Reza Jelveh
Verified Expert in Engineering
DevSecOps Expert and Developer
Reza has been a CTO for startups and a German government institution with a billion-dollar revenue that needed restructuring. Since dismantling his first VCR 30+ years ago, he has become a deep generalist exploring new topics to recognize patterns across domains and the science behind them. Reza has built meaningful, innovative solutions in integrated circuit testing, real-time seismic activity detection and mitigation, healthcare, surgery procedures, AI, security, and data center construction.
Portfolio
Experience
Availability
Preferred Environment
Vim Text Editor, Linux
The most amazing...
...thing I've done is reverse-engineer Apple's bootloader and migrate from VMware to KVM, decreasing maintenance and saving millions in recurring fees.
Work Experience
DevOps Kubernetes Expert
STRAX Intelligence Group, LLC
- Created a new IaC platform based on interviewing the previous developers due to a lack of communication.
- Created a Terraform-based AWS environment similar to their production environment.
- Integrated the client's MQTT platform and necessary tuning for performance benchmarks.
Cloud DevOps Engineer
Acies AI
- Migrated the entire existing cloud and manually configured components from AWS to Azure Kubernetes Service (AKS) with a fully automated deployment.
- Performed Terraform deployment that allows the client to spin up and tear down full environments in minutes and white label the whole platform if needed.
- Enabled better disaster recovery and overall availability by improving data consistency and retention policies for selected databases and storage.
- Migrated AWS Lambda first into Azure Functions and then into the Kubernetes cluster.
- Implemented a Kafka cluster and Redis-based serverless processing with full GitOps integration.
DevOps Engineer
Legartis
- Introduced Terraform to the architecture and migrated GitLab CI to AKS.
- Migrated an entire Ansible-based container infrastructure to GitLab CI from an older OpenShift v3-based environment to the Kubernetes platform.
- Performed an Ansible-based deployment to Helm migration, including the necessary code changes for multi-environments.
- Reduced the CI code by 100x by migrating the static GitLab CI pipeline to dynamically generated, multilayer GitLab CI pipelines written in a metalanguage.
- Helped migrate OpenShift v3 to a privacy-aware, Switzerland-based Kubernetes provider with its own Terraform architecture.
- Created a GitOps-based deployment with per-branch development environments that are destroyed on merge.
Architect
Computer Vision/3D Printing Data Processing
- Reviewed the current infrastructure and assessed the scalability of the current solution.
- Created a multi-tenant AWS design with strict data segregation necessary for the enterprise clients of this 3D printing validation startup.
- Provided scalable design for a hybrid sensor to cloud infrastructure.
DevOps Consultant
Toptal Client
- Introduced autoscaling for Kafka using CruiseControl.
- Coached the client on how to autoscale Kafka consumer groups in Kafka.
- Advised the client on Kubernetes persistent volume setups and Kafka clusters across availability zones.
Rook Ceph Consultant
FLYR
- Debugged custom Ceph issues related to, but not limited to, their Kubernetes deployment.
- Provided insight into issues with Rook Ceph that are necessary for production environments.
- Advised clients on tuning and reliability for their Ceph deployment and production environment.
Embedded Architect | Global Strategy, Security, and ML Consultant
Fortune 500 Automotive Company
- Provided strategic guidance to the CIO and the directors of autonomy solutions on security, platform, integration, and edge computing.
- Advised the Chinese subsidiary on their ML architecture and a way to work with the North American market without sharing IP due to the shifting global complexities.
- Advocated global communication and security structure changes for a major shift in a rapidly changing world.
- Designed an AWS ML cloud infrastructure for LIDAR data processing for autonomous vehicles.
- Created a Kubernetes enterprise storage solution for hybrid cloud solutions.
- Integrated the hardware security module to secure developers' access to infrastructure.
- Developed a Kubernetes enterprise storage solution for hybrid cloud solutions.
Freelance Developer
Talkyoo
- Built the original transition to Rails 2 and integrated the payments infrastructure, working closely with the CTO, CEO, and lead designer on commercializing the product and A/B testing migration of the existing free customers.
- Implemented a GitLab CI integration with the Google Cloud platform.
- Designed a Google Cloud architecture with Google Cloud, Google Kubernetes Engine (GKE), and Terraform.
- Terraformed the on-premise vSphere infrastructure and added an ELK Elasticsearch cluster for monitoring.
- Dockerized the platform for Kubernetes use. I migrated the manually installed Kubernetes cluster to an automated Kubespray setup and connected it to the GitLab CI.
Senior Data Engineer
Cleveland Cavaliers
- Analyzed data sets provided by the client related to NBA games and extracted data to build a recommendation system for their new social platform.
