Email: contact@holtzweb.com
Phone: (720) 445-5887
Location: Denver, Colorado

About Holtzweb

Holtzweb was founded to provide modern technical solutions to customer problems - to give individuals and small businesses access to real solutions.

I'm Marcus Holtz β€” a systems engineer with 11+ years across the full stack. Web development, Linux servers, network infrastructure, cybersecurity, cloud environments, managed IT.

We are here to make your ideas work: you reach out with a question, something that's been sitting in the back of your head, something your last IT guy couldnt do, something that broke last Tuesday. I look at it, tell you what I think, and we figure out a path forward together. Sometimes it's a quick fix. Sometimes it turns into a longer project. Either way, reach out.

Services

What Holtzweb Does

Web Development

Custom WordPress, WooCommerce, headless CMS, Astro, Next.js β€” fast, secure websites built for real traffic.

Linux Servers

Server provisioning, CI/CD pipelines, security hardening, Kubernetes, and full observability stacks.

Networking

LAN/WAN design, firewall configuration, VPN, VLAN segmentation β€” vendor-agnostic and fully documented.

IT Consulting

Infrastructure audits, staff training, vendor evaluation, project management, and team augmentation.

Who We Work With

Built for the businesses that rely on IT to work.

Our clients include municipalities, technology companies, tourism organizations, and non-profits β€” anyone who needs great pricing, reliable support, and the occasional custom project.

Small & Medium Businesses Municipal & Government Offices Non-Profit Organizations Technology Startups Tourism & Hospitality Freelancers & Consultants
Full Capabilities

What We Do.

A cross-section of the work Holtzweb delivers. Click any card to read more about that service.

Networking

VPN & Remote Workers

Remote access with MFA enforced, split-tunneling governed, RBAC, monitored, and failover tested. No down time, no trust concerns.

Explore service β†’ Web Development

Custom WordPress Builds

Gutenberg block-editor themes, custom post types, react components, REST API integrations.

Explore service β†’ Consulting

Cloud Migration Planning

Step by step migration plans. If you're moving into the cloud or stepping back to the ground, we make sure moving doesnt break anything along the way, with rollback and blue green testing.

Explore service β†’ Server Administration

Kubernetes & Orchestration

Docker Swarm, clusters on bare metal, failover, or managed cloud kubernetes - we provide secure automated deployments for any environment.

Explore service β†’ Web Development

Theme Development

Custom themes built around your brand, product, or service β€” from blank slate to pixel-perfect build.

Explore service β†’ Web Development

Competitor Intelligence & SERP Monitoring

Want to know how the competition is doing? We do rank tracking, competitor content monitoring, and feature analysis. Know when a competitor moves before it shows up in your traffic drop.

Explore service β†’ Consulting

Staff Training & Knowledge Transfer

Hands on training and clear procedures so your team can confidently move forward. Documentation and knowledge base hosted on prem or in cloud.

Explore service β†’ Networking

Cloud Networking (AWS / Azure / GCP)

Strategic design and deployment of secure, scalable multi-cloud network architectures. We engineer isolated VPC/VNet topologies with subnet segmentation and routing optimizations.

Explore service β†’ Server Administration

Container & Virtualization

Secure, well managed scopes. Rootless, isolated micro-VMs, namespace and resource limited. Dev and Prod live in harmony.

Explore service β†’ Networking

Cloud-to-On-Premise Connectivity

AWS Direct Connect, Azure ExpressRoute, and GCP Partner Interconnect are public cloud offerings dedicated to private paths between you and your data center.

Explore service β†’ Server Administration

Backup & Disaster Recovery

Immutable off-site backups, tested restore runbooks, and documented RTO/RPO. We run the drills so the drill isn't your outage.

Explore service β†’ Server Administration

Observability Stack

Prometheus, Grafana, Loki, Mimir, Tempo, and OpenTelemetry. Full metrics, logs, and traces in one pane. Alerts that provide details not noise.

Explore service β†’ Server Administration

Server Provisioning

Bare metal, VPS, cloud instance, or dedicated GPU node. Whatever your environment we provide custom and well documented systems.

Explore service β†’ Web Development

Headless WordPress

Your website as headless CMS with Astro, Next.js, Gatsby, whatever your system uses - we can integrate it.

Explore service β†’ Networking

Enterprise Wi-Fi Deployment

Know where your devices, employees, or customers are. Wifi and Bluetooth presense. Centralized secure sign in. Let your network work for you.

Explore service β†’ Consulting

Team Augmentation

Providing engineers to work alongside your team for a sprint, a project phase, or an extended engagement. No business sector left behind, no knowledge gap that cannot be closed, we do it all.

