Andrea Villa, Developer in Amsterdam, Netherlands
Andrea is available for hire
Hire Andrea

Andrea Villa

Verified Expert  in Engineering

Bio

Andrea loves challenges and enjoys learning new concepts. With more than 20 years of experience in the IT field, he has become an accomplished expert in various skills, including DevOps, offensive security, development, startups, and cryptocurrencies.

Portfolio

IOTA Foundation
Go, Rust, GitHub Actions, GitHub, Ansible, Terraform, Agile, Kanban, Scrum...
IOTA Foundation
Terraform, Amazon Web Services (AWS), Python 3, Grafana, Prometheus, Ansible
Eureka
SSH, WebSockets, Google Cloud, Node.js, Docker

Experience

Availability

Part-time

Preferred Environment

Terminal, Terraform, Docker, Linux, Amazon Web Services (AWS), GCC, DigitalOcean

The most amazing...

...DevOps project I've led was a data center cloud migration of more than 500 services, which involved extensive redesign to take advantage of AWS services.

Work Experience

Staff Research Scientist

2021 - 2024
IOTA Foundation
  • Led a multidisciplinary team of researchers and engineers to develop both a prototype and a production-ready open-source node software to implement the next iteration of the IOTA cryptocurrency L1 protocol.
  • Played a key role in the architectural decisions and writing of the node software in Go, shaping the future direction of the IOTA protocol with an emphasis on test-driven development (TTD).
  • Directed and oversaw the creation of sophisticated node software with advanced capabilities, enabling it to run reliably in a decentralized and trustless setting.
  • Designed and deployed a decentralized mainnet cloud architecture across multiple stakeholders using AWS, DigitalOcean, and Azure.
Technologies: Go, Rust, GitHub Actions, GitHub, Ansible, Terraform, Agile, Kanban, Scrum, Sprints

DevOps Lead | Mainnet Infrastructure Architect

2017 - 2021
IOTA Foundation
  • Architected entire estate using Kubernetes and Hashicorp Vault to audit and manage access centrally bastion hosts and rotating keys.
  • Oversaw the mainnet DevOps team, focusing on enhancing infrastructure operations and promoting team collaboration.
  • Designed and deployed the Mainnet infrastructure used until today, prioritizing stability and scalability.
  • Coordinated deployment processes, ensuring smooth releases and efficient handling of potential issues.
  • Established monitoring procedures to track network health, performance, and security aspects.
  • Integrated self-healing mechanisms for the Mainnet network to improve resilience and reduce potential downtimes.
Technologies: Terraform, Amazon Web Services (AWS), Python 3, Grafana, Prometheus, Ansible

CTO | Founder

2016 - 2017
Eureka
  • Implemented a Docker-based architecture for scientific computations.
  • Created a Node.js back end automating Google Cloud API interactions.
  • Automated the provisioning of multiple infrastructure-as-code environments.
  • Handled CircleCI and Travis Continuous Integration and continuous delivery pipelines.
Technologies: SSH, WebSockets, Google Cloud, Node.js, Docker

Senior DevOps | Full-stack Developer | Security Specialist

2015 - 2017
Multiple Companies
  • Architected scalable and automated CD pipelines on major cloud providers.
  • Served as a full-stack developer and DevOps for several clients across the world.
  • Automated pipelines using, among others, Ruby on Rails, Sinatra, Capistrano, Node.js, Terraform, Ansible, and Puppet.
  • Performed ad-hoc penetration tests on web applications and cloud infrastructures.
Technologies: Capistrano, Node.js, GitLab, Travis CI, CircleCI, Ruby on Rails (RoR), Ansible, Terraform, Kubernetes, Helm, ELK (Elastic Stack), DMARC, DNS, Postfix

Senior Security Consultant

2015 - 2016
Deloitte
  • Served as a senior penetration tester for banks, multinationals, and other global-scale customers.
  • Oversaw large-scale red-teaming operations involving cyber, physical, and human factors.
  • Performed security assessment of web applications, mobile applications, embedded devices, infrastructures, and corporate networks.
  • Awarded CyberLympics champion 2015 in Washington D.C. with team Hack.ERS (cyberlympics.org/?team=hack-ers).
  • Facilitated binary exploitation and exploit writing training.
Technologies: Hashcat, Kali Linux, Windows PowerShell, Cobalt Strike, Burp Suite, DNS, DMARC, Spam Filtering, Malware Analysis, Reverse Engineering, Burp Proxy

Senior DevOps

2014 - 2015
Cloudreach
  • Served as a consultant for global-scale customers.
  • Migrated data centers serving hundreds of services.
  • Architected and implemented complex secure, highly available, and scalable platforms using AWS.
  • Developed Rack-based Ruby RESTful metaprogrammed APIs.
Technologies: Amazon Web Services (AWS), REST APIs, Rack, Google Cloud, AWS CloudFormation, Chef, Puppet

