Engineering Portfolio

Nick Forshteyn
AI Engineer

Production AI platforms, sovereign multi-agent delivery, and enterprise infrastructure. 15+ years shipping systems for Australian Government, Defence, healthcare, fintech, and critical infrastructure.

Brisbane, Australia · github.com/cintelis · github.com/totallywild.ai · linkedin.com/in/forstein · [email protected]

What I'm Building Now

Trilogy Care — AI Platform

Current Role

AI Engineer building production agentic AI systems for one of Australia's fastest-growing aged-care platform businesses (450 staff → 2,000+, approaching $1B revenue). Working directly with the Technical CIO on a next-generation collaborative AI canvas integrated with 300+ enterprise data sources.

What I own:GPU compute infrastructure, AWS Bedrock integration, production cloud platform, multi-agent systems with Claude, MCP server integrations, auth layers, guardrails, and observability
Stack:Python, FastAPI, AWS (Bedrock, ECS, Lambda), Claude, Temporal, Docker, Terraform

Totally Wild AI — Sovereign Multi-Agent Delivery

Founder

Building a sovereign multi-agent software delivery platform. Autonomous AI agents (BA, Architect, SE, Reviewer, Research, Document) coordinate end-to-end delivery pipelines on Australian infrastructure. Published case study on sovereign delivery model for Australian Government.

Published:Sovereign Software Delivery for Australian Government →

Production Platforms I've Shipped

twai-swarm

github.com/cintelis/twai-swarm Open Source

Temporal-orchestrated multi-agent pipeline. 7 autonomous AI agents execute in parallel and sequential stages with human approval gates. Multi-provider LLM routing (Anthropic + xAI/Grok) with per-role model selection.

Pipeline:BA + Researcher (parallel) → Architect → ⏸ Approval Gate → SE → Estimator → Reviewer → Documenter
Architecture:ECS Fargate split: Express Mode for stateless API + classic Fargate for long-lived Temporal worker. RDS Postgres + pgvector. GitHub Actions OIDC CI/CD.
Key design:Workers scale by role — copy service, set queue filter, scale independently. No code changes. Approval gates use genuine Temporal workflow sleep, no polling.
PythonTemporalFastAPIClaudeGrokECS FargateRDS PostgrespgvectorTerraform

ba-architect-deploy

Private — TotallyWildAi org

Full production AWS infrastructure for the multi-agent delivery platform. Single Terraform root deployed per environment (Test, Pre-Prod, Prod). 100% IaC, modular, phased rollout.

Deploys:Spring Boot backend, React frontend (CloudFront + S3), Langfuse v3 (web + worker + ClickHouse + Redis), Neo4j 5, RDS Postgres 17 (2 databases), ElastiCache Redis, EFS, Public ALB, Route 53, Secrets Manager
IaC:Modular Terraform across 13 modules (rds, redis, s3-langfuse, efs-workspace, ecs-cluster, clickhouse, neo4j, langfuse-web, langfuse-worker, backend, public-alb, frontend, dns)
Cost:~$230/mo test env baseline (excl. Anthropic API)
TerraformECS FargateRDS Postgres 17Neo4j 5ClickHouseLangfuse v3ElastiCache RedisCloudFrontALBEFSRoute 53

agent-vpc

Private — TotallyWildAi org

Production-grade 3-tier VPC topology. Reusable across environments, feeds downstream projects via Terraform remote state.

Topology:Public subnets (NAT + ALB) → Private subnets (ECS, internal ALB) → Isolated subnets (RDS, ElastiCache). 3 AZs, per-AZ NATs, 8 VPC interface endpoints (ECR, Logs, Secrets Manager, ECS, STS), S3 gateway endpoint
Design:Per-environment CIDR convention (10.1/2/3.0.0/16). Big gaps between subnet tiers for future expansion without renumbering. No ECS cluster created — lifecycle owned by app team.
TerraformAWS VPCNAT GatewayVPC EndpointsRoute 53

agent-observability

Private — TotallyWildAi org

Self-hosted infrastructure observability with zero-trust browser access. Grafana + Prometheus + yace CloudWatch exporter on ECS, fronted by Cloudflare Tunnel + Cloudflare Access (no public IPs, SSO-gated).