- Developed a Python library to easily manage their models, training, and hyperparameter tuning for their recommendation system.
- Implemented CI to automatically update and deploy models when parameters or data are changed.
Solution Architect
Industrial 3D Printing Quality Control Startup (via Toptal)
- Designed a multi-tenant secure cloud Kubernetes infrastructure for a platform that supports multiple enterprise clients' secure compartmentalized ML workflows.
- Cooperated with the client to educate and design an easy-to-use job queuing as a step before the ML pipeline for high-velocity integration.
- Educated the client on designing the aforementioned autoscaling solutions with Terraform on AWS.
CTO
Toptal Law Firm Client
- Restructured the team, thereby reducing its size by half and improving velocity tenfold; migrated the team to a more accountable, results-driven work mode, and coached the client on how to do so without my help.
- Recruited a new team and trained the CEO on the importance of engineering quality; created an environment for him to take over the lead with minimal effort.
- Led technology and product decisions temporarily along with the development and communication ground rules to allow the CEO to run a new performance team efficiently.
Team Lead | Software and System Architect
Oyu Tolgoi
- Built and led an 8-member team comprised of a seismologist, ML engineers, and front- and back-end developers across five countries. Introduced asynchronous standups to allow collaboration across four time zones.
- Architected a scalable containerized solution for a seismic analytics platform for real-time sensor analysis. Created a hybrid cloud Kubernetes platform, including entire lifecycle DevSecOps processes and policy papers for global acceptance.
- Introduced a Django-based REST API for the unified access of processed data. Built a real-time web integration in Django.
- Enhanced significant performance and architectural review and rewrites of all components involved. Rewrote and architected various pieces of Python code into a releasable versionable library.
- Reverse-engineered a legacy database and storage systems for integration in a Kafka streaming re-architecture, significantly reducing the latency in the data access. Built a Kafka-streaming solution for ingesting legacy data in Kotlin.
- Designed and implemented a scalable on-premise Kubernetes-based cluster with deployment in a copper mine. It mirrored the deployment on the cloud for developers without the need for access to the internal corporate processes.
- Developed a Go connector to extract legacy data for stream processing in Kafka.
- Implemented near-real-time processing of seismic events and matched requirements with potential streaming solutions like Flink, Pachyderm, Argo, Airflow, NiFi, and Spark to provide the best solution to the client.
- Rearchitected the application to reduce the amount of data passed around in messages and removed and replaced Kafka dependency for normal messaging to Kafka stream processing where necessary.
DevOps Engineer
Spanx
- Achieved 10x higher performance on deployments by restructuring the PHP application to work with the Deployer library and migrating the deployment from Capistrano deployment to Deployer.
- Improved the staging and production release velocity significantly by adding a CI/CD process to allow deployments of successful QA cycles without requiring engineers.
- Integrated the CI/CD status with ticketing and chat for enhanced observability.
DevOps Engineer
Oyu Tolgoi
- Containerized the various components written by scientists into services that can be built and run equally in all environments.
- Profiled and rewrote major parts of the application, turning them into a Python library, and added Python packaging and testing infrastructure with corresponding build pipelines.
- Created GitLab CI pipelines and migrated everyone to work reproducibly.
- Designed and implemented a scalable on-premise Kubernetes-based cluster with deployment in a copper mine. It mirrored the deployment on the cloud for developers without needing access to internal corporate processes.
CTO
Ärzte-Kasino im Ärztehaus (Association of Statutory Health Insurance Physicians)
- Managed a dozen contracting companies. Planned, audited, and coordinated the wiring, data center, wireless, and security in the €40 million construction of the new HQ for building services engineering.
- Oversaw the migration and modernization of one of the most critical parts of the German healthcare industry.
- Signed off on €5+ million in budget for infrastructure and engineering strategy.
- Supervised 20 people across emergency projects spanning IT, accounting, legal, and engineering, with millions of euros related to healthcare regulation at stake.
- Directed the director of operations, engineering, and data science.
- Guided the transition of network access control, physical access control, and system architecture.
- Saved €10 million by discovering fundamental design issues in the construction project of the new HQ, including next-generation wiring and physical access control.
- Leveraged Agile project management to reimagine software development and IT lifecycles.
- Introduced IaC to the IT Ops department, Angular and Ruby on Rails as standard frameworks for all new software engineering projects, and security incident postmortems. Provided training and mentorship.
- Audited the post-construction security architecture, detected faults in the core drillings, fiber optics wiring, and physical access security wiring, and analyzed ransomware.
