Murat Hatipoglu
Verified Expert in Engineering
Cloud Solution Architect and Developer
London, United Kingdom
Toptal member since November 6, 2018
With over five years of dedicated service at Toptal, Murat has been instrumental in providing top-tier IT consultancy to global clients. His role at Toptal underscores his expertise in addressing complex IT challenges across diverse industries, further solidifying his reputation as a trusted advisor in the community. Prior roles at Palo Alto Networks, F5 Networks, Teradata, and Hewlett Packard have all contributed to Murat's comprehensive understanding of enterprise-level IT solutions.
Portfolio
Experience
- Security - 20 years
- Identity & Access Management (IAM) - 20 years
- Cloud - 10 years
- Azure - 10 years
- Amazon Web Services (AWS) - 5 years
- Infrastructure as Code (IaC) - 3 years
- Terraform - 2 years
- Kubernetes - 2 years
Availability
Preferred Environment
Amazon Web Services (AWS), Python, Docker, Kubernetes, Terraform, Azure
The most amazing...
...projects I've completed help clients secure applications deployed on public cloud environments and protect them from sophisticated application layer attacks.
Work Experience
DevOps Engineer
Pfizer
- Collaborated with a team of software and systems engineers, focusing on projects aimed at enhancing the availability, reliability, and efficiency of global infrastructure services crucial for running pivotal applications.
- Innovatively designed and developed automated deployment systems for Neo4j Graph Database clusters, hosting the KnowledgeGraph database and other essential databases extensively utilized by major business applications.
- Fostered SRE capabilities across multiple product teams, maintaining regular engagements with data engineers, product owners, and software developers from each team, bolstering collaboration and streamlined support.
- Conducted insightful analysis of system data, identifying patterns and uncovering opportunities for enhancement, particularly in resolving recurring issues and automating current manual processes.
- Spearheaded the development of software and built automation strategies to mitigate recurring issues, eliminate manual efforts, and bolster service efficiency comprehensively.
- Advocated and implemented a data-driven approach, introducing pivotal indicators to assist the broader operations team in meticulous service health monitoring.
- Pioneered in designing, developing, and sustaining infrastructure as Code (IaC) solutions, employing tools like Terraform and GitAction pipelines, facilitating the management and automation of application infrastructure across diverse platforms.
Cloud Security Architect | DevSecOps Engineer
Avon Products
- Designed the security architecture of multi-cloud hybrid infrastructure.
- Designed security as an integral part of SDLC and DevOps practices.
- Worked on IaC development for the deployment of designed solutions and architectures.
- Delivered POCs for new products and technologies, such as AWS Network firewall, Snyk, and CrowdStrike in cloud environments.
Azure DevOps and Security Architect
Bridgestone
- Documented Azure application's security, privacy, compliance, reliability/resiliency, and intellectual property.
- Assessed the existing Azure environment(s). Collected data to build the document.
- Compared the existing environment against the CIS Azure Foundations Benchmark, documenting implemented security controls and missing and recommended controls.
Cloud Security Architect
Rocket
- Performed the audit and security review of the existing product, staging, and development environments on multiple AWS accounts.
- Completed a gap analysis against the CIS framework, PCI DSS, and SOC-2 requirements. Documented actions required for remediation of findings.
- Deployed, configured, and integrated AWS services such as Security Hub, Inspector, Macie, Config, CloudTrail, and CloudWatch.
DevOps and Cloud Security Engineer
Dentsu Aegis Network
- Oversaw the design of cloud security perimeter on Azure and AWS.
- Developed Terraform automation code to deploy designed architecture components.
- Developed Terraform codes to implement infrastructure as code (IaC) practice.
- Integrated automated infrastructure deployments into CI/CD pipelines.
- Designed, deployed, and configured cloud-native security solutions and 3rd-party security products in a multi-cloud environment.
Senior Application Delivery and Security Specialist
Opel Vauxhall Finance
- Deployed a new application delivery infrastructure.
- Supported application migrations between data centers.
- Managed remote access infrastructure and identity and access management.
