Derrick is available for hire

Derrick Shields

Verified Expert in Engineering

DevOps Engineer and Developer

Location

Reston, VA, United States

Toptal Member Since

December 21, 2022

Derrick is a senior programmer with extensive experience in software architecture and development. He specializes in cloud architecture and designing and writing cloud-native and enterprise-grade software applications. He is proficient in over a dozen programming languages, including Java, Node.js, and C#, with extensive DevOps CI/CD and IT experience. As a Certified Scrum Master and Google Cloud Certified Professional Cloud Architect, Derrick contributes to all aspects of application design.

Software DNS SOAP WebSphere Application Server Web Security WebLogic Full-stack Security DNS Configuration DNS Servers Domain Name System (DNS)Web Hosting GoDaddy SSL Single Sign-on (SSO)

Portfolio

Artisoph

Node.js, React, Redux, TypeScript, Amazon EC2...

Google

Google Cloud, Kubernetes, Google Cloud Platform (GCP), DNS...

Pivotal

Cloud, Software, Java, Spring 5...

Experience

Spring 5 - 20 years Java - 20 years NoSQL - 10 years Go - 10 years Google Cloud - 10 years Gemfire - 10 years Terraform - 10 years

Availability

Part-time

Preferred Environment

Google Cloud, Java, Go, Amazon Web Services (AWS), Cloud Architecture, CI/CD Pipelines, Kubernetes, DevOps, Microservices Architecture, Security, Bash, Web Servers, Apache, Linux Administration

The most amazing...

...project I've led is a rental truck fleet tracking app with real-time telemetry and engine failure prediction created in just a month using Agile and CI/CD.

Work Experience

Cloud Architect Consultant

2020 - PRESENT

Artisoph

Contributed as a technical lead for a SaaS tax accounting CRM product. Used Node.js, TypeScript, React or Redux, and AWS EC2, ECS, Fargate, Lambda, Aurora, DynamoDB, DocumentDB with Mongo DB, RDS, X-Ray, and Cognito.
Engaged as a technical lead on a paper-to-digital transformation project for athlete drug testing. Utilized AWS Amplify, AppSync, and DataStore and CI/CD using AWS CodeBuild, CodeDeploy, and CodePipeline integrated with Microsoft DevOps and TeamCity.
Redesigned and implemented an Auth0-backed authentication process for an online car financing website, allowing partially complete loan applications to resume. Used Java 8, Ruby, Oracle, JavaScript, React, GitHub, and Jenkins.
Integrated a custom-built CRM application with Oracle NetSuite for improved accounting reporting and quicker funding transactions.

Technologies: Node.js, React, Redux, TypeScript, Amazon EC2, Amazon Elastic Container Service (Amazon ECS), AWS Fargate, AWS Lambda, Amazon Aurora, Amazon DynamoDB, Amazon DocumentDB, Amazon RDS, Amazon Cognito, AWS Amplify, AWS AppSync, AWS CodeBuild, AWS CodeDeploy, AWS CodeCommit, DevOps, TeamCity, Auth0, JavaScript, SSL, MySQL, Serverless, API Gateways, AWS CloudFormation, Continuous Integration (CI), Continuous Delivery (CD), Azure, Docker, Google Cloud Platform (GCP), DNS, Content Delivery Networks (CDN), Blockchain, Python, SaaS, Cloud Computing, Architecture, OutSystems, REST APIs, Cloud Architecture, CSS, HTML, Cloud Deployment, HIPAA Compliance, Cloud Infrastructure, Consulting, Best Practices, Secure Code Best Practices, AWS DevOps, AutoML, CI/CD Pipelines, Microservices, Amazon Web Services (AWS), Spring, Single Sign-on (SSO), Linux, Google Kubernetes Engine (GKE), DNS Debugging, Service Meshes, Containerization, Infrastructure as Code (IaC), Terraform, GitHub, Jira, Monitoring, Containers, Continuous Monitoring, Autoscaling, Load Balancers, Audio Processing, Audio Codecs, Amazon EKS, Public Switched Telephone Network (PSTN), Microservices Architecture, Full-stack, Pub/Sub, Google Cloud/Suite, IT Security, Cloud Security, AWS Cloud Architecture, DevSecOps, Security, Identity & Access Management (IAM), Container Orchestration, Hybrid Cloud Infrastructure, API Development, Postman, Bash, JSON Web Tokens (JWT), Scalability, Web Scalability, Site Reliability Engineering (SRE), Web Servers, Build & Release Engineering, ELK (Elastic Stack), NGINX, Amazon S3 (AWS S3), Solution Architecture, DevOps Engineer, Network Security, Orchestration, IaaS, Amazon Simple Queue Service (SQS), VPN, AWS VPN, Infrastructure, Networking, Hardware, Scaling, Linux Administration, DNS Servers, Microsoft, Domain Name System (DNS), DomainKeys Identified Mail (DKIM), Email, HAProxy, Redis, Grafana, Prometheus, IPsec, SecOps, Machine Learning, Elasticsearch, Release Management, Scalable Web Services, Web Hosting, GoDaddy, Amazon Simple Email Service (SES), Email Delivery, Email Design, Email Marketing, Email Template Design

