Sebastian is available for hire

Sebastian Andrei Roman

Verified Expert in Engineering

DevOps Engineer and Developer

Bucharest, Romania

Toptal member since September 20, 2021

Expertise

Linux DevOps Kubernetes Microservices Development Terraform Site Reliability System Administration Cloud Engineering AWS RDS AWS DevOps Docker Git Grafana Agile Development

Bio

Sebastian is a DevOps and SRE engineer, team lead, and community leader with 7+ years of experience in cloud infrastructure, automation, and CI/CD. He excels in AWS, Azure, GCP, Kubernetes, Terraform, and GitOps, leading teams to build scalable, secure, and cost-efficient systems. Passionate about mentorship and DevOps culture, Sebastian drives innovation, optimizes deployments, and fosters strong engineering communities through knowledge sharing and automation.

Portfolio

In The Pocket

AWS IoT, Docker, Observability Tools, Platform Engineering, Incident Management

Yonder AG

Kubernetes, Helm, Azure Kubernetes Service (AKS), Bash, Linux, Ansible...

Deloitte Digital

Kubernetes, Docker, Git, Ansible, Terraform, Bash, Linux, Buildkite...

Experience

Linux - 6 years
CI/CD Pipelines - 5 years
Docker - 5 years
Git - 5 years
Kubernetes - 5 years
Terraform - 4 years
Amazon Web Services (AWS) - 4 years
AWS Cloud Architecture - 2 years

Availability

Full-time

Preferred Environment

Kubernetes, Ansible, Terraform, Amazon Web Services (AWS), Google Cloud, CI/CD Pipelines, DigitalOcean, Observability Tools, Incident Management, Platform Engineering

The most amazing...

...thing I've built is an app's architecture: development, staging, and production environments. Its infrastructure was set with Terraform in DigitalOcean and AWS.

Work Experience

SRE Engineer & Community Lead

2024 - PRESENT

In The Pocket

Led cost optimization initiatives across cloud environments, reducing expenses by implementing spot instances, autoscaling, and reserved instances.
Conducted incident response and post-mortem analysis, improving MTTR (Mean Time to Recovery) and reliability.
Designed and deployed a self-healing infrastructure with auto-scaling, disaster recovery strategies, and backup policies.
Collaborated with development and security teams to implement shift-left security practices and improve deployment cycles.
Led SRE initiatives by creating knowledge transfer sessions, facilitating SRE events to the community, and creating a proper path for R&D of new tools.
Led a platform engineering initiative to implement a management platform company-wide.

Technologies: AWS IoT, Docker, Observability Tools, Platform Engineering, Incident Management

DevOps Engineer

2024 - 2024

Yonder AG

Designed and implemented CI/CD to deploy application components.
Created deployment for self-managed ArgoCD and designed and implemented GitOps principles.
Designed and implemented a Kubernetes infrastructure in Azure.

Technologies: Kubernetes, Helm, Azure Kubernetes Service (AKS), Bash, Linux, Ansible, Bash Script, Keycloak, Argo CD

DevOps Lead & Community Lead

2021 - 2024

Deloitte Digital

Managed the DevOps community, consisting of 30+ people, leading technical sessions and public events with relevant people from the industry and being in touch with top management for budgets to be spent on community(for certifications, new tools, R&D, and more).
Managed a DevOps team in multiple projects by being in active contact with stakeholders and clients. Designed and implemented complex infrastructure for projects by leading the team to implement best practices from a security and reliability perspective.
Designed and implemented a complex infrastructure for multiple projects with different cloud providers (AWS, Azure, DigitalOcean, Oracle, and more).
Designed a release process by implementing release pipelines and steps for multiple environments.
Led DevOps strategies and implemented best practices to enhance scalability, reliability, and security across cloud environments (AWS, Azure, DigitalOcean, and more).
Designed and optimized a Kubernetes-based microservices architecture, ensuring high availability and automated scaling.
Implemented Infrastructure as Code (IaC) using Terraform, managing cloud resources efficiently and ensuring reproducibility.
Ensured observability by integrating Prometheus, Grafana, Loki, and ELK stack for centralized logging and monitoring.
Automated security and compliance policies, implementing IAM best practices, encryption, and vulnerability scanning in CI/CD workflows.
Led cost optimization initiatives across cloud environments, reducing expenses by implementing spot instances, autoscaling, and reserved instances.

Technologies: Kubernetes, Docker, Git, Ansible, Terraform, Bash, Linux, Buildkite, Continuous Delivery (CD), Continuous Integration (CI), DevOps Engineer, DevOps, GitHub, Amazon Web Services (AWS), CI/CD Pipelines, Monitoring, Helm, Alpine Linux, Jenkins, Amazon S3 (AWS S3), Amazon EC2, Amazon Elastic Container Registry (ECR), Infrastructure, AWS DevOps, Google Cloud Build, Google Cloud Engine, Google Cloud SDK, Bash Script, Vault, Amazon RDS, Telnet Protocol, Cloud, Scripting, Infrastructure as Code (IaC), Amazon EKS, Amazon Virtual Private Cloud (VPC), Identity & Access Management (IAM), Serverless, Site Reliability Engineering (SRE), Bitbucket, Elasticsearch, Cloud Computing, Load Balancers, SSL, System Administration, PostgreSQL, AWS IAM, AWS ELB, Cloud Native, DNS, Leadership, Azure, Containers, Microservices, Logging, Argo CD, Azure DevOps, Azure IaaS, LokiJS, Service Mesh, GitLab CI/CD, Architecture, GitHub Actions, Cloud Migration, Istio, AWS Lambda, Azure Kubernetes Service (AKS), Keycloak, Cloud Infrastructure

DevOps Lead

2023 - 2023

Ecoinvent Association

Led DevOps strategies and implemented best practices to enhance scalability, reliability, and security across cloud environments (AWS, Azure, and DigitalOcean).
Collaborated with development and security teams to implement shift-left security practices and improve deployment cycles.
Ensured observability by integrating Prometheus, Grafana, Loki, and ELK stack for centralized logging and monitoring.
Designed and deployed self-healing infrastructure with auto-scaling, disaster recovery strategies, and backup policies.

