Juan Tamariz
Verified Expert in Engineering
Senior DevOps Engineer and Developer
Guadalajara, Mexico
Toptal member since March 19, 2021
Juan is a senior DevOps engineer with over a decade of experience designing, testing, implementing, deploying, and supporting critical Infrastructure systems with DevOps culture and Agile methodology. He excels at ensuring security levels, data integrity, availability, configuration and change management, continuous integration, and deployment. Juan has successfully supported networks composed of 1,000+ nodes at headquarters with remote connections to 160+ branch offices around the world.
Portfolio
Experience
Availability
Preferred Environment
Python 3, Kubernetes, Amazon Web Services (AWS), Helm, Ansible, Google Cloud, Terraform, Serverless, SAP Hybris, Azure
The most amazing...
...project was working a CI and deployment infrastructure to push code releases with no downtime—handling the database, VMs, containers, security, and monitoring.
Work Experience
AWS EKS Expert
Entos, Inc.
- Coded different Terraform modules with their implementation through Makefile wrappers to guarantee consistency and easy inclusion on a CI/CD tool.
- Understood the existing code so I could contribute according to the internal guidelines and code style.
- Fixed different situations detected in previous implementations daily.
AWS | DevOps
Yields NV
- Worked on a migration from Jenkins-X to Concourse CI, which involved mastering the Concourse CI technology. The migration was completed by moving 29 projects from the old platform to the new one, resulting in more than 120 pipelines.
- Coded a generator of pipelines for Concourse CI, which takes a YTT template and variables as input to then output a pipeline definition in a YAML format. This helps the development team to be self-sufficient in maintaining the concourse pipelines.
- Maintained more than 120 different pipelines on Concourse CI. Managed the automation of pull requests and merged them into the release branch. Tested code, built artifacts, and published them in collaboration with the development team.
- Collaborated on the IBM Cloud project to set up the security recommendations for a Yields NV project. Worked together with the Yields NV team and other external contractors. Used relevant technologies like Kubernetes.
- Automated a way to perform smoke tests on ephemeral clusters. Used tools such as Kubernetes, Terraform, Concourse CI, Bash, Python, and Google Cloud.
- Maintained the CI setup "in-house" by using technologies like Kubernetes, Google Cloud, Bash, and Python.
- Automated the updates on the Concourse CI pipelines, which resulted in a product where developers need to push the pipeline changes to a specific repo for Concourse to update its own pipelines automatically.
Senior DevOps Engineer
Tacit Knowledge
- Improved monitoring for a Google Cloud project with the setup of Prometheus Operator on Kubernetes.
- Implemented CI/CD automation for “1-click” deployments with no downtime. Building custom AMIs as well as Docker images with AWS Code Build.
- Defined an internal workflow to continuously test Helm charts for Kubernetes with an internal repository.
- Defined and configured monitoring and alerting policies for site reliability engineering (SRE).
- Upgraded Jenkins and Ansible to guarantee service availability and maintainability of deployment scripts.
- Developed Python code to create lambda functions to automate firewall whitelisting and storage cleanup.
Senior DevOps Consultant
Levi Strauss & Co
- Supported and improved an AWS serverless architecture.
- Defined a model for support and escalations of user access requests.
- Established a CloudFormation library to be used for infrastructure deployments.
DevOps Engineer Consultant
Tacit Knowledge
- Deployed a private Chef Supermarket to promote common practices with wrapper and community cookbooks.
- Created custom Chef resources with Ruby scripts to automate backups with duplicity.
- Designed and developed environments in Kubernetes to production with Helm in Google Cloud.
- Designed and developed environments in AWS using Jenkins, Ansible, OpenVPN, OpenLDAP, and CloudFormation.
- Established CI/CD workflows for clients with virtual machines and containers in Google Cloud.
- Migrated a Kubernetes cluster from Google Cloud to Azure which provided service portability.
- Performed log parsing tuning for Stackdriver in Google and CloudWatch in AWS.
- Autoscaled a cluster of Java applications with CloudFormation in AWS, which provided highly available infrastructure.
DevOps and SysAdmin Manager
PriceTravel
- Managed projects with budgets of $2.5 million for a colocation setup expansion.