- Developed TCL codes for application traffic manipulation and controls.
- Secured external and internal applications.
Contractor Security Architect
Derbyshire County Council in UK
- Deployed ADFS and F5 security products in Azure.
- Implemented layer 4 DDoS protection for ADFS service.
- Ensured L7 DoS protection for ADFS service.
- Built a high-availabile infrastructure for ADFS service.
Network and Security Architect
Nottinghamshire City Council
- Designed new application delivery infrastructure.
- Created and deployed high available, optimized, and secured access to applications.
- Deployed secure remote access to internal applications and VDI environment.
- Integrated a new solution with existing infrastructure and identity access management solution.
- Designed and deployed a Global Server Load Balancing solution to provide active-active and active-passive use of two datacenters.
Network and Security Architect
University of Lincoln
- Designed a new data center application delivery and security infrastructure.
- Planned a phased migration of applications from legacy data center to the new one while both data centers run in production in parallel.
- Created and deployed a high available application delivery infrastructure.
- Designed and deployed network and application firewall systems to provide Layer 3-7 protection.
- Developed customer TCL codes to integrate Cisco ISE and F5 Networks solutions to provide controlled Wi-Fi and remote access to the campus network.
- Designed and deployed of Global Server Load Balancing infrastructure for active-active operation of old and new datacenters together with active-passive operation of new and disaster recover datacenters for business continuity.
Cloud Architect
Ofgem (Gas and Electricty Markets Authority)
- Migrated local applications to the cloud.
- Deployed web application firewall and configured to secure application access.
- Set up remote access infrastructure to enable users to access VDI environment.
Systems Engineer
F5 Networks
- Maintained a high level of technical knowledge of F5 Networks and the relevant industry.
- Participated in the development and support of presentations for customers and partners.
- Articulated technical elements of the F5 value proposition to customers and partners.
- Provided complex design and systems engineering configurations.
- Partnered with product development and product management to assist with Change Request (CR) and Customer Special Request (CSR) cases.
- Contributed to the creation of case studies, white papers, and media articles for customers and/or partners.
Sales Specialist
Teradata
- Handled direct sales in all financial accounts including banks and insurance companies.
- Sold the Teradata solution portfolio products including software, professional services, hardware, and support services. This included products such as Customer Retention Management Solutions, Campaign Management Solutions, Scale-able Data Warehousing, Customer Interaction Solutions, Teradata database software, and Object Relational technologies and specific solutions on finance segment.
- Interfaced with contacts at all levels, including those at director and executive management CXO levels, in both the IT and the business community.
- Effectively advised and influenced customers through consultative selling techniques.
- Closed profitable Teradata high scale data warehouse solution business incorporating hardware, software, professional services, and customer services.
Solution Architect - Consultant
Hewlett Packard
- Served as the technical lead of Governmental Disaster Insurance Intuition project. Provided the design and implementation of the entire infrastructure.
- Performed risk assessment, security review, security policies development and security solutions design/implementation for customers in different industries.
- Provided on-site network and security consultancy for a GSM operator.
- Served as the technical project lead of Security Risk Assessment and Ethical Hacking Projects.
- Provided technical lead services for a Business Continuity project which has the national best integration project award in Turkey.
- Integrated existing and new services to SDPA (Service Delivery Platform Architecture) environment of a GSM operator as a solution architect.
- Consulted for Enterprise Networking, IT Security, IT Service Management, Identity and Access Management, Managed Services (outsourcing) projects.
Experience
DoS/DDoS Protection for Cloud-based Applications
Development of Code to Distribute User Traffic Between Data Centers
The solution captures end-user IMEI/IMSI data and query against centralized Oracle database to find out the details of that specific user. The user is redirected automatically based on their subscription details to the corresponding data center.
This custom solution saved hundreds of thousand dollars of the mobile operator.
Development of Code to Integrate IAM Solution Components
The developed solution tracks, captures, and makes available the critical information to all solution components during the full cycle of user identification, authentication, and authorization.
