Kushtrim is available for hire
Hire KushtrimKushtrim Morina
Verified Expert in Engineering
DevOps Engineer and Developer
Berlin, Germany
Toptal member since December 4, 2020
Bio
With a decade in IT, Kushtrim shines in DevOps and cloud infrastructure, mastering complex migrations, high-availability infrastructures, and robust CI/CD pipelines, notably in high-security sectors. Based in Berlin, his rich portfolio reflects a relentless pursuit of scalable solutions, turning tech challenges into triumphs. Kushtrim is an invaluable ally for any venture eyeing innovation, blending expertise in AWS, Azure, Kubernetes, and GitOps to drive projects to success.
Portfolio
ITQ
VMware, Kubernetes, Carvel, Amazon EKS, Helm, Content Delivery Networks (CDN)...
Twinner
DevOps, Amazon Web Services (AWS), Azure SQL, SaltStack, Docker, Jenkins...
Exasol
DevOps, Amazon Web Services (AWS), AWS CloudFormation, Keycloak, AWS IAM, Azure...
Experience
- Kubernetes - 7 years
- DevOps - 6 years
- Linux - 5 years
- Grafana - 5 years
- Prometheus - 5 years
- Terraform - 5 years
- Azure - 4 years
- Azure Kubernetes Service (AKS) - 2 years
Availability
Full-time
Preferred Environment
CI/CD Pipelines, Amazon Web Services (AWS), Prometheus, DevOps, Kubernetes, Azure, Argo CD, Azure DevOps
The most amazing...
...thing I've done was deployment of ArgoCD and migration of 30 applications within three months.
Work Experience
IT Consultant
2023 - 2023
ITQ
- Engineered a cutting-edge managed service provider (MSP) solution leveraging VMware Tanzu Kubernetes distribution, enhancing internal operational efficiency and scalability.
- Implemented Tekton pipelines and HashiCorp Vault within the MSP solution, driving automation and bolstering security infrastructure, thus ensuring the integrity and protection of critical data.
- Utilized Carvel tools, Terraform, and Packer in the development process, facilitating robust and flexible infrastructure as code (IaC) capabilities, accelerating deployment times, and improving system reliability.
Technologies: VMware, Kubernetes, Carvel, Amazon EKS, Helm, Content Delivery Networks (CDN), Apache Airflow
Cloud Engineer
2020 - 2023
Twinner
- Migrated multiple microservices from Azure App Services and functions developed in different languages like Java, .NET, Python, and PHP to Kubernetes.
- Supported developers in building CI/CD pipelines using Bitbucket pipelines and Jenkins to deploy microservices to Kubernetes and Azure functions.
- Developed a custom backup solution from Azure Blob Storage to Amazon S3, which backs up the added or modified blob to Amazon S3.
- Implemented a free monitoring and login solution with Grafana, Loki, and Promtail for multiple Kubernetes clusters, databases, and other infrastructure.
- Wrote deployment scripts in Python, Bash, and PowerShell.
- Used Terraform and ARM templates for the deployment of infrastructure.
- Managed Azure resources for different environments and regions.
- Migrated traditional CD pipelines to Argo CD and reduced deployment time to seconds.
Technologies: DevOps, Amazon Web Services (AWS), Azure SQL, SaltStack, Docker, Jenkins, Python, Prometheus, Grafana, Azure Kubernetes Service (AKS), Azure App Service, Argo CD, Helm, Content Delivery Networks (CDN)
Cloud Engineer
2019 - 2019
Exasol
- Designed and implemented a cost-saving solution for cloud infrastructure (AWS< Azure and GCP), which significantly reduced the expenses of a large development client.
- Set up cloud policies for cloud governance in AWS, Azure, and GCP, which reduced the unnecessary access of users to services.
- Created the networking infrastructure between multiple AWS accounts in a single organization with a VPN gateway and VPC peering.
- Designed a high-end proposal for an integrated single sign-on (SSO) solution for internal and external users for multiple services such as AWS, Azure AD, GCP, Jira, Atlantis, and other custom software.
- Built the CI/CD of a custom cost control policy and infrastructure with Jenkins, Terraform, and GitHub.
