I’m David Gomez, a fractional CTO and AWS specialist based in Houston, Texas. This blog is where I write about what I see working (and breaking) in real AWS accounts: security, cost optimization, DevOps automation, and the practical side of running cloud infrastructure for startups and small teams.

What I do

  • AWS security audits — I’ve reviewed 100+ AWS accounts, almost always finding critical misconfigurations the team didn’t know about. Every audit ships with the exact CLI command to fix each finding.
  • AWS cost optimization — over $2M in cloud spend optimized. Most accounts I review are leaking money in the same handful of places.
  • Fractional CTO work — architecture reviews, vendor decisions, hiring help, and technical roadmaps for teams that need senior judgment without a $300k hire.
  • AI DevOps tooling — including a Slack-native AI DevOps bot deployed inside client workspaces.

You can see services and pricing at services.itsdavidg.co, or start with the free 30-point AWS security checklist — the same checklist my paid audits are built on.

Open source

I maintain aws-audit, a free, read-only CLI that runs the 30-point security checklist against your own AWS account and produces a findings report. MIT licensed — run it before you pay anyone (including me) for an audit.

Elsewhere

If you have an AWS question, the fastest path is a free 30-minute call — no pitch, just answers.