Gleidson Nascimento, Developer in Wellington, New Zealand
Gleidson is available for hire
Hire Gleidson

Gleidson Nascimento

Verified Expert  in Engineering

Bio

Gleidson is a highly experienced engineer with solid infrastructure automation architecture, design, development, and orchestration skills. Over the past 20 years, he has been responsible for automating large and complex environments, configuring hardware/network elements, continuously deploying code, and securing/hardening companies. Gleidson also has proven team leadership skills, including supervising, training, and mentoring teams.

Portfolio

Urvin Finance INC
C#.NET, Microservices Architecture, Azure DevOps, ABP Framework, C#, Kubernetes...
AESSCO
Azure, Azure Stack, Kubernetes, Azure Kubernetes Service (AKS), Ansible...
Spin
Amazon Web Services (AWS), Kubernetes, Terraform, Internet of Things (IoT)...

Experience

  • AWS Cloud Computing Services - 10 years
  • JavaScript - 6 years
  • Red Hat OpenShift - 5 years
  • Google Cloud Platform (GCP) - 5 years
  • Azure - 5 years
  • Kubernetes - 5 years
  • Go - 4 years
  • Terraform - 4 years

Availability

Full-time

Preferred Environment

Amazon Web Services (AWS), Terraform, Kubernetes, Red Hat OpenShift, Azure, Ansible

The most amazing...

...project I'm currently taking part in is the CentOS PaaS Special Interest Group, a project detailed in my portfolio section.

Work Experience

Azure DevOps Consultant

2022 - 2024
Urvin Finance INC
  • Containerized 19 .NET microservices using Podman and Skopeo, including a front end developed in Blazor and several back-end services.
  • Created and managed a Kubernetes (AKS), Redis cache, and PostgreSQL database infrastructure using Terraform on Azure.
  • Created RabbitMQ, Elasticsearch, and Prometheus clusters on Kubernetes using Helm and Helmfile.
  • Implemented chained deployment automation on OpenShift using GitHub Actions and ArgoCD to maintain and update both Kubernetes infrastructure and code deployments.
  • Developed an application in Rust and Redis to provide realtime market data to mobile clients.
Technologies: C#.NET, Microservices Architecture, Azure DevOps, ABP Framework, C#, Kubernetes, Red Hat OpenShift, Amazon Web Services (AWS), Azure Data Factory (ADF), Azure, Go, Application Security, GitHub Actions, Technical Documentation, REST APIs, TypeScript, Linux, Rust, Ceph, Clustering, KVM, Quick EMUlator (QEMU), libvirt, CI/CD Pipelines, Cloud Migration, Infrastructure as Code (IaC), Large-scale Production Deployments

Senior Azure Cloud/DevOps Engineer

2020 - 2021
AESSCO
  • Developed a top to bottom automation solution to provision datacenters in on-premise Azure Stacks using Ansible, Terraform, and Azure DevOps.
  • Managed other Toptal talents in the customer account.
  • Delivered JavaScript fixes to their front-end solution using Angular, NGINX, Apache, and Node.js.
  • Delivered Java fixes to their back-end solution using Java, Spring Boot, Jenkins, and JBoss.
  • Automated an entire Kubernetes solution using Helm, Helmfile, and Ansible for Kubernetes 1.17 over Azure Stack (with AKS Engine) and 1.19 on Azure Cloud (with AKS).
  • Received high praise from managers for completing the first and second phases of the project, the high level of the solution, and the team's overall expertise.
  • Performed manual code reviews on sources for security analysis.
  • Executed penetration tests into development and test environments. This included automated tests using Rapid7 and manual tests using only the command line.
  • Developed an application in Rust to provide low-level monitoring on the status of documents waiting for scanning and already scanned but flagged for and waiting for human validation.
Technologies: Azure, Azure Stack, Kubernetes, Azure Kubernetes Service (AKS), Ansible, Terraform, Azure DevOps, Go, Penetration Testing, Application Security, Dynamic Application Security Testing (DAST), GitHub Actions, Java, Technical Documentation, REST APIs, Linux, Rust, Ceph, Clustering, KVM, Quick EMUlator (QEMU), libvirt, CI/CD Pipelines, Cloud Migration, Infrastructure as Code (IaC), Large-scale Production Deployments

