Marcus is a results-driven DevOps & Platform Engineer focused on automation, IaC, and cloud platforms. He builds secure, scalable infrastructure across AWS, GCP, and Azure using Terraform/Terragrunt, Python, Go, Bash, and PowerShell, and designs CI/CD pipelines that accelerate delivery. Experienced in Kubernetes, Docker, game server operations, configuration management (Puppet), version control (Git/Plastic SCM), and end-to-end network and Linux/Windows server administration. Passionate about developer enablement, reliability, and operational efficiency through automation and tooling.
Om Marcus
Passionate about creating secure and reliable solutions.
Marcus CV
Modoyo AB
DevOps Engineer
2024 -
Background Modoyo is a small gaming company. Marcus engineered the end-to-end AWS platform for an online game, focusing on secure, scalable, and automated foundations. He combined platform engineering with security operations to harden services, standardize deployments, and enable fast, safe delivery for backend and game server workloads.
Assignment Design, secure, and operate AWS infrastructure with strong guardrails and IaC/CI/CD; manage game server operations and developer workflows.
Tasks - Implement AWS IaC with Terraform, enforcing least-privilege IAM, KMS encryption, VPC segmentation, tagging, and policy controls. - Build CI/CD with GitHub Actions/CodeBuild/CodePipeline, adding quality gates, image scanning (ECR), and automated validations. - Manage ASG-based game servers with CloudWatch metrics and alarms; instrument EKS services with Prometheus and dashboards in Grafana. - Operate and maintain ASG-based game servers in AWS, with metrics and alarms in CloudWatch. - Set up and manage EKS for backend services, with observability being Prometheus scraping with Grafana dashboards. - Provision and harden EKS for backend services (matchmaking, scaling, telemetry), applying RBAC, network policies, secrets management, and audit logging. - Automate Docker ? ArgoCD deployments so backend repos continuously deliver to EKS. - Manage secrets and configuration with Secrets Manager and Parameter Store; standardize operations via SSM. - Integrate identity and access for player/admin flows with Cognito; improve resilience with Route 53, CloudFront, and Global Accelerator.
Result Delivered a hardened, reproducible AWS platform with built-in security controls and automated deployments. Release friction decreased, scalability and reliability improved for game servers and backend services, and operational risk was reduced through encryption, least-privilege access, image scanning, and continuous monitoring.
Background ICA Gruppen is a parent company to ICA Banken, ICA Fastigheter, Apoteket Hjärtat and has since been merged with ICA Sverige as well, which is the company handling all the stores around the country. Marcus worked within the Data & Analytics department, supporting multiple business units. He was tasked with helping migrate on-prem implementations to Google Cloud using Infrastructure as Code, ensuring secure, compliant, and scalable foundations.
Assignment Maintain and evolve a secure, stable GCP platform with strong governance and change management.
Tasks - Implement GCP infrastructure via Terraform. - Set up and maintain CI/CD pipelines with strong test suites and quality gates. - Enforce platform security baselines and guardrails. - Lead and execute change management processes. - Collaborate with security stakeholders to ensure cloud environments meet banking-grade reliability and compliance. - Set up and maintained Google Kubernetes Engine (GKE) for hosting Gitlab runners. - Set up and maintained Artifact Registry with Container Scanning. - Verified Security Vulnerabilities in Security Command Center and took action if deemed a risk.
Result Delivered a standardized, hardened GCP platform with reproducible IaC workflows, improved deployment reliability, and compliant guardrails, enabling multiple business units to migrate from on-prem to cloud with reduced operational risk and faster delivery.
Background Playground is a consultant company focusing on Cloud excellence. They are partnered with AWS and are working towards partnering with Google and Microsoft. Marcus came in as a GCP expert.
Assignment Deliver cloud architecture, automation, and platform enablement tailored to customer contexts. The assignment was ICA Gruppen.
Tasks - Design IaC patterns and modules. - Implement CI/CD and DevOps workflows. - Advise on security, networking, and cost optimization. - Build automation tooling and scripts.
Google Cloud Certified Professional Cloud DevOps Engineer Issued Aug 2023 · Expired Aug 2025
Google Cloud Certified Professional Cloud Architect Issued Jul 2023 · Expired Jul 2025
Result Enabled a standardized, secure GCP platform for the ICA engagement, accelerating migrations with reusable IaC modules, automated CI/CD, and governance controls. Improved delivery speed, reduced operational risk, and established best practices across security, networking, and cost optimization. Verified expertise through Google Cloud professional certifications.
Background Fall Damage was a mid-to-small gaming company. Marcus operated across the full stack—cloud, on-prem servers, endpoints, and network/security appliances—to deliver a resilient, secure, and well-governed IT environment for a game studio. He combined platform engineering with security operations to standardize infrastructure, harden services, and enable faster, safer delivery.
Assignment Secure, automate, and operate network, server, and cloud platforms with strong guardrails; build internal tooling to reduce toil and improve developer productivity.
