Andrew Sapp

Sapp Consulting LLC

Platform · Network · Support Engineering

[email protected]

Scroll
Technical Services
Cloud Security & Network Architecture

Capabilities

SASE & Cloud Security

6 years

Full Cato SASE stack: SD-WAN, ZTNA, CASB, SWG, FWaaS, DLP, IPS. Zero Trust policy design. Global backbone routing and PoP architecture.

SD-WAN & Network

9 years

Multi-WAN aggregation, failover, traffic shaping. IPSec/SSL VPN. Packet-level troubleshooting with Wireshark. VoIP optimization.

IoT & Embedded

2 years

Cellular protocols (LTE-M, NB-IoT). Embedded modem integration. AWS IoT Core, Azure IoT Hub. MQTT, AT commands, RF troubleshooting.

Infrastructure

Ongoing

Proxmox VE, Linux administration. Prometheus/Loki/Grafana observability. OPNsense, CrowdSec, Suricata IDS. Network segmentation.

Development

Building

Python (FastAPI, async). TypeScript/React. Internal tooling: log parsers, automation, data sanitization. AI-assisted workflows.

Experience

Tier 3 Support Engineer

Cato Networks 2019 – Present · 6 years

Senior escalation engineer for the Gartner Magic Quadrant Leader in Single-Vendor SASE.

  • Own million-dollar Proof of Value engagements where technical success determines contract closure. Customers request me by name.
  • Primary escalation point for blocked engineers. Maintained team continuity through multiple management transitions.
  • Built internal tooling adopted team-wide: shared script repository, log parsing plugins, multi-format analyzers.
  • Onboarded every new team member with comprehensive shadowing program covering architecture, methodology, and customer skills.

Product Support Engineer

NimbeLink 2017 – 2019 · 2 years

Technical support for hardware engineers integrating Skywire cellular modems into embedded products.

  • Supported diverse IoT scenarios: industrial sensors, fleet tracking, medical devices, smart city infrastructure.
  • Built AWS IoT and Azure IoT Hub test environments to replicate connectivity issues and validate end-to-end paths.
  • Performed failure analysis, RMA processing, and post-failure design consultations on antenna and power issues.

Technical Support Engineer

Ecessa 2014 – 2017 · 3 years

Enterprise SD-WAN deployments with multi-WAN aggregation, failover, and VoIP optimization.

  • Configured environments with up to 25 WAN links combining MPLS, broadband, LTE, and satellite.
  • Specialized in VoIP troubleshooting using real-time jitter/latency monitoring and SIP proxy configuration.
  • Collaborated directly with Engineering on bug reports, QA testing, and firmware validation in lab environment.

Projects

Homelab Infrastructure

OPNsense · Proxmox · OpenWrt · Immich

Custom-built router and WiFi 6 mesh with OpenWrt firmware. Migrated from Google Photos, iCloud, and other cloud services to self-hosted alternatives. 20+ containers across VLAN-segmented Proxmox clusters with full observability.

fincli

Python · FastAPI · MCP · Multi-LLM

Personal finance CLI exposing 40+ tools to Claude Code via MCP server. YNAB/SimpleFIN integration, debt consolidation analysis, budget forecasting with multi-LLM fallback.

duluth-digest

TypeScript · React · Node.js

Civic data platform aggregating 21 sources (APIs, RSS, scraping) with rate limiting, caching, health monitoring, and graceful degradation patterns.

AI Inference Routing

Traefik · Python · Vulkan · llama.cpp

Dynamic GPU workload routing across heterogeneous hardware. Power-based health detection, automatic failover between backends, and load balancing for local LLM inference.

platocave

TypeScript · WebSocket · Replicate · FLUX

Educational tablet app with real-time session management, Claude Code CLI integration, and AI image generation for interactive learning experiences.

Hygge

Python · Next.js · ML

Intelligent family calendar with sleep pattern modeling, predictive scheduling, and composable calendar architecture for multi-caregiver coordination.

Home Automation

Home Assistant · ESPHome · Node-RED

Comprehensive smart home with custom automations, presence detection, climate control, and AirPlay integration for whole-home audio.

Voice Dictation Pipeline

Whisper.cpp · Wyoming · Vulkan

Local speech-to-text with GPU acceleration, Home Assistant voice integration, and intent routing for hands-free home control.

Clarus

Python · TUI · Multi-format

Unified log analysis tool combining Wireshark, Windows Event Viewer, and HAR analyzer functionality. Parses evtx, pcap, har, json, and text logs in a single interface for support escalations.

Zendesk Toolkit

Python · Automation

Workflow automation for support: automatic download renaming with ticket metadata extraction, data sanitization for customer escalations, and Sublime Text log parsing plugins.

Superposition MTN

Video Production · Minneapolis

Music video TV show produced for 5 years in Minneapolis. Live performance capture, post-production, and broadcast distribution across local cable networks.