Andrea De Rinaldis, Developer in Como, Italy
Andrea is available for hire
Hire Andrea

Andrea De Rinaldis

Verified Expert  in Engineering

AWS DevOps and Developer

Location
Como, Italy
Toptal Member Since
September 9, 2020

Andrea has over 20 years of experience in system administration and architecture design. He is always up to date with the latest IT trends. In the last years, Andrea has focused on DevOps methodologies and tools, cloud environments, IaC, and operation automation. He is also a software architect and developer with proven experience in distributed, multiservice-based applications.

Amazon Web Services (AWS)TerraformJenkinsKubernetesDockerAnsibleLinuxGoogle Cloud Platform (GCP)JavaPythonVMwareGitPrometheusGrafanaSystem Administration

Portfolio

Self-employed
Routing, Elastic Load Balancers, UDP, TCP, Proxies, Networking, Firewalls...
Ricoh
Windows, Windows Server, System Administration, Infrastructure, Logging, IIS...
Allegis - Cruise Automation - Main
DevOps, Cloud Infrastructure, Python, JavaScript, Google Cloud Platform (GCP)...

Experience

Python - 16 yearsDevOps - 8 yearsAmazon Web Services (AWS) - 8 yearsDocker - 7 yearsAzure - 5 yearsKubernetes - 4 yearsGoogle Cloud Platform (GCP) - 4 yearsTerraform - 4 years

Availability

Part-time

Preferred Environment

Amazon Web Services (AWS), Git, Shell Scripting, Python, Java, Docker, Kubernetes, Linux, Terraform

The most amazing...

...project I've released was a fully automated mailing application on Kubernetes. I led the development team and implemented monitoring and autoscaling features.