Senior Cloud/DevOps Engineer

2019 - 2021
Spin
  • Migrated a Ruby on Rails back and front end from Heroku to AWS EKS/RDS/ElastiCache.
  • Migrated a bespoke IoT infrastructure in Go to Amazon EKS.
  • Implemented fleet management using IoT core and IoT device management.
  • Developed a custom ESP32 and ESP8266 firmware for FreeRTOS.
  • Built a ChatOps bot for Slack using Go over a Kubernetes deployment.
  • Implemented Kubernetes deployments using Helm and Helmfile.
  • Led a team of six to provide BAU support to production and non-production and built infrastructure-as-code environment management using Terraform and Atlantis.
  • Created a deployment management tool in Ruby to help developers migrate from Heroku to AWS.
  • Implemented a Traefik edge router to Kubernetes and legacy services.
  • Implemented Lacework, Datadog, Sentry, Scout, AlienVault, and LogDNA tools to enhance security, operations, and engineering teams' visibility on the cluster. Performed penetration tests into development and staging environments.
Technologies: Amazon Web Services (AWS), Kubernetes, Terraform, Internet of Things (IoT), Amazon EKS, Ruby, Ruby on Rails (RoR), Puma, TeamCity, Cloudflare, Continuous Delivery (CD), Continuous Integration (CI), DevOps, AWS Cloud Computing Services, Go, AWS Certified Solution Architect, Architecture, Data Governance, Google Cloud, Google Cloud Platform (GCP), GCP Security, GitHub Actions, Java, Technical Documentation, SecOps, REST APIs, TypeScript, Linux, Ceph, Clustering, KVM, Quick EMUlator (QEMU), libvirt, CI/CD Pipelines, Cloud Migration, Infrastructure as Code (IaC), Large-scale Production Deployments

CISO/Security Expert

2020 - 2020
Hybrid Labs, LLC
  • Planned and implemented security posture for the whole company acting as a chief information security officer (CISO). Created a defense strategy and updated internal and external policies. Performed a security assessment and review.
  • Acted as a security consultant, responsible for penetration exercises, endpoint management, and executing security policies as per business strategy. We defined a risk management plan following the CISO strategy.
  • Collaborated, as DevSecOps expert, with developers reviewing and automating existing code delivery pipelines and creating new security pipelines.
Technologies: Ruby, Heroku, IT, Web Security, IT Security, CISO, Application Security, Information Security, ISO 27001, ISO 27002, Security, Compliance, Azure, DevSecOps, Cloud Security, Threat Modeling, Vulnerability Assessment, Java, Technical Documentation, Code Auditing, SecOps, REST APIs, Linux, Ceph, Clustering, KVM, Quick EMUlator (QEMU), libvirt, CI/CD Pipelines, Infrastructure as Code (IaC), Large-scale Production Deployments

DevOps Engineer

2019 - 2019
Peg B Technology
  • Migrated legacy Java applications to Kubernetes using Docker, Ansible, and Jenkins.
  • Migrated legacy Scala applications to Kubernetes using Docker and Jenkins.
  • Secured Kubernetes applications for production usage using OpenShift and Ansible.
  • Reviewed a Kubernetes application for PCI-DSS compliance using OpenShift.
  • Installed and configured a highly-available OpenShift 3.11 cluster using Ansible.
  • Added Prometheus, Elastic, Fluentd, AlienVault and Anchore Engine for providing enhanced visibility to security, operations, and engineering teams.
  • Developed custom monitoring dashboards in Prometheus, integrating with Jaeger and Traefik, for enhanced networking monitoring.
  • Implemented Traefik with ACME integration for secured edge routing at scale.
Technologies: Jenkins, Ansible, Kubernetes, OpenShift, AWS Cloud Computing Services, Azure, Google Cloud Platform (GCP), Go, Java, Technical Documentation, REST APIs, Linux, Ceph, Clustering, KVM, Quick EMUlator (QEMU), libvirt, CI/CD Pipelines, Infrastructure as Code (IaC)

Azure Architect

2019 - 2019
Falanx Cyber Technologies
  • Created a serverless architecture using Pulumi, Elastic, and Azure Functions.
  • Converted an existing AWS serverless architecture to Pulumi using Pulumi, AWS Lambda, and SAM architecture.
  • Created a serverless architecture for GCP using Pulumi, Elastic, and Google Cloud Functions.
  • Added Go code support to a serverless stack using JavaScript and Pulumi.
  • Reviewed cloud architecture to improve performance and reduce costs.
Technologies: Amazon Web Services (AWS), JavaScript, GoLand, Go, Google Cloud Platform (GCP), Azure, Technical Documentation, TypeScript, Linux, Clustering, CI/CD Pipelines, Infrastructure as Code (IaC)

