toptal.com
Contact us: +1.888.604.3188
Dmitry Kireev, Cloud Architect Developer in Walnut, CA, United States
Dmitry Kireev

Cloud Architect Developer in Walnut, CA, United States

Member since October 18, 2019
Dmitry is a cloud architect and a site reliability engineer with over a decade of intense professional experience strictly adhering to DevOps methodology. He has architected and built multiple platform-agnostic infrastructures from scratch for modern cloud systems. He has a proven track record of hands-on operations in high-scale environments. He is also proficient with IaC, automation, and scripting, as well as monitoring and observability.
Dmitry is now available for hire
Hire Dmitry

Portfolio

  • HazelOps
    AWS, Terraform, Cloudformation, Ansible, Docker, Docker Swarm, ECS...
  • Flo Technologies
    AWS, CloudFormation, Ansible, Kafka, Gitlab, ELK, TICK, Docker, CircleCI...
  • Delphix
    AWS, Jenkins, ELK, Ansible, Foreman, CloudFormation, Python

Experience

Location

Walnut, CA, United States

Availability

Full-time

Preferred Environment

Linux, Ansible, Terraform, CloudFormation, GitLab

The most amazing...

...thing I've architected, deployed, and managed is a scalable, highly available cloud for an IoT security product alongside software engineering.

Employment

  • Head of Site Reliability Engineering, Consultant

    2015 - PRESENT
    HazelOps
    • Built scalable infrastructures for startups: multi-environment, with infrastructure as code, self-healing, scalable, and predictable environments on AWS.
    • Took care of the legacy code with respect to Dockerizing JVM, PHP, and Python apps.
    • Analyzed and audited performance for dozens of full-cycle reports based on key factors of infrastructure performance and action items based on proposals.
    • Helped software engineers implement DevOps, including close communication, strategy and processes improvement.
    • Instrumented site reliability practices by owning SLA, SLO, SLIs, eliminating toil, and increasing observability: automation, monitoring, and error budgeting.
    • Implemented CI/CD, facilitating a streamlined deployment pipeline for dozens of different projects (GitLab, Jenkins, CircleCI). Utilized Docker, registry, and multi-stage builds.
    • Implemented OPS procedures in customers' environments, including service-based alerting, on-call rotation, and escalations.
    • Deployed and maintained Apache Kafka, including full-cycle management via Terraform, Ansible, and Docker.
    Technologies: AWS, Terraform, Cloudformation, Ansible, Docker, Docker Swarm, ECS, Serverless, Java, PHP, WordPress, Python, HAProxy, Traefik, Grafana

  • Lead Site Reliability Engineer

    2016 - 2019
    Flo Technologies
    • Designed and implemented a complex IoT Infrastructure from scratch on AWS: multi-tier, multi-subnet scalable cloud AWS infrastructure, multi-application stateless stack with Elastic Beanstalk/ECS and Docker, platform-agnostic local environments with Docker and docker-compose.
    • Designed and implemented Ansible infrastructure: idempotent plays/roles to support infrastructure needs, wrote community-available roles for multiple platforms under Apache Foundation.
    • Designed and implemented CI/CD: complete application lifecycle with green deployments of high-traffic services, platform agnostic framework to support SaaS or hosted CI servers, and hassle-free pipelines for software engineers.
    • Designed and implemented monitoring solutions: log and data aggregation from multiple sources (ELK), on-prem monitring via TICK, Grafana. SaaS monitoring with Datadog and NewRelic when needed.
    • Designed and implemented operational procedures: service-oriented OLA, Pagerduty with monitoring solutions, and Pagerduty "Service Owner First" policy.
    • Designed and maintained an upgrade procedure for critical distributed systems to allow no-downtime and no-dataloss upgrades for the whole three-year time span.
    Technologies: AWS, CloudFormation, Ansible, Kafka, Gitlab, ELK, TICK, Docker, CircleCI, Linux, TLS