Explore service β†’ Web Development

API Design & Third-Party Integrations

REST, API design, webhook architecture, and integrations with CRMs, ERPs, payment processors, and marketing platforms. We connect your web presence to the systems your business runs on.

Explore service β†’ Networking

Multi-Cloud WAN & Interconnect

Unifying AWS Transit Gateway, Azure Virtual WAN, and GCP Network. We replace default route propagation with intent-based, policy-driven traffic engineeringβ€”ensuring every packet traverses the network as designed.

Explore service β†’ Networking

Firewall & Policy Management

Zero-trust rule bases, VLANs, application-aware policies, and geo-blocking. No implicit trust, no legacy rules left behind. We will bring your current system up to compliance.

Explore service β†’ Server Administration

Security Hardening

CIS Level 2 benchmarks, rootless containers, AppArmor/SELinux profiles, WireGuard, and supply chain controls.

Explore service β†’ Consulting

Vendor Evaluation & Selection

We're vendor-agnostic and have no referral agreements. We have seen it all, and with our experience we help evaluate options against your actual requirements and tell you honestly what we'd choose.

Explore service β†’ Networking

Vendor Neutral Deployments

Open Source and Enterprise systems, we handle it all. pfSense, OPNsense, OpenWRT, Aruba, Meraki, Ubiquiti, Juniper, Fortinet, and Palo Alto, to name a few.

Explore service β†’ Web Development

Plugin Development

Custom sites often require custom integrations. We build any required features you may need and cannot get off-the-shelf.

Explore service β†’ Web Development

Accessibility (WCAG) Compliance

WCAG 2.2 AA audits, keyboard navigation, screen reader support, color and contrast, and ARIA implementation.

Explore service β†’ Networking

Network Observability & Flow Analysis

NetFlow/IPFIX, sFlow, and cloud VPC flow logs feeding into Security Onion, AlienVault for anomaly detection. Every conversation traceable across the entire network stack.

Explore service β†’ Web Development

Web Application Development

Custom web applications beyond the CMS β€” dashboards, client portals, internal tools. Secure and custom for your needs.

Explore service β†’ Web Development

Monthly SEO & Performance Reporting

Monthly reporting covering rankings, traffic, technical health, and content performance. We deliver reports with plain-English commentary on what changed, why, and what's next.

Explore service β†’ Consulting

IT Infrastructure Audits

Just want to sit down for a review? We can review an idea or your current environment to identify misconfigurations or wasted resources.

Explore service β†’ Web Development

WooCommerce & E-commerce

Store setup, payment gateway integration, and inventory management, for a variety of online shops.

Explore service β†’ Server Administration

Web Server Configuration

Nginx, Caddy, and Traefik with automated TLS, HTTP/3, edge caching, and zero-downtime reload. Apache is always available for legacy stacks.

Explore service β†’ Consulting

Project Management & Delivery

Driving complex, cross-functional IT projects from kickoff to close. We manage timelines, risks, and deliverables for a variety of projects, industries, and services.

Explore service β†’ Web Development

CI/CD & Deployment Pipelines

Automated deployment workflows with staging environments, phased blue green deployments, and rollback options.

Explore service β†’ Server Administration

GitOps & CI/CD Integration

ArgoCD, Flux, and GitHub, GitLab, or Jenkins. We write pipelines that work. Safety, with policies, rollback gates, and environment var protection built in.

Explore service β†’ Server Administration

High Availability & Failover

Kubernetes, Swarm, Incus, HAProxy, Nginx, Postgres, all kept in sync. Ready and designed for any possible failure.

Explore service β†’ Networking

Network Design & Architecture

LAN/WAN topology designed for security, redundancy, segmentation, and growth. Documented, diagrammed, and built to serve the next engineer.

Explore service β†’ Web Development

Analytics & Conversion Optimization

Setting up A/B testing hooks, privacy-first data collection, SERP analysis, competitor content, search intent, event tracking and user journey analysis. Know your visitors' interests.

Explore service β†’ Web Development

Performance & Core Web Vitals

Lighthouse audits, INP/LCP/CLS remediation, asset optimization, critical CSS, edge caching. Increasing website ranking and customer conversions.

Explore service β†’ Web Development

Migration & Maintenance

Moving from another provider? Want to switch platforms? Need help with a broken update? We are full service.

Explore service β†’ Server Administration

Infrastructure as Code

Terraform, OpenTofu, and Ansible. Git checked, idempotent, easily reviewed, and version-controlled. Your infrastructure lives in Git, not in someone's head.

Explore service β†’ Networking

Cloud Firewall & Perimeter

AWS Network Firewall, Azure Firewall Premium, and GCP Cloud Armor provide egress inspection, IDS/IPS, and layer 7 policy routing and enforcement across all workloads.