Technologies: DevOps, Amazon Web Services (AWS), AWS CloudFormation, Keycloak, AWS IAM, Azure, Google Cloud Platform (GCP), GitHub, Cloud Governance, Helm, Content Delivery Networks (CDN)
Lead Infrastructure Engineer
2018 - 2018
Moosend
- Migrated the entire cloud environment to on-premises servers in record time without any downtime and client disruption.
- Supported developers in implementing a CI/CD pipeline with Bitbucket, TeamCity, and Octopus.
- Set up the email messaging infrastructure that could send millions of emails daily.
- Deployed a monitoring system for the application and infrastructure with downtime and application-specific metrics.
- Managed cloud resources in Azure (Blob Storage, Azure Services), the AWS content delivery network (CDN), and Amazon S3.
Technologies: Amazon CloudFront CDN, Redis, HAProxy, Octopus Deploy, TeamCity, SQL, ScyllaDB, RabbitMQ, Azure, Content Delivery Networks (CDN)
IT System Engineer and Project Manager
2011 - 2018
Botek, LLC.
- Managed a project and designed the infrastructure for 10,000 users for high-security institutions with three different remote teams.
- Designed and implemented a high availability infrastructure with more than 50 physical servers and 200 VM with Dell Servers and Microsoft Hyper-V.
- Designed a VPN network to connect more than 200 branches of a public institution.
Technologies: Hyper-V, VMware, Cisco, Networks, IT Project Management, System Integration, System Administration, Dell PowerEdge Servers
Experience
Cloud Security with Cloud Custodian
A project that monitors cloud cost, delivering alerts and stopping resources based on pre-defined policies. The project is based on Cloud Custodian, Jenkins, and Terraform.
The Custodian scripts are written by security engineers and pushed to Git, which triggers an automatic Terraform pipeline in Jenkins. This reduced the clients' costs by 50%.
As a DevSecOps consultant, I was in charge of finding an open-source solution that fit client requests, developing a process for easy deployment of new security and cost policies, and monitoring the current status. I set up the Jenkins job and Terraform templates and pipelines to deploy new policies and update existing ones.
The Custodian scripts are written by security engineers and pushed to Git, which triggers an automatic Terraform pipeline in Jenkins. This reduced the clients' costs by 50%.
As a DevSecOps consultant, I was in charge of finding an open-source solution that fit client requests, developing a process for easy deployment of new security and cost policies, and monitoring the current status. I set up the Jenkins job and Terraform templates and pipelines to deploy new policies and update existing ones.
Deployment of Application to Azure with Azure DevOps and Kubernetes
I played a crucial role in successfully developing a comprehensive project covering various facets of cloud technology and software development. Initially, I was tasked with deploying the infrastructure using ARM templates and Terraform, creating a solid foundation for the project's robust and scalable architecture.
A significant part of the project involved developing and optimizing CI/CD pipelines. My approach led to an efficient and reliable integration and deployment process, which ensured the project's agility and responsiveness to changes.
When faced with the task of troubleshooting a Node.js app, I managed to pinpoint and rectify issues effectively, enhancing the application's performance and stability.
Further, I deployed the application on Azure Kubernetes Service (AKS), ensuring it was scalable, reliable, and ready to handle high-performance demands.
Lastly, I oversaw the deployment of microservices in Azure Functions, emphasizing the project's commitment to a microservices architecture. This contributed to the project's overall flexibility, scalability, and resilience. My diverse skill set and comprehensive involvement were integral to the project's successful development.
A significant part of the project involved developing and optimizing CI/CD pipelines. My approach led to an efficient and reliable integration and deployment process, which ensured the project's agility and responsiveness to changes.
When faced with the task of troubleshooting a Node.js app, I managed to pinpoint and rectify issues effectively, enhancing the application's performance and stability.
Further, I deployed the application on Azure Kubernetes Service (AKS), ensuring it was scalable, reliable, and ready to handle high-performance demands.
Lastly, I oversaw the deployment of microservices in Azure Functions, emphasizing the project's commitment to a microservices architecture. This contributed to the project's overall flexibility, scalability, and resilience. My diverse skill set and comprehensive involvement were integral to the project's successful development.
