Available for Projects & Consulting

Stephen Best
AIhebholoria

Systems Engineer & ICT Lead with 13+ years delivering enterprise IT infrastructure, cloud architecture, and cybersecurity in Nigeria and globally.

Get in Touch LinkedIn
0
Years Experience
0
% Cost Savings
99.9%
Uptime Delivered

Background

13+ Years Building Resilient Enterprise IT

Based in Port Harcourt, Nigeria and serving clients worldwide, I specialize in end-to-end enterprise IT—from cloud migrations on AWS and Azure to hardening security postures with CEH and CompTIA CySA+ methodologies.

My approach blends hands-on engineering with strategic thinking: I design, implement, and maintain infrastructure that's secure, cost-efficient, and built to scale.

Certifications

AWS Cloud Practitioner CEH CompTIA CySA+ CCNP Enterprise Terraform Associate MCSE

Key Wins

  • 40% application performance improvement via infrastructure optimization
  • 30% operational cost reduction through strategic cloud migration
  • 99.9% server uptime and 75% reduction in unplanned downtime
  • $200k+ saved through Oracle EBS cloud migration
  • 40% manual workload cut via Python/Bash automation

Experience Timeline

2011 – Present
ICT Lead / Systems Engineer
Desicon Engineering Ltd, Port Harcourt, Nigeria

Led enterprise IT strategy: cloud architecture, cybersecurity governance, network engineering, and team mentorship across 13+ years.

Ongoing
Independent IT Consultant
Clients across Nigeria & Global Remote

Delivering cloud migrations, security audits, DevOps automation, and infrastructure assessments for SMBs and enterprises.

Beyond Technology

Football enthusiast & Chelsea FC fan
Lifelong learner & tech community mentor
Based in Nigeria · Available worldwide
Mentoring junior engineers & students

What I Do

Core Service Areas

End-to-end IT solutions from infrastructure design to security hardening and DevOps automation.

Enterprise IT Infrastructure

  • Network design & implementation
  • Server virtualization (VMware/Hyper-V)
  • Active Directory & domain management
  • Backup & disaster recovery planning
  • VoIP & unified communications

Cloud Solutions

  • AWS & Azure architecture
  • Cloud migration strategy & execution
  • Oracle EBS cloud deployments
  • Cost optimization & FinOps
  • Hybrid cloud design

Cybersecurity

  • Security audits & risk assessments
  • WAZUH SIEM implementation
  • Endpoint protection & EDR
  • Compliance & security governance
  • Incident response planning

DevOps & Automation

  • Kubernetes & Docker orchestration
  • CI/CD pipeline implementation
  • Infrastructure as Code (Terraform)
  • Python & Bash scripting
  • Monitoring & observability

Network Engineering

  • Cisco routing & switching (CCNP)
  • Firewall configuration & policy
  • SD-WAN & VPN deployments
  • Network performance tuning
  • Wireless infrastructure

IT Strategy & Consulting

  • IT roadmap development
  • Technology assessment & vendor selection
  • Team leadership & mentorship
  • Budget planning & optimization
  • Remote project management

🌍 Local & Global Availability

Serving clients in-person across Nigeria and remotely worldwide. Flexible engagement models available.

Schedule a Call

ROI

Why Hire a Systems Engineer?

Real, measurable impact delivered to organizations through strategic IT investment.

30%
Risk Reduction
Fewer security incidents through proactive SIEM monitoring, threat hunting, and compliance-driven controls.
$200k+
Cost Saved
Direct savings delivered through optimized cloud migrations, license consolidation, and infrastructure right-sizing.
40%
Faster Delivery
Automation of repetitive tasks frees engineering time for higher-value work and faster project execution.
99.9%
Uptime Achieved
Enterprise-grade reliability delivered through resilient architectures, redundant systems, and proactive monitoring.

Tech Stack

Tools & Technologies

A broad toolkit built across 13+ years of hands-on enterprise deployments.

