My Info

Professional Summary

Accomplished and driven DevOps professional with excellent leadership skills, interpersonal, and training skills, great ability to learn and excel, following the result of over 20 years’ experience in the IT profession. Result-oriented with a solid work ethic.Experience building infrastructure for small/midsize to Fortune 100 companies, ensures I am ready and eagerfor any challenge

Skill Highlights

Professional Experience

Well — 2023 - Present
Senior DevOps Engineer

Led efforts to redesign Terraform infrastructure to a more efficient and scalable model.

Improved network design for security and efficiency, including tunnels between GCP and AWS.
Collaborated with cross-functional teams to consolidate and
optimize GitLab CI configurations and observability.
Streamlined logging and metrics to Datadog to reduce noise, cost, and become more efficient.

Guideline — 2022 – 2023
Lead DevOps Engineer

Facilitated secure and efficient data movement for data engineering an science teams to analyze utilizing tools such as BigQuery, Datastram, Fivetran, Looker, etc.
Improved Helm chart development and processes by using DRY code and consistency across deployments.
Worked to bring Kubernetes clusters up to current standards. removing Dockershim and other outdated practices.
Collaborated with cross-functional development team members to analyze potential system solution for performance and stability improvements.
Performed monolith database split to improve performance and recovery time in case of disaster.
Managed CI/CD pipelines across several platforms including GoCD, Bamboo, CircleCI, etc.
Implemented foundation of IaC using Terraform for GCP infrastructure with plans to expand to other services.
Improved monitoring and logging environments by centralizing and standardizing tooling.

Brace — 2021 – 2022
Senior DevOps Engineer

Created Docker and Kubernetes configurations for new applications as well as optimizing existing.
Managed multiple AWS accounts end to end with Terraform.
Created and managed various Terraform modules
Worked to help architect ETL processes as well as other data management improvements.
Worked with the CISO to improve security overall to meet and exceed SOC2 and other requirements.
Brought EKS clusters up to date and rolled in more effective management of clusters as well as additional related services.

CultureIQ — 2020 – 2021
Lead DevOps Engineer

Managed infrastructure with code using Terraform and pipeline automation with approval processes.
Converted multi-language monolith with a coupled compile into a multi container solution using Docker, and deployed in Fargate and Kubernetes
Developed a centralized logging and monitoring strategy utilizing Datadog, InfluxDB, Telegraf, etc.
Ushered culture shift to utilize containers for full life cycle and improve development processes and reliability.
Implemented CI/CD pipelines utilizing Drone and Jsonnet to avoid DRY code.
Spearheaded designs of new app with the development team to create a RESTful API in contrast to the legacy designs.
Ensured all infrastructure processes were secure and exceeded SOC2 and GDPR compliance standards.

Ticket Evolution — 2018 – 2020
Lead DevOps Engineer

Lifted and shifted entire infrastructure from bare metal datacenter to containerised K8s cluster in AWS with minimal downtime. Improved performance over 5x.
Responsible for building, automating and maintaining large autoscaling Kubernetes clusters in AWS, for a large API marketplace with nearly $20B of inventory and serving over 200 req/sec.
Used Helm to manage Kubernetes deployments. Created multiple charts for existing and new services.
Built a new continuous deployment system allowing developers to deploy/monitor/rollback releases in using commands in slack and command line.
Worked with developers to improve development processes as well as troubleshoot or improve code where needed.
Migrated large PostgreSQL database from standalone to Aurora in RDS using DMS with minimal downtime.
Leveraged Kong as ingress controller to route and manage traffic to Kubernetes, allowing granular scaling to different K8s services and removing existing bottlenecks in a monolithic Rails app without any change in code.
Provided visibility and monitoring of the entire stack using Grafana, Graphite, Prometheus, Datadog and Cloudwatch.

CoachCare — 2016 – 2018
Director of DevOps

Built a scalable environment for 100k active users for a hybrid NodeJS and PHP environment which supported a mobile app and web platform.
Implemented private NPM repository leveraging Verdaccio for custom NPM packages and caching for faster and reliable builds.
Migrated PostgreSQL to RDS for redundant and scalable database functions.
Implemented and tuned RabbitMQ and Redis for queuing and token storage.
Designed Puppet environment to ensure updated packages, configuration and various development environments.
Leveraged Vagrant for consistent local environments to ensure code quality.
Worked with AWS cloud to provision new instances, S3 Storage Services, EC2, RDS, ALBs, VPC, CloudFront, etc.
Managed billing for AWS which included planning and provisioning of reserved instances to lower costs.
Built out CI/CD pipeline using CircleCI for code quality and ease of distribution.
Implemented NewRelic for monitoring of services on both the infrastructure and application level for performance and reliability.
Used a variety of security tools to maintain security and performance of applications including OpenVAS, Snyk, etc.
Implemented Sumo Logic as a logging and monitoring solution to proactively monitor for issues, security events, and troubleshoot errors.
Started migration to containerized infrastructure using Kubernetes and Docker for more efficient code distribution and environment scaling.

