Juan Tamariz, Developer in Guadalajara, Mexico
Juan is available for hire
Hire Juan

Juan Tamariz

Verified Expert  in Engineering

Bio

Juan is a senior DevOps engineer with over a decade of experience designing, testing, implementing, deploying, and supporting critical Infrastructure systems with DevOps culture and Agile methodology. He excels at ensuring security levels, data integrity, availability, configuration and change management, continuous integration, and deployment. Juan has successfully supported networks composed of 1,000+ nodes at headquarters with remote connections to 160+ branch offices around the world.

Portfolio

Entos, Inc.
Terraform, Amazon EKS, Kubernetes, CloudOps, Docker, Amazon RDS, PostgreSQL...
Yields NV
Docker, Continuous Integration (CI), Kubernetes, YAML, Jenkins, Concourse CI...
Tacit Knowledge
Kubernetes, Google Kubernetes Engine (GKE), Azure Kubernetes Service (AKS)...

Experience

Availability

Part-time

Preferred Environment

Python 3, Kubernetes, Amazon Web Services (AWS), Helm, Ansible, Google Cloud, Terraform, Serverless, SAP Hybris, Azure

The most amazing...

...project was working a CI and deployment infrastructure to push code releases with no downtime—handling the database, VMs, containers, security, and monitoring.

Work Experience

AWS EKS Expert

2023 - 2023
Entos, Inc.
  • Coded different Terraform modules with their implementation through Makefile wrappers to guarantee consistency and easy inclusion on a CI/CD tool.
  • Understood the existing code so I could contribute according to the internal guidelines and code style.
  • Fixed different situations detected in previous implementations daily.
Technologies: Terraform, Amazon EKS, Kubernetes, CloudOps, Docker, Amazon RDS, PostgreSQL, Ansible, Packer

AWS | DevOps

2021 - 2023
Yields NV
  • Worked on a migration from Jenkins-X to Concourse CI, which involved mastering the Concourse CI technology. The migration was completed by moving 29 projects from the old platform to the new one, resulting in more than 120 pipelines.
  • Coded a generator of pipelines for Concourse CI, which takes a YTT template and variables as input to then output a pipeline definition in a YAML format. This helps the development team to be self-sufficient in maintaining the concourse pipelines.
  • Maintained more than 120 different pipelines on Concourse CI. Managed the automation of pull requests and merged them into the release branch. Tested code, built artifacts, and published them in collaboration with the development team.
  • Collaborated on the IBM Cloud project to set up the security recommendations for a Yields NV project. Worked together with the Yields NV team and other external contractors. Used relevant technologies like Kubernetes.
  • Automated a way to perform smoke tests on ephemeral clusters. Used tools such as Kubernetes, Terraform, Concourse CI, Bash, Python, and Google Cloud.
  • Maintained the CI setup "in-house" by using technologies like Kubernetes, Google Cloud, Bash, and Python.
  • Automated the updates on the Concourse CI pipelines, which resulted in a product where developers need to push the pipeline changes to a specific repo for Concourse to update its own pipelines automatically.
Technologies: Docker, Continuous Integration (CI), Kubernetes, YAML, Jenkins, Concourse CI, Google Cloud, IBM Cloud, Google Cloud Platform (GCP), CI/CD Pipelines, Site Reliability Engineering (SRE), Leadership, GitHub, SSL Certificates, Python, Infrastructure as Code (IaC), Configuration Management, Microservices, Continuous Deployment, Infrastructure as a Service (IaaS), Go