Google Cloud Staff and Senior Solutions Architect

2019 - 2020

Google

Designed and documented official architectural solutions for GCP products and enterprise integration.
Authored an official white paper on multi-region load balancing for multi-AZ App Engine deployment.
Engaged as a security specialist for GCP products and services, covering hardening, the three Rs: rotate, repave, and repair, intrusion detection system, and zero-day exploits.

Technologies: Google Cloud, Kubernetes, Google Cloud Platform (GCP), DNS, Content Delivery Networks (CDN), Cloud Computing, Architecture, REST APIs, Cloud Architecture, Cloud Deployment, Cloud Infrastructure, Best Practices, Secure Code Best Practices, Linux, Google Kubernetes Engine (GKE), DNS Debugging, Service Meshes, DevOps, Containerization, Infrastructure as Code (IaC), GitHub, Monitoring, Containers, Continuous Monitoring, Autoscaling, Load Balancers, Low Latency, TCP/IP, Networks, Full-stack, Pub/Sub, IT Security, Cloud Security, DevSecOps, Security, Identity & Access Management (IAM), Container Orchestration, Hybrid Cloud Infrastructure, Bash, Scalability, Web Scalability, Site Reliability Engineering (SRE), Web Servers, Build & Release Engineering, ELK (Elastic Stack), NGINX, Solution Architecture, DevOps Engineer, Network Security, IaaS, VPN, AWS VPN, Infrastructure, Networking, Hardware, Scaling, Linux Administration, DNS Servers, Domain Name System (DNS), HAProxy, SecOps, Scalable Web Services, Web Hosting, GoDaddy, Email Delivery

Platform Architect | Strategic Accounts

2013 - 2019

Pivotal

Prepared and delivered presentations on Pivotal Cloud Foundry, Pivotal Data Analytics, and big data and data science.
Delivered cloud-native and distributed systems workshops, highlighting Spring, Spring Cloud Data Flow, and Spring Cloud services.
Conducted cloud data architecture planning and discussions, covering relational and NoSQL data, analytics, caching, and multi-datacenter synchronization.
Executed long-term onsite software re-architecture engagements to migrate legacy banking and investment applications to cloud-native digital banking platforms.
Provided industry-specific proof of concepts (POCs), including a transportation industry real-time fleet tracking application using multiplexed telemetry feeds and predictive analytics for engine failure.