Cloud & Infrastructure
AWS Azure Terraform Kubernetes Docker VMware vSphere Hyper-V
Security
WAZUH SIEM Palo Alto / Fortinet CrowdStrike EDR Nessus / OpenVAS Metasploit IAM / RBAC
Networking
Cisco IOS / CCNP BGP / OSPF / EIGRP SD-WAN VPN / MPLS Wireless LAN
Automation & DevOps
Python Bash Git / GitHub CI/CD (Jenkins/GitLab) Ansible Prometheus / Grafana

GitHub Portfolio

Featured Projects

Real-world security, cloud, and DevOps projects built and published on GitHub.

End-to-End Threat Detection & Incident Response

Comprehensive SIEM deployment using Wazuh to monitor Windows, Linux, and macOS endpoints. Implements custom MITRE ATT&CK detection rules, automated IP blocking, file quarantine, vulnerability scanning, and real-time Kibana dashboards with simulated attack scenarios.

Wazuh Kibana MITRE ATT&CK SIEM Syslog Threat Hunting
Security Monitoring
View on GitHub

Serverless Security Platform

Azure Functions–based security automation platform delivering continuous vulnerability scanning, real-time threat detection, and compliance validation against CIS Benchmarks and NIST. Features 25+ security checks, automated incident response workflows, CI/CD pipeline integration, and 85% test coverage.

Python Azure Functions Cosmos DB Azure Monitor Key Vault CIS / NIST
Python 71.8%
View on GitHub

Secure Microservices Deployment Pipeline

Full DevSecOps pipeline for containerised microservices on Amazon EKS. Code commits trigger automated Trivy vulnerability scans, images push to Docker Hub, and ArgoCD synchronises deployments with Kubernetes network policies enforced. Prometheus & Grafana provide custom dashboards for HTTP latency, error rates, and pod health alerts.

Docker Kubernetes (EKS) ArgoCD GitHub Actions Trivy Prometheus Grafana
JavaScript 93.7%
View on GitHub

DevSecOps CI/CD Pipeline (AWS)

Secure Software Development Life Cycle (SSDLC) implementation on AWS using GitHub Actions. Integrates IaC scanning with Terraform Compliance, static application security testing (SAST) via CodeQL, and software composition analysis (SCA) with Trivy. Critical vulnerability findings automatically block pull request merges.

Python Terraform GitHub Actions CodeQL (SAST) Trivy (SCA) AWS
Python 73.4%
View on GitHub

Zero Trust Network Architecture

Cloud-based implementation of a Zero Trust security model demonstrating modern identity-first access principles. Automates security process enforcement and maintains a robust cloud security posture by verifying every user and device regardless of network location — eliminating implicit trust from the infrastructure design.

Zero Trust Cloud Security IAM Identity-First Automation
Cloud Architecture
View on GitHub

EC2 Infrastructure as Code (Terraform)

Terraform-driven AWS EC2 provisioning pipeline with remote state backend, dynamic AMI selection, and automated tool installation via Bash scripts. GitHub Actions workflows enforce CI/CD gates for infrastructure changes, ensuring consistent, repeatable cloud environment deployments across environments.

Terraform AWS EC2 HCL Bash GitHub Actions Remote State
HCL 61.3%
View on GitHub

More projects and contributions available on GitHub

View All 19 Repositories

Let's Work Together

Get in Touch

Whether you need a full infrastructure audit, cloud migration, security review, or just want to explore how I can help your organization — I'm ready to talk.

Phone / WhatsApp
+234 803 000 0000
Location
Port Harcourt, Nigeria · Remote Worldwide

Limited Availability

Free Infrastructure Audit

I'll review your current IT setup and deliver a prioritized action plan — at no cost. Spots are limited each month.

30-min discovery call
Infrastructure assessment
Written findings report
Prioritized action plan
Claim Your Free Audit