Senior DevOps Engineer

2019 - 2021
Tacit Knowledge
  • Improved monitoring for a Google Cloud project with the setup of Prometheus Operator on Kubernetes.
  • Implemented CI/CD automation for “1-click” deployments with no downtime. Building custom AMIs as well as Docker images with AWS Code Build.
  • Defined an internal workflow to continuously test Helm charts for Kubernetes with an internal repository.
  • Defined and configured monitoring and alerting policies for site reliability engineering (SRE).
  • Upgraded Jenkins ​and Ansible to guarantee service availability and maintainability of deployment scripts.
  • Developed Python code to create lambda functions to automate firewall whitelisting and storage cleanup.
Technologies: Kubernetes, Google Kubernetes Engine (GKE), Azure Kubernetes Service (AKS), Amazon EKS, Terraform, AWS CloudFormation, Ansible, Python 3, Helm, EFK Stack, Prometheus, Jenkins, AWS Key Management Service (KMS), Solution Architecture, Java, Amazon RDS, AWS CLI, AWS IAM, Google Cloud Platform (GCP), Monitoring, CI/CD Pipelines, Site Reliability Engineering (SRE), GitHub, SSL Certificates, Node.js, Python, Infrastructure as Code (IaC), Configuration Management, Amazon DynamoDB, Microservices, Continuous Deployment, Infrastructure as a Service (IaaS)

Senior DevOps Consultant

2018 - 2018
Levi Strauss & Co
  • Supported and improved an AWS serverless architecture.
  • Defined a model for support and escalations of user access requests.
  • Established a CloudFormation library to be used for infrastructure deployments.
Technologies: AWS Lambda, Redshift, AWS Glue, AWS CloudFormation, Terraform, Java, Amazon RDS, AWS CLI, AWS IAM, Monitoring, CI/CD Pipelines, Site Reliability Engineering (SRE), GitHub, SSL Certificates, Infrastructure as Code (IaC), Configuration Management, Microservices, Continuous Deployment, Infrastructure as a Service (IaaS), Serverless Architecture

DevOps Engineer Consultant​

2016 - 2018
Tacit Knowledge
  • Deployed ​a private Chef Supermarket​ to promote common practices with wrapper and community cookbooks.
  • Created​ custom Chef resources ​with Ruby scripts to automate backups with duplicity.
  • Designed and developed environments in​ Kubernetes to production​ with Helm in Google Cloud.
  • Designed and developed environments in ​AWS using Jenkins,​ Ansible, OpenVPN, OpenLDAP, and CloudFormation.
  • Establish​ed CI/CD ​workflows for clients with virtual machines and containers in Google Cloud.
  • Migrated a Kubernetes cluster from Google Cloud to Azure which provided service portability.
  • Performed log parsing tuning for Stackdriver in Google and CloudWatch in AWS.
  • Autoscaled a cluster of Java applications with CloudFormation in AWS, which provided highly available infrastructure.
Technologies: Chef, Ansible, Percona, Nagios, Terraform, AWS CloudFormation, Google Kubernetes Engine (GKE), Jenkins, OpenVPN, OpenLDAP, Ruby, APM, Google Stackdriver, Amazon CloudWatch, Java, Amazon RDS, AWS CLI, AWS IAM, Google Cloud Platform (GCP), Monitoring, CI/CD Pipelines, Site Reliability Engineering (SRE), Leadership, GitHub, SSL Certificates, Node.js, Infrastructure as Code (IaC), Configuration Management, Microservices, Continuous Deployment, Infrastructure as a Service (IaaS), Serverless Architecture

DevOps and SysAdmin Manager

2008 - 2016
PriceTravel
  • Managed projects with budgets of $2.5 million for a colocation setup expansion.
  • Scripted policies and procedures to establish configurations in compliance with the PCI for credit card management.
  • Developed an HA cluster with the SQL Server to provide an RTO of one minute in case of hardware failure.
  • Composed shell scripting for the management of 350 network routers.
  • Installed and built the configuration remotely, which resulted in a new record for the company, mounting 75 servers in one day.
  • Managed the infrastructure by monitoring more than 300 servers with Nagios, Cacti, MRTG, and Datadog.
  • Provided tier-three support in networking, VoIP, the email server, databases, and 3rd-party applications (server-side).
  • Deployed SQL Monitor, Nagios, and New Relic for monitoring and proactive planning.
  • Automated deployments of Java applications and implemented virtualization for production servers with Windows and Linux.
Technologies: Windows Server, DHCP, DNS, SQL Server 2015, Bash Script, Hyper-V, Fortinet Firewall Configuration, Active Directory Federation, Multiprotocol Label Switching (MPLS), Mail Servers, Nagios, Datadog, VoIP, IIS 7, Linux, APM, Ubiquiti Wireless Gear, Monitoring, Leadership, SSL Certificates, Configuration Management, Continuous Deployment

Zero-downtime Deployments

• Set up the infrastructure for four different environments, including production. CI/CD, monitoring, backups, and security tools.
• Established the automation to continuously introduce security patches from lower environments to production.
• Set up AWS Inspector to validate possible new vulnerabilities in the code.
• Setup a CI/CD pipeline including code testing, security assessment, and a no-downtime deployment strategy that covers database upgrades. This resulted in minimizing the downtime of the application in production and improving production release frequency.
• Implemented core component upgrades to reduces costs and maximize performance for the client.