Senior Consultant

2018 - 2019
SECTION6
  • Deployed an enterprise logging solution using OpenShift, Ansible, Elastic, and AWS.
  • Developed a bot for Telegram using Knative, Java, Ansible, and OpenShift.
  • Developed an integration system between legacy databases and API systems using OpenShift, Fuse, and AWS.
  • Installed and configured highly-available OpenShift 3.11 clusters using Ansible.
  • Built a CI/CD system for a Python application using AWS CodePipeline, GitHub, Ansible, and AWS Fargate.
Technologies: Ansible, Amazon Web Services (AWS), Elastic, Kubernetes, Red Hat OpenShift, AWS Cloud Computing Services, Azure, Go, Java, Linux, Clustering, Infrastructure as Code (IaC)

Platforms Solution Architect

2017 - 2018
Solnet Solutions
  • Created an event-based application in Go using Goa.
  • Created an automation executor in Go.
  • Created a serverless event-based application on Azure.
  • Maintained two production-ready OpenShift clusters, from 3.5 to 3.11.
  • Created a reactive front-end application with React.
Technologies: Express.js, React, JavaScript, Go, Kubernetes, OpenShift, AWS Cloud Computing Services, Azure, Java, Linux, Clustering, Infrastructure as Code (IaC)

Lead DevOps Engineer

2016 - 2017
VeriFone
  • Created an environment automation application in Terraform and Ansible.
  • Created an environment management application in Express and React.
  • Automated a legacy payments system using Ansible.
  • Led a team of eight to provide BAU support to non-production and develop a complete CI/CD pipeline using Terraform, Ansible, and Jenkins.
  • Developed an API for interacting with an automation stack using Spring Boot.
  • Certified our Cloud environment for PCI-DSS in ap-southeast-2.
Technologies: Amazon Web Services (AWS), JavaScript, Jenkins, Ansible, Kubernetes, OpenShift, Terraform, AWS Cloud Computing Services, Azure, Go, Java, Linux, Clustering, Infrastructure as Code (IaC)

Experience

Moleculer Go

https://github.com/moleculer-go
As part of the global initiative to turn a Moleculer framework into a polyglot solution, I've begun helping in Moleculer Go, a complete rewrite of MoleculerJS in Go. Together with the rewrites in Python, Clojure, and Elixir, we expect to better support startups and enthusiasts looking for a seamless integration between their applications written in two or more of those languages because each implementation can communicate and operate with each other.

CentOS PaaS SIG Member

https://wiki.centos.org/SpecialInterestGroup/PaaS
I am currently a member of the team releasing the CentOS version of Origin Kubernetes Distribution (OKD), the free upstream version of the OpenShift Container Platform.

Goa.design API Demonstration and Presentation

https://www.meetup.com/wellington-golang/events/frlxtpyxlbvb/
I presented a demonstration and coding session on how to develop APIs using Go and Goa.design framework. The final work is saved on a git repository, containing slides, a walkthrough, and a couple of challenges. I made this presentation for the Wellington Go User group. More details about the presentation are available via the project link.

Goa API Development Article

https://www.toptal.com/go/goa-api-development
I wrote an article showcasing Goa and how we can effectively develop APIs using its framework, including essential features such as authentication and authorization from its inception. The article is currently published on the Toptal Blog.

Example Terraform Module

This is a simple example of a Terraform module I developed for obtaining AWS ACM wildcard certificates automatically for domains users manage on Amazon Route 53.

Infrastructure Performance Benchmarking

I helped to implement performance benchmarking over OpenShift/Kubernetes using tools like Splunk, ELK, Grafana, and Prometheus.
We set up Prometheus to collect metrics out of the cluster and, developed key applications, and fed them to Splunk and Grafana, where dashboards were developed to visualize such information. The dashboards ranged from containing simple information—such as latency or transactions per second—to more complex constructs—such as logged users before nodes failed or sessions left in hanging state.

Azure and GCP Implementation for Project Furnace

I helped to develop the components required for Furnace to support Azure and GCP serverless architecture.
Furnace is a big data project where data scientists can rely on well-defined building blocks for constructing data pipelines with no need to manage the infrastructure.

DevOpsDays Singapore Keynote Speaker

https://www.devopsdays.org/events/2018-singapore/program/gleidson-nascimento/
I presented a paper on DevOps and Experimentation in large IT service companies. More details about the talk can be found in the link below.

DevOpsDays Sydney Keynote Speaker

https://www.devopsdayssydney.org/agenda/
I presented a paper on Packaging OpenShift Origin Kubernetes Distribution (OKD). More details about the talk can be found in the link below.

