Portfolio

Around Notes - Infrastructure and Compliance

Owned the end-to-end AWS infrastructure and CI/CD pipelines for Around Notes, delivering HIPAA and SOC 2 readiness over the last 6 months.

Contact me Resume
Back to all projects
AWS HIPAA SOC 2 CI/CD SRE
Around Notes - Infrastructure and Compliance logo
Key outcomes
  • HIPAA + SOC 2 readiness baseline with audit-grade logging and encryption controls.
  • Repeatable multi-environment delivery using nested CloudFormation and GitHub Actions.
  • Resilient request path from DNS to ECS with Multi-AZ data and queueing.
Role & stack
SRE / Infra Lead HIPAA + SOC 2 readiness AWS + CloudFormation CI/CD automation

Architecture Overview

A high-level diagram showing the core production flow, telemetry paths, and compliance-focused services.

Open full size
Key: Solid = request/data path. Dashed = control + telemetry. Thin solid = CI/CD automation.
Around Notes high-level infrastructure diagram
Callouts
  • Request path: Route 53 routes traffic through ALB to ECS services.
  • Data layer: ECS services use Multi-AZ RDS, Redis caching, and SQS queues.
  • Controls: IAM + KMS with CloudWatch/CloudTrail for monitoring and auditability.
Core components
AWS Route 53
Route 53
AWS CloudFront
CloudFront
AWS Elastic Load Balancing
ALB
AWS Elastic Container Service
ECS
AWS RDS
RDS
AWS S3
S3
AWS CloudWatch
CloudWatch

SRE Focus

Reliability architecture
  • Network: VPC with public/private subnets, NAT gateways, and flow logs.
  • Compute: ECS services behind an ALB with autoscaling.
  • Data: Multi-AZ RDS, Redis, and SQS for resilient workloads.
Security and compliance
  • Encryption: KMS-backed encryption for S3 and data stores.
  • Identity: Least-privilege IAM with scoped access policies.
  • Auditability: CloudTrail retention, GuardDuty, Inspector, and alarms.
Operational excellence
  • IaC: Nested CloudFormation stacks for repeatable environments.
  • CI/CD: GitHub Actions for deploys and infra security checks.
  • Ops: DNS automation and safe rotation procedures for services.

Results

Compliance-ready logging Repeatable multi-env deploys Production-scale baseline Incident-ready observability

The platform now has a compliance-ready baseline and a repeatable delivery path that reduces manual deployment work while improving visibility and incident readiness.

Outcome

A secure, scalable infrastructure foundation aligned to HIPAA and SOC 2 readiness requirements.

How

Infrastructure codified in CloudFormation with CI/CD automation and centralized observability.

Project URL

Public marketing site and authenticated app entry point.

Visit aroundnotes.ai Marketing site
Open app Product app

Lessons Learned

Building Around Notes from the ground up reinforced the value of modular infrastructure and compliance-first design. Aligning networking, compute, and security controls early made it easier to scale features and meet HIPAA and SOC 2 readiness targets.

Back to all projects

Let's connect

Reach out for collaboration, roles, or advisory work.

Contact me
GitHub icon
GitHub
Open GitHub
LinkedIn icon
LinkedIn
Open LinkedIn
Email icon
Email
Open Email