Work Experience

Independent IT Consultant | DevOps Engineer

2018 - PRESENT
Self-employed
  • Worked on IT architecture design, IT automation, and software development.
  • Completed 34 projects for my clients in less than three years.
  • Collaborated with 11 clients among the major players in the world IT industry.
  • Worked on 12 Kubernetes-based applications, both on cloud platforms and on-premises. In these projects, I covered the roles of IT architect, DevOps engineer, and software developer.
  • Completed four projects using Terraform as an IaC tool on the AWS platform. The Terraform configurations included advanced features such as modules, conditionals, and data sources for maximum flexibility and maintainability.
  • Used pipelines for CI/CD in 20+ projects. All of these applications were deployed in complex distributed environments. The tools used for CI/CD are Jenkins, Gitlab Pipelines, Buildkite, and Concourse CI.
  • Prepared and taught three courses about infrastructure management automation.
Technologies: Routing, Elastic Load Balancers, UDP, TCP, Proxies, Networking, Firewalls, Containers, Apache Maven, Site Reliability, Amazon CloudWatch, Google Kubernetes Engine (GKE), Database Design, AWS Lambda, Apache Kafka, Elasticsearch, Amazon DynamoDB, Linux Server Administration, Site Reliability Engineering (SRE), Load Balancers, Dynamic Load Balancing, Web Scalability, Scalability, HTML5, Amazon EC2, Helm, AWS CloudFormation, Puppet, AWS SWF, Amazon S3 (AWS S3), Redis, RabbitMQ, NGINX, CI/CD Pipelines, AWS DevOps, Amazon EKS, Continuous Delivery (CD), Continuous Integration (CI), Continuous Development (CD), DevOps, Cloud Architecture, AWS Cloud Architecture, System Administration, Git, Terraform, Amazon Web Services (AWS), Shell Scripting, VMware, Python, Java, ELK (Elastic Stack), Grafana, Prometheus, Jenkins, Ansible, Linux, Google Cloud Platform (GCP), Docker, Kubernetes, Distributed Systems, JVM, Cloud, Developer Relations, Microservices, APIs, Shell, Windows, Windows PowerShell, Ant Design, Jira, Apache, Apache Tomcat, CSS, JavaScript, XML, jQuery, Development, MongoDB, GitHub, PostgreSQL, Unix Shell Scripting, Web Architecture, MySQL, Monitoring, Systems Monitoring, Unit Testing, Agile, Confluence, Bitbucket, PHP 7, Repository Management, WordPress, DevOps Engineer, Scripting, Amazon RDS, Continuous Deployment, HAProxy, CentOS, Dovecot, MinIO, Postfix, Squid Proxy Server, Windows Server, Object Storage, Amazon Elastic Container Service (Amazon ECS), Istio, NoSQL, Amazon API Gateway, Database Management, Node.js, AWS Cloud Computing Services, Amazon EBS, Relational Databases, Databases, Servers, Jenkins Pipeline, SaaS, Infrastructure as Code (IaC), Google Cloud, AWS IAM, Kong, WebSockets, Containerization, Cloud Infrastructure, GitLab CI/CD, Serverless, Serverless Architecture, AWS Elastic Beanstalk, Architecture, Migration, Identity & Access Management (IAM), Python 3, Azure, Azure Cloud Services, YAML, Jira Administration, Message Queues, Amazon Simple Queue Service (SQS), Amazon Virtual Private Cloud (VPC), AWS Key Management Service (KMS), ECS, Bash, Amazon Elastic Container Registry (ECR), Database Administration (DBA), SQL, Zabbix, Content Delivery Networks (CDN), Docker Hub, Kibana, Crypto, GitHub Actions, AWS Secrets Manager, Amazon Simple Email Service (SES), Selenium, AWS ELB, RHEL, Docker Compose, Cloud Computing, CircleCI, Ubuntu Linux, Proxy Servers, Squid, SMTP, Microsoft SQL Server, Oracle Cloud, Azure Kubernetes Service (AKS), Datadog, Beanstalk, DNS, API Gateways, SSL, Cloud Deployment, Azure Active Directory, Azure DevOps, On-premise, Security, Windows System Administration, AWS ALB, System Architecture, Large Scale Distributed Systems, GitLab, MongoDB Atlas, Consulting, AWS Certified Solution Architect, Cloud Security, AWS Deployment, Amazon CloudFront CDN, Amazon OpenSearch, Autoscaling, Audio Codecs, Audio Processing, Penetration Testing, Subversion (SVN), Cron, OpenShift, Cloud Services, Bash Script, Virtualization, AWS CLI, Nagios, IIS 10, Windows Server 2016, Documentation, Big Data, Amazon Firewall, Gmail, Mail Servers, Google Workspace, Testing, Office 365, Microsoft Teams, Storage Area Networks (SAN), AWS Certified DevOps Engineer, Redis Cache, Back-end, Auth0, Real-time Communication (RTC), Scalable Architecture, Startups, Infrastructure Monitoring, Solution Architecture, VMware vSphere, Disaster Recovery Plans (DRP), Disaster Recovery Consulting, IT Infrastructure, Server Infrastructure, Data Center Infrastructure, Argo CD, IBM MQ, REST, REST APIs, Spring Boot, Amazon Aurora, Data-driven Dashboards, Database Migration, Unix, Resource Management, Blockchain, Decentralized Finance (DeFi), IaaS, Amazon Cognito, Amazon EC2 API, Load Testing, Cloud Migration, Data Migration, Azure IaaS, Authentication, Authorization, IT Security, Healthcare, Packer, CloudOps, Configuration Management, Microservices Architecture, Full-stack, Cloudflare, AWS Step Functions, Google Cloud SQL, Google Cloud Storage, Google Compute Engine (GCE), TypeScript, Vault, Gradle, Sentry, SonarQube, Data Analytics, Database Security, Amazon SageMaker, Company Databases, Personally Identifiable Information (PII), Machine Learning Operations (MLOps), AWS IoT, VPN, AWS VPN, Jira Administrator, Data Engineering, Infrastructure, DigitalOcean, Logging, Red Hat OpenShift, AWS Glue, Redshift, Data Mesh, ETL Tools, Ansible Tower, IIS, Amazon Kinesis, Data Pipelines, Cryptography, Spring Microservice, AWS Fargate, Email, Domain DNS Setup, Spam Filtering, Web Hosting & Domain Setup, DomainKeys Identified Mail (DKIM), SPF, Mailchimp, SharePoint 365, SharePoint, Data Centers, IIS SQL Server, Virtual Machines, Azure Virtual Machines, G Suite, IMAP, HTML, POP3, Enterprise Software, IoT Protocols, Software Project Management, API Integration, Platform as a Service (PaaS), Support & Maintenance, Power Shell Commands, Azure Functions, Azure Logic Apps, Azure Virtual Networks, Azure SQL Databases, Serverless Framework, Web Development, Microsoft Azure Cloud Server, Virtual Private Servers, Delivery Management, AWS NLB, Web Security, AWS Amplify, AWS AppSync, Azure SQL, Azure PaaS, Azure Queue, User Stories, High-load, Website Traffic, Site Speed Optimization, High Availability Disaster Recovery (HADR), Training, Training Videos, MSMQ, Microsoft, Leadership, Lambda Functions, Networks, Application Security, Kubernetes Expert, Kubernetes Operations (kOps), Machine Learning, Large-scale Production Deployments, Deployment, Data Build Tool (dbt), Microsoft Power BI, SecOps, OAuth, Access Control, Argo Workflow, GraphQL, Apache Cassandra, Cybersecurity, Okta, OpenID Connect (OIDC), Azure DevOps Services, Amazon ElastiCache, Amazon MSK, Microsoft Exchange, MS Exchange, Google BigQuery, VPC, Database Performance, Back-end Performance, Prisma, Hyper-V, Internet Information Services (IIS), Technical Documentation, Team Leadership, GitOps, Performance Analysis, API/Services Architecture, OpenAPI, Event-driven Architecture, Next.js, Strategic Planning, Active Directory Programming, DHCP, Kerberos, NTLM

Windows Server Administrator

2023 - 2023
Ricoh
  • Acted as Windows administrator to upgrade functional servers for a market-leader copier and printer manufacturer. Participated as a technical lead to a project aimed to upgrade over 700 Windows servers that were reaching EOL in a few months.
  • Worked on various project tasks, including assessing the current server farm, upgrading the servers in place, reinstalling the servers with the current Windows version, migrating the application, and dismissing the servers that were no longer needed.
  • Upgraded the servers running Windows 2003, 2008, 2008 R2, 2012, and 2012 R2. The server farm was installed partially on VMWare ESX clusters and partially on the Azure cloud.
Technologies: Windows, Windows Server, System Administration, Infrastructure, Logging, IIS, Email, Domain DNS Setup, Office 365, SharePoint, SharePoint 365, Data Centers, IIS SQL Server, Virtual Machines, Azure Virtual Machines, Enterprise Software, Support & Maintenance, Power Shell Commands, Azure Virtual Networks, Azure SQL Databases, Web Development, Microsoft Azure Cloud Server, Virtual Private Servers, Azure, Azure IaaS, Azure SQL, Azure PaaS, Azure Queue, User Stories, High Availability Disaster Recovery (HADR), MSMQ, Microsoft, Networks, Large-scale Production Deployments, Access Control, Cybersecurity, Microsoft Exchange, MS Exchange, Hyper-V, Internet Information Services (IIS), Technical Documentation, Strategic Planning, Active Directory Programming, DHCP, Kerberos, NTLM

