Tobias Lekman
Cloud & Security Architect
With 25 years building secure digital solutions across startup incubators, SMBs, and regulated industries, I specialize in making security and compliance work at any scale. As a security-focused architect, I help teams ship software faster without compromising on security or quality.
My expertise spans secure SDLC implementation, Zero Trust architectures, and DevSecOps practices across AWS, Azure, and Google Cloud. I’ve led compliance initiatives in heavily regulated environments (GxP, SaMD, HIPAA) while maintaining rapid delivery cycles. Whether implementing security frameworks for growing platforms or establishing DevSecOps pipelines for medical software, I focus on practical solutions that teams can actually use.
I believe security should enable, not block, business goals. My approach: build security into the development process from day one, automate compliance checks, and give teams clear guardrails so they can move fast with confidence.
Service Offerings
- Architecture Planning and Design
- Deployment and Planning Services
- DevOps Planning, Design and Execution
- Health and Risk Assessments
- Quality Assurance for Software Platforms
- Technical Training and Knowledge Ramp-up
Education
Education & Certifications
Certifications
- Information Technology, Oxford University
- Information Technology, Open University
- Computer Science, Harvard University
- Artificial Intelligence, Microsoft/edX
- Mobile App Development, Harvard/edX
- Microsoft Azure Solutions Architect
- Microsoft Cyber Security Architect
- Microsoft Azure Administrator
- Microsoft Azure DevOps Engineer
- Microsoft Certified Trainer
- Amazon AWS Solutions Architect
- Amazon AWS DevOps Engineer
- Scaled Agile SAFe Architect
- Scaled Agile SAFe DevOps
- Open Group TOGAF
Azure Solutions Architect
Azure Cybersecurity Architect
Azure DevOps Engineer
AWS Solutions Architect
Azure Solutions Architect
Azure DevOps Engineer
Azure Developer
Google Cloud Certified Cloud Engineer
Tools & Technologies
- Azure Cloud Services: Service planning, deployment, monitoring, maintenance, licensing, integration services, data management and ETL (SQL Server, CosmosDb, Data Lake, Synapse, Data Factories, Fabric), ML/AI services, and data analytics with Python/Spark.
- AWS Cloud Services: System deployment, architecture, security, monitoring, and cost optimization. (KMS, Shield, WAF, CodeArtifact, CDK, Control Tower, CodeDeploy, ECS, EKS), Databases (MySql, PostgreSQL, MongoDB, Atlas, Aurora, Redshift, DMS).
- Security Standards: NIST SP 800-53, ISO/IEC 27001:2022, ISO/IEC 27002:2022, CIS Controls v8, CIS Benchmarks (AWS/Azure Foundations).
- Security Tools: GitHub Advanced Security (CodeQL, Secret Scanning), Snyk, SonarQube, Azure Defender, AWS Shield, 42crunch, Bandit/Security for Python, Semgrep, BurpSuite.
- Programming Languages: C#, TypeScript, Python, Kotlin, Swift, PowerShell, Bash.
- Development Frameworks & Libraries: .NET, React, Node.js, Express.js, Next.js, FastAPI, Swift Package Manager,
- Front-End & Mobile Development: HTML5, CSS3, React, iOS (Xcode, SPM, Swift), Android (Studio w Kotlin and React), Xamarin.
- DevOps & CI/CD: Azure DevOps, GitHub Actions, ArgoCD; Infrastructure as Code with Bicep, Terraform, Pulumi, SST, CDK.
- Observability: Azure Monitor, Application Insights, AWS CloudWatch, Kibana, Grafana, Prometheus, OpenTelemetry.
- Containers: Azure ACA, AWS EKS/ECS/Fargate, Docker, Consul.
- Project Frameworks & Tools: Agile, Scrum, SAFe, Atlassian.
- Regulatory Frameworks: GxP (21 CFR Part 11), MLSP 2.0, SaMD, ISO 9001:2015, GDPR, DORA.