Byron Kim, ISO 27001 Developer in New York, NY, United States
Byron Kim

ISO 27001 Developer in New York, NY, United States

Member since April 5, 2021
With over 11 years of hands-on experience working in infrastructure from data centers to the cloud, Byron is an open-source enthusiast who loves to learn new things every day. He's also an AWS-certified solutions architect and always strives to put all of his infrastructure projects through source control.
Byron is now available for hire

Portfolio

Experience

Location

New York, NY, United States

Availability

Part-time

Preferred Environment

Amazon Web Services (AWS), Linux

The most amazing...

...project I've done was a Jenkins instance completely immutable and able to run in Docker by installing and configuring all of the plugins at build/run time.

Employment

  • DevSecOps

    2015 - PRESENT
    Voyent, Inc
    • Migrated Jenkins into source control and made it fully immutable using various plugins and Groovy scripts to configure Jenkins and all of its jobs.
    • Secured the AWS environment and standards and helped the client achieve ISO 27001 certification.
    • Migrated all Python applications to Docker and leveraged multi-stage builds to decrease image sizes for more efficient deployments.
    • Deployed Atlantis to manage Terraform changes through pull requests to increase visibility among the team.
    • Leveraged an AWS EC2 container service and application load balancer to introduce microservice architecture.
    • Wrote Python script to monitor all user's access key age and rotated every 90 days using Lambda, Cloudwatch Events, and Google sheets. This helped towards achieving ISO compliance.
    Technologies: Docker, Terraform, Vault, Consul, Amazon ECS (Amazon Elastic Container Service), AWS ALB, Amazon S3 (AWS S3), Amazon CloudFront CDN, Amazon EC2, Redshift, AWS RDS, Python, Node.js, Jenkins, AWS CodeDeploy, ISO 27001, Compliance, HIPAA Compliance, Security, Packer, Ansible, Atlantis, Amazon Web Services (AWS), Linux, Kubernetes, DevOps, DevSecOps, AWS IAM
  • Director of IT Infrastructure

    2012 - 2015
    Integrative Nutrition
    • Managed the cloud (AWS, Rackspace), a service provider (Datapipe), and internal infrastructure.
    • Configured the back-end infrastructure with Ansible and EC2 instances running Node.js, MongoDB, and Nginx.
    • Oversaw all technological purchases of IT services and equipment, operating within a $2 million budget, and outlined policies for all equipment.
    Technologies: Windows, Linux, Amazon Web Services (AWS), AWS ALB, Amazon EC2, DevOps, DevSecOps, AWS IAM

Experience

  • Immutable Jenkins Server

    Jenkins is still a widely used CI/CD but often requires a lot of maintenance. With the use of Docker, I set up Jenkins to be fully immutable. The plugins are installed at build time, and with the use of Groovy, I can pre-seed all the jobs beforehand. The build logs are then exported to a central platform. This allows the Jenkins configuration to live in source control, and updates and rollbacks can be handled gracefully.

  • Converted Batch Server to Immutable Infrastructure

    When I started with a client, they had a single EC2 instance running cron jobs for all their ingestion processes. While there were backups of the configuration, if the instance failed, bringing back the server would take a considerable amount of effort. I helped convert all of the applications to Docker and leveraged ECS, Lambda, and Cloudwatch Events to make the infrastructure immutable. All stateful data was stored in S3 or RDS, and the client did not have to worry about a single point of failure of their EC2 instance. This also helped reduce costs since ECS instances could scale based on need.

  • Achieved ISO 27001 Certification

    A client had a requirement to achieve ISO 27001 Certification to acquire more client accounts. Various projects were completed, such as rotating AWS IAM access keys for all users, implementing Hashicorp Vault for secretS storage, segmenting environments (multiple VPCs), and adding a VPN server with RBAC for developers and administrators. These projects were completed on a tight deadline and passed the audit to gain ISO 27001 certification.

Skills

  • Languages

    Bash, Python, Java
  • Tools

    Terraform, Amazon ECS (Amazon Elastic Container Service), AWS IAM, Vault, Amazon CloudFront CDN, Jenkins, Ansible, Git, VPN, AWS CodeDeploy, Packer, Amazon CloudWatch, Amazon Virtual Private Cloud (VPC)
  • Paradigms

    DevOps, DevSecOps, HIPAA Compliance
  • Platforms

    Amazon Web Services (AWS), Linux, Docker, AWS ALB, Amazon EC2, Ubuntu, Windows, Kubernetes, AWS Lambda
  • Storage

    Amazon S3 (AWS S3), Redshift
  • Industry Expertise

    Security
  • Other

    ISO 27001, Compliance, Consul, AWS RDS, Atlantis, Pritunl
  • Libraries/APIs

    Node.js

Education

  • Bachelor's Degree in Computer Engineering
    2001 - 2005
    Fairfield University - Fairfield, CT

Certifications

  • AWS Certified Solutions Architect Associate
    SEPTEMBER 2017 - SEPTEMBER 2020
    AWS

To view more profiles

Join Toptal
Share it with others