Explore service β†’ Networking

VPN & Remote Workers

Remote access with MFA enforced, split-tunneling governed, RBAC, monitored, and failover tested. No down time, no trust concerns.

Explore service β†’ Web Development

Custom WordPress Builds

Gutenberg block-editor themes, custom post types, react components, REST API integrations.

Explore service β†’ Consulting

Cloud Migration Planning

Step by step migration plans. If you're moving into the cloud or stepping back to the ground, we make sure moving doesnt break anything along the way, with rollback and blue green testing.

Explore service β†’ Server Administration

Kubernetes & Orchestration

Docker Swarm, clusters on bare metal, failover, or managed cloud kubernetes - we provide secure automated deployments for any environment.

Explore service β†’ Web Development

Theme Development

Custom themes built around your brand, product, or service β€” from blank slate to pixel-perfect build.

Explore service β†’ Web Development

Competitor Intelligence & SERP Monitoring

Want to know how the competition is doing? We do rank tracking, competitor content monitoring, and feature analysis. Know when a competitor moves before it shows up in your traffic drop.

Explore service β†’ Consulting

Staff Training & Knowledge Transfer

Hands on training and clear procedures so your team can confidently move forward. Documentation and knowledge base hosted on prem or in cloud.

Explore service β†’ Networking

Cloud Networking (AWS / Azure / GCP)

Strategic design and deployment of secure, scalable multi-cloud network architectures. We engineer isolated VPC/VNet topologies with subnet segmentation and routing optimizations.

Explore service β†’ Server Administration

Container & Virtualization

Secure, well managed scopes. Rootless, isolated micro-VMs, namespace and resource limited. Dev and Prod live in harmony.

Explore service β†’ Networking

Cloud-to-On-Premise Connectivity

AWS Direct Connect, Azure ExpressRoute, and GCP Partner Interconnect are public cloud offerings dedicated to private paths between you and your data center.

Explore service β†’ Server Administration

Backup & Disaster Recovery

Immutable off-site backups, tested restore runbooks, and documented RTO/RPO. We run the drills so the drill isn't your outage.

Explore service β†’ Server Administration

Observability Stack

Prometheus, Grafana, Loki, Mimir, Tempo, and OpenTelemetry. Full metrics, logs, and traces in one pane. Alerts that provide details not noise.

Explore service β†’ Server Administration

Server Provisioning

Bare metal, VPS, cloud instance, or dedicated GPU node. Whatever your environment we provide custom and well documented systems.

Explore service β†’ Web Development

Headless WordPress

Your website as headless CMS with Astro, Next.js, Gatsby, whatever your system uses - we can integrate it.

Explore service β†’ Networking

Enterprise Wi-Fi Deployment

Know where your devices, employees, or customers are. Wifi and Bluetooth presense. Centralized secure sign in. Let your network work for you.

Explore service β†’ Consulting

Team Augmentation

Providing engineers to work alongside your team for a sprint, a project phase, or an extended engagement. No business sector left behind, no knowledge gap that cannot be closed, we do it all.

Explore service β†’ Web Development

API Design & Third-Party Integrations

REST, API design, webhook architecture, and integrations with CRMs, ERPs, payment processors, and marketing platforms. We connect your web presence to the systems your business runs on.

Explore service β†’ Networking

Multi-Cloud WAN & Interconnect

Unifying AWS Transit Gateway, Azure Virtual WAN, and GCP Network. We replace default route propagation with intent-based, policy-driven traffic engineeringβ€”ensuring every packet traverses the network as designed.

Explore service β†’ Networking

Firewall & Policy Management

Zero-trust rule bases, VLANs, application-aware policies, and geo-blocking. No implicit trust, no legacy rules left behind. We will bring your current system up to compliance.

Explore service β†’ Server Administration

Security Hardening

CIS Level 2 benchmarks, rootless containers, AppArmor/SELinux profiles, WireGuard, and supply chain controls.

Explore service β†’ Consulting

Vendor Evaluation & Selection

We're vendor-agnostic and have no referral agreements. We have seen it all, and with our experience we help evaluate options against your actual requirements and tell you honestly what we'd choose.

Explore service β†’ Networking

Vendor Neutral Deployments

Open Source and Enterprise systems, we handle it all. pfSense, OPNsense, OpenWRT, Aruba, Meraki, Ubiquiti, Juniper, Fortinet, and Palo Alto, to name a few.

Explore service β†’ Web Development

Plugin Development

Custom sites often require custom integrations. We build any required features you may need and cannot get off-the-shelf.