  • Senior Member of Technical Staff

    2016 - 2017
    Delphix
    • Architected and implemented multi-tier hybrid cloud AWS infrastructure for a new project for a high-scale testing framework.
    • Architected log and data aggregation from multiple sources (ELK).
    • Architected a virtual and bare metal host provisioning system (Foreman).
    • Designed and implemented nmap-based inventory software.
    • Contributed to company-wide IT processes and improvements.
    • Contributed major portions to on-call rotation, monitoring, SOA, and OLA designs/implementations.
    Technologies: AWS, Jenkins, ELK, Ansible, Foreman, CloudFormation, Python

  • Senior DevOps Engineer

    2013 - 2016
    Intuit
    • Managed a hybrid cloud with around 300 nodes: AWS, VmWare, and bare metal.
    • Implemented automation, config management, and provisioning: 90% of the environment is in Puppet and Git.
    • Managed the lifecycle of legacy systems.
    • Provided CI in configuration management and IaaC: git-flow, reusable code, and open-source contribution.
    • Managed and mentored junior IT staff, including separation of concerns and easy onboarding.
    • Led most of the post-acquisition infrastructure integration projects.
    Technologies: AWS, Puppet, ELK, TeamCity, Git, Foreman

  • DevOps Engineer

    2011 - 2013
    Docstoc (Acquired by Intuit)
    • Supported colocation with 180+ Windows and Linux dedicated servers as well as new server deployment.
    • Managed network security and performance (Juniper SSG, SRX Firewalls, A10 networks Load Balancer, Radius, IPsec, NAT, Amazon EC2 VPC).
    • Implemented proactive monitoring.
    • Optimized Linux and Windows server performance.
    • Deployed and maintained MySQL databases.
    • Introduced and implemented ELK stack.
    Technologies: Juniper SRX, A10 LB, MySQL, MongoDB, Python, Bash, Nagios

Experience

  • OpenVPN AS Docker + DUO Security (Development)
    https://github.com/AutomationD/docker-openvpnas

    This image incorporates OpenVPN Access Server with Duo Security 2 factor auth. All configuration is done via environment variables, for example: OPENVPN_VPN__DAEMON__0__LISTEN__IP_ADDRESS is mapped to vpn.daemon.0.listen.ip.address, which is searched in present configuration files (as.conf and config.json), which is set to a value of an env var.

    Duo Security is optional but is highly recommended, since basic account is free. All you need to do is get API credentials and enable post-auth script.

  • Windows Imaging Toolkit (Development)
    https://github.com/AutomationD/wimaging

    WImaging is a set of scripts to prepare WIM images and templates for Foreman to provision Windows hosts. Most of the time, official Microsoft deployment tools are used—mostly dism.exe.

    All relevant configuration files like unattend.xml are rendered by Foreman and downloaded at build time.

Skills

  • Tools

    Ansible, AWS CloudFormation, ELK (Elastic Stack), GitLab, GitLab CI/CD, Docker Compose, Grafana, Telegraf, CircleCI, Travis CI, Træfik, AWS CloudWatch, Terraform, Docker Swarm, Nginx, Puppet, Jenkins, AWS ECS

  • Paradigms

    Agile, Continuous Delivery (CD), Continuous Integration (CI), DevOps, Agile Software Development

  • Platforms

    Apache Kafka, Docker, Amazon Web Services (AWS), AWS Elastic Beanstalk, JVM, Linux, Azure, WordPress

  • Storage

    AWS RDS, MySQL, MongoDB, InfluxDB, Elasticsearch, Redis, MySQL/MariaDB

  • Languages

    Python, Bash, Golang, JavaScript

  • Frameworks

    Flask

  • Libraries/APIs

    Node.js

  • Other

    HAProxy, High Availability

Education

  • Bachelor's degree in Business Communication (English)
    2006 - 2009
    Tula State University - Tula, Russia
  • Bachelor's degree in Economics and Business Administration
    2004 - 2009
    Tula State University - Tula, Russia

To view more profiles

Join Toptal
Share it with others
Hire the top 3% of freelance developers TM