Cloud Infrastructure Engineer

2022 - 2022
Allegis - Cruise Automation - Main
  • Set up the services for a complete scenario testing application on a GKE cluster.
  • Created the pipelines to automate the CI/CD operations fully.
  • Integrated the application with the internal security system.
Technologies: DevOps, Cloud Infrastructure, Python, JavaScript, Google Cloud Platform (GCP), CI/CD Pipelines, Node.js, React, Buildkite, Scaling, Kubernetes, Google Kubernetes Engine (GKE), SMTP, Datadog, DNS, SSL, Cloud Deployment, On-premise, Security, System Architecture, Large Scale Distributed Systems, Consulting, Cloud Security, Autoscaling, Cron, Cloud Services, Bash Script, Documentation, Big Data, Gmail, Mail Servers, Google Workspace, Testing, Linux Administration, Clustering, Cluster Management, Back-end, Scalable Architecture, Infrastructure Monitoring, Solution Architecture, Data-driven Dashboards, Unix, Resource Management, IaaS, Data Migration, Authentication, Authorization, IT Security, CloudOps, Configuration Management, Microservices, Microservices Architecture, Full-stack, Google Cloud SQL, Google Cloud Storage, Google Compute Engine (GCE), TypeScript, Vault, Data Analytics, Database Security, Company Databases, Personally Identifiable Information (PII), Machine Learning Operations (MLOps), Data Engineering, Infrastructure, Logging, Data Mesh, ETL Tools, Data Pipelines, Cryptography, Email, Domain DNS Setup, Data Centers, Virtual Machines, G Suite, HTML, Enterprise Software, IoT Protocols, API Integration, Platform as a Service (PaaS), Support & Maintenance, Serverless Framework, Web Development, Delivery Management, Web Security, User Stories, High-load, Website Traffic, Site Speed Optimization, High Availability Disaster Recovery (HADR), Networks, Application Security, Kubernetes Expert, Kubernetes Operations (kOps), Machine Learning, Large-scale Production Deployments, Deployment, SecOps, OAuth, Access Control, GraphQL, Cybersecurity, Okta, OpenID Connect (OIDC), Google BigQuery, VPC, Database Performance, Back-end Performance, Prisma, Technical Documentation, GitOps, Performance Analysis, API/Services Architecture, OpenAPI, Next.js, Strategic Planning

CTO

2016 - 2018
Infoline SRL
  • Restructured the working methodology of the technical department adopting the agile framework.
  • Led a total of 15 people in the technical department.
  • Taught four courses on DevOps tools and methodologies.
  • Reimplemented all the development environments on Docker containers.
  • Introduced continuous integration and continuous building processes.
  • Moved the on-premises production environment to the cloud saving €60,000/year.
Technologies: Routing, Elastic Load Balancers, UDP, TCP, Proxies, Networking, Firewalls, Containers, Apache Maven, Site Reliability, Amazon CloudWatch, Database Design, AWS Lambda, Elasticsearch, Amazon DynamoDB, Linux Server Administration, Site Reliability Engineering (SRE), Load Balancers, Dynamic Load Balancing, Web Scalability, Scalability, HTML5, Amazon EC2, Puppet, Amazon S3 (AWS S3), NGINX, CI/CD Pipelines, AWS DevOps, Continuous Delivery (CD), Continuous Integration (CI), Continuous Development (CD), DevOps, CTO, Cloud Architecture, AWS Cloud Architecture, LAMP, System Administration, Git, Amazon Web Services (AWS), Docker, Jenkins, Shell Scripting, PHP, Python, Java, Agile, Linux, Distributed Systems, JVM, Cloud, Developer Relations, Microservices, APIs, Shell, Windows, Windows PowerShell, Ant Design, Jira, Apache, Apache Tomcat, CSS, JavaScript, XML, jQuery, Development, MongoDB, GitHub, PostgreSQL, Unix Shell Scripting, Web Architecture, MySQL, Monitoring, Systems Monitoring, Unit Testing, Confluence, Bitbucket, PHP 7, Repository Management, WordPress, DevOps Engineer, Scripting, Continuous Deployment, HAProxy, CentOS, Dovecot, Postfix, Squid Proxy Server, Windows Server, Object Storage, NoSQL, Amazon API Gateway, Database Management, AWS Cloud Computing Services, Amazon EBS, Relational Databases, Databases, Servers, Jenkins Pipeline, SaaS, AWS IAM, Containerization, Cloud Infrastructure, Serverless, Serverless Architecture, AWS Elastic Beanstalk, Architecture, Migration, Identity & Access Management (IAM), Python 3, Jira Administration, Message Queues, Amazon Virtual Private Cloud (VPC), AWS Key Management Service (KMS), Bash, Database Administration (DBA), SQL, Zabbix, Docker Hub, Crypto, AWS Secrets Manager, Selenium, AWS ELB, RHEL, Docker Compose, Cloud Computing, Ubuntu Linux, Proxy Servers, Squid, SMTP, Microsoft SQL Server, Oracle Cloud, Beanstalk, DNS, SSL, Cloud Deployment, On-premise, Security, Windows System Administration, System Architecture, Large Scale Distributed Systems, Cloud Security, Autoscaling, Penetration Testing, Subversion (SVN), Cron, Cloud Services, Bash Script, Virtualization, Nagios, IIS 10, Windows Server 2016, Documentation, Amazon Firewall, Gmail, Mail Servers, Google Workspace, Testing, Storage Area Networks (SAN), Linux Administration, Clustering, Cluster Management, AWS Certified DevOps Engineer, Redis Cache, Back-end, Real-time Communication (RTC), Scalable Architecture, Infrastructure Monitoring, Solution Architecture, Disaster Recovery Plans (DRP), Disaster Recovery Consulting, IT Infrastructure, Server Infrastructure, Data Center Infrastructure, REST, REST APIs, Spring Boot, Data-driven Dashboards, Database Migration, Unix, Resource Management, IaaS, Amazon EC2 API, Load Testing, Cloud Migration, Data Migration, Authentication, Authorization, IT Security, Healthcare, CloudOps, Configuration Management, Microservices Architecture, Full-stack, Vault, Gradle, Data Analytics, Database Security, Company Databases, Personally Identifiable Information (PII), VPN, AWS VPN, Jira Administrator, Data Engineering, Infrastructure, Logging, Data Mesh, ETL Tools, Ansible Tower, IIS, Data Pipelines, Cryptography, Spring Microservice, Email, Domain DNS Setup, Spam Filtering, Web Hosting & Domain Setup, DomainKeys Identified Mail (DKIM), SPF, Mailchimp, Data Centers, Virtual Machines, G Suite, IMAP, HTML, POP3, Enterprise Software, Software Project Management, API Integration, Platform as a Service (PaaS), Support & Maintenance, Power Shell Commands, Serverless Framework, Web Development, Delivery Management, AWS NLB, Web Security, User Stories, High-load, Website Traffic, Site Speed Optimization, High Availability Disaster Recovery (HADR), Training, Training Videos, Microsoft, Leadership, Lambda Functions, Networks, Application Security, Large-scale Production Deployments, Deployment, Data Build Tool (dbt), Microsoft Power BI, SecOps, OAuth, Access Control, Cybersecurity, Microsoft Exchange, MS Exchange, Database Performance, Back-end Performance, Internet Information Services (IIS), Technical Documentation, Team Leadership, GitOps, Performance Analysis, API/Services Architecture, OpenAPI, Event-driven Architecture, Next.js, Strategic Planning, Active Directory Programming, DHCP, Kerberos, NTLM