- Scripted policies and procedures to establish configurations in compliance with the PCI for credit card management.
- Developed an HA cluster with the SQL Server to provide an RTO of one minute in case of hardware failure.
- Composed shell scripting for the management of 350 network routers.
- Installed and built the configuration remotely, which resulted in a new record for the company, mounting 75 servers in one day.
- Managed the infrastructure by monitoring more than 300 servers with Nagios, Cacti, MRTG, and Datadog.
- Provided tier-three support in networking, VoIP, the email server, databases, and 3rd-party applications (server-side).
- Deployed SQL Monitor, Nagios, and New Relic for monitoring and proactive planning.
- Automated deployments of Java applications and implemented virtualization for production servers with Windows and Linux.
Experience
Zero-downtime Deployments
• Established the automation to continuously introduce security patches from lower environments to production.
• Set up AWS Inspector to validate possible new vulnerabilities in the code.
• Setup a CI/CD pipeline including code testing, security assessment, and a no-downtime deployment strategy that covers database upgrades. This resulted in minimizing the downtime of the application in production and improving production release frequency.
• Implemented core component upgrades to reduces costs and maximize performance for the client.
A CI/CD Framework to Speed-up Project Setups
The impact of my work was a significant reduction of implementation time for new pipelines from 30 days to seven days.
JupyterHub Notebooks in Kubernetes
At a glance, for every user logged in, a new Kubernetes pod is created on-demand. When more resources are needed, the Kubernetes cluster will also auto-scale.
Terraform Modules to Speed Up Infrastructure Creation
I created an Agile project to track the creation of every Terraform module. We ended up on a set of authorized scripts that were instanced on several projects on Google Cloud.
The result is that before the project setup took a month and with the scripts, a new project could be set up every three days.
The framework considered the usage of the latest available Terraform version, together with a shared backend/state to make collaboration easier.
Education
Bachelor's Degree in Computer Systems
Universidad del Caribe - Cancun, Mexico
Skills
Libraries/APIs
OpenLDAP, Node.js
Tools
Helm, Ansible, Terraform, SAP Hybris, Google Kubernetes Engine (GKE), Azure Kubernetes Service (AKS), Amazon EKS, AWS CloudFormation, EFK Stack, Jenkins, AWS Key Management Service (KMS), Nagios, Bitbucket, Git, HashiCorp, Docker Hub, AWS CLI, AWS IAM, GitHub, Chef, AWS Glue, OpenVPN, Google Stackdriver, Amazon CloudWatch, Hyper-V, Apache JMeter, SonarQube, HashiCorp Vault, Concourse CI, CloudOps, Packer
Languages
Python, Python 3, Java, Go, Ruby, Bash Script, YAML
Paradigms
DevOps, Microservices, Continuous Deployment, Object-oriented Programming (OOP), Serverless Architecture, REST, Continuous Integration (CI)
Platforms
Kubernetes, Linux, Amazon Web Services (AWS), Docker, Google Cloud Platform (GCP), Azure, AWS Lambda, Percona, Windows Server
Storage
Google Cloud, Databases, Amazon DynamoDB, Redshift, Datadog, Google Cloud Storage, PostgreSQL
Other
Networking, Back-end Admin Systems, VoIP, Web Servers, Prometheus, DNS, Ubiquiti Wireless Gear, Groovy Scripting, Content Delivery Networks (CDN), Amazon RDS, Monitoring, CI/CD Pipelines, Site Reliability Engineering (SRE), Leadership, SSL Certificates, Infrastructure as Code (IaC), Configuration Management, Infrastructure as a Service (IaaS), Serverless, Amazon Inspector, Solution Architecture, APM, DHCP, SQL Server 2015, Fortinet Firewall Configuration, Active Directory Federation, Multiprotocol Label Switching (MPLS), Mail Servers, IIS 7, Pulumi, Agile DevOps, IBM Cloud
How to Work with Toptal
Toptal matches you directly with global industry experts from our network in hours—not weeks or months.
Share your needs
Choose your talent
Start your risk-free talent trial
Top talent is in high demand.
Start hiring