Dashboards:AWS cost tracking (MTD, daily trend, service breakdown), ECS health, RDS health, ALB/NLB latency, ElastiCache metrics
Access:Cloudflare Tunnel outbound from Fargate → Cloudflare edge → SSO challenge (Google/Microsoft/GitHub). No ALB, no public IP, no inbound firewall rules.
Cost:~$47/mo per environment
GrafanaPrometheusyaceCloudflare TunnelCloudflare AccessECS FargateTerraform

CISO AI

cisoai.au

RAG-powered GRC and compliance engine supporting 40+ regulatory frameworks. Neo4j knowledge graph mapping framework relationships and control dependencies. Vector database with tuned chunking for regulatory content.

RAG:Deep Lake vector DB, LangChain orchestration, hybrid retrieval (semantic + keyword), Langfuse observability
Outputs:AI risk dashboards with RAG-grounded indicators, FAIR-model quantification, automated heatmaps, threat intelligence, TPRM, board-ready reporting
PythonNeo4jDeep LakeLangChainLangfuseOpenAI

CyberDoc

cyberdoc.cintelis.ai

Autonomous AI Red Team agent. Plans reconnaissance, invokes 17 scanning tools, interprets results, produces structured vulnerability reports. Prompt injection guardrails, timeout/fallback behaviour, real-time voice consultation.

Agent:Claude Sonnet with multi-step agentic tool-calling. Temporal workflow orchestration. Langfuse tracing.
Tools:Nmap, Nuclei, Nikto, testssl.sh, ffuf + 12 others
PythonFastAPIClaudeTemporalLangfuseDockerStripeGrok Voice

Ads Optimiser

adsoptimiser.com.au

Multi-channel AI marketing platform. Context-aware AI Advisor with secure server-side tool-calling fetches live campaign data. MVP shipped in under 2 weeks.

Channels:Google Ads, YouTube, TikTok, Meta
Stack:Node.js/Express, Google Cloud Run, Cloudflare Workers, Terraform, OAuth 2.0, Google Ads API, NoSQL, Stripe
Node.jsExpressCloud RunCloudflare WorkersTerraformOAuth 2.0

Career Timeline

2025 — PRESENT
AI Engineer
Trilogy Care · Brisbane · Healthcare / Aged Care
GPU compute, AWS Bedrock, production agentic AI with Claude, MCP servers. 300+ enterprise data sources.
2020 — PRESENT
Founder & Engineer
Totally Wild AI / Cintelis AI
Sovereign multi-agent delivery platform. 3 shipped AI platforms. Full AWS infrastructure (ECS, RDS, Neo4j, Langfuse, Terraform).
2022 — 2024
Security Architect
ACCC Consumer Data Right · Australian Government
Essential Eight uplift, OpenCTI, Entra ID PIM, EPAC automation, MITRE ATT&CK BAS.
2021 — 2022
Security Architect
AustralianSuper · APRA-regulated
Microsoft Sentinel SIEM/SOAR, Prisma Cloud, CI/CD security pipelines.
2020 — 2021
Senior Architect
Australian Government — Defence CIOG
Architecture Branch (TOGAF ADM, SABSA). Defence Container platform. ISM/PSPF compliance.
2018 — 2020
Pre-Sales Solution Architect
Thales Australia · Defence
KMaaS cloud offering, JP2060 Smart Field Hospital IoT, OneSky ATM IRAP readiness, FIPS 140-2 HSMs.
2012 — 2017
Senior Technical Consultant
Dell EMC · Defence / Government
Large-scale Defence infrastructure (100K+ users). EDLAN deployable private cloud. Navy JACKSTAY ICT modernisation.

Credentials

15+
Years Engineering
6
Production AI Platforms
3
AWS Infra Repos (IaC)
40+
GRC Frameworks (CISO AI)
Education:Master of Information Systems Security — Charles Sturt University
Certs:CISM (ISACA) · ISO 27001 Lead Auditor (PECB) · IRAP Readiness Delivery
Clearance:Baseline (AGSVA)
Location:Brisbane, QLD · Open to relocation