IT Manager

2013 - 2016
Central Europe
  • Managed the yearly IT budget of the organization (about €800,000).
  • Migrated three legacy applications to the cloud implementing automatic provisioning and autoscaling features.
  • Taught five courses to my colleagues and to our clients.
  • Participated in the core group for the joint development of the European electronic monitoring system (EMS).
Technologies: Routing, Elastic Load Balancers, UDP, TCP, Proxies, Networking, Firewalls, Apache Maven, Amazon CloudWatch, Database Design, AWS Lambda, Amazon DynamoDB, Linux Server Administration, Load Balancers, Dynamic Load Balancing, Web Scalability, Scalability, HTML5, Amazon EC2, Puppet, Amazon S3 (AWS S3), Ubuntu, CI/CD Pipelines, AWS DevOps, Continuous Delivery (CD), Continuous Integration (CI), Continuous Development (CD), CTO, Cloud Architecture, AWS Cloud Architecture, LAMP, System Administration, Git, Shell Scripting, Ansible, PHP, Python, Java, Agile, Linux, JVM, Cloud, Developer Relations, Shell, Windows, Ant Design, Apache, Apache Tomcat, CSS, JavaScript, XML, jQuery, Development, MongoDB, PostgreSQL, Unix Shell Scripting, Web Architecture, MySQL, Monitoring, Systems Monitoring, Unit Testing, Scripting, Amazon RDS, CentOS, Postfix, Squid Proxy Server, Windows Server, Object Storage, NoSQL, Amazon API Gateway, Database Management, AWS Cloud Computing Services, Amazon EBS, Relational Databases, Databases, Servers, SaaS, Cloud Infrastructure, Serverless, Serverless Architecture, AWS Elastic Beanstalk, Architecture, Migration, Identity & Access Management (IAM), Python 3, Message Queues, Amazon Simple Queue Service (SQS), Amazon Virtual Private Cloud (VPC), AWS Key Management Service (KMS), Bash, Database Administration (DBA), SQL, Zabbix, Content Delivery Networks (CDN), Amazon Web Services (AWS), Crypto, AWS Secrets Manager, Selenium, AWS ELB, RHEL, Cloud Computing, Ubuntu Linux, Proxy Servers, Squid, SMTP, Microsoft SQL Server, Beanstalk, DNS, API Gateways, SSL, Cloud Deployment, On-premise, Security, Windows System Administration, AWS ALB, System Architecture, MongoDB Atlas, Cloud Security, AWS Deployment, Amazon CloudFront CDN, Autoscaling, Audio Codecs, Audio Processing, Penetration Testing, Subversion (SVN), Cron, Cloud Services, Bash Script, Virtualization, AWS CLI, Nagios, Windows Server 2016, Documentation, Amazon Firewall, Mail Servers, Testing, Storage Area Networks (SAN), Linux Administration, Clustering, Cluster Management, AWS Certified DevOps Engineer, Back-end, Real-time Communication (RTC), Scalable Architecture, Infrastructure Monitoring, Solution Architecture, Disaster Recovery Plans (DRP), Disaster Recovery Consulting, IT Infrastructure, Server Infrastructure, Data Center Infrastructure, Data-driven Dashboards, Database Migration, Unix, Resource Management, IaaS, Load Testing, Cloud Migration, Data Migration, Authentication, Authorization, IT Security, CloudOps, Configuration Management, Microservices, Microservices Architecture, Full-stack, Vault, Data Analytics, Database Security, Company Databases, Personally Identifiable Information (PII), VPN, AWS VPN, Data Engineering, Infrastructure, Logging, Data Mesh, ETL Tools, Ansible Tower, Cryptography, Email, Domain DNS Setup, Spam Filtering, Web Hosting & Domain Setup, SPF, Mailchimp, SharePoint, Data Centers, Virtual Machines, IMAP, HTML, POP3, Enterprise Software, Software Project Management, API Integration, Platform as a Service (PaaS), Support & Maintenance, Power Shell Commands, Serverless Framework, Web Development, Delivery Management, AWS NLB, Web Security, User Stories, High-load, Website Traffic, Site Speed Optimization, High Availability Disaster Recovery (HADR), Training, Training Videos, Microsoft, Leadership, Lambda Functions, Networks, Application Security, Large-scale Production Deployments, Deployment, Data Build Tool (dbt), Access Control, Cybersecurity, Microsoft Exchange, MS Exchange, Database Performance, Back-end Performance, Internet Information Services (IIS), Technical Documentation, Team Leadership, Performance Analysis, API/Services Architecture, OpenAPI, Event-driven Architecture, Strategic Planning, Active Directory Programming, DHCP, Kerberos, NTLM

