Tech Lead Cyber Security based near Vienna, Austria 🇦🇹
I build secure, observable and automation-friendly infrastructure — from enterprise security foundations to pragmatic open-source tools.

I like security that actually works in production: not just policies, not just tools, but systems that are understandable, maintainable and useful for the people who operate them.

I work at the intersection of Cyber Security, Infrastructure, DevOps and Identity.

My focus is turning security requirements into practical engineering outcomes:

• 🔐 Enterprise PKI, certificate automation and trust architecture
• 🛡️ Security engineering, hardening and secure-by-default infrastructure
• 🧩 IAM, SAML, OIDC, OAuth2 and application onboarding
• 📈 Logging, monitoring, observability and incident readiness
• ⚙️ Automation-first operations with Linux, Go, Docker and CI/CD
• 🧾 ISO 27001 / NIS2-aligned implementation without losing touch with reality

I care about systems that are simple enough to understand, boring enough to trust, and well-instrumented enough to prove what they are doing.

A browser extension and backend service that shows domain, server and security-related context directly in the browser.

Originally started as a small idea, it has grown into a long-running open-source project with real-world usage and a high-volume backend.

Focus areas: browser extensions, Go backend, API design, reliability, autoscaling, domain intelligence
Repo: https://github.com/thomas2500/uDomainFlag

A fast APT caching proxy for Debian and Ubuntu repositories, built with Go.

The goal is simple: make package downloads faster, reduce repeated upstream traffic and keep deployments more reliable — without pulling in unnecessary complexity.

Focus areas: Go, HTTP proxying, caching, Linux package infrastructure, Debian/Ubuntu environments
Repo: https://gitlab.com/bella.network/GoAPTCacher

A SAML service-provider / reverse-proxy layer built for enterprise authentication scenarios.

It explores modern session handling, identity integration and pragmatic access control patterns for real infrastructure environments.

Focus areas: SAML, reverse proxying, JWT sessions, identity-aware access
Repo: https://gitlab.com/bella.network/PassBeyond

Languages: Go · PHP · JavaScript · Bash · PowerShell
Infrastructure: Linux · Docker · GitLab CI/CD · nginx · HAProxy · IPv6 · MQTT
Security: PKI · IAM · SSO · SAML · OIDC · OAuth2 · hardening · secure defaults
Operations: monitoring · alerting · logging · automation · incident readiness
Databases & services: MariaDB · MySQL · PostgreSQL · Redis

I prefer solutions that are:

• Observable — logs, metrics and telemetry should tell the truth
• Repeatable — automation beats manual hero work
• Pragmatic — security must survive contact with production
• Maintainable — future-me and other engineers should understand it
• Minimal where possible — fewer moving parts, fewer hidden dependencies

Security is strongest when it becomes part of how systems are built, deployed and operated — not something bolted on afterwards.

• 🌐 Portfolio: https://thomas.bella.network
• 🧑‍💻 Profile: https://thomas.bella.network/+
• 📝 Blog / projects / homelab notes: https://blog.bella.network
• 💼 LinkedIn: https://www.linkedin.com/in/thomas-bella/
• 📫 Contact: thomas@bella.network

When I’m not building, debugging or securing systems, I’m usually somewhere outside — hiking, swimming, taking photos or collecting data for some quantified-self idea.

I like technology, but I also like touching grass. Preferably on a mountain trail. ⛰️📸

I build security-focused infrastructure and open-source tools with a strong bias toward automation, observability and real-world usefulness.