I work with small and mid-sized teams across central Germany who want their infrastructure to be reproducible, observable, and quietly secure. No agency overhead, no upselling, everything from one person.
IT Security#
I plan and run penetration tests against web applications, internal services and Kubernetes workloads, then turn the findings into a remediation plan the team can actually ship. Day-to-day I lead the DevSecOps practice at IT Sonix in Leipzig.
Hosting#
A Kubernetes cluster on Proxmox in Jena hosts the bulk of my clients’ workloads. Websites, internal tools. Specialised or high-traffic services run on Hetzner hardware, also in Germany. Everything is deployed through GitOps with FluxCD. So the cluster’s state is exactly what’s in git, and nothing else. Reproducible & secure.
Websites#
Most sites I ship are built like this homepage. Hugo for content-driven work, custom HTML/CSS where it matters. I also migrate WordPress instances when a client wants to move to more performant solutions. I have deployed many WordPress pages in the past, but now I rely mostly on static websites. These are way more performant and secure.
Blog#
When I realize a topic isn’t very well documented, I write in my blog about it. I attend conferences and am open to give talks.
To the blogWorking with me#
You need support? Write a mail at kontakt@thshepard.de! I will answer as quickly as possible.
To the contact page