Systems Engineer

1993 - 2013
Cedacri SpA
  • Implemented the server farm monitoring (3,500 servers) in two months.
  • Completed 20 projects for our clients and 15 internal projects.
  • Developed the internal hardware provisioning portal.
Technologies: Routing, UDP, TCP, Proxies, Networking, Firewalls, Database Design, Linux Server Administration, Load Balancers, Dynamic Load Balancing, Web Scalability, Scalability, HTML5, Ubuntu, LAMP, System Administration, VMware, Azure Active Directory, Windows Server, Shell Scripting, Puppet, PHP, Python, Java, Linux, JVM, Shell, Windows, Apache, Apache Tomcat, CSS, JavaScript, XML, Development, PostgreSQL, Unix Shell Scripting, Web Architecture, MySQL, Monitoring, Systems Monitoring, Unit Testing, Scripting, CentOS, Postfix, Squid Proxy Server, Database Management, Relational Databases, Databases, Servers, Architecture, Migration, Identity & Access Management (IAM), Python 3, Message Queues, Bash, Database Administration (DBA), SQL, Zabbix, Crypto, RHEL, Ubuntu Linux, Proxy Servers, Squid, SMTP, Microsoft SQL Server, DNS, On-premise, Security, Windows System Administration, System Architecture, Large Scale Distributed Systems, Autoscaling, Audio Codecs, Audio Processing, Penetration Testing, Subversion (SVN), Cron, Bash Script, Virtualization, Nagios, IIS 10, Windows Server 2016, Documentation, Mail Servers, Testing, Storage Area Networks (SAN), Linux Administration, Clustering, Cluster Management, Real-time Communication (RTC), Infrastructure Monitoring, Solution Architecture, VMware vSphere, Disaster Recovery Plans (DRP), Disaster Recovery Consulting, IT Infrastructure, Server Infrastructure, Data Center Infrastructure, IBM MQ, Data-driven Dashboards, Database Migration, Unix, Resource Management, Load Testing, Data Migration, Authentication, Authorization, IT Security, Configuration Management, IBM Db2, Vault, Database Security, Company Databases, Infrastructure, Logging, Ansible Tower, IIS, Cryptography, Email, Domain DNS Setup, Spam Filtering, Web Hosting & Domain Setup, SPF, SharePoint, Data Centers, IIS SQL Server, Virtual Machines, IMAP, HTML, POP3, Enterprise Software, Software Project Management, Support & Maintenance, Power Shell Commands, Web Development, Delivery Management, Web Security, High-load, Website Traffic, Site Speed Optimization, High Availability Disaster Recovery (HADR), MSMQ, Microsoft, Networks, Application Security, Large-scale Production Deployments, Deployment, Access Control, Cybersecurity, Microsoft Exchange, MS Exchange, Database Performance, Back-end Performance, Hyper-V, Internet Information Services (IIS), Technical Documentation, Performance Analysis, API/Services Architecture, OpenAPI, Active Directory Programming, DHCP, Kerberos, NTLM

Cloud Infrastructure Development

This project was for a self-driving vehicle manufacturer. I acted as a DevOps engineer and oversaw the cloud infrastructure development.

The most important tasks revolved around:
• Setting up compute instances
• Setting up services: front-end server, back-end server, convergence service
• Setting up staging and production environments
• Sizing, deploying, and managing Kubernetes resources
• Setting up pipelines for automatic build, test, and deployment cycles
• Integrating the application with the internal security system
• Managing internal users of the application
• Assisting with complementary emergent cloud infrastructure needs

Technologies and skills applied:
• GCP
• Cloud infrastructure management: compute instances, services orchestration, user management, scaling
• CI/CD Pipelines
• Buildkite
• Python
• JavaScript
• Node.js
• React

AWS DevOps Engineer for HR Platform

https://www.engagetech.com/
The platform is used to make finding, hiring, and paying workers painless.

I was in charge of managing the existing platform and improving the overall architecture for efficiency, reliability and scalability.

The tools used to manage the application are:
- AWS CloudFormation for IaC
- Puppet for resource configuration
- Buildkite for CI/CD pipelines
- Python scripts to glue together the automation tools
- CloudWatch to monitor the infrastructure
- RDS (MySQL and PostgreSQL) for the database layer

The microservices are running on ECS.
All operations are fully automated including service autoscaling.
The deployments into the production environment happen multiple times per day. The DevOps pipelines ensure continuous deployments without service interruption.

I also participated in the revision of the infrastructure to minimise costs, providing a saving of >10K / month.

DevOps Engineer for a IoT Device Monitoring Company

The platform collects data from a large amount of IoT devices (100,000+) and defines alarm thresholds to alert the user of malfunctioning in the system. It provides some dashboards based on CloudWatch to lead the client to monitor the state of their devices.

My responsibilities in the project:
• Engage with product and engineering to drive and improve the whole lifecycle of operational readiness.
• Write software layers, scripts, deployment frameworks, tracers, monitors, self-healing, and auto-remediation tools and automate the processes.
• Build and maintain software modules for use and re-use in cloud automation
• Maintain business continuity by identifying and driving opportunities to make systems highly resilient and minimize human intervention.
• Assist our software engineering team to ensure accurate monitoring and metrics are being built into applications before going to production.
• Maintain up-to-date documentation on deployments, processes, and standard operating procedures and runbooks.

