Selected Work

Projects by Athanasius Wahbah

IdentityAutomation

Identity Lifecycle Automation Platform

An integration between an HR system of record and Microsoft Entra ID that automates the full employee lifecycle — onboarding, role and department changes, and offboarding — with safeguards and legal-hold handling built in. It replaces six-figure commercial identity-governance tooling and makes access correct by default rather than dependent on manual tickets. Built in Python and deployed on Google Cloud Run.

IdentityAI

Cloud Identity Migration Tooling

A toolset that converts users from a hybrid identity model to cloud-only Entra ID safely and reversibly, with an embedded AI diagnostic assistant the help desk uses to triage issues in real time. Turned a fragile, manual migration into a repeatable, low-risk operation.

PlatformData

IT Observability & Operations Platform

An internal platform that ingests data from more than ten enterprise systems — identity, devices, ticketing, collaboration, security, and source control — into a single real-time view of organizational IT and security health. Built with FastAPI and React on Google Cloud Run and Cloud SQL.

PlatformAutomation

Internal Test-Management Platform

A self-hosted replacement for a commercial test-management SaaS, built to emit byte-identical automation output to the existing CI pipeline — so the cutover changed a single line of configuration. Migrated thousands of test scenarios with proven byte-for-byte parity, and gave the QA team a self-serve check to verify the switch themselves, cutting the tool's recurring cost by roughly 99%. Built with FastAPI and React on Google Cloud Run. Read how it worked →

PlatformAI

Competitive-Intelligence Cockpit

A competitive-intelligence cockpit that sits on top of a market-research subscription a team already pays for — turning a document firehose into a curated view of what moved, who's a threat, and what's coming. Pulls regulatory and clinical data live from public sources with offline snapshot fallback, and a server-side monitor sweeps filings and trial changes on their real cadence to raise alerts on its own. One data-source interface swaps the offline demo for the live enterprise API with a single environment variable. Built with React and TypeScript on Google Cloud Run, scaling to zero between polls. Read how it worked →

SecurityForensics

Security & Investigations Toolkit

A Python CLI and playbook set for building investigation timelines from enterprise log sources — Entra ID sign-in and audit logs, Google Workspace activity, and email metadata. Used to run security incident response and forensic investigations for HR and leadership, with contemporaneous timeline documentation and evidence preservation built into the workflow.

More of my code and open work is on GitHub.