Infrastructure built to last.
My technical skills aren't theoretical — they come from five years maintaining enterprise systems for a multi-location company, a self-run home lab, and ongoing consulting work. I architect, deploy, document, and maintain.
Zone Entertainment never had a dedicated IT staff member. When systems broke, someone had to fix them. When new locations opened, someone had to build the infrastructure. That someone became me. Over five years, I managed everything from Windows Server deployments and Active Directory administration to multi-site DNS configuration, Cloudflare tunneling, and 3CX VoIP — learning by necessity in an environment where downtime had a direct dollar cost.
After Zone, I kept building. My home lab runs Windows Server 2025 on a dedicated machine, with a fully segmented UniFi network (VLANs separating IoT from trusted devices), Active Directory with its own PKI and certificate infrastructure, and Cloudflare Zero Trust tunnels giving me secure remote access without exposing anything to the public internet. It's not a hobby project — it's a working environment I use and break and fix regularly.
Most recently, I've applied this background consulting on IT structure for a friend's growing business — reviewing their stack, identifying single points of failure, and recommending a forward-looking architecture. The work is similar to what I did at Zone, just with the benefit of experience to draw from.
- S-Phone — Cloudflare Worker + D1 + R2 (SMS, voicemail, HubSpot)
- FreePBX / VoIP.ms PBX stack with voicemail watcher & MWI scripting
- Windows Server 2025 home lab (stadler.local)
- Cloudflare Zero Trust tunnels & Access policies
- Segmented UniFi network — VLAN IoT vs. trusted
- Active Directory with PKI & certificate infrastructure
What I work with.
Every item on these cards comes from real operational context — enterprise work, homelab experimentation, or active consulting. Nothing here is resume padding.
Infrastructure & Servers
Network & Security
Identity & Cloud
Platforms & Operations Tech
Web & Development
VoIP & Telephony
Automation & Monitoring
Things I've built and shipped.
These aren't toy apps. Each one started because something was broken or missing, and ended when it was running in production.
S-Phone
A Cloudflare Worker backed by D1 (SQLite) and R2 that serves as the single system of record for SMS conversations and voicemails. Inbound texts from VoIP.ms hit a signed webhook, are stored in D1, and surface in a PWA inbox. Voicemails are posted by a Linux PBX watcher, stored as audio in R2, transcribed via Whisper, then auto-logged as HubSpot Call engagements when the caller matches a contact. HubSpot is downstream-only — populated on explicit save, never the source of truth.
FreePBX + VoIP.ms Stack
Self-hosted FreePBX on Debian, trunked through VoIP.ms SIP with DID routing, ring groups, and IVR. Extended with a shell-based voicemail watcher that monitors the spool directory via inotifywait, signs each new recording with HMAC-SHA256, and POSTs it to the Stadler Portal Worker. MWI (message waiting indicator) scripted via Expect for Polycom and ROVE-B2 handsets. PBX health-check runs as a systemd timer and alerts on trunk failures.
Zone Central — Corporate Intranet
Built the company-wide intranet for Zone Entertainment on Google Sites — a private hub serving 14 locations with an app launcher, embedded live reporting sheets, staff directories, location-specific contacts, and role-based information panels. Replaced a fragmented mix of emailed links and shared drives with a single bookmark every employee could use.
HubSpot CRM + Call Integration
Wired HubSpot into the Stadler Portal so that inbound voicemails from known contacts automatically generate a HubSpot Call engagement with transcript attached. Outbound SMS threads can be saved to the contact timeline on demand. Built on the HubSpot v3 API with OAuth token auth, contact search by phone, and idempotent engagement logging to prevent duplicate records on retry.
Toast POS — Built from the Ground Up
Sole Toast administrator across all 14 Zone Entertainment locations for 3+ years (~450 hours). Built every menu, button, modifier group, and pricing structure from scratch — and kept them in sync across brands and locations as the company grew. Trained all staff on POS operations and served as the named Advanced Support contact on the internal Toast Zone site alongside primary and networking support leads. Owned hardware fleet management (master serial-number spreadsheet per location), PNC → Huntington banking migration across all restaurant accounts, third-party delivery integration (Grubhub, DoorDash, Uber Eats), fleet-wide pricing updates for holidays and promos, and a full gift card program with Electricard Solutions (5,000–10,000 card orders). Also built the dedicated Toast Zone Google Site — the internal POS hub covering updates, training, equipment, settings, and help.
Executive Reporting Pipeline
Built a weekly automated reporting workflow for Zone Entertainment leadership: raw data submitted via Google Forms fed a reconciliation layer, compiled across multi-sheet workbooks, and output presentation-ready weekly summaries covering sales, item/food performance, and Intercard financials. Also maintained live ad-hoc executive reports that could be generated on demand during board meetings.
Healthcare IT.
My clinical work put me inside enterprise healthcare IT systems that most IT professionals never touch. At Detroit Receiving Hospital I work daily with Cerner EHR and Omnicell eMAR — not as a vendor or IT admin, but as an end user with a clinician's perspective on where the friction is. I've also worked with Epic in educational and clinical settings.
This intersection — IT architecture plus clinical practice — is what nursing informatics is built on, and it's a natural next step for where both careers are heading. Understanding both the system design side and the bedside workflow is a combination that's genuinely rare.