Explore service β†’ Web Development

Accessibility (WCAG) Compliance

WCAG 2.2 AA audits, keyboard navigation, screen reader support, color and contrast, and ARIA implementation.

Explore service β†’ Networking

Network Observability & Flow Analysis

NetFlow/IPFIX, sFlow, and cloud VPC flow logs feeding into Security Onion, AlienVault for anomaly detection. Every conversation traceable across the entire network stack.

Explore service β†’ Web Development

Web Application Development

Custom web applications beyond the CMS β€” dashboards, client portals, internal tools. Secure and custom for your needs.

Explore service β†’ Web Development

Monthly SEO & Performance Reporting

Monthly reporting covering rankings, traffic, technical health, and content performance. We deliver reports with plain-English commentary on what changed, why, and what's next.

Explore service β†’ Consulting

IT Infrastructure Audits

Just want to sit down for a review? We can review an idea or your current environment to identify misconfigurations or wasted resources.

Explore service β†’ Web Development

WooCommerce & E-commerce

Store setup, payment gateway integration, and inventory management, for a variety of online shops.

Explore service β†’ Server Administration

Web Server Configuration

Nginx, Caddy, and Traefik with automated TLS, HTTP/3, edge caching, and zero-downtime reload. Apache is always available for legacy stacks.

Explore service β†’ Consulting

Project Management & Delivery

Driving complex, cross-functional IT projects from kickoff to close. We manage timelines, risks, and deliverables for a variety of projects, industries, and services.

Explore service β†’ Web Development

CI/CD & Deployment Pipelines

Automated deployment workflows with staging environments, phased blue green deployments, and rollback options.

Explore service β†’ Server Administration

GitOps & CI/CD Integration

ArgoCD, Flux, and GitHub, GitLab, or Jenkins. We write pipelines that work. Safety, with policies, rollback gates, and environment var protection built in.

Explore service β†’ Server Administration

High Availability & Failover

Kubernetes, Swarm, Incus, HAProxy, Nginx, Postgres, all kept in sync. Ready and designed for any possible failure.

Explore service β†’ Networking

Network Design & Architecture

LAN/WAN topology designed for security, redundancy, segmentation, and growth. Documented, diagrammed, and built to serve the next engineer.

Explore service β†’ Web Development

Analytics & Conversion Optimization

Setting up A/B testing hooks, privacy-first data collection, SERP analysis, competitor content, search intent, event tracking and user journey analysis. Know your visitors' interests.

Explore service β†’ Web Development

Performance & Core Web Vitals

Lighthouse audits, INP/LCP/CLS remediation, asset optimization, critical CSS, edge caching. Increasing website ranking and customer conversions.

Explore service β†’ Web Development

Migration & Maintenance

Moving from another provider? Want to switch platforms? Need help with a broken update? We are full service.

Explore service β†’ Server Administration

Infrastructure as Code

Terraform, OpenTofu, and Ansible. Git checked, idempotent, easily reviewed, and version-controlled. Your infrastructure lives in Git, not in someone's head.

Explore service β†’ Networking

Cloud Firewall & Perimeter

AWS Network Firewall, Azure Firewall Premium, and GCP Cloud Armor provide egress inspection, IDS/IPS, and layer 7 policy routing and enforcement across all workloads.

Explore service β†’

Technologies we know well

Web

  • WordPress
  • Astro
  • WooCommerce
  • Nginx
  • Caddy
  • Apache
  • Traefik
  • Next.js
  • Laravel
  • Node.js

Servers

  • Ubuntu
  • Debian
  • RHEL
  • Rocky Linux
  • Proxmox
  • AlmaLinux
  • VMware ESXi
  • Windows Server
  • KVM
  • OpenSUSE

Networking

  • Ubiquiti UniFi
  • pfSense
  • Cisco
  • WireGuard
  • Fortinet
  • OPNsense
  • OpenVPN
  • Juniper
  • VLANs
  • BGP

Automation

  • Ansible
  • Docker
  • Bash scripting
  • Cron/systemd
  • GitHub Actions
  • Terraform
  • Kubernetes
  • Python
  • GitLab CI
  • Jenkins

Cloud

  • DigitalOcean
  • Hetzner
  • AWS
  • Cloudflare
  • Linode
  • Azure
  • Google Cloud
  • Vultr
  • Backblaze B2
  • Oracle Cloud

Monitoring

  • Zabbix
  • Netdata
  • Grafana
  • Uptime Kuma
  • Prometheus
  • Datadog
  • ELK Stack
  • Loki
  • OpenTelemetry
  • New Relic

Have a question? That's how most things start.

Reach out with whatever's on your mind. I'll read it and respond with something useful.

Talk to Marcus β†’