Ivan May
SRE DevSecOps Engineer
Summary
SRE/DevSecOps Engineer with 10+ years of experience in IT sphere. The main technology stack includes SRE practices, building SSDLC, Cloud, CI/CD. Has solid experience in infrastructure design, provisioning, monitoring, and maintenance of server equipment. Has experience in automation QA. Ready for challenges.
Technology profile
- SSDLC standards and methodologies knowledge
- Infrastructure: Kubernetes, Terraform, Docker, Ansible
- Cloud: Azure, AWS, DO, Hetzner
- FinOps: InfraCost, KubeCost
- Logging/Monitoring: Prometheus, Grafana, DataDog, NewRelic
- DB administration: PostgreSQL, RDS(Aurora)
- DevSecOps: Vanta, SASTs and DASTs, DepCheckers, Snyk, SonarQube, DefectDojo
- Automation: TestKube, Selenium, Puppeteer, Cypress.io, Playwright
- Language: Python, JS, BASH, Java
- CI/CD: Gitlab, Github actions, Jenkins, Bamboo
Domain expertise
LLM, fintech, advertising, security, telecom, blockchain, iot
Research interests
Infrastructure, Clouds, DevSecOps, FinOps, SSDLC, SRE, Monitoring, AQA processes
Experience
Jun 2020 - Nov 2023 3y 6m
Whitespots.io DevOps, SRE Engineer, DevSecOps
The client is the big company moving infrastructure to Clouds
- • helping different teams to manage infra
- • creating IaC infra with k8s (AWS, Azure, EKS)
- • converting application to kubernetes ready (Helm, werf)
- • provide deployments process (GitlabCI)
- • observability platform creating (Prometheus, Grafana, DataDog)
- • SOC2 audit preperation (Vanta framework, SAST and scanners integrating to pipelines)
- • cost analysing and optimising for some amount of teams (budgeting, tagging)
technology stack: GitlabCI, k8s, AWS, Azure, GitLab, Prometheus, Grafana
The client had a great business idea of creating an innovative framework aimed at integrating with the end-client’s pipelines and providing security scans with SAST, DAST and other tools. Our team participated in the development of an MVP and a full-featured product from scratch, including the SSDLC framework
- • develop opensource GitlabCi framework for security scanners integrating into other pipelines
- • scanning code for secrets, vulnerabilities, threads and weak places (SAST)
- • vulnerable dependencies security code analyzing with reporting and alerting
- • collecting, analyzing reports and providing alerts
- • analyzing metrics of product teams in Metabase
- • provided integration to the product teams pipelines
- • added a new scanner easy with templating and parametrization
Blockchain staking platform
- • managing hardware linux servers platform with Ansible
The project was intended for a fast-growing global tobacco manufacturing company with over a hundred years of history, internationally recognized brands, and reduced-risk products
- • integrated code quality system into SDLC
- • discussed with the product and security teams the best ways to introduce SSDLC
- • adopted, codified, and administer new DevOps tools for a 70+ developer organization
- • codified and managed cloud infrastructure on top of Azure and Kubernetes
- • built and administered CI/CD pipelines in GitLab for integrating Security scanners, SAST, IAST
- • developed and supported automation QA infrastructure
- • enhanced observability of system with IaC, SLO, SLI dashbords based on NewRelic
tech stack: GitlabCI, Kubernetes, Azure, GitLab, Azure, New Relic, Prometheus, Grafana, Metabase
Nov 2018 - Apr 2020 18m
Exness fintech platform DevOps Engineer, AQA
Company that focused on technology solutions for the fintech domain. The key objective of the project was to develop a brand-new platform. The scope of the project assumed the extension of the existing functionalities, transference of the platform from on-premises to cloud infrastructure, migration to newer technologies, such as microservices, Kubernetes, and AWS. Engineering efforts spanned the implementation of an API, web services, frontend and backend parts, a mobile website, a web application, and a test automation framework
- • moving infrastructure from on-prem, Rancher to AWS EKS
- • defining service SLI and created a summary dashboard with the error budget and dependent core services
- • supporting browser farm based on Selenoid and Moon (kubernetes) for automation testing framework purposes
- • restored the legacy Java and created a new Python API testing framework
- • integrated testing into the CI/CD processes
- • conducted performance testing of backend services
tech stack: AWS, Kubernetes, Jmeter, Python, Java, Puppeteer, Rancher, Selenium, Selenoid, jMeter
2015 - 2018
Other companies, projects contactor, freelancer
- • more than 4 years experience in QAutomation in different projects
- • managing QA team, building processes within Dev and QA teams
- • was involved a different type of projects API, WEB, Mobile and areas fintech, saas, embedded, telecom
- • providing automation of QA processes and integration into CI/CD
- • upgrading and creating testing framework from scratch
- • mentoring colleagues such as beginners QA, developers, admins
- • providing, analyzing load testing
2005 - 2015
Telecom experience transmission, planning engineer
- Kyivstar, Ukrainian National Cell operator, Telecon IPMPLS DWDM Network Planning Engineer
- Beeline Ukraine, Ukrainian National Cell operator, SDH/PDH Transmission Engineer
- UkrSat, PBX Service Engineer
Cources
2020
Slurm SRE, Msk
2019
Slurm MEGA, Msk
2010
NEC Pasolink Neo & Superguard+ Training, Budapest
2008
TTC Marconi SDH/Ethernet multiplexers, Prague
2007
Ericsson (Marconi) Core level SDH network multiplexers, Genova
2006
Huawei full line of SDH multiplexers, Msk
2005
Ericsson GSM network signaling, Msk
Education
2007 - 2010
Management of organizations, University of Telecommunication, (Kyiv, UA)
- Bachelor’s degree
1998 - 2004
Hydro-gas systems of aircraft, National Aviation University (Kyiv, UA)
- Master’s degree
Last updated: Nov, 2023