DevOps Engineer
In One Motion
- Created a one-click solution for generating and updating secure Windows images customized for the Google Cloud to be used with graphic acceleration.
Cloud Computing Director
Softsage Solutions
- Reverse-engineered Apple's bootloader and extended the EDK for an OS X boot.
- Automated software development onboarding environments with Ansible.
- Improved Sauce Labs' cloud performance by up to 38% and boot times by over 17%. Analyzed virtualized I/O, networking, and other bottlenecks against a bare-metal performance.
- Designed and built preboot environments to migrate hundreds of Mac minis from VMware to KVM.
- Implemented custom cloud deployment and performance work.
- Developed packer imaging for Mac and Windows images.
Team Lead Web
Fly Victor
- Led a team of web developers to build the new web platform with Angular and the Node.js API.
- Increased the conversion rates for new visits by 29%.
- Oversaw launch process, massively increasing turnaround on first-time private jet charter customers.
Software Engineer
University of Louisiana at Lafayette: Center for Business & Information Technologies
- Led the architectural design for the Virtual Business Emergency Operating Center, connecting state and business emergency response measures in a single web platform.
- Performed a vulnerability audit for the Department of Homeland Security on an architectural and security assessment for distributed emergency response architecture.
- Designed and implemented a RESTful API for the first federal Medicaid API.
- Wrote special tooling to allow developers to modify data structures in the Microsoft Dynamics CRM. Unfortunately, the Department of Health of Louisiana chose Dynamics CRM for electronic health records.
- Evaluated the use of AWS GovCloud for Medicaid solutions.
Principal Software Architect
Talkyoo
- Wrote significant portions of the web application.
- Integrated back-end payment gateway systems before the age of Stripe, creating an internal Stripe-like system.
- Introduced Chef for early infrastructure automation.
Software Architect
TalentRun GmbH
- Scaled the application tenfold with over a hundred thousand email campaigns and multimillion unique page impressions daily.
- Coordinated with the CTO and Percona, the lead provider of MySQL solutions, to scale the database system to support millions of video recording viewings.
- Performed 100x performance improvements to boost user conversions and SEO.
- Conducted detailed Apache tuning for web performance, including migrating images to sprites to improve load times.
- Profiled a PHP application to reduce object-relational mapping (ORM) overhead and rewrote slow queries with custom ORM.
- Introduced and implemented Memcached for query and page caching.
Junior Engineer
Acculogic
- Built a new circuit testing algorithm to improve the performance of the checks against golden boards.
- Constructed custom solutions for Intel to use with their circuit testing machinery.
- Implemented a new circuit testing system using magnetic fields.
Experience
Eblotter
Universal Ctags
https://ctags.io/E-ctags improved traditional ctags with multi-language support, enabling users to define new languages searched by regular expressions (called Optlib in u-ctags) and generate Emacs-style TAGS files. Unfortunately, the project's activity stalled.
I initially created a personal fork of e-ctags on GitHub. As interest and participation grew, we moved the development to a dedicated project for u-ctags. This project aims to maintain a common or unified working space where people interested in improving ctags can collaborate. Some of the major features of u-ctags include:
• Increased numbers for language support
• A new extended C/C++ language parser
• A fully extended Optlib – a feature to define a new language parser from a command line
Linux | EDKII | EFI | KVM | Qemu
• Added several protocols and fixes to the open-source UEFI bootloader and Qemu to unmodified macOS to boot in Qemu.
• Added an implementation of an HFS+ filesystem driver to EDKII.
• Created custom Linux boot images to migrate VMware ESXi to Linux.
MPlayer | FFmpeg
Spca5xx Generic Linux Camera Driver
Embedded Linux and Android Work
• Built custom Android images for home video and Mako-based CyanogenMod devices.
Go FreeNAS API Client
https://github.com/fishman/go-freenasFreeNAS Terraform Provider
https://github.com/fishman/terraform-provider-freenas/Satellite Communication Simulator
Added Nuvoton | Ducky Support to QMK | ChibiOS
https://qmk.fm/The keyboard uses a Nuvoton NUC123 SoC. I first mainlined support for the Nuvoton platform to ChibiOS and then mainlined the keyboard support to QMK.
I am currently working on porting the platform to Zephyr.