Migration of Local Infrastructure to VMware vCenter
The VMware vCenter project involved migrating physical hosts to virtual machines (VMs) for a construction company. By leveraging VMware vCenter, the company achieved increased utilization and efficiency of its IT infrastructure. Benefits included resource consolidation, cost savings, scalability, and simplified management. The project enhanced flexibility, enabling rapid provisioning of VMs and streamlined backups. VMware vCenter provided a centralized platform for monitoring performance, allocating resources, and implementing security measures.
Overall, the project optimized the company's IT operations, supporting its business needs and positioning it for future growth.
Overall, the project optimized the company's IT operations, supporting its business needs and positioning it for future growth.
Education
2015 - 2020
Master's Degree in Management Information Systems
UBT - University for Business and Technology - Prishtina, Kosovo
2008 - 2011
Bachelor's Degree in Telecommunications
University of Prishtina - Prishtina, Kosovo
Certifications
JANUARY 2023 - PRESENT
VMware Certified Specialist – vSphere with Tanzu 2023
VMware
JANUARY 2023 - PRESENT
VMware Certified Professional – Application Modernization 2023
VMware
DECEMBER 2022 - PRESENT
VMware Certified Professional – Data Center Virtualization 2022
VMware
NOVEMBER 2022 - NOVEMBER 2024
Certified Kubernetes Security Specialist
The Linux Foundation
OCTOBER 2022 - PRESENT
GitOps at Scale
Codefresh
JANUARY 2021 - JANUARY 2024
Microsoft Certified: Azure Administrator Associate AZ-104
Microsoft
APRIL 2020 - APRIL 2023
Certified Kubernetes Administrator
Cloud Native Computing Foundation
MARCH 2020 - PRESENT
Exasol 6 Certified Professional Administrator
Exasol
FEBRUARY 2019 - FEBRUARY 2022
AWS Certified SysOps Administrator Associate
AWS
AUGUST 2018 - AUGUST 2021
AWS Certified Solutions Architect Associate
AWS
OCTOBER 2017 - PRESENT
ITIL Foundation v3
AXELOS
DECEMBER 2014 - DECEMBER 2023
Project Management Professional (PMP)
Project Management Institute (PMI)
Skills
Libraries/APIs
Node.js
Tools
Hyper-V, Amazon EKS, Helm, Grafana, VMware, RabbitMQ, Terraform, Jenkins, Amazon CloudWatch, TeamCity, Amazon CloudFront CDN, AWS IAM, Keycloak, AWS CloudFormation, Azure App Service, Azure Kubernetes Service (AKS), SaltStack, GitHub, Carvel, Azure IoT Hub, Azure IoT Suite, Apache Airflow
Platforms
Azure, Kubernetes, Linux, Amazon Web Services (AWS), Docker, AWS Lambda, Amazon EC2, Google Cloud Platform (GCP), VMware Tanzu
Industry Expertise
Project Management
Languages
SQL, Python
Paradigms
DevOps, Azure DevOps, Continuous Integration (CI)
Storage
Amazon S3 (AWS S3), Exasol, ScyllaDB, Redis, Azure SQL, Azure Blobs
Other
Dell PowerEdge Servers, System Administration, Cloud Custodian, ECS, Information Security, Prometheus, IT Project Management, System Integration, Networks, Cisco, Octopus Deploy, HAProxy, Single Sign-on (SSO), Okta, CI/CD Pipelines, Argo CD, Security, VMware vCenter, VMware ESXi, Cloud Governance, Content Delivery Networks (CDN)
Collaboration That Works
How to Work with Toptal
Toptal matches you directly with global industry experts from our network in hours—not weeks or months.
1
Share your needs
Discuss your requirements and refine your scope in a call with a Toptal domain expert.
2
Choose your talent
Get a short list of expertly matched talent within 24 hours to review, interview, and choose from.
3
Start your risk-free talent trial
Work with your chosen talent on a trial basis for up to two weeks. Pay only if you decide to hire them.
Top talent is in high demand.
Start hiring