Skip to content
View DanielSiebert-dev's full-sized avatar
🏠
Working from home
🏠
Working from home

Highlights

  • Pro

Block or report DanielSiebert-dev

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Maximum 250 characters. Please don’t include any personal information such as legal names or email addresses. Markdown is supported. This note will only be visible to you.
Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse
DanielSiebert-dev/README.md

Daniel Siebert

Cloud FinOps · Infrastructure · AI Automation
Executive profile & consulting → siebert.cv

Portfolio Tender Agent AWS SA FinOps CP


What this profile is for

GitHub is my technical workspace — code, architecture, issues, and reproducible experiments.
For CV, consulting, publications, and the full story: siebert.cv (DE/EN).


Flagship (private, in active use)

Project What it does
Tender Agent Multi-agent EU procurement pipeline — LangGraph, Grok (xAI), human-in-the-loop chapter drafting. Private while in production use; context on siebert.cv.

Public repos

Repo What it does
AWS_grocery Terraform AWS stack — immutable EC2 rollouts, RDS, CI/CD deployment
InstaScraper Modular scraping with proxy rotation, scheduling, SQLite persistence
GitHub-Stats-Visualization Custom language & activity charts for GitHub profiles

Other production work (layered-infra, FinOps Lambdas, siebert.cv codebase) stays private — architecture walkthroughs on request.


Technical focus

Area Tools
Cloud & IaC AWS, Terraform, Docker, VPC, RDS, Lambda, IAM/OIDC
FinOps Cost Explorer, tagging governance, budgets, auto-stop, right-sizing
Engineering Python, TypeScript, Next.js, PostgreSQL, Playwright
AI & automation LangGraph, Grok, n8n, Obsidian workflows, document pipelines
Edge & ops Caddy, WireGuard, SSH+mTLS, GitHub Actions, k6, Terratest

Reference architecture

Private AWS environments I design around a split edge + app plane — TLS at the edge, east-west traffic in private subnets, FinOps jobs on the control plane:

CI/CD · Control · Data plane (click to expand)

AWS reference architecture

                      CI/CD PLANE                      CONTROL PLANE
+------------------+        |                     +------------------------------+
| Devs / QA        |        | OIDC trust          |  IAM / KMS / SSM             |
| pull requests    |  ----> | assumption policy   |  - Roles for CI & EC2        |
+------------------+        |                     |  - KMS keys for SSM          |
                          v                     |  - SSM params (registry/app) |
                  +------------------------+    +------------------------------+
                  | GitHub Actions Runner  |
                  | - Artifact build       |          DATA PLANE
                  | - Push to Registry     |          (east–west & north–south)
                  +-----------+------------+
                              |
                              | HTTPS push/pull (443)
                              v
==============================  AWS VPC (10.0.0.0/16)  ====================================
| Public Subnet (10.0.1.0/24)                                      Private (10.0.2.0/24)     |
|                                                                                            |
| +------------------------------------------+     mTLS/HTTPS proxy     +---------------+    |
| | Edge VM                                  | <------------------------ | App VM        |   |
| | - Caddy (TLS termination, SNI routing)   |                           | - App         |   |
| | - Split Registry (ext/int DNS)           |   outbound through NAT    | - PgBouncer   |   |
| | - NAT (masquerade, src/dst check off)    | ----------------------->  | - Postgres    |   |
| | - WireGuard (51820/UDP admin plane)      |                           +---------------+   |
| | - UFW default-deny; fail2ban sshd        |                                               |
| +------------------------------------------+                                               |
=============================================================================================
     |              |                  |                          |
     v              v                  v                          v
Route53/NS     TLS issuance      SSM param reads             FinOps jobs
(A/ALIAS)      (internal CA or   (pull credentials &         (Auto-Stop, Office Hours,
               ACME public)      runtime config)             Orphaned Cleanup, Budgets)

Start here

If you want to… Go here
EU tenders + multi-agent AI siebert.cv/projects — Tender Agent (private flagship)
Infra & FinOps patterns Reference architecture below
Consulting / freelance siebert.cv/consulting
Clone & explore code Public repos above — e.g. AWS_grocery, InstaScraper
Full CV, projects, publications siebert.cv

Architecture or EU-tender workflow questions → consulting or email. Code feedback → issues on the public repo that fits.


Connect


Last updated: July 2026

Pinned Loading

  1. AWS_grocery AWS_grocery Public

    Forked from AlejandroRomanIbanez/AWS_grocery

    This project is part of the Cloud Track in the Software Engineering bootcamp at Masterschool. The application was originally developed by Alejandro Román. Our task was to design and deploy its AWS …

    Roff 1

  2. InstaScraper InstaScraper Public

    Developed a modular, production-ready Instagram scraping system with Oxylabs proxy integration, automated scheduling, and real-time data usage tracking. The scraper supports image, video, and metad…

    Python 2

  3. DanielSiebert-dev DanielSiebert-dev Public