Hieu Pham, Software Developer in Toronto, ON, Canada
Hieu Pham

Software Developer in Toronto, ON, Canada

Member since March 31, 2020
Hieu is a senior principal DevOps engineer specializing in containers (Kubernetes) and cloud migration with over 17 years of IT experience working for insurance and financial industries, various government agencies, municipalities, school boards, telecom, web hosting, and eCommerce companies. He possesses knowledge in design and architecture, CI/CD pipelines, hands-on Linux and Windows experience, in-depth security knowledge, and conversant with the challenges adopting the Agile process.
Hieu is now available for hire


  • Beacon
    Azure, Terraform, Azure DevOps, Git, Kubernetes...
  • Canada Life
    Prometheus, Python, Jira, Git, Jenkins, Ansible, Vault, Terraform, Kubernetes...
  • Ministry of Transportation
    OpenShift, Docker, Kubernetes, Go, Python, WebSphere, WebLogic, Ansible...



Toronto, ON, Canada



Preferred Environment

Python, Go, Terraform, Kubernetes, Azure, Azure DevOps, CI/CD Pipelines, System Administration, Linux, Docker

The most amazing...

...tool I've written in Go can create sophisticated WebLogic domain from YAML definition and reduced a 1-2 days process to 15 minutes.


  • Principal DevOps Engineer

    2020 - PRESENT
    • Led the engineering infrastructure team to a successful company's IPO.
    • Configured and maintained all Azure resources (e.g., AKS, VNet, VM) using Terraform.
    • Hardened the security posture by moving all Azure resources behind a private VNet and configured Private Endpoints; introduce WAF, SIEM, DAST, and SAST security scanning (Sonarcloud, Harbor, Aquasec).
    • Designed and maintained dozens of CI/CD pipelines on Azure DevOps.
    • Ensured compliance with SOC2 audit, PHIPA, and HIPAA.
    • Maintained and optimized numerous large MongoDB clusters.
    • Refactored all Azure Kubernetes services and configuration based on Microsoft’s best practices such as introducing availability zones, enabling private clusters, and enabling pod security policy.
    • Mentored teammates as lead; gave performance reviews and performed various managerial duties.
    Technologies: Azure, Terraform, Azure DevOps, Git, Kubernetes, Azure Kubernetes Service (AKS), Rancher, Helm
  • Senior DevOps Engineer

    2018 - 2020
    Canada Life
    • Led the labs to containerize applications on Docker Swarm and then to Kubernetes; enabled full end-to-end CI/CD pipeline with Git and Bamboo.
    • Migrated from on-prem to Azure cloud; built cloud infrastructure using Terraform, Packer, and Ansible (infrastructure as code).
    • Designed and created highly-available elastic environments powered by Kubernetes (rke and Rancher), Istio (envoy), Grafana, Prometheus, Vault, and HA proxy.
    • Secured a containerized environment with Kubernetes network policy (calico), SonarQube, and Twistlock.
    • Deployed machine learning infrastructure on Azure: Databricks, Data Factory, Hyperscience, Azure Machine Learning, Paxata, and Datarobot.
    Technologies: Prometheus, Python, Jira, Git, Jenkins, Ansible, Vault, Terraform, Kubernetes, Docker, Azure, Azure DevOps, Azure Kubernetes Service (AKS), Google Cloud Platform (GCP)
  • Senior DevOps Engineer

    2010 - 2018
    Ministry of Transportation
    • Rolled out Openshift and Kubernetes clusters on Azure cloud using Terraform as infrastructure as code.
    • Created a tool that can create sophisticated Weblogic domains from YAML definition with Golang; turned a 1-2 days process to as little as 15 minutes.
    • Participated in a multi-million dollar cloud migration project for the Ministry.
    • Performed Azure Cloud migration of Siebel/OCH, Oracle LDAP directory, WebLogic, Websphere, BPM, BIP, OPA, EDQ, Oracle Database, and Oracle POS software stack from Solaris/AIX to Red Hat Enterprise Linux 6/7.
    • Performed systems and O/S optimization (JVM, Database, J2EE tuning, and profiling), network tuning, and troubleshooting (e.g. load balancing and clustering) by analyzing network capture with WireShark.
    Technologies: OpenShift, Docker, Kubernetes, Go, Python, WebSphere, WebLogic, Ansible, Terraform, DevOps, Azure


  • WebLogic Domain Creator (Development)

    A Golang-based application for creating and automating the WebLogic domain. I was the sole developer of this application. The tool allows for the creation of full, sophisticated WebLogic domains from YAML definition (database, JMS, etc). This tool allows a domain to be created from code that enables speed, simplicity, consistency, risk mitigation (i.e. human error), and is repeatable.

  • Cloud Migration (Development)

    I was in the cloud core team responsible for the migration of Linux Red Hat and Windows servers, on-prem Kubernetes clusters, Docker containers (Swarm and Docker EE) to the Azure cloud using Terraform and Packer.

  • Automated CI / CD Pipelines on Azure DevOps cloud (Development)

    I designed and maintained dozens of CI/CD pipelines on Azure DevOps responsible for building the source codes, creating Docker containers and Helm charts for production deployment. Incorporated code scanning with SonarCloud and Docker image scanning with Harbor and Aquasec.


  • Languages

    Python, Go, Bash
  • Tools

    Azure Kubernetes Service (AKS), Grafana, Terraform, Ansible, Shell, Apache Tomcat, Splunk, Elastic, Packer, Vault, Hyper-V, Istio, Jira, Bamboo, Git, Jenkins, Helm, Docker Swarm, Puppet, Google Kubernetes Engine (GKE)
  • Paradigms

    DevOps, Agile, Scrum, Continuous Deployment, Continuous Delivery (CD), Continuous Integration (CI), Azure DevOps
  • Platforms

    Kubernetes, Docker, Linux, Windows, Azure, WebSphere, KVM, Xen, Google Cloud Platform (GCP), OpenShift, OpenStack, Icinga, Rancher
  • Other

    Prometheus, WebLogic, SSL/TLS, IT Networking, ESX, Content Delivery Networks (CDN), Consul, Containerization, LDAP, CI/CD Pipelines, System Administration, Siebel
  • Storage

    MongoDB, PostgreSQL, Google Cloud

To view more profiles

Join Toptal
Share it with others