A CI/CD Framework to Speed-up Project Setups

I built a framework to automate the bootstrapping of several tools for a CI/CD pipeline which included the build, code promotion, static code testing, performance baselines, and continuous deployment.

The impact of my work was a significant reduction of implementation time for new pipelines from 30 days to seven days.

JupyterHub Notebooks in Kubernetes

Making use of KubeSpawner, I developed an implementation of JupyterHub Notebooks. It provides a long-term solution for on-demand autoscaling of users instances, together with Kubernetes' allocated resources.

At a glance, for every user logged in, a new Kubernetes pod is created on-demand. When more resources are needed, the Kubernetes cluster will also auto-scale.

Terraform Modules to Speed Up Infrastructure Creation

A full project that involved an analysis of requirements and definition of dependencies and stakeholders.

I created an Agile project to track the creation of every Terraform module. We ended up on a set of authorized scripts that were instanced on several projects on Google Cloud.

The result is that before the project setup took a month and with the scripts, a new project could be set up every three days.

The framework considered the usage of the latest available Terraform version, together with a shared backend/state to make collaboration easier.
2005 - 2013

Bachelor's Degree in Computer Systems

Universidad del Caribe - Cancun, Mexico

Libraries/APIs

OpenLDAP, Node.js

Tools

Helm, Ansible, Terraform, SAP Hybris, Google Kubernetes Engine (GKE), Azure Kubernetes Service (AKS), Amazon EKS, AWS CloudFormation, EFK Stack, Jenkins, AWS Key Management Service (KMS), Nagios, Bitbucket, Git, HashiCorp, Docker Hub, AWS CLI, AWS IAM, GitHub, Chef, AWS Glue, OpenVPN, Google Stackdriver, Amazon CloudWatch, Hyper-V, Apache JMeter, SonarQube, HashiCorp Vault, Concourse CI, CloudOps, Packer

Languages

Python, Python 3, Java, Go, Ruby, Bash Script, YAML

Paradigms

DevOps, Microservices, Continuous Deployment, Object-oriented Programming (OOP), Serverless Architecture, REST, Continuous Integration (CI)

Platforms

Kubernetes, Linux, Amazon Web Services (AWS), Docker, Google Cloud Platform (GCP), Azure, AWS Lambda, Percona, Windows Server

Storage

Google Cloud, Databases, Amazon DynamoDB, Redshift, Datadog, Google Cloud Storage, PostgreSQL

Other

Networking, Back-end Admin Systems, VoIP, Web Servers, Prometheus, DNS, Ubiquiti Wireless Gear, Groovy Scripting, Content Delivery Networks (CDN), Amazon RDS, Monitoring, CI/CD Pipelines, Site Reliability Engineering (SRE), Leadership, SSL Certificates, Infrastructure as Code (IaC), Configuration Management, Infrastructure as a Service (IaaS), Serverless, Amazon Inspector, Solution Architecture, APM, DHCP, SQL Server 2015, Fortinet Firewall Configuration, Active Directory Federation, Multiprotocol Label Switching (MPLS), Mail Servers, IIS 7, Pulumi, Agile DevOps, IBM Cloud

Collaboration That Works

How to Work with Toptal

Toptal matches you directly with global industry experts from our network in hours—not weeks or months.

1

Share your needs

Discuss your requirements and refine your scope in a call with a Toptal domain expert.
2

Choose your talent

Get a short list of expertly matched talent within 24 hours to review, interview, and choose from.
3

Start your risk-free talent trial

Work with your chosen talent on a trial basis for up to two weeks. Pay only if you decide to hire them.

Top talent is in high demand.

Start hiring