DevOpsDays Recife Keynote Speaker

https://devopsdays.org/events/2019-recife/program/gleidson-nascimento
I presented a paper on Kubernetes Operators: what they are currently used for and how to develop one to manage applications using either Go or Ansible. More details on the paper can be found in the link below.

Digital Transformation for Healthcare

https://www.toptal.com/insights/healthcare/open-talent-digital-transformation
I helped chief economist Erik Stettler write an article describing the DevOps and cybersecurity challenges healthcare companies face and how open talents can help them overcome. That article also led to a presentation we did to CIOs during the pandemic, explaining the net value companies can take from engaging open talent worldwide to overcome skills shortage and tip the scale towards enhanced security and collaboration in a remote-working setting.

Education

2000 - 2008

Bachelor's Degree in Electrical Engineering

Universidade of Pernambuco - Recife, Brazil

2002 - 2004

Diploma in Networking

Cisco Academy - Recife, Brazil

Certifications

SEPTEMBER 2021 - SEPTEMBER 2023

Red Hat Certified Specialist in Containers and Kubernetes

Red Hat

OCTOBER 2019 - OCTOBER 2021

AWS Certified Solutions Architect - Associate

AWS Training and Certification

OCTOBER 2018 - OCTOBER 2021

Certified OpenShift Administration

Red Hat

MAY 2007 - PRESENT

Certified Tester Foundation Level

ISTQB

Skills

Libraries/APIs

Node.js, REST APIs, libvirt, React, API Development

Tools

Amazon Elastic Container Registry (ECR), Amazon Elastic Container Service (ECS), AWS CloudFormation, Amazon EKS, Azure IoT Suite, Azure App Service, Azure Kubernetes Service (AKS), Elastic, GoLand, Terraform, Chef, Ansible, Jenkins, CircleCI, Travis CI, TeamCity, GitHub, Splunk, Grafana, Google Kubernetes Engine (GKE), GCP Security, ConnectWise Automate

Languages

Go, Java, TypeScript, JavaScript, Rust, Ruby, Python, C#.NET, C#

Frameworks

Spring Boot, Ruby on Rails (RoR), Express.js, AngularJS, React Native, ABP Framework

Paradigms

Continuous Integration (CI), Continuous Delivery (CD), Continuous Deployment, DevOps, Agile Project Management, DevSecOps, Functional Programming, Agile, Kanban, Penetration Testing, Azure DevOps, Microservices Architecture, Testing

Platforms

Amazon EC2, Amazon Web Services (AWS), AWS IoT, AWS IoT Core, Azure PaaS, Azure IaaS, OpenShift, Linux, Red Hat OpenShift, Kubernetes, Azure, Google Cloud Platform (GCP), AWS Cloud Computing Services, Apache Kafka, Docker, KVM, Quick EMUlator (QEMU), Heroku, Drone CI

Storage

Amazon S3 (AWS S3), Amazon DynamoDB, PostgreSQL, Azure SQL, Ceph, MySQL, MariaDB, MongoDB, Redis, Datadog, Google Cloud

Industry Expertise

Cybersecurity

Other

Amazon Kinesis, Security, IT Security, IoT Security, IoT Protocols, Security Analysis, Security Groups, Web App Security, Microsoft Azure, Microsoft Azure Cloud Server, Pulumi, Internet of Things (IoT), Cloud, APIs, Networks, Shell Scripting, Continuous Monitoring, IT, CISO, Application Security, Information Security, ISO 27001, ISO 27002, Compliance, Customer Success, Analytics, AWS Certified Solution Architect, Architecture, Data Governance, Cloud Security, Threat Modeling, Vulnerability Assessment, GitHub Actions, Technical Documentation, Code Auditing, SecOps, Clustering, CI/CD Pipelines, Cloud Migration, Infrastructure as Code (IaC), Large-scale Production Deployments, GitFlow, Spanish-English Translation, Azure Stack, Puma, Cloudflare, Electrical Engineering, Web Security, Azure Data Factory (ADF), Prometheus, Kubernetes Operations (kOps), Dynamic Application Security Testing (DAST)

Collaboration That Works

How to Work with Toptal

Toptal matches you directly with global industry experts from our network in hours—not weeks or months.

1

Share your needs

Discuss your requirements and refine your scope in a call with a Toptal domain expert.
2

Choose your talent

Get a short list of expertly matched talent within 24 hours to review, interview, and choose from.
3

Start your risk-free talent trial

Work with your chosen talent on a trial basis for up to two weeks. Pay only if you decide to hire them.

Top talent is in high demand.

Start hiring