wes.hozee~/architect
wes@hozee:~$whoami

Wes
Hozee.

Infrastructure Architect

Two decades building enterprise infrastructure that doesn't flinch—cloud migrations, security architecture, and resilience engineering for organisations that can't afford downtime.

$ open linkedin$ cat resume.md
~/portrait — wes.hozee — 80×24
Wesley Hozee portrait
$ whoamiwesley.hozee
$ pwd1nfr@57ruc7ur3-@rch173c7!
$ uptime20+ yrs, no downtime
$ statusonline
20+
Years Experience
4K+
Users Supported
200+
Applications Managed
3
Cloud Providers
$cat summary.mdprofessional overview

Infrastructure Architect with over two decades of experience transforming technology environments for organisations of all sizes. Expertise in designing, implementing, and maintaining secure, scalable solutions that advance business goals while meeting the demands of regulated settings such as financial services.

Works comfortably within audit and compliance frameworks, partnering with risk and legal teams to align architecture and operations with policies and standards, and to maintain clear evidence for reviews. Technical adaptability spans diverse platforms—Windows or Linux, virtualised or containerised, on Hyper-V, VMware, or Proxmox, and across Google, Amazon, or Microsoft clouds—alongside extensive experience with enterprise networking.

Focus Areas
  • 01Cloud Architecture
  • 02Security Architecture & Identity Management
  • 03Disaster Recovery & Business Continuity
  • 04Risk & Compliance Alignment
  • 05Audit Readiness & Operational Governance
  • 06AI Integration
$jq . skills.jsontechnical competencies
{
"cloud": ["Azure", "GCP", "AWS"],
"virtualisation": ["Hyper-V", "VMware vSphere", "Proxmox"],
"containerisation": ["Docker", "Orchestration"],
"identity_access": ["Entra ID", "Active Directory", "Okta", "PIM/JIT", "Conditional Access", "MFA", "SSO", "RBAC"],
"security": ["CrowdStrike Falcon", "Mimecast", "Zscaler (ZPA/ZIA)", "Cisco Firepower", "Next-Gen Firewalls", "Nessus", "Vulnerability Management", "Pen Test Remediation", "NIST Frameworks"],
"microsoft_365": ["Exchange Online", "Intune", "Microsoft Defender", "SharePoint", "Teams"],
"networking": ["Enterprise Network Design", "Cisco ASA", "SD-WAN", "VLANs", "VPNs", "DNS", "DHCP", "Load Balancing"],
"storage": ["Dell Compellent", "Dell EqualLogic", "Dell PowerEdge", "LTO Tape"],
"backup_recovery": ["Veeam", "LTO Tape", "DR Planning", "DR Testing"],
"automation": ["PowerShell", "IaC", "MDT Task Sequences", "CI/CD Pipeline Integration"],
"ai_llm": ["Prompt Engineering", "Agentic AI", "API Integration", "RAG", "Ollama", "MCP", "AI Workflow Integration"],
"platforms": ["Windows Server", "Linux", "SQL Server", "Citrix"]
}
$git log experience/work history
commit a3f9c21Apr 2012 – Presentduration: 14 yrs

Senior Infrastructure Architect

Platinum Asset Management

Focused on modernising enterprise platforms and strengthening security. Leads migration of applications to cloud services, oversees identity and access governance, and manages infrastructure lifecycle from capacity planning to decommissioning. Partners with leadership and vendors to deliver resilient, compliant solutions aligned with strategic goals.

Key Achievements
  • +Covid-19 remote mobilisation — rapid secure remote access for entire workforce
  • +Full virtualisation and compute modernisation
  • +Storage modernisation
  • +End-to-end identity transformation across multiple SSO platforms
  • +Secure remote access evolution across 4 generations
  • +Firewall and perimeter modernisation
  • +Endpoint modernisation to Infrastructure as Code
  • +Email platform migration
  • +Web hosting migration to Azure
  • +Security posture and pen test maturity — zero high or critical findings in most recent cycle; red team exercise detected, contained, and reported in real time
Security Posture
  • +Drove year-on-year reduction in infrastructure findings across annual external assessments
  • +Penetration test remediation — triaged findings by severity, built remediation plans, and executed fixes
  • +Continuous vulnerability hygiene via Nessus scanning and monthly patch cycles
  • +Red team exercise: triggered alerts detected and remediated in real time; engagement concluded after activity was identified and contained
  • +Endpoint detection and response via CrowdStrike Falcon
  • +Email security and anti-phishing via Mimecast
Cloud & Architecture
  • +Cloud migration strategy and execution (on-premises to cloud)
  • +Cloud governance and access control (RBAC, least privilege)
  • +Serverless architecture design and implementation
  • +High availability and disaster recovery planning
Identity & Security
  • +Identity and access management (IAM) best practices
  • +Privileged access management (PIM/JIT)
  • +Single Sign-On (SSO) integration and certificate lifecycle management
  • +Security compliance and governance frameworks
Infrastructure & Ops
  • +Virtualisation and hypervisor management
  • +Capacity planning and hardware lifecycle management
  • +Risk-controlled decommissioning of legacy systems
  • +Performance optimisation and resilience engineering
DevOps & Automation
  • +Infrastructure as Code (IaC) principles
  • +CI/CD pipeline integration and deployment automation
  • +Monitoring and observability solutions
commit 7e2b8d4May 2008 – Apr 2012duration: 4 yrs

Windows Infrastructure Administrator

Seven Network

Responsible for the daily management and maintenance of enterprise infrastructure supporting over 4,000 users across Australia and the USA.

