compute and storage resources using boto3, authenticates with temporary credentials only, handles API throttling with retries and pacing, emits structured logs for every AWS API call, stores compliance findings, and exposes an API that can be validated with Postman.

Highlights

  • Built AuditTrail SDK, a DSB capstone project for secure AWS compliance auditing
  • Used Terraform to provision the full environment and keep it visible in the AWS Console
  • Used boto3 to inventory AWS resources such as EC2, EBS, S3, and Lambda
  • Enforced temporary credentials only with GitHub Actions OIDC and role-based access
  • Avoided static AWS keys completely
  • Added retry logic, pacing, and backoff to handle API throttling safely
  • Implemented structured JSON logging for every API call
  • Created the ability to audit the audit through logging and cloud-side visibility
  • Added API endpoints for triggering audits and retrieving results
  • Integrated Postman for API validation and operational testing
  • Stored compliance findings for review and reporting
  • Solved real-world IAM and deployment issues, including:
  • Security Hub AccessDeniedException
  • corrected s3:GetBucketPublicAccessBlock permission
  • DynamoDB GSI index permissions
  • Describe* actions requiring Resource: "*"
  • OIDC IAM bootstrapping for Terraform CI/CD
  • Demonstrated practical skills in AWS, IAM, Terraform, Python, API security, and DevSecOps

Repo: Project Repo Story The Story

Current Focus

  • Strengthening cloud security engineering skills
  • Building production-style DevOps/DevSecOps portfolio projects
  • Expanding expertise in platform automation and reliability
  • Exploring scalable cloud architecture patterns

Certifications & Learning

  • AWS Certified Cloud Practitioner
  • Azure
  • DevOps Engineering
  • DevSecOps Practices
  • Cloud Security
  • Infrastructure as Code

Connect With Me

Profile Motto

Secure it. Automate it. Scale it.

Pinned Loading

  1. aws-devops-cicd-helloworld aws-devops-cicd-helloworld Public

    Forked from nasimbayati/aws-devops-cicd-helloworld

    End-to-end AWS CI/CD pipeline using GitHub, CodeBuild, CodeDeploy, and CodePipeline

    Java

  2. AWS-DevOps-Projects AWS-DevOps-Projects Public

    Forked from shahinam2/AWS-DevOps-Projects

    A set of practical projects showcasing my AWS & DevOps skills. Each project reflects real-world scenarios focused on automation, scalability, and reliability.

    TypeScript

  3. aws-devops-zero-to-hero aws-devops-zero-to-hero Public

    Forked from iam-veeramalla/aws-devops-zero-to-hero

    AWS zero to hero repo for devops engineers to learn AWS in 30 Days. This repo includes projects, presentations, interview questions and real time examples.

    Python

  4. aws-devsecops-pipeline aws-devsecops-pipeline Public

    Forked from devsecblueprint/aws-devsecops-pipeline

    AWS DevSecOps Pipeline with Terraform

    HCL