Technologies: Cloud, Software, Java, Spring 5, VMware Tanzu Application Service (TAS) (Pivotal Cloud Foundry (PCF)), Cloud Foundry, Gemfire, Greenplum, Predictive Analytics, Eureka, Hystrix, Zuul, NoSQL, Big Data, Amazon Web Services (AWS), SSL, MySQL, Serverless, API Gateways, PHP, AWS Step Functions, AWS CloudFormation, Continuous Integration (CI), Continuous Delivery (CD), Azure, Kubernetes, Docker, Google Cloud Platform (GCP), Beanstalk, DNS, Content Delivery Networks (CDN), Docker Hub, Python, SaaS, Scraping, Cloud Computing, Architecture, REST APIs, SOAP, Cloud Architecture, jQuery, CSS, HTML, .NET, Cloud Deployment, HIPAA Compliance, Cloud Infrastructure, Consulting, Best Practices, Secure Code Best Practices, AWS DevOps, AutoML, CI/CD Pipelines, Microservices, Spring Microservice, Spring, Apache Tomcat, RabbitMQ, Hyperic, Linux, DNS Debugging, Service Meshes, DevOps, Containerization, Infrastructure as Code (IaC), Terraform, Jenkins, GitHub, Artifactory, Jira, Node.js, Monitoring, Containers, Continuous Monitoring, Autoscaling, Load Balancers, Amazon EKS, Low Latency, TCP/IP, Packet Communication, Network Optimization, Networks, Microservices Architecture, Full-stack, Pub/Sub, IT Security, Cloud Security, AWS Cloud Architecture, Hadoop, DevSecOps, Security, Identity & Access Management (IAM), Container Orchestration, Hybrid Cloud Infrastructure, API Development, Postman, Bash, JSON Web Tokens (JWT), Ansible, Chef, Puppet, Scalability, Web Scalability, Site Reliability Engineering (SRE), Web Servers, Build & Release Engineering, Apache, Splunk, ELK (Elastic Stack), NGINX, Amazon S3 (AWS S3), Solution Architecture, DevOps Engineer, Network Security, Orchestration, IaaS, Amazon Simple Queue Service (SQS), VPN, AWS VPN, Infrastructure, Networking, Hardware, Scaling, Linux Administration, DNS Servers, Domain Name System (DNS), HAProxy, Redis, Squid Proxy Server, MinIO, IPsec, Elasticsearch, Release Management, Scalable Web Services, Web Hosting, GoDaddy, Amazon Simple Email Service (SES), Email Delivery

Sales Engineer

2012 - 2013

VMware

Prepared and delivered presentations on vFabric and vSphere technology to prospective customer senior executives, IT directors, and architects.
Created proof-of-concept (POC) technology demonstrations on vFabric components and integration solutions with vSphere portfolio, including Spring framework, Tomcat server, GemFire, SQLFire, RabbitMQ, Hyperic, APM, and Cloud Foundry.
Enabled third-party vendors and ISVs through custom technology workshops and courses.
Supported regional and federal sales in quota achievement; personal targets were achieved in all quarters.

Technologies: VMware ESXi, VMware vCenter, VMware VMotion, VMware NSX, VMware vSphere, VMware Workstation, VMware vSphere HA, VMware Cloud Director, VMware vCloud, VMware vRealize Orchestrator, VMware vRealize Automation, VMware App Volumes, vCenter, Spring, Spring 4, Spring 5, Apache Tomcat, Gemfire, RabbitMQ, Hyperic, APM, Cloud Foundry, VMware, Linux, Continuous Monitoring, Load Balancers, TCP/IP, Packet Communication, Network Optimization, Networks, Full-stack, Hybrid Cloud Infrastructure, Bash, Web Servers, Apache, Solution Architecture, Orchestration, Infrastructure, Networking, Hardware, Linux Administration, DNS Configuration, DNS Servers, Domain Name System (DNS), HAProxy, IPsec, Web Hosting

Subject Matter Expert II

2009 - 2012

SAIC

Engaged as the subject matter expert (SME II) for IBM WebSphere Portal server architecture, development, configuration, and build automation.
Acted as the architect and development lead for system performance, enterprise system security, single-sign-on (SSO) implementation, high availability (HA) and fault tolerance, and 508 compliance.
Architected and implemented development framework for client and server endpoints using Dojo, DWR, Spring, Hibernate, SOA, and web services.
Led teams on WebSphere architecture and development, using WebSphere Application Server and WebSphere Portal server 5.1 and 6.1.
Architected and developed WebSphere authorization solution, using custom Apache authentication filters via proxying and Oracle and Sun IDM.
Developed WebSphere portlets using JSR 168 and JSR 286 specifications.
Architected and developed a single sign-on authentication solution using Apache proxying, custom WebSphere Trust Association Interceptors (TAI), and custom WebSphere portlets.
Led development team on 508 and accessibility compliance, coordinating 508 testing with HiSoftware AccVerify and issue mitigation and establishing UI developer best practices.
Architected and implemented high-availability and fault-tolerance configuration (HA/FT) using F5 BIG-IP LTM.