Marine Information Collection System

This application collects navigation parameters from vessels. It provides an API used by ships to send data to a MongoDB database. The system ingests a huge amount of data from sea-going vessels: several TBs of time-series data. 1TB+/year of IoT data.

The application is deployed on AWS and is fully automated using Terraform as an IaC tool.

I designed and implemented the whole architecture of the application, including an API Gateway, an EKS cluster to run the microservices that compose the application layer, a MongoDB ReplicaSet installation, and an OAuth 2.0 authentication service.

AWS, Kubernetes, and Database Engineer

Acted as a DevOps engineer for a big enterprise working in the US public sector.

I worked as Kubernetes expert to help with the migration of the services of an application from AWS ECS to EKS. The new setup was completely automated using Terraform and ConcourseCI. I was also responsible for database management, backup, and migration (PostgreSQL on RDS).

Windows Server Administrator

http://www.ricoh.com
I acted as a Windows administrator to upgrade functional servers for a market-leader copier and printer manufacturer. I also participated as a technical lead in a project aimed at upgrading over 700 Windows servers that were reaching EOL in a few months.

I worked on various project tasks, including assessing the current server farm, upgrading the servers in place, reinstalling the servers with the current Windows version, migrating the application, and dismissing the servers that were no longer needed. Servers running Windows 2003, 2008, 2008 R2, 2012, and 2012 R2 were upgraded. The server farm was installed partially on VMWare ESX clusters and partially on the Azure cloud.

DevOps Engineer Work for a NFT Marketplace

I worked as a DevOps engineer in a team of six. I supported the team in setting up the environments for the production stage.

TASKS AND DELIVERABLES
• Set up a CI/CD.
• Configure SSL, load balancer, monitoring, and secret management.
• Manage and set up blockchain nodes.

Mailing Application

A fully automated, distributed, multiservice-based mail sending application.

The application reads email information and sends massive emails asynchronously. It is implemented in Java (Spring Boot) and Python. It is fully automated: Building, testing, deploying, monitoring, log collection, and autoscaling are all automated processes that require no manual intervention at all.

The code repository is hosted by GitHub. The CI/CD pipeline is implemented with Jenkins.

Personal Loans Web Application

https://login.avverafinanziamenti.it/
A web application that manages consumer credit for an important Italian bank.
The application is based on microservices deployed in some WebSphere Liberty Profile Application Server instances. The management of the instances is fully automated with custom scripts. The monitoring of the application is implemented with Prometheus and Grafana.

Senior DevOps Engineer for R&D Department

I collaborated with the product and engineering team to improve the software development and operation lifecycle.
For process automation, I designed and implemented the frameworks.
Also, I provisioned the cloud infrastructure environment using CloudFormation as an Infrastructure as Code (IaC) tool.
The project was deployed on an EKS cluster on AWS.

Electronic Monitoring System

The eMS is an electronic monitoring system provided free of charge to European ERDF programs. The system was designed by Interact EU in close collaboration with a core group of four Interreg programs.

DevOps Engineer on AWS - EKS

A project involving an EKS cluster (native Kubernetes on AWS) with microservices using Kafka queues to communicate with each other.
The application collects IoT data from measurement system devices for state monitoring, alarm triggering, and performance measurements.

After acquiring the platform from another company, I was in charge of the migration from an AWS account to a new one. While designing the new infrastructure, I also applied several architectural improvements to achieve better scalability, reliability, and maintainability.

Monitoring of a Kubernetes Cluster with Prometheus and Grafana

I installed and configured Prometheus and Grafana on a Kubernetes cluster deployed on Container Engine for Kubernetes in an Oracle Cloud environment.

The components have been installed with a Helm chart using the Operator configuration. After installing the components, the existing application has been configured to send the metrics to Prometheus. The project included the creation of some Grafana dashboards to monitor the most relevant metrics of the infrastructure and the application.

DevOps Engineer for Graphic Design Enterprise

Helped enhance the platform of a graphic design company. I improved the maintenance processes of the platform by implementing a fully automated framework, integrated the authentication system with Office365, and migrated a website to a stack based on Python, Django, and Apache.

DevOps Engineer for a Company Developing a Cryptocurrency Wallet

My responsibilities in the project:
• Working with the stakeholders from the client team to define the implementation of the processes.
• Setting up the CI/CD pipelines with GitHub Actions.
• Packaging and delivering the mobile app and desktop apps.
• Maintaining the website deployed on AWS.

DevOps Engineer for a Leading Crypto Tax Platform and Cryptocurrency Tax Accounting Company

The platform runs on Ethereum nodes organized as microservice applications deployed on an EKS cluster on GCP. The CI/CD pipeline is based on Argo CD. The deployment environment is based on a docker-composed environment dynamically setup based on local and remote services.

My responsibilities in the project included:
• Organize and automate the CI/CD pipelines.
• Create the development environment framework (based on Tilt).
• Design and implement the auto-scaling rules for the application components and the infrastructure resources.

DevOps Specialist for Digital Marketing Agency

Acted as a DevOps engineer for a marketing agency to design, provision, and maintain the platform. The client is hosting their platform on an AWS environment.

I was responsible for:
• Assessing the existing infrastructure.
• Proposing enhancements to improve scalability, reliability, and efficiency.
• Improving the security of the cloud environment and resources.
• Managing the DNS servers and SSL/TLS certificates.
• Defining and monitoring resource backups.
• Monitoring the relevant parameters of the application.
• Applying security updates and patches.
• Responding to incidents.
• Managing the DevOps processes for the organization in partnership with the IT department and VP of digital marketing.
• Migrating some web environments to WordPress.
• Participating in the development of the backend components.

