Hey, I'm Lior Benjman - IT & DevOps Engineer.

I build things that help teams move faster without breaking stuff - from automated pipelines to self-healing infrastructure. I’m big on clean deployments, clear logs, and calm nights. This blog is where I share what works (and sometimes what doesn’t) from my experiments in DevOps, automation, and cloud reliability.

Join the community Read my story

About me

Why DevOps?

Why DevOps? I started in IT, fixing things that broke — usually on Thursdays. At some point, I realized I’d rather automate the chaos than chase it. That’s where DevOps hooked me. Now I build pipelines, spin up containers, and write scripts that make systems (and people) behave. For me, DevOps is just turning “it works on my machine” into “it works everywhere — even on Thursdays.”

Who am I?

I’m Lior, 25 years old, living in Tel Aviv. I love my two big dogs — Magnus the Rottweiler and Bonnie the Labrador — they keep morale high 24/7 (CI/CD of joy). During my military service I juggled three IT roles at once — so yeah, I don’t sit still. I’ve been working full time while studying Computer Science and holding a 91 GPA — because learning never stops.

Current focus

• Automating everything that can be automated — CI/CD, monitoring, and the occasional coffee break.
• Building reliable cloud workflows with Docker, Kubernetes, and GitHub Actions.
• Turning messy scripts into clean pipelines that actually deploy (on purpose).
• Helping teams ship faster, crash less, and sleep better.

Let's connect

I’m always happy to compare notes on infra-as-code, platform roadmaps, or the best way to run incident reviews.

LinkedIn · GitHub

About this page

A DevOps playground from day one

This blog started as a hands-on DevOps build. The entire backend is containerized, wired to a managed Postgres instance, and ships through automated pipelines. Every change runs linting and tests in CI before heading to production, then lands in a Docker image that’s deployed to my hosting provider.

The static experience you’re reading is served by the same Express app that powers the API, so the site stays lean while still taking advantage of the existing auth, logging, and monitoring stack. Drizzle migrations keep the database schema in sync, and Arcjet adds a security layer on top of rate limiting and bot detection.

Ops highlights

• Docker-first architecture with dedicated dev/prod compose files.
• Drizzle ORM migrations and Neon Postgres for cloud-native storage.
• CI/CD via GitHub Actions, deploying directly from the main branch.
• Cloudflare front door with automated TLS and caching.
• Structured logging and health checks for container orchestration.

Multi-environment delivery

Development runs locally (or via dev containers) with hot reloads, while production is continuously deployed. The graphic below captures the dual-server deployment path: one track for local validation, and another for the production-release pipeline.

Diagram showing the site deployed across multiple Kubernetes servers

GitHub Actions guard the releases

Every push to production kicks off an automated GitHub Actions workflow that lints, tests, builds the Docker image, and promotes it to the live environment. Deployments stay consistent, auditable, and fast without me touching the servers directly.

Diagram of the GitHub Actions pipeline that deploys this project

Spotlight Analyses

Blueprint: GitOps for regulated environments

How a financial services SRE team moved to declarative delivery with progressive rollout gates and auditable change histories.

15 minute read • Pipeline Architecture

Incident drills that harden feedback loops

A repeatable tabletop playbook that connects observability, alert routing, and post-incident analytics across distributed teams.

12 minute read • Resilience Engineering

Measuring platform value beyond velocity

Data-informed metrics for platform teams that balance golden paths, self-service, and guardrails without slowing innovation.

9 minute read • Platform Strategy

Tooling Breakdowns

Kubernetes cost controls that engineers love

Practical cost guardrails with admission controllers, dynamic quotas, and reliability budgets that teams actually adopt.

Guide

Policy as code for Terraform without friction

Ship reusable Cloud Native Application Bundles with OPA and scorecards that defend production without blocking day one.

Hands-on Lab

Observability workouts for platform squads

Operator dashboards, SLO personas, and lightweight alert budgets to keep service golden signals actionable.

Playbook

Cultural Patterns

Scorecards that elevate psychological safety

Building blameless operating reviews that nudge system-level thinking and celebration of steady, reliable delivery.

Conversation Starter

Empowering platform guilds

Lightweight guild rituals that raise shared standards without the ceremony overhead of a steering committee.

Deep Dive

Career ladders for DevOps generalists

Aligning growth paths, skill matrices, and mentoring structures so cross-functional engineers stick around.

Toolkit