Tasks - Design and maintain network/server infrastructure with zero-trust principles and least-privilege access. - Implement IaC for GCP/AWS and enforce security baselines, secrets management, and policy controls. - Build CI/CD workflows with quality gates, and automated compliance checks. - Develop internal apps and automation in Golang/Python to streamline operations and reduce manual work. - Operate GKE for internal services (including Kafka), with hardened images, RBAC, and audit logging. - Monitor and remediate vulnerabilities; integrate telemetry and alerting for proactive incident response. - Manage firewalls and network security (Fortigate, HP Aruba, Ruckus) with segmentation and secure configurations. - Migrated on-prem infrastructure into GCP.
Result Delivered a hardened, automated platform with reproducible deployments and built-in security controls, reducing operational risk and incident volume while accelerating delivery. Standardized IaC and CI/CD practices improved reliability, while continuous monitoring and vulnerability remediation strengthened overall security posture.
Background Acne Studios, a high-fashion brand based in Sweden. They require global networks and cloud resources able to handle big workloads of data regarding new customers and purchases. Marcus supported operations across on-prem and Azure to deliver secure, reliable, and scalable hybrid cloud integrations. He focused on standardizing platforms, hardening services, and automating high-volume operational workflows.
Assignment Design, secure, and maintain hybrid cloud infrastructure with strong guardrails; automate common procedures to improve reliability and throughput.
Tasks - Script automation with PowerShell to reduce manual toil and enforce consistency. - Operate and troubleshoot network and server infrastructure on-prem and in Azure. - Design and implement Azure resources with policy, RBAC, and secure baselines. - Resolve escalated incidents from Service Desk and drive root-cause remediation. - Design and implement new services and infrastructure projects. - Manage global networks (Cisco Meraki, HP switches, Fortigate) with segmentation and secure configurations. - Maintain AD/Exchange and Microsoft SQL with proper access controls and backup/restore practices. - Integrate CI/CD (Git/GitHub Actions) with quality gates for infrastructure changes. - Migrated CRM system from on-prem to Azure.
Result Delivered a hardened, automated hybrid platform with standardized processes and security controls, reducing incident volume and deployment risk while improving change velocity and global network reliability.
Method/Tech Azure: IAM, Service Bus, Azure Functions, Logic Apps, Blob Storage, Azure Monitor, Azure Key Vault, Azure VM, Azure Active Directory, Entra ID, Azure Blueprints, Azure Resource Manager (ARM), ARM Template, VPC. PowerShell, Windows Server, Git, Github Actions, Networking, Fortigate, HP Switches, AD/Exchange, Microsoft SQL, VMWare, Cisco Meraki, Incident Management, SCOM, Change/Project Delivery, Agile.
Star Stable Entertainment AB
Internal IT System Administrator
2019 - 2019
Background Marcus operated across hybrid cloud and on-prem environments to deliver secure, reliable connectivity and platform services. He combined platform engineering with security operations to standardize infrastructure, harden core services, and automate routine workflows.
Assignment Maintain, upgrade, and secure internal systems and platforms with strong guardrails, least-privilege access, and automated controls.
Tasks - Operate and harden network/server infrastructure with segmentation, RBAC, MFA, and secure configurations. - Maintain core services (email, wiki, availability systems) with backup/restore, patching, and access governance. - Provide user support and manage IT budget/procurement; drive root-cause remediation for escalations. - Coordinate with providers/partners to align on security baselines and incident processes. - Automate operations with PowerShell/Python to enforce consistency and reduce manual toil. - Set up Azure/AWS integrations with policy, identity, and secrets management; implement monitoring and alerting.
Result Hardened hybrid platform with standardized security controls and automated operations
- Reduced incident volume and change risk through guardrails, least-privilege access, and policy enforcement. - Improved service reliability and support throughput via automation and structured monitoring/alerting. - Established consistent identity, secrets, and configuration management across Azure/AWS and on-prem.
Method/Tech Windows Server, Ubiquiti, Networking, PowerShell, Python, Git, Active Directory/Exchange, Azure (IAM/Policy), AWS (IAM/Secrets), RBAC, MFA, EntraID/AzureAD, Backup/Restore, Monitoring/Alerting.
Lernia
Service Desk
2018 - 2019
Background Lernia is one of Sweden's leading partners in staffing, recruitment, education, and workforce development. Enterprise support spanning 1st–3rd line with infra administration responsibilities.
Assignment Support users and administer core enterprise systems.
Tasks - Handle support via phone, mail, and ticketing. - Administer Exchange and Active Directory. - Perform server administration and app support. - Automate repetitive tasks through Powershell.
Result Improved support throughput and service reliability through automation and standardized administration, reducing resolution times and operational toil.
Method/Tech Exchange, Active Directory, Windows Server, Ticketing, PowerShell, Azure, EntraID/AzureAD
Regeringskansliet
IT Support
2017 - 2018
Background Regeringskansliet is a government agency supporting the government in governing the country and and implementing its policies. Marcus had the task to provide IT support to government employees, including embassies.
Assignment Deliver user support across two distinct environments, following formal procedures and controlled operations.
Tasks - Split duties between phone support and ticket handling. - Troubleshoot and resolve environment-specific issues with remote support tools. - Follow defined processes and escalation paths to maintain compliance and auditability.
Result Consistently met service levels and compliance requirements by enforcing process discipline, reducing resolution times and ensuring reliable support across both environments.