Reliant Security — 2009 – 2016
Director of DevOps

Started my tenure with Reliant as one of the first employees to bring the Redbox platform to life. Once the platform was a viable product, I was moved to lead the integration efforts with inaugural clients. While the product was initially created to solve PCI compliance issues, it has grown to a full in-store application hosting platform. With this evolution my responsibilities have grown along with the infrastructure; From a sole contributor to a thought leader responsible for the overall infrastructure.

Responsible for growing scale, the infrastructure in place manages over 12,000 nodes in production.
Technical lead for designing and deploying Reliant’s Debian based security and virtualization platform.
Considered the go to for large scale cloud and enterprise devops implementations.
Responsible for onboarding and managing engineers of various levels including mentoring of more junior staff.
Led project to manage Windows with Puppet including package management with Chocolatey including infrastructure for hosting private feeds.
Migrated from legacy code distribution methods to a more elegant solution using r10k.
Designed and implemented secure and PCI compliant cloud based AWS environments using private VPC environments.
Worked with various virtualization technologies such as KVM/QEMU, OpenVZ, and VMware, to reduce both store and datacenter footprint.
Developed Puppet modules to install and manage various applications and services including custom built applications.
Designed networks and systems to meet PCI requirements outside the scope of Reliant’s product business.
Assisted clients with PCI and SOX audits. Developed remediation plans if necessary.
Implemented open source SSL VPN solution using OpenVPN and Quagga for dynamic routing using OSPF and BGP. Implementations ranged from hundreds to multi thousand endpoints.
Designed and implemented Active Directory and LDAP configurations for both clients as well as Reliant internal use, including various compliance configurations.
Migrated and rebuilt infrastructure to be Puppet 4 compliant using a multiple hiera backends(Redis, YAML, file).

Qwikker — 2008
Senior Systems Administrator

Designed and implemented Qwikker’s infrastructure to manage 20,000+ Mobile Content Servers in the field.
Migrated away from a datacenter on the west coast to a datacenter in NYC.
Implemented and managed Dell EqualLogic iSCSI for sharing data between Tomcat and Apache nodes as well as database backups.
Collaborate with engineering and product teams on product changes and enhancements.
Implemented and managed Citrix Netscaler and Juniper Firewalls.
Redesigned Qwikker’s Linux based Mobile Content Servers to use Wi-Fi for distributing content as well as other updates.
Worked with Terracotta for clustering an in house Java application for managing content.
Implemented VMware to manage resources without increasing company footprint.
Developed and instituted a Follow-the-Sun Support Model as the requirements for support increased the need for 24x7x365 monitoring and support was accomplished by leveraging the global team.
Working technical experience with designing, building, installing, configuring and supporting MySQL database servers with replication.
Planned and implemented an eCommerce site for distributing Qwikker’s MCS online.

WebMD — 2007 - 2008
Systems Engineer

Lead administrator for Medscape Mail service featuring over 30,000 doctors.
Redesigned server implementation process for standardization utilizing Opsware.
Compiled custom RPMs to maintain consistency across the platform.
Implemented MySQL Cluster for uptime and reliability.
Interfaced with other departments for troubleshooting and enhancing performance.
Migrated users from a single server Sun Solaris Cyrus IMAP platform to a distributed RHEL platform for improved performance and disaster recovery.
Improved performance by tweaking Cyrus IMAP and the local systems to improve application performance.
Migrated MySQL data from MyISAM to NDB. Tuned tables for optimal storage and performance.
Implemented security controls for outgoing mail to mitigate spammers.
Worked with developers to locate and correct bugs and improve performance.
Wrote scripts to automate daily tasks such as maintaining mailboxes, message searching across mailboxes, etc.

IGXGlobal — 2005 – 2007
Systems Security Engineer

Lead administrator for data centers, including web servers, mail servers, DNS servers, and other systems, including installation, upgrades, and change control requiring in depth understanding of the Linux operating system.
Redesigned web server infrastructure to include highly available server cluster, ensuring reliability and minimum downtime.
Redesigned monitoring infrastructure utilizing Nagios, allowing for increased system capacity and ease of administration.
Designed / architected a major upgrade of core server infrastructure from Redhat 7.3 to RHEL.
Redesigned server standardization, including improvements in disk partitioning and packaging, with full documentation for future compliance.
Implemented a company intranet to keep employees informed of company happenings.
Redesigned usage reporting infrastructure, making use of open source technology to provide customers real time access to their SNMP information. Administration of IGXGlobal’s redundant DNS infrastructure, including the cleanup of DNS zones, repair of RBL errors, etc.
Assumed professional services responsibilities related to the PGP, Proofpoint, and Juniper’s SSL-VPN offering.
Administrator of Secure Mail 2 offering, mitigating existing server raid problems, responding to customer change requests, ensuring the overall customer deliverable.
Experience in deploying and managing Juniper Netscreen firewalls and Juniper SSL VPN.

Certifications

CISSP - Certified Information Systems Security Professional
LPIC – Linux Professional Institute Certification