Tima Nlemvo
Systems Engineer · Infrastructure & Security · Automation & Cloud
Seven years of enterprise IT operations, now channeled into building production-grade infrastructure from scratch. The Alliance Fleet is a 25+ service homelab: SSO for 15+ apps, SIEM with automated threat response, full observability pipelines, local AI inference, and 58 automation workflows. All documented, all running.
Professional Alignment Matrix
| Domain | Enterprise Experience | Alliance Implementation |
|---|---|---|
| Identity (IAM) | Active Directory, Google Workspace, user access governance across 200+ users. | Authentik SSO: centralized OIDC/SAML with MFA enforcement across 15+ services. Full audit trail. |
| Infrastructure | Backup solutions, patching, enterprise imaging, macOS/Windows fleet management via JAMF Pro & Intune. | 3-node Proxmox VE cluster with Corosync quorum, ECC memory for data integrity, NVMe Gen4 storage. |
| Networking | Enterprise VPN, firewall policies, DNS management, WAN optimization. | 4-VLAN segmentation (Mgmt/Services/IoT/DMZ) via UniFi Dream Machine with static-only trust zones and inter-VLAN firewall rules. |
| Security | Endpoint protection, compliance audits, Tier III incident triage and escalation. | Wazuh SIEM: brute-force detection, FIM, log aggregation. 58 n8n workflows for automated threat response. |
| Observability | Monitoring dashboards, SLA reporting, alerting thresholds, capacity planning. | Telegraf → InfluxDB → Grafana pipeline. 10-second metric resolution. Used for real incident forensics (VFIO lockup RCA). |
| Remote Access | Enterprise VPN, Zscaler, conditional access policies. | Tailscale zero-trust mesh with subnet routing, ACL policies, and no exposed ports. |
Active Fleet Status
25+ ServicesNode A: Falcon
AI / ML Compute
Ollama · OpenWebUI · ComfyUI · AnythingLLM
View Specifications →
Node B: Corvette
Data & Operations
PostgreSQL · Authentik · InfluxDB · Grafana · n8n · Vaultwarden
View Specifications →
Node C: Gozanti
Network & Security
Wazuh SIEM · AdGuard DNS · Nginx Proxy Manager · UptimeKuma
View Specifications →
Core Stack
Featured Projects
Automation
Job Radar
Automated job search pipeline that queries Indeed, LinkedIn, Glassdoor, and ZipRecruiter every 6 hours. Filters by location, dedupes listings, and posts formatted cards to Discord.
View on GitHub →
Security
Wazuh SIEM Pipeline
Automated threat detection, alerting, and auto-blocking. Brute-force detection, file integrity monitoring, and log aggregation across all nodes with Discord alerts.
View on GitHub →
Identity
Zero-Trust Identity Platform
Eliminated password sprawl with Authentik OIDC/SAML. 15+ services under SSO with 100% MFA enforcement and full audit logging.
View on GitHub →