WebSocket Draft 76 Implementation in Nginx
http://www.nginx.orgSkills
Languages
Go, Python, Ruby, Assembler x86, JavaScript, Bash, PHP, C++, C, Solidity, Embedded C, TypeScript, Assembly, SQL, Bash Script, Java, Erlang, Kotlin, GraphQL
Frameworks
Angular, OpenFaas, AWS HA, Truffle, JSON Web Tokens (JWT), .NET, Django, Ruby on Rails (RoR), Flux, Spark, XMPPFramework, Windows PowerShell
Libraries/APIs
Ruby on Rails API, Node.js, Java Security, React, TensorFlow, OpenZeppelin, Terragrunt, Vue, RQ, Spark ML, FFmpeg, Bitbucket API
Tools
VMware, Packer, GitLab CI/CD, GitLab, GitHub, Git, RSpec, Vim Text Editor, Terraform, AWS CloudFormation, Ansible, Helm, Wireshark, MQTT, Google Kubernetes Engine (GKE), Azure Kubernetes Service (AKS), Jenkins, Logstash, Kibana, Elastic, RabbitMQ, Shell, Puppet, Chef, Kafka Streams, Amazon EKS, ELK (Elastic Stack), Grafana, Google Compute Engine (GCE), Apache Airflow, Wowza, GNU Autoconf, Bitbucket, HipChat, Amazon SageMaker, Graylog
Paradigms
DevOps, DevSecOps, Agile Software Development, REST, Fuzz Testing, Continuous Integration (CI), Continuous Delivery (CD), Scrum, Microservices Architecture, Penetration Testing, Test-driven Development (TDD), Azure DevOps, Serverless Architecture, Microservices, API Architecture, Continuous Deployment
Platforms
Amazon Web Services (AWS), Azure, KVM, Ubuntu, Docker, Kubernetes, Windows, Linux, Google Cloud Platform (GCP), Debian, Apache Kafka, Solaris, Android, AWS Lambda, Azure Functions, Databricks, CentOS, Oracle, WordPress, Windows Server, Heroku, Ethereum, Blockchain, Kernel, OpenShift, Icinga, AWS IoT, Azure PaaS
Storage
Ceph, Redis, NoSQL, MySQL, Memcached, Google Cloud, Data Pipelines, Elasticsearch, Database Performance, PostgreSQL, MongoDB, GlusterFS, ClickHouse
Industry Expertise
Cybersecurity, Healthcare
Other
Cloud, Virtualization, WiFi, SANs, Software-defined Data Centers (SDDC), Performance, Performance Analysis, Back-end Performance, UEFI, Agile Software Testing, Project Management Professional (PMP), CISSP, Linux Internals, Software Engineering, Architecture, Software Architecture, Big Data, Big Data Architecture, Time Series, Stream Processing, Streaming Data, Machine Learning Automation, IT Security, Authentication, IoT Protocols, Wireless Networking, Security, IoT Security, Fintech, Cloud Security, CI/CD Pipelines, DevOps Engineer, Industrial Internet of Things (IIoT), Site Reliability Engineering (SRE), Cloud Architecture, APIs, GitOps, Video Streaming, Networking, System Administration, Machine Learning Operations (MLOps), Vulnerability Management, Vulnerability Assessment, Back-end, API Gateways, Configuration Management, Cloud Infrastructure, Infrastructure as Code (IaC), IT Systems Engineering, Infrastructure, GPU Computing, Long-term Evolution (LTE), Unified Threat Management (UTM), Intrusion Detection Systems (IDS), Intrusion Prevention Systems (IPS), Security Audits, PXE, SOAP, Windows Internals, Cryptocurrency, Prometheus, Cryptography, ARM, Kyverno, Engineering, Monorepos, Azure Virtual Networks, GitHub Workflows, VoIP, Software Development Lifecycle (SDLC), XMPP, Customer Relationship Management (CRM), Boot, BladeCenter H, Remote Desktop Protocol (RDP), Information & Communications Technology (ICT), Integrated Circuits, CruiseControl, Real-time Operating System (RTOS), ChibiOS/RT, CTO, Mentorship & Coaching, Leadership, FreeNAS, SaaS, ARIS Cloud, Embedded Systems, Internet of Things (IoT), Machine Learning, Payment APIs, Argo CD, Card Payments, Timescale, SIP, Proxies, WebSockets, Technical Design, AWS Cloud Architecture, 4G, 3GPP, IT Project Management, LiDAR, Web Security, Deep Learning, Distributed Systems, AWS GovCloud, GRAPH, Neptune, Recommendation Systems, Collectd, Linux Kernel
Education
Master's Degree (Diplom Ingenieur) in Computer Engineering
Hamburg University of Technology - Hamburg, Germany
Certifications
Certified Information Systems Security Professional (CISSP)
(ISC)²
Project Management Professional (PMP)
Project Management Institute (PMI)
How to Work with Toptal
Toptal matches you directly with global industry experts from our network in hours—not weeks or months.
Share your needs
Choose your talent
Start your risk-free talent trial
Top talent is in high demand.
Start hiring