DevOps & Platform Engineering Consultant
Lyon IT Consulting designs and delivers secure, scalable cloud platforms across Azure and GCP - from landing zones and Kubernetes to Terraform, CI/CD, and the guardrails needed to operate at scale.
Alex Lyon · Lyon IT Consulting · Azure & GCP · Kubernetes · Terraform / IaC · 10+ years' experience
Approach
About
I'm an independent DevOps and platform engineering consultant with over 10 years' experience delivering cloud and platform work across financial services, consulting, and UK government.
Most of my work sits at the platform layer - designing cloud foundations, Kubernetes platforms, infrastructure as code, and the delivery patterns that engineering teams build on.
I work hands-on and close to the problem. That means shaping architecture where needed, but also implementing the pipelines, guardrails, and platform components that make it real.
I'm typically brought in by regulated, enterprise, and public sector organisations that need stronger cloud foundations, clearer standards, and a more scalable way to operate - without unnecessary complexity.
Technical stack
Cloud Platforms
IaC & Automation
CI/CD
Containers & Orchestration
Governance & Security
Observability
Certifications
Verified credentials from Microsoft and Google.
What I deliver
Core capabilities
Engagements are outcome-focused. I deliver working infrastructure and documented, maintainable platforms - not slide decks.
Cloud Platform Architecture
Platform design across Azure and GCP - network topology, identity, access model, multi-account or multi-subscription structure, and the foundational decisions that everything else builds on.
Landing Zones & Cloud Foundations
End-to-end landing zone design and delivery on Azure and GCP. Management group hierarchies, project structures, policy, networking, RBAC, and governance guardrails that scale with the organisation.
Kubernetes Platforms (AKS / GKE)
Production Kubernetes from the ground up - multi-tenant clusters, GitOps-driven deployments, service mesh, and observability. Workload onboarding patterns and operator runbooks included.
Infrastructure as Code & Automation
Terraform modules, state management, and CI/CD pipelines built to production standards. PR-based workflows, policy-as-code gates, drift detection, and module libraries your team can own.
CI/CD & Developer Platform Enablement
Standardised pipelines, platform tooling, and self-service patterns that reduce friction for engineering teams. GitHub Actions, Azure DevOps, and ArgoCD at the centre.
Cloud Governance, Security & Compliance
Identity and access management, Azure Policy, GCP Org Policy, Defender for Cloud, and the operational controls that keep platforms secure at scale. Guardrails that enable teams, not ones that block them.
What I work on
Typical engagements
The type of work I typically take on - across Azure, GCP, Kubernetes, and infrastructure as code.
Cloud foundations
- Azure Landing Zone design and delivery - identity, networking, and governance built in from day one
- Multi-region GCP Landing Zone design with IAM boundaries, project structure, and service controls
Kubernetes platforms
- Production AKS and GKE platforms - multi-tenant, GitOps-driven, hardened for real workloads
- Onboarding patterns, namespace provisioning, and operational runbooks that remove platform friction
Infrastructure as code
- Terraform estates with reusable modules, PR workflows, and policy gates
- Legacy environment migration into version-controlled IaC to reduce drift and enable safer change
Governance & security
- Identity, access, and governance controls across Azure and GCP that don't slow engineering teams down
- Cost controls, tagging standards, and reporting pipelines for visible, manageable cloud usage
Developer platforms & CI/CD
- Standardised CI/CD pipelines and developer workflows that reduce friction and improve delivery speed
- Self-service platform patterns that remove bottlenecks and reduce reliance on central platform teams
Advisory & architecture
- Platform and cloud architecture reviews - identifying risk, technical debt, and practical improvement paths
- Technical direction, decisions, and standards that engineering teams actually adopt
Work in depth
Case studies
Detailed breakdowns of past engagements - the context, approach, and outcomes. Full write-ups coming soon.
UK Government
Azure Landing Zone - UK Central Government
- Design and delivery of a compliant, multi-subscription Azure Landing Zone for a UK central government department
- Policy guardrails, identity controls, and hub-and-spoke network topology aligned to NCSC and GDS standards
- GitOps-driven IaC pipeline enabling controlled, auditable change across the platform
Professional Services
GKE Platform Engineering - Global Consulting
- End-to-end GKE platform design for a globally distributed engineering organisation
- Multi-tenant cluster architecture with GitOps-driven workload onboarding and self-service namespace provisioning
- Observability stack, cost controls, and operator runbooks enabling the platform team to scale without headcount
What clients say
Recommendations
Feedback from engineering leaders and platform teams across financial services, consulting, and government.
“Alex was one of the key contributors to our Azure team. He was instrumental in designing and implementing our Azure Landing Zone, providing expertise that enabled us to build a secure, scalable, and well-governed cloud platform. What sets Alex apart is not only his technical capability but also his approach to teamwork. He is dependable, collaborative, and always willing to support colleagues and share his knowledge. I would not hesitate to recommend Alex to any organisation looking for a skilled Azure professional.”
Venus Bailey
Head of Engineering · Cabinet Office
“Alex had the privilege of working with Alex for over two years, where he was instrumental in building the infrastructure and CI/CD processes across four AI B2B SaaS products on GCP. As one of the first DevOps engineers on the team, Alex set up DevOps practices, built the team, and established processes from the ground up. His expertise in infrastructure, particularly for Machine Learning environments, was remarkable. His ability to collaborate effectively across functions made him an invaluable partner.”
Sachin Shah
Founding CTO · Bain & Co Venture
“Alex is a very knowledgeable DevOps professional, who has a knack for cutting through the technical minutia and getting it over the line. A great team player and pleasant humour.”
Mo Tahir
Platform Engineering & DevOps Lead · ASOS
“Lyon IT Consulting helped us accelerate our move from continuous delivery to continuous deployment by putting in place a robust Kubernetes ecosystem, enabling us to move from 2 weekly deployments to multiple per day.”
Joe Muldoon
Software Engineering Director · INTO Global
Delivered as Lead DevOps Engineer via Broadlight Global
Engagement structure
Working with Lyon IT Consulting
Lyon IT Consulting operates as a UK limited company, engaged on a business-to-business basis to deliver defined outcomes.
Outcome-focused delivery
Engagements are scoped around specific deliverables - a working platform, a deployed landing zone, a CI/CD pipeline - not time and attendance.
Independent operation
Lyon IT Consulting uses its own equipment, tooling, and software licences, and operates independently of client IT estates where possible.
Commercially structured
All engagements run under a business-to-business contract, backed by professional indemnity and public liability insurance.
Get in touch
Start a conversation
If you need senior hands-on help with platform engineering, Azure or GCP, Kubernetes, Terraform, or cloud architecture, get in touch. I’m happy to discuss scope, timelines, and whether I’m the right fit.
All enquiries are treated as confidential. I’m typically available for new contract start dates with 2 to 4 weeks’ notice.