DevOps Engineer

2013 - 2014
Atlassian
  • Managed >120.000 J2EE applications across >50.000 OpenVZ VMs in two DataCenters.
  • Performed internal and external monitoring with Nagios and Zabbix.
  • Automated operations across the board through self-designed pipelines and tools (Python, Ruby and Bash).
  • Led full-scale deployments with Puppet.
Technologies: Boto, OpenVZ, Jakarta EE, Zabbix, Nagios, Puppet

System and Network Administrator | Software Developer

2004 - 2013
Multiple Companies
  • Installed and configured web services like PostgreSQL, MySQL, IIS, Apache, Nginx, Squid, Samba, Plone, Liferay.
  • Designed and developed a system to manage marks and communication between teachers, parents and students.
  • Served as IT Admin for LAN managing routing, web proxying, hosted mailboxes, spam filters, firewall.
  • Maintained the following services for hosted domain: BIND, Postfix, Amavis, iptables.
Technologies: Amavis, ClamAV, Postfix, FastCGI, BIND, Samba, NGINX, Apache, IIS, MySQL, Bash, Linux

Man-in-the-middle Attacks

This tool is a utility to implement man-in-the-middle attacks on a local network by using the Python/Scapy library. This small project demonstrates my deep technical knowledge of networks and security and my proficiency in one of the programming languages I know, Python.

CarTalk, Inc.

Greatly reduced monthly cloud bill via infrastructure optimization and automation from scratch using Ansible.

SQL 2nd Prize

Participated to an algorithmic SQL competition, obtaining the 2nd prize.

CyberLympics Champion 2015

https://cyberlympics.org/?team=hack-ers
Hacking competition winner in Washington D.C. with team Hack.ERS.
2016 - 2016

CISSP Certificate in Cyber Security

(ISC)2 - Amsterdam, Netherlands

2014 - 2014

Certified Solution Architect in Cloud Solutions

AWS - Amsterdam, Netherlands

2013 - 2013

Advanced Searching Certificate in Web Services

Google - Online

2011 - 2013

Master of Science Degree in Operating Systems and Networks

Universidad Politécnica de Valencia - Valencia, Spain

2008 - 2011

Bachelor's Degree in Computer Engineering

Universidad Politécnica de Valencia - Valencia, Spain

Libraries/APIs

GitHub API, Node.js, Rack, REST APIs

Tools

Git, OpenVPN, Iptables, Terminal, CircleCI, Travis CI, Apache, NGINX, AWS IAM, Amazon Elastic Container Service (ECS), Ansible, Terraform, Puppet, Nagios, Zabbix, Boto, AWS CloudFormation, Hashcat, GitLab, Capistrano, Postfix, ClamAV, Amavis, Vault, Chef, Jenkins, GCC, Grafana, GitHub, Helm, ELK (Elastic Stack)

Languages

C, HTML, Perl, Bash, Assembly, C++, SQL, CSS, Python, Java, Ruby, YAML, JavaScript, PHP, Python 3, Go, Rust

Frameworks

Android SDK, SPF, Windows PowerShell, Ruby on Rails (RoR), Express.js

Paradigms

HIPAA Compliance, DevOps, Penetration Testing, Continuous Integration (CI), Agile, Samba, REST, Kanban, Scrum

Platforms

CentOS, Slackware, Linux, Docker, Debian, Amazon Web Services (AWS), Ubuntu, Unix, Visual Studio Code (VS Code), Amazon EC2, Red Hat Linux, Google Cloud Platform (GCP), DigitalOcean, Kubernetes, Azure, Jakarta EE, Burp Suite, Kali Linux, BSD

Industry Expertise

Cybersecurity

Storage

PostgreSQL, MySQL, Amazon DynamoDB, Google Cloud

Other

System Architecture, Scalability, LXC, Network Exploitation, CISSP, Unix Shell Scripting, System Administration, DNS, Spam Filtering, AWS Certified Solution Architect, CI/CD Pipelines, Site Reliability Engineering (SRE), Infrastructure as Code (IaC), Identity & Access Management (IAM), Migration, Networking, CTO, Reverse Engineering, Consul, Unix/Linux Virtualization, DMARC, Cobalt Strike, WebSockets, SSH, IIS, BIND, FastCGI, OpenVZ, Prometheus, GitHub Actions, Sprints, Malware Analysis, Burp Proxy

Collaboration That Works

How to Work with Toptal

Toptal matches you directly with global industry experts from our network in hours—not weeks or months.

1

Share your needs

Discuss your requirements and refine your scope in a call with a Toptal domain expert.
2

Choose your talent

Get a short list of expertly matched talent within 24 hours to review, interview, and choose from.
3

Start your risk-free talent trial

Work with your chosen talent on a trial basis for up to two weeks. Pay only if you decide to hire them.

Top talent is in high demand.

Start hiring