Principal DevOps Engineer
2020 - PRESENTMindBeacon Software- Led the engineering infrastructure team to a successful company's IPO.
- Configured and maintained all Azure resources (e.g., AKS, VNet, VM) using Terraform.
- Hardened the security posture by moving all Azure resources behind a private VNet and configured Private Endpoints; introduce WAF, SIEM, DAST, and SAST security scanning (Sonarcloud, Harbor, Aquasec).
- Designed and maintained dozens of CI/CD pipelines on Azure DevOps.
- Ensured compliance with SOC2 audit, PHIPA, and HIPAA.
- Maintained and optimized numerous large MongoDB clusters.
- Refactored all Azure Kubernetes services and configuration based on Microsoft’s best practices such as introducing availability zones, enabling private clusters, and enabling pod security policy.
- Mentored teammates as lead; gave performance reviews and performed various managerial duties.
Technologies: Azure, Terraform, Azure DevOps, Git, Kubernetes, Azure Kubernetes Service (AKS), Rancher, HelmSenior DevOps Engineer
2018 - 2020The Canada Life Assurance Company- Led the labs to containerize applications on Docker Swarm and then to Kubernetes; enabled full end-to-end CI/CD pipeline with Git and Bamboo.
- Migrated from on-prem to Azure cloud; built cloud infrastructure using Terraform, Packer, and Ansible (infrastructure as code).
- Designed and created highly-available elastic environments powered by Kubernetes (rke and Rancher), Istio (envoy), Grafana, Prometheus, Vault, and HA proxy.
- Secured a containerized environment with Kubernetes network policy (calico), SonarQube, and Twistlock.
- Deployed machine learning infrastructure on Azure: Databricks, Data Factory, Hyperscience, Azure Machine Learning, Paxata, and Datarobot.
Technologies: Prometheus, Python, Jira, Git, Jenkins, Ansible, Vault, Terraform, Kubernetes, Docker, Azure, Azure DevOps, Azure Kubernetes Service (AKS), Google Cloud Platform (GCP)Senior DevOps Engineer
2010 - 2018Ministry of Transportation- Rolled out Openshift and Kubernetes clusters on Azure cloud using Terraform as infrastructure as code.
- Created a tool that can create sophisticated Weblogic domains from YAML definition with Golang; turned a 1-2 days process to as little as 15 minutes.
- Participated in a multi-million dollar cloud migration project for the Ministry.
- Performed Azure Cloud migration of Siebel/OCH, Oracle LDAP directory, WebLogic, Websphere, BPM, BIP, OPA, EDQ, Oracle Database, and Oracle POS software stack from Solaris/AIX to Red Hat Enterprise Linux 6/7.
- Performed systems and O/S optimization (JVM, Database, J2EE tuning, and profiling), network tuning, and troubleshooting (e.g. load balancing and clustering) by analyzing network capture with WireShark.
Technologies: OpenShift, Docker, Kubernetes, Go, Python, WebSphere, WebLogic, Ansible, Terraform, DevOps, Azure
Hieu Pham
Software Developer in Toronto, ON, Canada
Member since March 31, 2020
Hieu is a senior principal DevOps engineer specializing in containers (Kubernetes) and cloud migration with over 17 years of IT experience working for insurance and financial industries, various government agencies, municipalities, school boards, telecom, web hosting, and eCommerce companies. He possesses knowledge in design and architecture, CI/CD pipelines, hands-on Linux and Windows experience, in-depth security knowledge, and conversant with the challenges adopting the Agile process.
Hieu is now available for hire
Portfolio
- MindBeacon SoftwareAzure, Terraform, Azure DevOps, Git, Kubernetes...
- The Canada Life Assurance CompanyPrometheus, Python, Jira, Git, Jenkins, Ansible, Vault, Terraform, Kubernetes...
- Ministry of TransportationOpenShift, Docker, Kubernetes, Go, Python, WebSphere, WebLogic, Ansible...
Experience
- DevOps 8 years
- Terraform 5 years
- Azure 5 years
- Azure DevOps 5 years
- Kubernetes 5 years
- Python 5 years
- Azure Kubernetes Service (AKS) 5 years
- Go 3 years
Availability
Part-time
Preferred Environment
Python, Go, Terraform, Kubernetes, Azure, Azure DevOps, CI/CD Pipelines, System Administration, Linux, Docker
The most amazing...
...tool I've written in Go can create sophisticated WebLogic domain from YAML definition and reduced a 1-2 days process to 15 minutes.
Employment
Experience
- WebLogic Domain Creator (Development)
A Golang-based application for creating and automating the WebLogic domain. I was the sole developer of this application. The tool allows for the creation of full, sophisticated WebLogic domains from YAML definition (database, JMS, etc). This tool allows a domain to be created from code that enables speed, simplicity, consistency, risk mitigation (i.e. human error), and is repeatable.
- Cloud Migration (Development)
I was in the cloud core team responsible for the migration of Linux Red Hat and Windows servers, on-prem Kubernetes clusters, Docker containers (Swarm and Docker EE) to the Azure cloud using Terraform and Packer.
- Automated CI / CD Pipelines on Azure DevOps cloud (Development)
I designed and maintained dozens of CI/CD pipelines on Azure DevOps responsible for building the source codes, creating Docker containers and Helm charts for production deployment. Incorporated code scanning with SonarCloud and Docker image scanning with Harbor and Aquasec.
Skills
Languages
Python, Go, BashTools
Azure Kubernetes Service (AKS), Grafana, Terraform, Ansible, Shell, Apache Tomcat, Splunk, Elastic, Packer, Vault, Hyper-V, Istio, Jira, Bamboo, Git, Jenkins, Helm, Docker Swarm, Puppet, Google Kubernetes Engine (GKE)Paradigms
DevOps, Agile, Scrum, Continuous Deployment, Continuous Delivery (CD), Continuous Integration (CI), Azure DevOpsPlatforms
Kubernetes, Docker, Linux, Windows, Azure, WebSphere, KVM, Xen, Google Cloud Platform (GCP), OpenShift, OpenStack, Icinga, RancherOther
Networking: Load Balancer (HAproxy, Nginx, Traefik), Prometheus, WebLogic, SSL/TLS, High Availability, IT Networking, ESX, Content Delivery Networks (CDN), Consul, Containerization, LDAP, CI/CD Pipelines, System Administration, SiebelStorage
MongoDB, PostgreSQL, Google Cloud