Infrastructure
  • +Microsoft Active Directory Domain Services (4,000+ users, multiple locations)
  • +200 virtual servers across 10 clusters nationwide
  • +3 SAN infrastructures
  • +SQL Server 2000–2008 R2
  • +Citrix Server Administration
  • +Multi-domain and multi-forest network administration
Leadership
  • +Training, development, and supervision of system administration staff
  • +Hardware and software rollouts (new deployments and upgrades)
  • +Project planning and management
  • +System audits, risk assessment, and disaster recovery strategy
commit 2c5a1f92004 – 2008duration: 4 yrs

Services Engineer

ComputerCORP

Technical lead on projects, proof-of-concept engagements, and pilots for small, medium, and large corporations.

Technical
  • +SOE design, maintenance, deployment, and analysis for various clients
  • +Active Directory design and analysis
  • +Technical solutions design (servers, storage, data centre fit-outs)
  • +Technical pre-sales support (fault-tolerant servers, storage, software)
  • +Point of escalation for server and network hardware and software
Leadership
  • +Project management across multiple client engagements
  • +Team leader and assistant project manager for state and national rollouts
  • +Technical training and product demonstrations (internal and external)
  • +Scope of works and quotation development
$ls -lah projects/hobby builds
PERMSYEARNAMEDESCRIPTION
rwxr-xr-x2026TymTrax

Work-hours tracking and ATO-compliant tax deduction reporting for Australian workers. Logs WFH, office, and travel days on a calendar, calculates the 67 cents/hour fixed-rate deduction in real time, and exports accountant-ready PDF and CSV reports. Built with 5-year record retention and public holiday colour-coding.

Next.js 15TypeScriptSupabaseTailwind CSSDocker
rwxr-xr-x2025Agentic AI Financial Analysis Platform

Full-stack platform delivering AI-powered buy, sell, or hold recommendations for stocks, crypto, commodities, and currencies. An agentic pipeline coordinates multiple Gemini AI models to analyse market data and surface structured, evidence-backed signals through an interactive dashboard.

PythonFlaskPostgreSQLGoogle Vertex AIDocker
rwxr-xr-x2025Stagehand

Discord scraper and content management system for podcast producers. Continuously ingests URLs shared by community members, allows producers to categorise and tag content, and presents a clean interface for building episode research queues from community activity.

ReactTypeScriptExpressDiscord.jsPostgreSQLDocker
rwxr-xr-x2025Stagehand Android App

Native Android companion for the Stagehand platform. Lets podcast producers manage and categorise Discord-sourced URLs on the go, with offline support and a material design interface built on Jetpack Compose.

KotlinJetpack ComposeRetrofitKoinCoil
rwxr-xr-x2026Claude Gauge

Stream Deck plugin that monitors Anthropic Claude usage limits in real time. Displays 7-day rolling and 5-hour session usage as live progress bars, percentages, and countdown timers directly on a physical Stream Deck key — no browser tab required.

TypeScriptNode.jsStream Deck SDKSVGOAuth
rwxr-xr-x2025Chuckling Koala Solutions Site

Modern, responsive business website for an IT consulting firm. Built on Next.js 15 with Sanity CMS for flexible content management, containerised with Docker, and designed for easy handoff to non-technical content editors.

Next.js 15ReactTailwind CSSSanity.ioDocker
$tail -f ~/worklogwhat i'm working on
LIVE~/worklogtail -f
2026-02-02 09:14OK
Completed migration of file server to Azure Files#azure#migration
2025-11-01 16:42OK
Deployed agentic based tools for financial analysis#ai#mcp
2026-04-29 11:05INFO
TymTrax v0.9 shipped — added bulk import and pdf reporting#tymtrax#release
2026-1-28 14:30WARN
Legacy Hyper-V cluster decomissioned#infrastructure#planning
2026-03-26 10:22OK
Claude Gauge Stream Deck plugin passing Elgato review#claude-gauge#release
2025-11-25 08:55INFO
Reading: Enshittification: Why Everything Suddenly Got Worse and What to Do about It#learning#entertaining
2026-4-25 17:55INFO
Writing: Editing my first full length novel#growing#relaxing