Katherine Schlosser
DevSecOps Engineer | Cold Lake, AB | Defence & Robotics DevSecOps
I build security-first, edge-to-cloud systems for environments where failure isn't an option.
Featured Work
Security-First Infrastructure
Warden — Self-Healing Kubernetes Security Agent
AI-driven threat triage and auto-remediation on AKS — two-layer security proven end-to-end for ~$2
Covenant — Policy-Enforced AI Access Control
OPA as the hard gate between JWT identity and Claude — the AI doesn't decide who sees what
Watershed — Edge-Resilient IoT Telemetry Pipeline
Async Python agent with offline buffering and AI anomaly detection — built for edge environments where connectivity is unreliable
Kevin — Steward Robotics Platform Blueprint
The physical action layer of the Seven Generations community system — a purpose-built steward droid for off-grid agricultural operations, not a general-purpose humanoid. ROS 2 Humble on Jetson Orin NX 16GB. Phase 1 active.
Consulting
Solution Proposals
Scoped proposals for operational environments — architecture, implementation plan, and ROI analysis ready for engagement.
Aviation Maintenance Knowledge Base — RAG-Powered Snag-to-Instruction Retrieval
A proposal for RCAF/MRO environments: a secure RAG layer over maintenance manuals and work packages, returning actionable work instructions from natural language snag queries. Policy-enforced access control, offline-resilient design, audit logging built in.
Aviation Tool Inventory — Closed-Loop Accountability with AI Trend Monitoring
A proposal for aviation MRO: closed-core tool accountability, formal lifecycle state machine, per-aircraft checkout records, and a Claude-powered trend agent — for $38–$68/month in infrastructure.
About Me
I'm a Métis DevSecOps engineer building secure, AI-augmented infrastructure with a rural-first bias. Currently based in Cold Lake, Alberta — building at the intersection of defence infrastructure, edge robotics, and AI-augmented operations. My work covers Kubernetes runtime security (Falco, OPA Gatekeeper), policy-enforced AI access control, and AI-driven anomaly detection on edge telemetry — systems built to hold under connectivity loss and stay honest when AI is in the loop. I come from agricultural and remote communities, and I build with a bias toward calm, reliable systems over clever, fragile ones.
Skills
Kubernetes Security
- OPA Gatekeeper (admission control)
- Falco — eBPF runtime detection
- OPA Rego — policy authoring
- Policy-as-code (versioned, testable rules)
- Azure Kubernetes Service (AKS)
- Prometheus & Grafana
Cloud / DevOps
- Azure (AKS, Key Vault, Log Analytics, DevOps)
- AWS (IoT Core, S3, CloudFront, Route 53)
- Terraform (full IaC lifecycle)
- CI/CD Pipelines
- Secrets management (Key Vault, RBAC)
- Docker & Containerization
AI & Automation
- AI agent design (Claude Sonnet 4.6)
- pgvector — semantic search & tenant isolation
- MQTT / IoT telemetry pipelines
- Edge-resilient async agents (SQLite buffer)
- Structured AI output & prompt caching
Networking
- WireGuard (secure mesh tunnels)
- Multi-region topology design
- VLAN segmentation & trunking
- Cisco IOS (routing, WLC, ACLs)
- VPN Technologies
Development
- Python (FastAPI, asyncio)
- PostgreSQL / pgvector
- JavaScript / TypeScript
- Node.js & Express
- Linux / Unix Systems
Robotics & Embedded Systems
- ROS 2 (Nav2, MoveIt2)
- NVIDIA Jetson Orin NX
- Isaac Sim — sim-to-real training
- LeRobot training pipeline
- LiDAR + RealSense depth perception
- Dynamixel servo control
- 48V LiFePO4 power architecture
Get in Touch
I'm always open to discussing new projects, creative ideas, or opportunities to be part of your vision.
Say Hello