Experience

SoftGamings

DevSecOps • Jule 2024 - Present

- CI/CD Pipeline Implementation (Jenkins, GitLab, Nexus, FluxCD, werf) Designs and maintains continuous integration and delivery pipelines using Jenkins and GitLab. Integrates Nexus as an artifact repository to securely store and version application packages, ensuring consistent and traceable build-and-release processes across multiple environments. Utilizes FluxCD to implement GitOps workflows for efficient and reliable Kubernetes deployments. Leverages werf for building container images, managing Helm charts, and streamlining the overall release process.

- Container Orchestration (Kubernetes) Implements and administers Kubernetes-based microservices architectures, enabling teams to deploy applications at scale. Optimizes resource utilization, improves fault tolerance, and reduces deployment downtime through rolling updates and autoscaling strategies..

- Talos OS Implementation. Utilizes Talos OS to create minimal, secure, and immutable Kubernetes nodes on both bare metal and virtual machines. Simplifies cluster setup and upgrades, bolsters overall security posture, and reduces maintenance overhead..

- Configuration Management & Automation (Ansible) Manages infrastructure as code (IaC) by developing Ansible playbooks that automate server provisioning, application deployment, and system configuration, significantly reducing manual work and minimizing the risk of human error.

- Linux Server Maintenance & Administration. Maintains and administers Linux servers to ensure optimal performance, security, and availability. Performs regular system updates, troubleshoots issues, and applies best practices for monitoring and scaling production environments..

- Cross-Functional Collaboration. Works closely with development, QA, and operations teams to ensure fast, frequent, and reliable software releases. Drives continuous improvement through feedback loops, code reviews, and regular knowledge-sharing sessions, fostering a culture of collaboration and high-quality output.

Skills : Cybersecurity · Linux · Kubernetes · CI/CD · FluxCD · Gitlab · Jenkins

Cloud Engineering

Self Study • June 2022 - Present

I am enthusiastic about Cloud and Dev(Sec)Ops technologies and dedicated to advancing my expertise in this domain. I actively acquire relevant skills through continuous self-study.

Skills : AWS · Terraform · Linux · Kubernetes · CI/CD · Python · Docker · Git · Cybersecurity

Information and Computing Center

Chief Cybersecurity Engineer | DevSecOps • January 2021 - Jule 2024

- Responsible for developing scalable, reliable, and secure system architectures, including evaluating new technologies, conducting feasibility studies, and making recommendations for system improvements, automation of S-SDLC processes, implementation of DevSecOps tools and methodologies.

- Develop and maintain an information security system, adhering to regulatory requirements and international standards ISO 27001-2, NIST 800-53/30.

- Experience with SIEM platforms such as Maxpatrol SIEM, ELK Stack, proficiency in configuring, managing, and customizing SIEM solutions to collect, correlate, and analyze security event data from various sources, vulnerability management and security testing tools SAST/DAST.

- Experience working with NGFW, DLP solution, understanding NGFW and DLP concepts, policies and technologies, architecture of implementation, and interaction of system components aimed at preventing unauthorized access and disclosure of confidential data.

- Lead the migration of services and implement containerization technologies such as Docker and Kubernetes, automation tools and CVS, Gitlab CI/CD.

- Leadership and management of two dedicated (security and operational) teams, fostering a culture of teamwork, collaboration, continuous improvement, and integrating DevSecOps methodologies into the workflow.

- Create and maintain a SOC from scratch. Deploy and support network and cluster infrastructure with many VMs and services, capable of handling a tested load of up to 5,000 active users, design and implement a corporate-wide area network for a user base of 3,000 people, ensuring minimal failures and maximizing network efficiency.

- Implement robust Backup strategy 3-2-1, monitoring and maintenance processes using SIEM, Zabbix, Prometheus, and Grafana to ensure system availability, performance, and security. Conduct regular system audits, apply patches and updates, and optimize system performance based on industry best practices.

- Proficient in the administration of Linux and Windows Server 2012-2019, email systems, Layer 2/Layer 3 switches, and web servers such as Nginx, IIS.

- Experienced in virtualization technologies such as VMWare, Hyper-V, and KVM. Skilled in scripting languages like Bash and Python. Well-versed in networking principles, including TCP/IP, DNS, MPLS, VPN, Routing Protocol and Tunneling.

Skills : Cybersecurity · Linux · Windows · Kubernetes · CI/CD · Docker · Networking · PM

Information and Computing Center

Chief System Engineer • November 2019 - January 2021

- Identifying and mitigating technical risks, proactively addressing challenges, and providing innovative solutions to optimize system performance and operational efficiency. Developing and implementing robust monitoring and maintenance strategies to ensure system availability and minimize downtime.

- Implement industry best practices to ensure system reliability, scalability, and security.

- Track record in building and managing teams of 7 technical professionals, fostering a culture of collaboration, innovation, continuous improvement, and integrating DevOps methodologies into the workflow.

Skills : Cybersecurity · Linux · Windows · Docker · Networking · NGFW · DLP · SIEM

BFT

Network Engineer/System Administrator • August 2014 - November 2019

- Proficient in managing and maintaining server infrastructure, with strong background in Linux and Windows operating systems. including installation, configuration, and troubleshooting of various server applications.

- Skilled in utilizing monitoring systems such as Zabbix and Grafana to ensure optimal performance and proactively identify and resolve issues.

- Designing and planning network infrastructures based on business requirements, selecting appropriate hardware and software components for network implementation.

- Installing and configuring networking equipment such as routers, switches, firewalls, and load balancers, monitoring network performance and ensuring efficient operation, performing routine maintenance tasks, such as updating firmware and applying security patches.

- Troubleshooting and resolving network issues, including hardware and software problems.

Skills : Networking · Linux · Windows · SQL · Security