Continuous Learning Journey

Exploring DevSecOps, Cloud Engineering, and Modern Web Development

This project represents my commitment to continuous learning and professional growth. Through hands-on experience with cutting-edge technologies, I've built a comprehensive understanding of modern software development practices.

25+
YEARS LEARNING
∞
GROWTH MINDSET
πŸ”Ž
ALWAYS CURIOUS
🎬
AI PROJECTS
πŸ”’
SECURED

🎬 Plex Movie Recommendations

AI-Powered Movie Recommendation System

βœ… Completed 🌐 Live Demo
🎯
95%
Accuracy
⚑
2.3s
Response Time
πŸ€–
ML
Algorithm
πŸ“Š
1000+
Movies

Project Overview

Built an intelligent movie recommendation system using machine learning algorithms and modern web technologies. The system learns from user preferences and viewing history to provide increasingly accurate movie suggestions.

🧠

Machine Learning

Advanced recommendation algorithms that adapt to user preferences

⚑

Real-Time Processing

Responsive system that updates recommendations instantly

🎨

Modern UI/UX

Clean, intuitive interface with smooth animations

Live Demo

Experience the AI-powered movie recommendation system in action:

🎬 Explore Plex Recommendations

Compliance Framework Mapper

Cross-framework controls on a dedicated subdomain

A static, client-side explorer for frameworks such as NIST SP 800-53, GDPR, NIS2, ISO/IEC 27001, and SOC 2β€”canonical controls, framework-specific identifiers, domains, and explicit mappings for gap analysis.

Open compliance.robertconsulting.net

Security headers first

Strict CSP on a subdomain means every stylesheet, script, and image must either come from that host or be deliberately allowlistedβ€”cross-origin shortcuts fail closed.

Bundle at deploy time

A small sync script copies shared CSS and shell assets into compliance/_bundle/ so the app stays self-contained under one origin.

Data beside the UI

JSON exports live next to the app; the client loads them with fetch, which keeps operations simple for static hosting.

ATT&CK Threat Intelligence

Navigator-style heatmap + enriched threat actor data

A dedicated subdomain for MITRE ATT&CK Enterprise, CISA KEV, and cross-links to NIST 800-53 controls on the compliance mapperβ€”built as a static hash-router SPA with a FastAPI backend on k3s.

Open threat.robertconsulting.net View technique heatmap

One-shot heatmap data

Added GET /heatmap/data so the UI loads every tactic, technique, group count, and KEV count in a single request instead of hundreds of detail fetches.

Group attribution metadata

Seeded group_metadata (country, motivation, sponsor type, sectors) and exposed filters plus country-level stats in the API and frontend.

Same delivery pattern as compliance

S3 + CloudFront static site, bundle sync for CSP, Terraform module for DNS alias to CloudFront, and SQLite served read-only from the threat API pod.

Tied to compliance

Technique detail pages link to mapped NIST controls; the compliance mapper now deep-links ATT&CK technique IDs on compliance.robertconsulting.net so defenders can move between frameworks and threat intelligence in one click.

πŸ—οΈ Infrastructure as Code

Real infrastructure managed with Terraform

4,758
Lines of Terraform Code
Infrastructure as Code
129
AWS Resources Managed
All managed by Terraform
8
AWS Services Integrated
Multi-service architecture
46
Security Resources
WAF, IAM, Encryption

πŸš€ Infrastructure Features

🏒 Multi-Account Architecture
AWS Organizations with separate client accounts and cross-account access
πŸ”’ Security & Compliance
WAF protection, IAM roles, encryption, and security monitoring
πŸ—„οΈ State Management
Remote state storage with S3 backend for centralized state management

πŸ“š Weekly Learning Reflection

Loading...

πŸ’‘ Top Lessons Learned This Week

🎯 Focus Areas Next Week

πŸ“Š Key Metrics This Week

πŸ“¦ Separate Content & Infrastructure Versioning

πŸ“ Content Versioning (CalVer)

Uses timestamp-based versioning (YYYYMMDDHHMMSS) for frequent content updates. Each deployment gets a unique version number that reflects when it was created.

  • Format: v20251120113439
  • Updated on every content deployment
  • Stored in VERSION and website/version.json
  • Enables rollback to specific content versions

πŸ—οΈ Infrastructure Versioning (SemVer)

Uses semantic versioning (MAJOR.MINOR.PATCH) for infrastructure changes. Only incremented when infrastructure code or configuration changes.

  • Format: 1.1.3
  • MAJOR: Breaking changes
  • MINOR: New features, backward compatible
  • PATCH: Bug fixes, backward compatible
  • Stored alongside content version in same files

πŸ’‘ Benefits of Dual Versioning

  • Independent Release Cycles: Content can be updated frequently without triggering infrastructure deployments
  • Clear Change Tracking: Easy to identify what changed and when across separate repositories
  • Rollback Capability: Can rollback content or infrastructure independently
  • Better Coordination: Infrastructure team and content team can work independently with clear version boundaries

Interactive Learning Topics

Explore comprehensive learning paths across multiple technology domains

Loading topics...