Widok CV
Senior Inżynier DevOps
Do negocjacji
Gruzja
Pełny etatZdalnie
Doświadczenie zawodowe
2 lata 8 miesięcy
Ostatnie doświadczenie zawodowe
Firma pod NDA
Devsecops
2 lata 8 miesięcy
O mnie
O mnie
I am a Senior DevOps / DevSecOps Engineer with 10+ years of experience in cloud infrastructure, automation, CI/CD, and security engineering. I specialize in building secure, production-grade platforms from scratch, with a strong focus on AWS, Kubernetes, and policy-driven security.
In my last fintech role, I designed and implemented an AWS EKS-based platform using Terraform and Ansible, GitOps with FluxCD, and secure CI/CD pipelines in GitLab. I delivered centralized secret management (Vault, AWS Secrets Manager), backup and DR with Velero, and enforced Kubernetes security using Kyverno and Falco.
I have hands-on experience implementing SIEM with Wazuh, integrating it with AWS CloudTrail, and performing vulnerability scanning using OpenVAS, along with SAST/DAST tools such as Semgrep, OWASP ZAP, and Checkov. I also managed Cloudflare (DNS, WAF, DDoS protection) and observability stacks based on Grafana, Loki, and VictoriaMetrics.
I communicate security concepts clearly, work effectively in cross-functional teams, and focus on delivering secure, scalable, and human-centric solutions.
Doświadczenie afiliacyjne
Brak danych
Doświadczenie zawodowe2 lata 8 miesięcy
Październik 2023 - do teraz
(2 lata 8 miesięcy)
Firma pod NDA
Devsecops
DevOps / DevSecOps Engineer/NDA - Fintech PresentBuilt a complete AWS/Kubernetes-based infrastructure platform and security ecosystem from scratch.
Built AWS infrastructure from zero using Terraform and Ansible
Designed and improved GitLab CI/CD pipelines for build, testing and deployment (FluxCD)
Automated testing workflows and enhanced pipeline reliability
Delivered secret management using AWS Secrets Manager, Bank-Vaults, HashiCorp Vault
Implemented GitOps approach with FluxCD
Configured backups & disaster recovery using Velero
Introduced security tools: Talisman, Gitleaks, Checkov, Semgrep (SAST), OWASP ZAP (DAST)
Implemented SIEM monitoring with Wazuh
Integrated Wazuh with AWS CloudTrail for correlation and security analysis of cloud activity
Set up Cloudflare (DNS, DDoS protection, WAF)
Applied Kubernetes policy enforcement using Kyverno
Integrated Falco for real-time runtime security monitoring in Kubernetes
Performed vulnerability scanning and assessment using OpenVAS
Tech stack: AWS, Kubernetes (EKS), GitLab CI, FluxCD, Grafana, VictoriaMetrics, Loki, Velero, Vault, Wazuh, Falco, Cloudflare
Umiejętności
OWASP
WAZUH
SAST
DAST
k8s
Falco
Vault
Znajomość języków
Brak danych
Typ zatrudnienia
Typ zatrudnienia
Pełny etat, Część etatu
Tryb pracy
Zdalnie, Biuro
Grafik pracy
Elastyczny, 5/2
Relokacja
Możliwa
Wyjazdy służbowe
Możliwe wyjazdy służbowe