Greenfield terminal - ICT from fiber to software

Sole ICT lead for a greenfield deep-water container terminal: network, physical security, governance, and software, built from nothing.

NDA-anonymized: no client name, no location, no dates.

The situation

A new terminal starting operations with no IT function. One person responsible for everything between the fiber in the ground and the software the operation runs on.

What I built

A segmented network from edge to access: a virtualized edge firewall, an L3 core, a self-healing fiber ring across the yard, and enterprise wireless. A ~30-camera IP CCTV estate on an open-source NVR, and biometric access control.

On the governance side: an ISO 27001 ISMS taken from zero to audit-ready, email authentication hardened through to DMARC enforcement, and incident response when it was needed.

Alongside the infrastructure, custom operational software: gate pass management, HSE induction, and groundwork for terminal operating software.

Stack & infrastructure

This section stays at capability level on purpose - naming vendors or products would help identify the site. The shape is conventional: enterprise network hardware, open source where it serves (the NVR among it), and custom software written for the terminal's own workflows.

Outcome

A terminal that went from bare ground to operating with enterprise-grade ICT, run by one person, with documentation good enough to hand over.