Technologies: IBM WebSphere, WebSphere Portal Server, WAS, WebSphere Application Server, JSR 168, JSR 286, Apache2, Proxies, Oracle Identity Management, Single Sign-on (SSO), Portlets, F5 Networks, WebSphere MQ, 508/WCAG 2.0, Dojo, DWR, Spring 4, Hibernate 3, Hibernate, SOAP, Web Services, Ant Design, Jython, VMware vSphere, VPN, Web Security, High Availability Disaster Recovery (HADR), Fault Tolerance, VMware, VMware ESXi, VMware vSphere HA, vCenter, Linux, Monitoring, Load Balancers, Network Optimization, Networks, IT Security, Security, API Development, JSON Web Tokens (JWT), Scalability, Web Scalability, Web Servers, Apache, Network Security, Networking, Hardware, DNS Configuration, Web Hosting

Senior Architect for Global Systems

2007 - 2008

The Washington Post

Participated as senior architect for the Global Shared Services team, assisting in the design, review, implementation, and testing of over 12 services ranging from registration and authentication to geocoding and calendaring.
Acted as an architect and technical lead for search on washingtonpost.com, newsweek.com, budgettravel.com, sprig.com, and theroot.com.
Architected and implemented search, location, and event (calendar) shared services for Going Out Guide—CityGuide replacement—using Java 5 and 6, JUnit, Spring 2.5, Maven, GlassFish, Oracle 9i, Postgres 8, and CruiseControl.
Acted as a senior architect for Going Out Guide website and application using Spring MVC role isolation—DAO, controller, presentation—and data components, including schema, procedures, and triggers implementation on Oracle 9i and 10i.
Upgraded company-wide enterprise search engine to FAST ESP 5.1.
Architected and implemented data feeds and back-end for Local Explorer dynamic mapping application for washingtonpost.com using Oracle 9i, Java 4, WebLogic, and Google Maps API.
Implemented all content changes and maintenance on a FAST enterprise search engine, news feed search, and CityGuide applications.
Maintained all CityGuide data feeds, including TicketMaster and movies using Java 4 and Perl 5.
Architected and oversaw the implementation of events data feed between paper-based The Washington Post and online-based WPNI.
Designed and implemented several internal editorial tools for managing locations, geocoding, and user reviews using Ruby.

Technologies: Java, Spring, Java 6, JUnit, Apache Maven, GlassFish, Oracle 9g, PostgreSQL, CruiseControl, MVC Design, Spring MVC, Spring DAO, Oracle 10g, FAST ESP, WebLogic, WebLogicServer, Google Maps API, Perl, Ruby, Scrum, Scrum Master, Agile Sprints, Agile, Linux, DevOps, Monitoring, Load Balancers, API Development, Web Servers, Apache, Networking, Hardware, DMARC, DNS Configuration, DNS Servers, Domain Name System (DNS), Email, Emailers

Experience

Real-time Fleet Tracking App

A transportation POC demonstrating a connected fleet, which provided a single map view of real-time vehicle location and metrics using multiple telemetry data providers with vehicle detail drill-down and real-time engine fault alert, analysis, and service center remediation.

The POC's microservice architecture included the dashboard UI, fleet query for real-time fleet coordinates, truck details to drill down on vehicle make or model, odometer service to drill down on engine metrics, service center for locating remediation services, and data export for exporting to CSV.

I used Spring Cloud Data Flow for telemetry ingest and GemFire for real-time map display. I also used Greenplum for engine failure predictive analytics, Jenkins for CI/CD, and Cloud Foundry for deployment automation.

