Part of Developer Experience team - a mission to improve their experience and compliance.

• Automate the boring parts of developer's work as much as possible using RenovateBot, Python, Bash & PowerShell.
• Improve compliance using tools like OpsLevel where developers can see the level of all their apps: vulnerabilities, deployment frequency, etc.
• Implemented various services to improve security by protecting our public LBs with Shield, CloudFront, WAF and Panorama.
• Using RDS Blue/Green deployments we are now able to reduce downtime to 10 seconds for DB major version upgrades, for example.
• Reduce tech debt and cognitive load by removing duplicate code, upgrading and cleaning up legacy Terraform code.
• Improved security of our containers by migrating to chiseled/distroless images.

Technologies used:

• AWS
• AWS ECS
• AWS ELB
• AWS RDS
• AWS CloudFront
• AWS Shield
• AWS SQS
• AWS ElastiCache
• AWS EventBridge
• Azure AD
• Azure DevOps
• LocalStack
• OpsLevel
• OpsGenie
• RenovateBot
• NewRelic
• Terraform
• OWASP Zaproxy
• .NET

Maintain and automate SAP OpenText hosted within AWS.

• Automated configuration for OpenText instances with Terraform, Ansible (Tower), PowerShell and Bash.
• Setup alerting system based on DataDog, including custom checks.

Technologies used:

• Ansible
• Ansible Tower
• AWS LB
• AWS EC2
• AWS RDS
• Docker
• OpenText
• PowerShell
• Apache Tomcat
• DataDog
• SAP

Support developers with daily issues around by implementing new projects on our infrastructure hosted at Azure & AWS.

• Manage our CI/CD pipelines that revolve around Azure DevOps combined with Terraform and some PowerShell sprinkled on top.
• Implemented automated security scanners for our code like SonarCloud, Trivy and OWASP ZAP.
• Proposed and implemented an automated release mechanism with automated change ticket creation.

Technologies used:

• AWS
• AWS ECS
• AWS ELB
• AWS RDS
• Azure AD
• Azure DevOps
• Docker
• Prometheus
• PowerShell
• Splunk
• Terraform
• Trivy
• ZAP
• .NET

Most of my work is focused around redesigning the infrastructure since the original architecture had everything in one place. Some example projects:

• Wrote a custom GitHub action bot in TypeScript which coupled with Jenkins enabled us to automate our deployments.
• Manage our IaC at AWS and GitHub through Terraform.
• Wrote various scripts for deploying to AWS ECS, implemented AWS cross account policies for separated environments.
• Migrated from a cloud CI/CD solution to self hosted Jenkins - managed through Puppet.
• Redesign our infrastructure and code, so we can move towards isolated environments while also keeping the code env agnostic.

Technologies used:

• AWS
• AWS ECS
• AWS ELB
• AWS RDS
• Ansible
• CheckMK
• HashiCorp Vault
• Prometheus
• FreeIPA
• Jenkins
• Grafana
• Kibana
• Python
• RabbitMQ
• OpenVPN
• Terraform

Most of the work involves developing the Puppet code that orchestrates our whole network hosted at Linode. Also involved monitoring and integrating apps in Zabbix or Grafana. During dev days I conducted pentesting for our network and worked on integrating Prometheus in our network.

• Created a dev environment from scratch based on Docker to mimic the actual environment we have in production/staging, where we later used in all of our DevOps CI/CD Puppet development.
• Develop Puppet code to scale services like Redis, PostgreSQL & Nginx while maintaining them highly available using Keepalived and HAproxy.
• Deploy a Graylog server and configure every service to send logs to centralization
• Maintain and configure Teamcity for CI/CD.

Technologies used:

• Bash
• Celery
• Graylog
• HAProxy
• Puppet
• Python
• PostgresSQL
• RabbitMQ
• Redis
• Ruby
• Zabbix

Develop and provide support for a test-driven Python framework designed to automate the configuration of Cisco FirePower Next Generation Firewall software.

My role was mostly as a bug hunter, but within the company. The goal was to break the software and find bugs - that may or may not be security related.During this time I learned a lot about the inner workings of Cisco's solution, FirePower NGFW. I learned to install, configure and fully test if the IDS policies and configurations fully worked.

• Create own environment using VMware, Docker and generate traffic using tools like TeraVM.
• Worked on a framework that used pyVmomi on top of VMware to manage environments for CI/CD pipelines.
• Create tests that were capable of deploying and configuring the FirePower product on platforms such as Azure ore Amazon AWS.
• Maintain & develop automation environment, that is comprised of Docker, RabbitMQ, AngularJS & Selenium containers.
• Certified as CISCO - Security Green Belt Ninja

Technologies used:

• AWS
• Azure
• AngularJS
• Docker
• Cisco FirePower
• Python
• MongoDB
• VMware
• pyVmomi

Providing therapy for applications/tools abused by their human owners.

Support global Nokia teams (NOC, QoS, Integration) in Europe/India/Americas by creating tools in JS, PHP, Python and Perl to ease the workload and calculate various KPIs.

• Part of a team that developed an application which had a throughput of 500MB of Telecom statistics data every 15 minutes which was processed and stored in a huge MSSQL DB.
• Design various protocols and automated solutions to extract data from different sources - SFTP/Email/DB using various protocols IPSec, VPNs, etc.
• Maintain a local network of 10 Windows,4 Linux & 1 virtualized Supermicro which also hosts Windows & Linux with various services - Splunk, Tableau, Microsoft SQL Server.
• Configure and maintain a Nagios server to monitor the local network for different alarms - check availability, jobs success rate, etc.
• Created an application that was capable of exporting a website to Microsoft Powerpoint using PhantomJS.
• Wrote complex queries depending on the project - Microsoft SQL Server/Oracle & maintaining these services.
• Pentest the local network & installed various services in order to detect attacks - Suricata, PSAD, ARPon

Technologies used:

• ARPon
• PSAD
• Nagios
• Microsoft SSiS
• Microsoft SQL Server
• PhantomJS
• PHP
• Tableau
• SAP Business Objects
• Splunk