Secure Web Applications
Frontend and application work where security, reliability, and maintainability are part of the job, not cleanup afterward.
Building Systems That Endure.
I'm Tony St. Pierre. I've spent more than two decades building, shipping, stabilizing, and improving production software.
My work is mostly secure web applications, resilient architecture, operational clarity, and the engineering standards that keep problems from spreading.
I hold the AWS Certified Solutions Architect – Professional certification, and I'm applying the same standards to cloud security, AI-agent workflows, and infrastructure patterns that need to stay reliable after the excitement wears off.
Defensive Engineering
Production software is tested by bad inputs, old decisions, incidents, deadlines, and people doing their best with imperfect tools. Defensive engineering means accounting for that before the system is under stress.
Cloud & Infrastructure Standards
AWS architecture thinking around identity, boundaries, observability, recovery, and the controls that make operations less fragile.
AI-Agent Systems
Practical work with agentic workflows and automation, with review, responsibility, and secure defaults kept in the loop.
Featured Technical Articles
Longer technical pieces on cloud security, secure engineering, and the architecture decisions that shape resilient systems.
Beyond the SCP-Only Perimeter
A deep AWS security architecture guide on using Resource Control Policies with Service Control Policies to close resource-side data perimeter gaps.