Tax Accounting Collaboration Management Platform

A content and collaboration SaaS platform built for CPAs and their clients. The platform provides client or project workspaces with built-in contacts, messaging, document management, databases, and analytics. Additional integration modules provide tax-specific features like engagement letter signature tracking, tax organizer, tax return work papers and tracking, 8879 eSignature tracking, and client data master sync.

The platform is hosted on AWS using microservices and serverless paradigms written in Node.js, TypeScript, React, and Redux. AWS EC2 instances and ECS Fargate are used for container deployments along with Lambda for serverless events modules. Aurora, RDS, DocumentDB with MongoDB, and DynamoDB are used for various back-end system storage, and S3 is used for document management. Finally, Cognito is used for authentication management and X-Ray for enhanced monitoring and diagnostics.

Athlete Drug Testing Application

A paper-to-digital transformation project aimed to migrate the paper-based workflow for professional athlete drug testing to a fully online mobile application with supporting back-end cloud services. The mobile application replaced the paper forms completed by the drug screeners during live events and allowed athletes to update their testing and location statuses.

The mobile application supports both iOS and Android using React Native, supporting both tablets for screeners and phones for athlete users. The back end is hosted on AWS using AWS Amplify AppSync and DataStore for mobile data synchronization, Node.js Lambda services for handling database events and locking, and AWS RDS for SQL Server with integration between Microsoft DevOps, TeamCity, and AWS CodeBuild, CodeDeploy, and CodePipeline for CI/CD.

Global Banking Service Architecture Standard

https://github.com/vmware-archive/spring-bian

Banking Industry Architecture Network (BIAN) is a membership group committed to developing open standards around banking and financial services. A key deliverable of this group is the BIAN Service Landscape model, which defines a comprehensive services architecture for financial transactions and facilities.

I developed an implementation of this standard for the Java Spring framework to accelerate adoption and implementation by the online banking industry. This library is an implementation of the BIAN model leveraging the Spring framework, and it allows a developer to rapidly create BIAN-compliant services while hiding much of the underlying BIAN model details. See www.bian.org for more information on BIAN.

This library leverages not only the Spring framework but a number of the Spring Cloud services components and facilitates building robust and resilient cloud-native BIAN microservices. It is aligned with the Wave 3 approach of the BIAN implementation model. The used Spring components are Spring Boot, Spring Cloud Netflix, and Spring Cloud Stream.

Skills

Languages

Java, C++, Assembly, C, JavaScript, CSS, HTML, Java 6, Java 8, Bash, Go, Microcode, TypeScript, PHP, Python, Jython, Perl, Ruby, SAML

Frameworks

Spring 5, Spring Microservice, Spring Cloud Stream, Spring, Spring 4, Dojo, Hibernate, JUnit, Spring MVC, Spring Boot, JSON Web Tokens (JWT), Redux, .NET, Ant Design, Hadoop, SPF, React Native

Libraries/APIs

Hystrix, REST APIs, jQuery, JSR 168, JSR 286, DWR, API Development, Node.js, React, AWS Amplify, Google Maps API

Tools

Terraform, Concourse CI, Eureka, Zuul, Apache Tomcat, RabbitMQ, WebSphere Portal Server, VPN, WebLogicServer, Google Kubernetes Engine (GKE), GitHub, Postman, Apache, Amazon Simple Email Service (SES), Amazon Elastic Container Service (Amazon ECS), AWS Fargate, Amazon Cognito, AWS CodeBuild, AWS CodeDeploy, AWS CodeCommit, TeamCity, Auth0, Jenkins, AWS Step Functions, AWS CloudFormation, Beanstalk, Docker Hub, AutoML, VMware, VMware vSphere, VMware Workstation, VMware vSphere HA, VMware vRealize Orchestrator, VMware App Volumes, Apache Maven, Artifactory, Jira, Amazon EKS, Ansible, Chef, Puppet, Splunk, ELK (Elastic Stack), NGINX, Amazon Simple Queue Service (SQS), Grafana, Squid Proxy Server, AWS AppSync

