Backend · Cloud · AI · DevSecOps
python
typescript
javascript
react
nodedotjs
nextdotjs
django
fastapi
nestjs
postgresql
redis
mongodbpythontypescriptjavascriptreactnodedotjsnextdotjsdjangofastapinestjspostgresqlredismongodb
docker
kubernetes
amazonaws
googlecloud
terraform
githubactions
nginx
linux
grafana
prometheus
openai
rabbitmqdockerkubernetesamazonawsgooglecloudterraformgithubactionsnginxlinuxgrafanaprometheusopenairabbitmqAbout Ayemun Hossain
Ayemun Hossain is a Senior Software Engineer specialising in backend systems, cloud infrastructure, DevSecOps, and AI-native products. With 5+ years of production experience and 40+ shipped projects, he designs scalable distributed systems — from Node.js and Django APIs to Kafka-powered streaming pipelines, RAG retrieval stacks, and hardened cloud deployments on AWS and Azure.
He works across the stack with a security-first mindset: writing high-throughput services, building CI/CD pipelines, integrating LLMs with vector search, and reviewing architectures for resilience and observability. The portfolio below catalogues open-source implementations, reference boilerplates, and study material covering the tools and patterns he uses day-to-day.
Stack & Specialisations
- Languages
- JavaScript · TypeScript · Python · Go · Bash · SQL
- Backend
- Node.js · NestJS · Express · Django · Django REST Framework · FastAPI · gRPC
- Data & Streaming
- PostgreSQL · MongoDB · Redis · Apache Kafka · RabbitMQ · Hive · Apache Spark
- Cloud & DevOps
- AWS · Azure · Docker · Kubernetes · Terraform · Jenkins · GitHub Actions
- AI & Security
- RAG pipelines · Vector search · LLM integration · OAuth & JWT · CSRF defense · TLS hardening · DevSecOps
Featured Projects
Node.js + Apache Kafka Boilerplate
Production-grade Kafka integration with Node.js — dynamic topics, auto-subscribing consumers, and Docker-ready microservice scaffolding.
Hive + Spark Streaming Pipeline
Realtime data pipeline that ingests events, lands them in Hive via Spark structured streaming, and exposes queryable analytics.
Session-bound JWT Authentication
Hardened auth flow combining session storage with rotating JWTs — defends against token theft, replay, and CSRF.
CSRF Protection for Node.js APIs
Drop-in middleware suite implementing the OWASP CSRF cheat sheet — double-submit cookies, origin checks, SameSite enforcement.
gRPC Microservices in Node.js
Schema-first gRPC services with proto contracts, streaming RPCs, and TLS — for low-latency internal traffic.
Azure ACI + Terraform + Node.js
Infrastructure-as-code workflow deploying a containerized Node.js service to Azure Container Instances via Terraform.
Video Transcoding Service
FFmpeg-driven transcoding worker that adapts video bitrates and formats for HLS / DASH delivery at scale.
Node.js Load Balancing Patterns
Reference implementations of round-robin, least-connections, and sticky-session load balancing in pure Node.js.
Django Single-Vendor E-commerce
End-to-end e-commerce stack on Django + DRF with cart, checkout, payment hooks, and admin tooling.
CSRF Vulnerability Detection
Tooling that probes web applications for CSRF gaps — automated scanning, report generation, and remediation hints.
Explore the full archive of projects, write-ups, and study guides above — or reach out via contact.