
James Nurmi
Verified Expert in Engineering
Cloud Architect and Developer
Lisbon, Portugal
Toptal member since July 22, 2021
With two decades of experience, James brings a deep understanding of matching business requirements with practical solutions. From small shops just starting to get traffic to large shops looking to increase reliability, availability, and control costs, he brings expertise and creativity to help your business grow and thrive in the cloud. With diverse skills and a tenacity for problem-solving, James helps bridge the gap between what a business needs and how it can get there.
Portfolio
Experience
- Linux - 20 years
- Site Reliability Engineering (SRE) - 17 years
- Cost Cutting (Cost-out) - 16 years
- AWS Cloud Architecture - 15 years
- AWS IAM - 14 years
- Go - 8 years
- Kubernetes - 5 years
- OpenTelemetry - 2 years
Availability
Preferred Environment
Linux, Amazon Web Services (AWS), Go, Python
The most amazing...
...thing I've accomplished is helping the client cut the cloud spending from a million dollars per year to a tenth of that in weeks by knowing the right tools.
Work Experience
DevOps Consultant
Undisclosed (Private Client)
- Targeted resource cost and utilization policies reduce spending by more than 50% while increasing the availability of application services by orders of magnitude.
- Designed, managed, and implemented a coordinated zero-downtime effort to migrate services from a single AWS region to multiple regions to optimize service availability and compliance efforts.
- Migrated ECS workloads to an EKS backplane, supporting multiple developer and customer-facing workloads.
- Implemented security policies to ensure customer data and PII were well-protected and auditable.
- Managed integration with multiple third-party services, including Contentful, Vercel, and similar services.
- Oversaw and created CI/CD workflows for micro-service-based architecture.
Kafka and Kubernetes Expert
Undisclosed (Toptal Client)
- Established automated monitoring between Terraform components and Datadog to ensure consistent application of company standards.
- Configured and managed multiple Kafka (MSK) clusters for highly available mission-critical services.
- Guided junior team members in learning AWS infrastructure and services.
- Provided support and troubleshooting for VPCs, peering connections, and other complex networking installations.
- Supported multiple Kubernetes clusters for production and developer use.
DevOps Consultant
Undisclosed
- Migrated several services and Terraformed recipes to more modernized and standardized implementations.
- Managed scalability, security concerns, incident response for external threats, and internal risk management.
- Charged with spearheading much of the policy generation and implementation for ISO27001 certification of the organization.
Senior DevOps
Undisclosed (Toptal Client)
- Managed multiple team members and led reorganizing into a DevOps as a service mentality, enabling engineering teams to quickly and independently iterate without being blocked by operations and logistics.
- Managed and migrated several workloads across several Kubernetes clusters to ensure availability and redundancy of services.
- Charged with several operational concerns, including management, security, infrastructure, SSO integrations, and others, to ensure automation and well-defined policies across the engineering teams.
Cloud Architect | Operations Lead
Sano Intelligence
- Created, managed, and supported the entire cloud infrastructure for the enterprise to ensure high availability and low-cost automation solutions.
- Supported internal engineering and IT groups to ensure coordinated efforts across the organization and reduce duplication.
- Implemented infrastructure scalability throughout an enterprise's formative years—ensuring the load testing, scalability, and productivity of teams working on the product.
Senior Site Reliability Engineer
The Climate Corporation
- Worked to help control costs and mitigate expenses through the use of AWS technologies, including spot instances, monitoring, and active management of infrastructure.
- Acted as the primary engineer on security and infrastructure concerns within the cloud infrastructure.
- Consulted across teams within the organization for use and integration with AWS and other cloud technologies, including engineering, IT, and business analytics teams.
- Implemented and managed the authentication infrastructure for production services ensuring reliable SSO across the application suite.
- Applied the high-availability and high-reliability infrastructure to support build deployment automation and reproducibility.
Systems Engineer
Ooyala
- Designed, negotiated purchasing, built, and provisioned the first physical data center for the company's hybrid-cloud system.
- Designed and deployed corporate and production networks, automation, IT integration, and provisioning tools.
- Acted as the first-and-final security contact for internal and external threat mitigation, management, and resolution.
Linux Administrator | Corporate Site Reliability Engineer
- Managed and maintained numerous corporate services to support the engineering organization and the corporate mission.
- Oversaw several integration points of the various technology platforms in Google's unique environment.
- Handled on-call and maintenance of tight SLAs to ensure worldwide and 24/7 availability of corporate infrastructure.
- Acted frequently as a nexus of information between the corporate and production networking teams and security, production, and corporate resources.
Experience
Hrmit.io
By ensuring repeatable and reliable onboarding, new employees can get started faster, access the services needed for their roles, and reduce the time they spend during their first weeks asking for access to core components.
Similarly with offboarding, companies are given reliable and auditable assurance that employees no longer have access to company property after they leave, helping to control license costs, security risks and unplanned IT work.
Education
Bachelor's Degree in Computer Science
Virginia Polytechnic Institute and State University - Blacksburg, VA, United States
Certifications
AWS Certified Solutions Architect Professional
AWS
AWS Certified Security - Specialty
Amazon Web Services
AWS Certified DevOps Engineer - Professional
Amazon Web Services
Skills
Libraries/APIs
Google Apps, RADIUS, Node.js
Tools
VPN, Amazon Elastic Container Service (ECS), AWS IAM, AWS ELB, Amazon Elastic Block Store (EBS), AWS CloudFormation, Amazon Virtual Private Cloud (VPC), GitLab, GitHub, Amazon CloudWatch, Shell, Amazon CloudFront CDN, Amazon Simple Queue Service (SQS), AWS Fargate, Git, Amazon Elastic MapReduce (EMR), Amazon EKS, Terraform, Grafana, MQTT, Perforce, CVS, Mercurial, Jira, Atlassian, Trello, Helm
Languages
Go, Bash Script, C, Python, JavaScript, C++, Java, Ruby
Frameworks
AWS HA
Paradigms
DevOps, Lambda Architecture, Microservices, DevSecOps, Continuous Delivery (CD), Continuous Integration (CI)
Platforms
Unix, Linux, AWS ALB, AWS Lambda, Amazon EC2, Amazon Web Services (AWS), Kubernetes, Docker, Ubuntu, AWS Elastic Beanstalk, Azure, Apache Kafka, PagerDuty, Vercel
Storage
Amazon S3 (AWS S3), Amazon DynamoDB, Redis, Google Cloud, PostgreSQL, Amazon Aurora, Elasticsearch, MongoDB, Datadog
Other
DNS, Load Balancers, Cloud, IP Networks, Firewalls, Kerberos, IPsec, Cost Cutting (Cost-out), AWS Cloud Architecture, Monitoring, Scalability, Site Reliability Engineering (SRE), Cloud Security, AWS DevOps, DevOps Engineer, Containers, Containerization, Site Reliability, Cloud Computing, Amazon RDS, CI/CD Pipelines, AWS Certified Solution Architect, Infrastructure as Code (IaC), Orchestration, Amazon Kinesis, System Architecture, Back-end, HTTP, Identity & Access Management (IAM), Networking, Cost Control, Cloud Architecture, Cloud Services, OpenTelemetry, LDAP, Wireless, Border Gateway Protocol (BGP), Web Security, Securities, Lambda Functions, Prometheus, Amazon API Gateway, Autoscaling Groups, Elastic APM, Single Sign-on (SSO), ISO 27001, Alternative Investments
How to Work with Toptal
Toptal matches you directly with global industry experts from our network in hours—not weeks or months.
Share your needs
Choose your talent
Start your risk-free talent trial
Top talent is in high demand.
Start hiring