You will get Custom Business Software for Operators — Built by a 30-Yr Veteran


Project details
Your spreadsheets are breaking. Off-the-shelf SaaS doesn't fit your workflow. The last dev shop left code nobody can maintain. You need software built for how YOUR business actually runs.
I build custom business software for operators. 27 years running real companies — e-commerce, SaaS, rentals, signage, services. Production-grade code on AWS. No offshore handoff. No lock-in. Source code goes in YOUR repo, on YOUR AWS account, paid on YOUR bill.
What I build:
• Order-to-cash, intake-to-invoice, dispatch, scheduling, inventory
• Customer portals, internal dashboards, ops automation
• AWS-hosted, secure by default, scales without a rewrite
• PHP / Python / JavaScript
What I don't do:
• Mobile apps, marketing sites, WordPress themes, design-led work
Every project starts with a written architecture plan you approve BEFORE code is written. Weekly demos. OWASP Top 10 verified against a checklist. Owner training recorded.
START HERE: Tier 1 Discovery Sprint — $1,500 buys a written plan you can build with anyone, including me. Zero pressure.
Message me before ordering. We align on a 20-min call first.
Software that fits your business — not the other way around.
I build custom business software for operators. 27 years running real companies — e-commerce, SaaS, rentals, signage, services. Production-grade code on AWS. No offshore handoff. No lock-in. Source code goes in YOUR repo, on YOUR AWS account, paid on YOUR bill.
What I build:
• Order-to-cash, intake-to-invoice, dispatch, scheduling, inventory
• Customer portals, internal dashboards, ops automation
• AWS-hosted, secure by default, scales without a rewrite
• PHP / Python / JavaScript
What I don't do:
• Mobile apps, marketing sites, WordPress themes, design-led work
Every project starts with a written architecture plan you approve BEFORE code is written. Weekly demos. OWASP Top 10 verified against a checklist. Owner training recorded.
START HERE: Tier 1 Discovery Sprint — $1,500 buys a written plan you can build with anyone, including me. Zero pressure.
Message me before ordering. We align on a 20-min call first.
Software that fits your business — not the other way around.
Programming Languages
PHP, JavaScript, PythonCoding Expertise
Cross Browser & Device Compatibility, Performance Optimization, SecurityWhat's included
| Service Tiers |
Starter
$1,500
|
Standard
$4,500
|
Advanced
$8,500
|
|---|---|---|---|
| Delivery Time | 7 days | 21 days | 35 days |
Number of Revisions | 1 | 2 | 2 |
Number of Pages | 1 | 5 | 10 |
Design Customization | - | - | - |
Content Upload | - | - | - |
Responsive Design | - | ||
Source Code | - |
Optional add-ons
You can add these on the next page.
Additional Revision
+$200
Additional Workflow Module
(+ 10 Days)
+$2,500
30-Day Post-Launch Support
+$850
Owner Training Session, Recorded
(+ 2 Days)
+$450Frequently asked questions
About Derek
Senior SaaS Architect | AWS Multi-Tenant | Claude AI | Audit Ready Pro
Murfreesboro, United States - 9:36 am local time
If your platform has to survive a SOC 2 audit, a load spike, a pen test, or all three, that's the lane I work in.
WHAT I BUILD
-Multi-tenant SaaS platforms — Aurora Serverless v2, ECS Fargate, CloudFront, WAF, with application-layer tenant isolation that holds up under real-world data volume
-Production Claude AI features — per-tenant API key encryption, tiered token budgets, prompt injection defenses, output filtering, observability
-Internal business automation — intake, document workflow, e-signature, audit trail, replacing manual operations end-to-end
-AWS infrastructure designed for auto-scaling, fault tolerance, zero-downtime deploys, and audit readiness from day one
FLAGSHIP BUILD (SANITIZED)
Private multi-tenant SaaS in production. 75+ functional modules covering finance, operations, credentials, and personal records under a single subscription. ~540-table Aurora Serverless v2 schema. Application-layer tenant isolation across a shared database. 12+ zero-downtime ECS rolling deploys. 10 production AI features using Anthropic Claude, each with per-tenant API key encryption and tiered token budgets.
ENGINEERING STACK
PHP 8.3 on ECS Fargate · Aurora Serverless v2 (MySQL 8.0) via RDS Proxy · ElastiCache Redis (TLS) · S3 + CloudFront (HTTP/3, IPv6) · AWS WAF (OWASP + rate limiting) · Secrets Manager · EventBridge · CloudWatch · Stripe billing · Plaid bank linking · AWS Connect voice · ClamAV + VirusTotal upload scanning
SECURITY POSTURE
Defense-in-depth, built in — not bolted on.
AES-256 encryption at rest, with per-record keys for the most sensitive data categories
Zero plaintext credentials anywhere — all secrets injected from AWS Secrets Manager at task start
Audit logging built to SOC 2 control patterns
Argon2id password hashing, TOTP 2FA, enforced MFA on the admin plane
Admin plane on a separate IP-allowlisted ECS cluster
TLS in transit everywhere, HSTS preloaded
OWASP Top 10 covered at the WAF, application, and code-review layers
Post-quantum migration planning for platforms with long-lived sensitive data (NIST ML-KEM / ML-DSA)
PRODUCTIZED ENGAGEMENTS
AWS Cost Architecture Audit — 1 week, fixed-bid. Targets 30–50% reduction.
Tenant Isolation Architecture Review — 1–2 weeks, fixed-bid. Assessment + remediation roadmap.
SOC 2 Pre-Audit Infrastructure Hardening — 4–8 weeks, fixed-bid.
Production Claude AI Integration — per-feature, fixed-bid. Security, budgeting, and observability included by default.
Post-Quantum Readiness Assessment — 2 weeks, fixed-bid. Crypto inventory, threat surface, migration roadmap.
Multi-Tenant SaaS Build (MVP through scale) — milestone-based.
WHO I WORK WITH
SaaS founders building for real production traffic, not pitch decks
Operators replacing manual processes with secure internal systems
Teams where security review, audit trail, or scale targets are non-negotiable
Not a fit for: throwaway prototypes, hourly hand-holding, or builds where security gets cut to ship faster.
FREE 15-MINUTE CONSULTATION
If you have a real build with real constraints, send a message with: what you're building, where you are now, and what's blocking you. I'll respond with whether I'm a fit and a 15-minute call to scope it. No pitch deck, no sales call — technical conversation only.
If your platform has to survive a security review, a load spike, or both — that's the lane I work in.
Steps for completing your project
After purchasing the project, send requirements so Derek can start the project.
Delivery time starts when Derek receives requirements from you.
Derek works on your project following the steps below.
Revisions may occur after the delivery date.
Step 1 — Kickoff Call & Operations Walkthrough
30-minute video call. You walk me through the workflow as it runs today — screens, steps, people, exceptions. I record, take notes, and ask the questions a 40-year operator asks. No tech talk required from your side.
Step 2 — Architecture Plan & Stack Decision
Written plan delivered: AWS services chosen, data model, security posture, integration points, cost estimate. You approve in writing before any code is written. No surprises, no scope creep, no rework.