DevOps Engineer for a Facial Recognition Startup

I served as a DevOps engineer for a startup in the gaming/infotainment industry that wanted to scale a recently launched app.

The activities I performed included:
• Set up and maintain PostgreSQL for high-load applications.
• Use Docker for development and production.
• Provide the resources on the Azure environment.
• Design file management solutions on the cloud.
• Set up and design the CI/CD pipelines.
• Write reusable scripts to provision production and staging instances (Ansible, Terraform).

Automatic Provisioning of an AWS Cloud Environment for a Web Application

I was responsible for the redesign of the cloud-based infrastructure of the company. I provided architectural guidance and implemented infrastructure as a code approach to the application environment. The application is running on a Kubernetes cluster on AWS (EKS).

Tasks and deliverables included:
• Enhancements to the environment for efficiency, scalability, and reliability
• Automation of processes
• Security revision and enhancement
• Architectural guidance and implementation of the suggestions

Prometheus Setup and Optimization for a Bare Metal Cloud Provider

I improved the reliability and efficiency of the Prometheus setup for a big bare metal cloud provider.

The client was collecting a huge amount of network data from 1,000+ network interfaces and had the need to aggregate the data and present it to the clients.
I had the responsibility of improving the query time of the metrics to provide real-time statistics visibility on the dashboards.

For this project, my strategy has been:
• Analyze and document the existing setup and business requirements.
• Connect the existing Prometheus installation with the PostgreSQL database where the metrics data was saved.
• Improve the PromQL queries to aggregate data.

Automatic Provisioning of Azure Resources

A project for the Danske Bank about the automatic provision of infrastructure resources on Azure. The goal was to allow the development team to be independent in tcreatingresources without external assistance from the System Administration team.

The activities included in the project were the following:
• Define ARM templates to create resources (virtual networks, VMs, storage services)
• Grant the permissions to AD Groups to launch the templates and configure resources
• Configure resource quota to avoid misuse of the service
• Connect the ServiceNow API with the Azure cloud infrastructure to let the users create resources automatically on their own

JBoss Migration

The migration of the JBoss infrastructure of an Insurance company from versions 5 and 6 to 7.2.

The migration process is completely automated using Ansible and includes the provisioning of VMWare instances, application server installation and configuration, definition of external resources, and application deployment.

Senior Proxy Administrator

Deployment and troubleshooting of an existing proxy platform based on Squid. The application intercepts data at the network level and provides security and confidentiality of data in transit. The application is fully configurable in terms of security level on a per-connection basis.

I was responsible for the management of the central infrastructure based on Linux servers deployed on the AWS cloud environment and Squid proxy server.

Troubleshooting an Enterprise Queuing System

Investigated a performance and reliability issue on the routing to an application running on a Windows 2016 instance on AWS.

I was responsible for analyzing and solving a problem that the client had with the delivery of the service to the final users of the platform. I completely redesigned the application routing at the cloud level designing a new AWS ELB setup.

DevOps Engineer for an Anonymizing Platform

I worked with a team of engineers that is offering an anonymizing platform to help activists avoid censorship.

The application uses many cloud and hosting platforms to make user tracking unfeasible:
• AWS
• GCP
• Azure
• DigitalOcean
• Alibaba
• Vulture

My contribution was to fully automate the proxy deployment and monitoring processes. I also implemented the automatic configuration of the resources of the platform.

Languages

Java, Python, PHP, HTML5, CSS, JavaScript, XML, PHP 7, Python 3, YAML, Bash, SQL, Bash Script, HTML, GraphQL, TypeScript

Frameworks

Windows PowerShell, Ant Design, OAuth 2, Selenium, Spring Boot, Spring Microservice, SPF, Serverless Framework, Next.js, Django

Libraries/APIs

jQuery, Node.js, Jenkins Pipeline, REST APIs, Amazon EC2 API, AWS Amplify, OpenAPI, NTLM, React

Tools

Ansible, Jenkins, Grafana, ELK (Elastic Stack), Git, VMware, Terraform, Amazon EKS, NGINX, RabbitMQ, AWS CloudFormation, Puppet, Helm, Google Kubernetes Engine (GKE), Amazon CloudWatch, Apache Maven, Shell, Jira, Apache, Apache Tomcat, GitHub, Confluence, Bitbucket, Postfix, Squid Proxy Server, Amazon Elastic Container Service (Amazon ECS), Istio, Amazon EBS, AWS IAM, Kong, GitLab CI/CD, Amazon Simple Queue Service (SQS), Amazon Virtual Private Cloud (VPC), AWS Key Management Service (KMS), Amazon Elastic Container Registry (ECR), Zabbix, Docker Hub, Kibana, Amazon Simple Email Service (SES), AWS ELB, Docker Compose, CircleCI, Squid, Azure Kubernetes Service (AKS), Beanstalk, GitLab, MongoDB Atlas, AWS Deployment, Amazon CloudFront CDN, Subversion (SVN), Cron, AWS CLI, Nagios, Amazon Firewall, Microsoft Teams, Auth0, VMware vSphere, IBM MQ, Amazon Cognito, Packer, CloudOps, AWS Step Functions, Google Compute Engine (GCE), Vault, Sentry, SonarQube, Amazon SageMaker, VPN, Logging, AWS Glue, Ansible Tower, AWS Fargate, Mailchimp, G Suite, Azure Logic Apps, AWS AppSync, Microsoft Power BI, Azure DevOps Services, Amazon ElastiCache, Microsoft Exchange, MS Exchange, Prisma, Hyper-V, Gradle, Concourse CI, SaltStack, Bamboo, Splunk, Logstash