Paradigms

DevOps, Microservices, Continuous Integration (CI), Continuous Delivery (CD), HIPAA Compliance, Best Practices, Secure Code Best Practices, MVC Design, Scrum, Agile, Microservices Architecture, DevSecOps, Azure DevOps

Platforms

Linux, VMware Tanzu Application Service (TAS) (Pivotal Cloud Foundry (PCF)), Amazon Web Services (AWS), Kubernetes, Docker, Google Cloud Platform (GCP), IBM WebSphere, Apache2, FAST ESP, Microsoft, Amazon EC2, AWS Lambda, Azure, Blockchain, Oracle Identity Management, WebSphere MQ, Visual Studio Code (VS Code)

Storage

Google Cloud, Greenplum, NoSQL, Spring Data REST, MySQL, Cloud Deployment, Amazon Aurora, Amazon DynamoDB, Oracle 9g, PostgreSQL, Oracle 10g, Microsoft SQL Server, Amazon S3 (AWS S3), Redis, Elasticsearch

Industry Expertise

Network Security

Other

Intel 8085, Cloud, Software, Cloud Foundry, Gemfire, Big Data, SSL, Serverless, DNS, Cloud Computing, Architecture, SOAP, Cloud Architecture, Cloud Infrastructure, Consulting, AWS DevOps, CI/CD Pipelines, Hyperic, WAS, WebSphere Application Server, Proxies, Single Sign-on (SSO), Portlets, 508/WCAG 2.0, Hibernate 3, Web Services, Web Security, High Availability Disaster Recovery (HADR), Fault Tolerance, Spring DAO, WebLogic, Scrum Master, Agile Sprints, Spring Cloud, Containerization, DNS Debugging, Service Meshes, Infrastructure as Code (IaC), Monitoring, Containers, Continuous Monitoring, Autoscaling, Load Balancers, Low Latency, TCP/IP, Packet Communication, Networks, Full-stack, Pub/Sub, IT Security, Cloud Security, AWS Cloud Architecture, Security, Identity & Access Management (IAM), Container Orchestration, Hybrid Cloud Infrastructure, Scalability, Web Scalability, Web Servers, Build & Release Engineering, Solution Architecture, DevOps Engineer, IaaS, AWS VPN, Infrastructure, Networking, Hardware, Scaling, Linux Administration, DMARC, DNS Configuration, DNS Servers, Domain Name System (DNS), Email, Emailers, HAProxy, SecOps, Release Management, Scalable Web Services, Web Hosting, GoDaddy, Email Delivery, Amazon DocumentDB, Amazon RDS, Predictive Analytics, API Gateways, Content Delivery Networks (CDN), SaaS, Scraping, VMware ESXi, VMware vCenter, VMware VMotion, VMware NSX, VMware Cloud Director, VMware vCloud, VMware vRealize Automation, vCenter, APM, F5 Networks, GlassFish, Amazon API Gateway, AWS CodePipeline, OAuth, SAML-auth, Audio Processing, Audio Codecs, Network Optimization, Public Switched Telephone Network (PSTN), Google Cloud/Suite, Site Reliability Engineering (SRE), Orchestration, DomainKeys Identified Mail (DKIM), Prometheus, IPsec, Machine Learning, Email Design, Email Marketing, Email Template Design, Logic Design, PCB Design, Circuit Design, Circuit Analysis, OutSystems, CruiseControl, MinIO

Education

1985 - 1989

Bachelor's Degree in Electrical Engineering

Virginia Tech - Blacksburg, Virginia, USA

Certifications

JANUARY 2023 - JANUARY 2025

Google Cloud Certified Professional Cloud Architect

Google Cloud

Collaboration That Works

How to Work with Toptal

Toptal matches you directly with global industry experts from our network in hours—not weeks or months.

Share your needs

Discuss your requirements and refine your scope in a call with a Toptal domain expert.

Choose your talent

Get a short list of expertly matched talent within 24 hours to review, interview, and choose from.

Start your risk-free talent trial

Work with your chosen talent on a trial basis for up to two weeks. Pay only if you decide to hire them.

Top talent is in high demand.

Start hiring