Ricardo Godinez

Aviatrix Multi-Cloud Network Associate

The Aviatrix Certified Engineer (ACE) Multi-cloud Network Associate certification validates the earner’s understanding of basic networking and security concepts for AWS, Azure, GCP, and OCI as well as their limitations in meeting Enterprise requirements. An ACE Associate understands the basic design principles of a multi-cloud network architecture and can demonstrate knowledge of day 2 operational requirements.

Qualys Certified Specialist — Vulnerability Management, Detection & Response (VMDR)

The Qualys Certified Specialist — Vulnerability Management, Detection & Response certification validates the earner’s understanding of enterprise vulnerability management processes, including asset discovery, risk-based prioritization, vulnerability assessment, and remediation workflows. A certified specialist understands continuous monitoring principles and can demonstrate knowledge of implementing detection strategies to improve infrastructure security posture and operational resilience using the Qualys platform.

AZ-900: Microsoft Azure Fundamentals

The Microsoft Azure Fundamentals (AZ-900) certification validates the earner’s foundational understanding of cloud computing concepts and core Azure services, including compute, networking, storage, identity, security, and governance. A certified individual understands basic cloud architecture principles, service models, pricing structures, and deployment concepts, and can demonstrate knowledge of how Azure supports scalable and secure infrastructure solutions.

AZ-104: Azure Administrator Associate

The Microsoft Azure Administrator (AZ-104) certification validates the earner’s ability to manage and implement core Azure infrastructure services, including virtual machines, networking components, storage solutions, identity management, and security controls. A certified administrator understands operational management of Azure environments and can demonstrate hands-on capability in deploying, configuring, monitoring, and maintaining enterprise cloud infrastructure.

Multi-Environment CI/CD Pipeline with Security Gating & Automated Promotion

Tool Section: GitHub Actions, Node.js, CI/CD, Security Auditing, Artifact Management, Automation.

Designed and implemented a staged CI/CD pipeline using GitHub Actions to manage controlled promotion across development, testing, and production branches. Built automated security enforcement using npm audit with environment-specific thresholds, preventing high-severity vulnerabilities from reaching production. Implemented automated branch promotion (test → prod), production build verification, artifact versioning, deployment metadata generation, and scheduled backup automation to improve release reliability and operational resilience.

Zero Trust Network Access Implmentation with Terraform and Tailscale

Tool Section: Terraform, Tailscale, Zero-Trust Networking, Infrastructure as Code, Linux, VPN Architecture, Security Policy Automation.

Designed and implemented a zero-trust network architecture for my home lab using Terraform to manage Tailscale access control policies as Infrastructure as Code. The project enforces least-privilege network segmentation, eliminates public internet exposure, and centralizes identity-based access management for devices and services. Built reproducible network policies with version-controlled ACLs, secure secrets injection, and structured device segmentation for infrastructure, gaming, and management traffic. Demonstrates practical application of secure remote access principles, policy automation, and infrastructure governance.

Packet Sniffing and IP Spoofing

Tool Section: Python, Scapy, Wireshark, Linux, VMware.

Conducted a controlled network security lab to analyze packet sniffing and IP spoofing techniques using Python and Scapy for traffic manipulation, and Wireshark for packet inspection and analysis. Explored how attackers intercept and modify network traffic in virtualized environments to demonstrate real-world vulnerabilities.

Strengthened understanding of network-layer threats, traffic monitoring, and defensive mitigation strategies through hands-on experimentation in a VMware-based lab environment.

AIOps-Driven Kubernetes Automation with AI and Ansible

Tool Section: Kubernetes, Ansible, Bash, RHEL, VMware, Prometheus, Grafana.

Designed a Kubernetes-based infrastructure automation framework that integrates monitoring telemetry with Ansible-driven automation to support intelligent system management. The project leverages Prometheus and Grafana to collect performance metrics and uses automated remediation workflows to respond to detected anomalies within a virtualized RHEL environment.

Demonstrates practical implementation of infrastructure observability, automated configuration management, and AI-assisted decision logic for proactive system stabilization and self-healing operations.

Secure Video Streaming with RSA & AES on Raspberry Pi

Tool Section: Python, PyCryptodome, OpenCV, RSA, AES.

Designed and implemented a hybrid cryptographic video streaming system that performs secure key exchange using RSA and encrypts real-time video frames with AES-CBC for secure transmission between a Raspberry Pi and a host computer. The system implements a complete cryptographic workflow including RSA key generation, secure secret exchange, shared key derivation using SHA-256, and encrypted frame transmission over TCP.

Demonstrates practical implementation of public key infrastructure concepts, symmetric encryption for performance optimization, secure session establishment, and real-time networked system design.

ChaCha20 Video Streaming over WiFi

Tool Section: Python, OpenCV, Socket Networking, Cryptography, Raspberry Pi.

Designed and implemented a real-time secure video streaming system that encrypts webcam video frames using the ChaCha20 stream cipher before transmitting them over a TCP connection via WiFi. Built a sender–receiver architecture where a Raspberry Pi captures and encrypts frames and a client system decrypts and renders them in real time.

Demonstrates practical implementation of symmetric encryption, secure nonce management, network socket communication, and performance monitoring in a live system environment.

Microcontroller Project: PIC18F4620 Temperature-Controlled Fan & Alarm

Tool Section: C, MPLAB X IDE, PIC18F4620, GPIO, ADC, Timers, Interrupts.

Developed a bare-metal embedded application for the PIC18F4620 microcontroller implementing a real-time control system with GPIO interfacing, analog-to-digital conversion, timers, and interrupt-driven logic. The system supports user configuration via IR input, enabling time-based alarm control and temperature-driven fan regulation.

Demonstrates practical experience in embedded firmware development, peripheral configuration, real-time event handling, and hardware–software integration using C within the MPLAB X development environment.

Data Encryption Standard (DES) on Nexys A7 FPGA

Tool Section: Verilog HDL, Xilinx Vivado, FPGA Hardware (Nexys A7-100T).

Designed and implemented the DES cryptographic algorithm in hardware on a Nexys A7-100T FPGA using Verilog HDL. The implementation includes hardware-based key scheduling, encryption/decryption logic, and input/output interfacing synthesized and validated through Xilinx Vivado.

Demonstrates practical experience in digital system design, hardware acceleration of cryptographic algorithms, timing constraints, and low-level hardware-software integration for secure embedded systems.

Python Software Engineering Projects

Tool Section: Python, VS Code, Git, Standard Library, GUI & Networking Libraries.

Developed a collection of modular Python applications demonstrating practical software engineering principles, including algorithm implementation, object-oriented design, simulation modeling, networking, and data analysis. Each project follows structured directory organization, version control practices, and reproducible execution workflows.

Demonstrates applied experience in building maintainable applications with proper project structure, dependency management, testing considerations, and real-world problem-solving using Python.

Prime Number Generator: Single Board Computer vs Laptop Performance

Tool Section: Rust, Raspberry Pi, sysinfo, Cargo.

Developed a high-performance prime number generator in Rust to analyze algorithm efficiency and system performance across x86_64 and ARM architectures. The project benchmarks execution time, memory usage, and prime discovery rate while applying optimized trial division techniques such as 6k±1 optimization and square-root bounded checks.

Demonstrates systems-level performance profiling, compiler optimization impact, and cross-platform benchmarking on embedded hardware (Raspberry Pi) versus desktop environments, highlighting architectural differences in computational workloads.