Powershell and Perl-based Code Development for Automation and Multi-tenant Management of F5 Products
Python and Perl-based Codes for Automation and Integration
Development of Codes to Integrate F5 APM and Airwatch MDM Solutions
High Availability for Application Access in Azure and AWS Environments
Advanced Security in Azure and AWS Environments
Integration of Third-party Cloud-based Applications (SaaS) With Corporate User Directories
MQL4 and MQL5-based Automated Trading Systems
Development of Codes for Application Traffic Control
Design, Deployment, and Terraform Automation of Cloud Landing Zone
Audit and Security Review of an Existing AWS Environment
Education
Bachelor of Science Degree in Computer Engineering
Ege Univerisy - Izmir, Turkey
Certifications
F5 Certified Solution Expert - Cloud (402)
F5 Networks
AWS Certified Solution Architect
AWS
F5 Technology Specialist - APM - 304
F5 Networks
F5 Technology Specialist - ASM - 303
F5 Networks
F5 Technology Specialist - DNS/GTM - 302
F5 Networks
F5 Technology Specialist - LTM - 301a & 301b
F5 Networks
F5 Certified Solution Expert - Security (401)
F5 Networks
CCIE
Cisco
CISSP
ISC2
Skills
Libraries/APIs
OpenSSL, Node.js
Tools
VPN, AWS CloudTrail, Amazon CloudWatch, Syslog, Ansible, Terraform, Azure Kubernetes Service (AKS), Git, Amazon Elastic Container Service (ECS), GitLab, GitHub, Splunk, ADFS, Helm, Jenkins, Cisco Webex Meetings Server, SAP Concur, NGINX, Amazon EKS, Artifactory, Elastic
Languages
SAML, Tcl, Perl, SQL, C, Python, MQL4, MQL5, Bash Script
Frameworks
ASM
Paradigms
DevOps, DevSecOps, DDoS, ITIL, Continuous Deployment, Continuous Delivery (CD), Continuous Integration (CI), Business Intelligence (BI), Service-oriented Architecture (SOA), REST, Automation
Platforms
Unix, Linux, Kubernetes, Docker, Azure, Amazon Web Services (AWS), Oracle, Salesforce, Sysdig, Amazon EC2
Industry Expertise
Cybersecurity
Storage
MySQL, Neo4j, Graph Databases, Amazon S3 (AWS S3)
Other
APM, SMTP, PKI, Single Sign-on (SSO), Enterprise, Networks, ITSM, Security Architecture, Threat Intelligence, Writing & Editing, Vulnerability Assessment, Security Testing, Security Analysis, IT Security, Dynamic Load Balancing, Load Balancers, CISSP, IT Service Management (ITSM), Network Monitoring, Continuous Monitoring, Monitoring, Business Continuity & Disaster Recovery (BCDR), SSL Configurations, SSL Certificates, SSL, Firewalls, Web Application Firewall (WAF), DNS Configuration, Domain Name System (DNS), DNS Servers, DNS, ASA Firewalls, Cisco Networking, Unix Shell Scripting, Security, Identity & Access Management (IAM), F5 Networks, Infrastructure as Code (IaC), Cloud, Web App Security, CI/CD Pipelines, Cloud Infrastructure, Containers, Security Policies & Procedures, Shell Scripting, Azure Virtual Networks, Virtual Desktop Infrastructure (VDI), Kerberos, Content Delivery Networks (CDN), PCI DSS, Big Data, Artificial Intelligence (AI), Internet of Things (IoT), SaaS, Infrastructure as a Service (IaaS), PCI, System-on-a-Chip (SoC), Audits, GAP Analysis, AWS Transit Gateway, AWS Security Hub, Amazon Route 53, Hybrid Cloud Infrastructure, Computer Engineering, Consulting, Cloud Security, Containerization, Data Science, Hardware Load Balancing (HLD), SAML-auth
How to Work with Toptal
Toptal matches you directly with global industry experts from our network in hours—not weeks or months.
Share your needs
Choose your talent
Start your risk-free talent trial
Top talent is in high demand.
Start hiring