Igor Tikhonin, Developer in Innisfil, ON, Canada
Igor is available for hire
Hire Igor

Igor Tikhonin

Verified Expert  in Engineering

Software Developer

Location
Innisfil, ON, Canada
Toptal Member Since
August 12, 2019

Igor possesses all the necessary knowledge and skills to be an effective DevOps engineer with many years of experience in system engineering and software development fields. He can operate successfully in rapidly changing dynamic environments, achieving the overall goal of continuous delivery.

Infrastructure as Code (IaC)LinuxPythonGitAnsibleKubernetesWindows PowerShellPython 3DockerAmazon EKSFirewallsWindowsFlaskXMLYAMLIBM MQ

Portfolio

Healthcare of Ontario Pension Plan (HOOPP)
Kubernetes, Azure DevOps, Ansible, Amazon Web Services (AWS)
Bank of Montreal
OpenShift, Docker, Artifactory, Apache Maven, Git, Jira, Bamboo, IBM MQ...
IBM Global Services
Jenkins, Docker, OpenStack, IBM WebSphere, Oracle WebLogic Application Server...

Experience

Linux - 15 yearsPython - 5 yearsGit - 4 yearsTerraform - 3 yearsAnsible - 3 yearsKubernetes - 3 yearsDocker - 3 yearsSQL - 2 years

Availability

Part-time

Preferred Environment

Kubernetes, Ansible, Python, Git, Linux

The most amazing...

...project I've worked on was end-to-end automation of deployment for a bank wire transfer service where application components ran on the OpenShift platform.

Work Experience

Senior DevOps Engineer

2017 - PRESENT
Healthcare of Ontario Pension Plan (HOOPP)
  • Designed, built, and maintained complex Kubernetes infrastructure on AWS to host containerized microservice applications.
  • Integrated Kubernetes dashboard with the corporate OpenID Connect single sign-on solution, allowing users to be authenticated and granted access to Kubernetes, based on group membership.
  • Automated provisioning of AWS infrastructure elements, such as S3 buckets, SQS queues, RDS instances, required for web-based applications.
  • Developed automation playbooks for continuous delivery of microservice applications.
  • Automated firewall rules creation and modification to secure AWS cloud deployments.
  • Created and maintained CI/CD pipelines in Azure DevOps for continuous integration of web-based applications.
Technologies: Kubernetes, Azure DevOps, Ansible, Amazon Web Services (AWS)

Senior DevOps Engineer

2016 - 2017
Bank of Montreal
  • Created and maintained CI/CD pipelines in Bamboo for continues delivery of web service applications.
  • Developed automation playbooks for continuous deployment of web service applications to OpenShift container platform.
  • Automated build of Docker images and push to container registry.
  • Developed scripts, Python and Shell-based, for automated release management.
  • Deployed Elasticsearch clusters for security logs consolidation.
Technologies: OpenShift, Docker, Artifactory, Apache Maven, Git, Jira, Bamboo, IBM MQ, IBM WebSphere, Ansible, Linux

DevOps Engineer

2014 - 2016
IBM Global Services
  • Worked on multiple middleware deployment projects based on Oracle WebLogic and IBM WebSphere.
  • Participated in building a private cloud on OpenStack platform.
  • Developed system scripts, Perl and Shell-based, to automate routine operations.
  • Deployed Docker servers to research container technology.
  • Created continuous integration pipelines in Jenkins for software development teams.
Technologies: Jenkins, Docker, OpenStack, IBM WebSphere, Oracle WebLogic Application Server, Linux

Cloud Automation Engineer

2013 - 2014
Bank of Nova Scotia
  • Designed and built a private cloud, based on BMC Cloud Lifecycle Management.
  • Automated provisioning of IBM AIX LPARs with predefined software stack.
  • Developed an automated security hardening system to ensure the AIX LPARs’ security compliance.
  • Automated deployment of IBM WebSphere components on AIX and Linux servers.
Technologies: Management, Cloud, AIX

Migration of Microservice Applications From AWS Elastic Beanstalk to Kubernetes (AWS EKS)

For this project, I built multiple Kubernetes clusters on AWS in development, testing and production environments, Anchore was used for container image inspection. NGINX Ingress Controler along with ALB Ingress Controller exposed services for the outside world. AWS IAM roles were assigned on containers to get access to AWS resources by kube2iam. Kubernetes Cluster Autoscaler took care of scaling up/down of the worker nodes ensuring resources availability for proper pods scheduling. AWS EBS snapshots were created automatically for persistent storage volumes by k8s-snapshots. Istio controlled traffic among all pods within and across cluster namespaces. All logs were sent to Splunk, and DataDog was used for monitoring purposes.

Ansible Tasks File for Amazon VPC Deployment

This is an Ansible tasks file, part of an Ansible role, which creates an Amazon Virtual Private Cloud (VPC) with public and private subnets. A NAT Gateway is created for private subnets, and an Internet Gateway is created for public subnets.

Automation of Deployment of Microsoft Dynamics GP on Azure Cloud

Microsoft Dynamics GP is a business accounting software. As part of a bigger cloud migration initiative, I got this project to automate the installation of MS Dynamics GP components on Azure Cloud instances. That was an unorthodox automation job. The challenge was to install and configure a dozen software packages, some of which could be installed "silently" in command line, and some could be installed through GUI only. Some packages wanted to talk to MS SQL server; some packages needed SQL Server Reporting Services. So I used different Powershell modules in the automation scripts such as SQL Server and ReportingServicesTools to work with SQL services. AutoItX was used to simulate keystrokes interacting with GUIs.

Automation of Firewall Rules Creation in Panorama

Panorama is the centralized management system for the Palo Alto Networks family of firewalls. I had a project where I automated the creation of firewall rules for new cloud deployments. The automation scripts were written in Python. Palo Alto Networks Device Framework (pandevice) Python library was used to interact with Panorama. Firewall rules were created or updated automatically when changes of the cloud infrastructure were detected by Amazon CloudWatch.

Languages

Python, Python 3, SQL, XML, YAML, C#, Java

Frameworks

Windows PowerShell, Flask

Tools

Azure Kubernetes Service (AKS), Ansible, Amazon EKS, Git, Chef, Terraform, AWS CloudFormation, NGINX, Atom, IBM MQ, Bamboo, Jira, Apache Maven, Artifactory, Jenkins, Amazon Virtual Private Cloud (VPC)

Platforms

Kubernetes, Linux, Amazon, Docker, Windows, Azure, Amazon Web Services (AWS), IBM WebSphere, OpenShift, OpenStack, AIX, Google Cloud Platform (GCP)

Other

Unix Shell Scripting, Infrastructure as Code (IaC), OpenID Connect (OIDC), Firewalls, Palo Alto Panorama, Oracle WebLogic Application Server, Cloud

Paradigms

Azure DevOps, Management, Agile, Microservices

Storage

MySQL, JSON

1987 - 1993

Bachelor of Engineering Degree in Computer Science

Moscow Institute of Electronic Machinery - Moscow, Russia

Collaboration That Works

How to Work with Toptal

Toptal matches you directly with global industry experts from our network in hours—not weeks or months.

1

Share your needs

Discuss your requirements and refine your scope in a call with a Toptal domain expert.
2

Choose your talent

Get a short list of expertly matched talent within 24 hours to review, interview, and choose from.
3

Start your risk-free talent trial

Work with your chosen talent on a trial basis for up to two weeks. Pay only if you decide to hire them.

Top talent is in high demand.

Start hiring