Paradigms

DevOps, Continuous Development (CD), Continuous Integration (CI), Continuous Delivery (CD), Database Design, Microservices, Web Architecture, Unit Testing, Agile, Continuous Deployment, Serverless Architecture, Azure DevOps, Penetration Testing, DevSecOps, Testing, REST, Load Testing, Microservices Architecture, API/Services Architecture, Event-driven Architecture

Platforms

Linux, Kubernetes, Docker, Google Cloud Platform (GCP), Amazon Web Services (AWS), LAMP, Ubuntu, Amazon EC2, Apache Kafka, AWS Lambda, JVM, Windows, WordPress, CentOS, Windows Server, AWS Cloud Computing Services, AWS Elastic Beanstalk, Azure, Ubuntu Linux, AWS ALB, OpenShift, Windows Server 2016, DigitalOcean, Blockchain, Ethereum, Unix, Azure IaaS, AWS IoT, Red Hat OpenShift, SharePoint 365, SharePoint, Azure Functions, AWS NLB, Azure PaaS, Microsoft, Buildkite, Contentful, Google AppSheet

Storage

Redis, Amazon S3 (AWS S3), AWS SWF, Amazon DynamoDB, Elasticsearch, MongoDB, PostgreSQL, MySQL, NoSQL, Database Management, Relational Databases, Databases, Google Cloud, Azure Cloud Services, Database Administration (DBA), Microsoft SQL Server, Oracle Cloud, Datadog, Cloud Deployment, Azure Active Directory, On-premise, Storage Area Networks (SAN), Redis Cache, Amazon Aurora, Database Migration, Google Cloud SQL, Google Cloud Storage, Database Security, Company Databases, Redshift, Data Pipelines, Data Centers, IIS SQL Server, Azure SQL Databases, Azure SQL, Azure Queue, Database Performance, IBM Db2

Industry Expertise

Healthcare, Cybersecurity

Other

Prometheus, Shell Scripting, System Administration, AWS Cloud Architecture, Cloud Architecture, CTO, AWS DevOps, CI/CD Pipelines, Scalability, Web Scalability, Dynamic Load Balancing, Load Balancers, Site Reliability Engineering (SRE), Linux Server Administration, Site Reliability, Containers, Firewalls, Networking, Proxies, TCP, UDP, Elastic Load Balancers, Routing, Distributed Systems, Cloud, Developer Relations, APIs, Development, Unix Shell Scripting, Monitoring, Systems Monitoring, Repository Management, DevOps Engineer, Security, Scripting, Amazon RDS, HAProxy, Dovecot, MinIO, Object Storage, Amazon API Gateway, Servers, SaaS, Infrastructure as Code (IaC), WebSockets, Containerization, Cloud Infrastructure, Serverless, Architecture, Migration, Identity & Access Management (IAM), Jira Administration, Message Queues, ECS, Content Delivery Networks (CDN), Crypto, GitHub Actions, AWS Secrets Manager, RHEL, Cloud Computing, Proxy Servers, Scaling, SMTP, DNS, API Gateways, SSL, Windows System Administration, System Architecture, Large Scale Distributed Systems, Consulting, AWS Certified Solution Architect, Cloud Security, Amazon OpenSearch, Autoscaling, Audio Codecs, Audio Processing, Cloud Services, Virtualization, IIS 10, Documentation, Office 365, Solution Architecture, Argo CD, Big Data, Gmail, Mail Servers, Google Workspace, Linux Administration, Clustering, Cluster Management, AWS Certified DevOps Engineer, Back-end, Real-time Communication (RTC), Scalable Architecture, Startups, Infrastructure Monitoring, Disaster Recovery Plans (DRP), Disaster Recovery Consulting, IT Infrastructure, Server Infrastructure, Data Center Infrastructure, Data-driven Dashboards, Resource Management, Decentralized Finance (DeFi), IaaS, Cloud Migration, Data Migration, Authentication, Authorization, IT Security, Configuration Management, Cloudflare, Data Analytics, Personally Identifiable Information (PII), Machine Learning Operations (MLOps), AWS VPN, Jira Administrator, Infrastructure, Data Mesh, ETL Tools, IIS, Amazon Kinesis, Cryptography, Email, Domain DNS Setup, Spam Filtering, Web Hosting & Domain Setup, DomainKeys Identified Mail (DKIM), Virtual Machines, Azure Virtual Machines, IMAP, POP3, Enterprise Software, IoT Protocols, Software Project Management, API Integration, Platform as a Service (PaaS), Support & Maintenance, Power Shell Commands, Azure Virtual Networks, Web Development, Microsoft Azure Cloud Server, Virtual Private Servers, Delivery Management, Web Security, User Stories, High-load, Website Traffic, Site Speed Optimization, High Availability Disaster Recovery (HADR), Training, Training Videos, MSMQ, Leadership, Lambda Functions, Networks, Application Security, Kubernetes Expert, Kubernetes Operations (kOps), Machine Learning, Large-scale Production Deployments, Deployment, Data Build Tool (dbt), SecOps, OAuth, Access Control, Argo Workflow, Apache Cassandra, Okta, OpenID Connect (OIDC), Amazon MSK, Google BigQuery, VPC, Back-end Performance, Internet Information Services (IIS), Technical Documentation, Team Leadership, GitOps, Performance Analysis, Strategic Planning, Active Directory Programming, DHCP, Kerberos, Full-stack, Data Engineering, Service Meshes, SSL Certificates, SysOps, AWS Certified SysOps Administrator, Code Deployment, Build Pipelines, Cryptocurrency, Non-fungible Tokens (NFT), Tilt, ARM, Azure Pipelines, ServiceNow

DECEMBER 2022 - PRESENT

AWS Solutions Architect Associate

Amazon Web Services