Tobias Lekman

Cloud & Security Architect

Tobias Lekman Contact Me LinkedIn

With 25 years building secure digital solutions across startup incubators, SMBs, and regulated industries, I specialize in making security and compliance work at any scale. As a security-focused architect, I help teams ship software faster without compromising on security or quality.

My expertise spans secure SDLC implementation, Zero Trust architectures, and DevSecOps practices across AWS, Azure, and Google Cloud. I've led compliance initiatives in heavily regulated environments (GxP, SaMD, HIPAA) while maintaining rapid delivery cycles. Whether implementing security frameworks for growing platforms or establishing DevSecOps pipelines for medical software, I focus on practical solutions that teams can actually use.

I believe security should enable, not block, business goals. My approach: build security into the development process from day one, automate compliance checks, and give teams clear guardrails so they can move fast with confidence.

Service Offerings

Architecture Planning & Design

Tactical and strategic solution architecture from business process alignment to technology selection. TOGAF-based frameworks, integration patterns, and governance strategies.

Deployment & Planning Services

On-site expertise for cloud and hybrid deployments across AWS, Azure, and GCP. Migration planning, landing zone design, and multi-region infrastructure.

DevOps Planning, Design & Execution

CI/CD pipeline design, GitOps workflows, infrastructure-as-code with Terraform/Pulumi/CDK, and zero-manual-change deployment policies.

Health & Risk Assessments

Security posture reviews, compliance gap analysis, and risk assessments against NIST, ISO 27001, CIS Benchmarks, and regulatory frameworks like GxP and DORA.

Quality Assurance for Software Platforms

Secure SDLC implementation, automated compliance checks, SAST/DAST tooling integration, and audit-ready documentation for regulated environments.

Technical Training & Knowledge Ramp-up

Hands-on workshops in cloud architecture, secure coding practices, DevSecOps, and AI/ML. Delivered onsite and remotely across global teams.

Education

  • Information Technology, Oxford University
  • Information Technology, Open University
  • Computer Science, Harvard University
  • Artificial Intelligence, Microsoft/edX
  • Mobile App Development, Harvard/edX

Certifications

  • Microsoft Azure Solutions Architect
  • Microsoft Cyber Security Architect
  • Microsoft Azure Administrator
  • Microsoft Azure DevOps Engineer
  • Microsoft Certified Trainer
  • Amazon AWS Solutions Architect
  • Amazon AWS DevOps Engineer
  • Scaled Agile SAFe Architect
  • Scaled Agile SAFe DevOps
  • Open Group TOGAF

Tools & Technologies

Azure Cloud Services

Service planning, deployment, monitoring, maintenance, licensing, integration services, data management and ETL (SQL Server, CosmosDb, Data Lake, Synapse, Data Factories, Fabric), ML/AI services, and data analytics with Python/Spark.

AWS Cloud Services

System deployment, architecture, security, monitoring, and cost optimization. (KMS, Shield, WAF, CodeArtifact, CDK, Control Tower, CodeDeploy, ECS, EKS), Databases (MySql, PostgreSQL, MongoDB, Atlas, Aurora, Redshift, DMS).

Security Standards

NIST SP 800-53, ISO/IEC 27001:2022, ISO/IEC 27002:2022, CIS Controls v8, CIS Benchmarks (AWS/Azure Foundations).

Security Tools

GitHub Advanced Security (CodeQL, Secret Scanning), Snyk, SonarQube, Azure Defender, AWS Shield, 42crunch, Bandit/Security for Python, Semgrep, BurpSuite.

Programming Languages

C#, TypeScript/Node.js, Python, Kotlin/Java, Swift, PowerShell, Bash.

Development Frameworks & Libraries

.NET, React, Node.js, Express.js, Next.js, FastAPI, Swift Package Manager.

Front-End & Mobile Development

HTML5, CSS3, React, iOS (Xcode, SPM, Swift), Android (Studio w Kotlin and React), Xamarin.

DevOps & CI/CD

Azure DevOps, GitHub Actions, ArgoCD; Infrastructure as Code with Bicep, Terraform, Pulumi, SST, CDK.

Observability

Azure Monitor, Application Insights, AWS CloudWatch, Kibana, Grafana, Prometheus, OpenTelemetry.

Containers

Azure ACA, AWS EKS/ECS/Fargate, Docker, Consul.

Project Frameworks & Tools

Agile, Scrum, SAFe, Atlassian.

Regulatory Frameworks

GxP (21 CFR Part 11), CDISC, MLSP 2.0, SaMD, ISO 9001:2015, GDPR, DORA.

Industry Expertise

Retail

Global integration, e-commerce

Manufacturing

AI/IoT, factory automation, supply chain

Transport & Automotive

Customs automation, EDI, logistics

Life Sciences & Pharma

GxP, SaMD, HIPAA, clinical trials

Finance

BI reporting, B2B integration, blockchain

Aerospace & Aviation

Defence systems, airline operations

Let's Work Together

Looking for architecture guidance, security expertise, or hands-on engineering support?

Get in Touch