Technologies: Amazon Web Services (AWS), DevOps, Kubernetes, Docker, Infrastructure as Code (IaC), CI/CD Pipelines, Azure, Google Cloud Platform (GCP), Logging, Monitoring, DigitalOcean, Red Hat OpenShift, LokiJS, Bash, Helm, Vault, DevOps Engineer, GitHub, Architecture, Service Mesh, GitHub Actions, Istio, Cloud Infrastructure

DevOps Engineer

2021 - 2022

NexClipper

Developed the infrastructure for the development, staging, and production environments.
Created pipelines for building, deploying, and configuring new code in the existing environment without downtime.
Helped developers debug and fix issues on the application level.
Managed GitHub code repositories and the Docker Registry Helm.
Helped the client to find and implement cost-optimization solutions for the infrastructure.

Technologies: Grafana, Kubernetes, Prometheus, Amazon Web Services (AWS), CI/CD Pipelines, Linux, Git, Harbor, Terraform, Infrastructure as Code (IaC), DigitalOcean, Helm, Amazon EKS, Amazon Virtual Private Cloud (VPC), Identity & Access Management (IAM), Serverless, Site Reliability Engineering (SRE), Bitbucket, RabbitMQ, Cloud Computing, Load Balancers, SSL, SSL Certificates, PostgreSQL, AWS DevOps, AWS IAM, AWS ELB, Cloud Native, DNS, Redis, Amazon DynamoDB, Google Cloud Platform (GCP), Leadership, Containers, Microservices, Architecture, Cloud Architecture, AWS Cloud Architecture, Logging, LokiJS, Service Mesh, GitLab CI/CD, Bash, Vault, DevOps, DevOps Engineer, GitHub, Cloud Migration, Istio, Cloud Infrastructure

Senior Service Engineer

2017 - 2021

Orange Business Services

Developed a monitoring stack based on Prometheus for multiple services under management.
Built a monitoring stack based on Nagios and Centreon for two mailing services.
Implemented a log management stack based on Elasticsearch for all services under management.
Automated repetitive tasks with Ansible playbooks and configured them to run periodically.
Created Selenium tests with Python to check the FE interface of our services.
Built Bash scripts for configuring services on old machines.

Technologies: Linux, Bash, Prometheus, Grafana, ELK (Elastic Stack), Ansible, Kubernetes, Continuous Delivery (CD), Continuous Integration (CI), DevOps Engineer, DevOps, GitHub, CI/CD Pipelines, Monitoring, Logstash, Filebeat, Alpine Linux, Infrastructure, Bash Script, Python, Telnet Protocol, Kibana, Cloud, Scripting, Infrastructure as Code (IaC), Helm, Serverless, Site Reliability Engineering (SRE), Bitbucket, Elasticsearch, Cloud Computing, Load Balancers, SSL Certificates, System Administration, Cloud Native, DNS, Leadership, Containers, Microservices, Logging, GitLab CI/CD, Cloud Infrastructure

Experience

Full Deployment Pipeline for a Messaging App

I created the full deployment of a messaging app in an on-premise cloud infrastructure, including monitoring and log management. I built the infrastructure with Terraform, and the app was deployed on multiple Kubernetes clusters depending on the environment. Databases were created as separate instances and had a daily backup. All steps were automated with Ansible playbooks and were deployed from GitLab CI/CD.

Observability App

A Node.js and Go-based app, packed into Docker containers and deployed into a Kubernetes cluster. All steps are done with a GitLab CI/CD pipeline, and all infrastructure is created with Terraform code. The app uses a Prometheus stack for monitoring and a Grafana stack for logging. It is hosted on DigitalOcean and AWS cloud providers, with the lower environments on DigitalOcean and production on AWS.

Public Sector App

A Java-based app packed into Docker containers and managed in a Kubernetes cluster. The infrastructure was created and deployed with a Buildkite pipeline into AWS. All environments, including development, staging, and production, are AWS-based with Terraform code. The pipeline is set on the YAML-based tool Buildkite—for building, testing, packing, scanning, and deploying new code into a Kubernetes cluster. Istio is used for mesh service, and Kong as an API gateway, deployed with Helm packages.

Education

2019 - 2021

Master's Degree in Networks and Software for Telecommunications

Politehnica University of Bucharest - Bucharest, Romania

Certifications

NOVEMBER 2022 - NOVEMBER 2025

AWS Certified Cloud Practitioner

AWS

SEPTEMBER 2022 - SEPTEMBER 2024

HashiCorp Certified: Terraform Associate

Hashicorp

JANUARY 2022 - JANUARY 2025

Certified Kubernetes Administrator

CNCF

OCTOBER 2021 - PRESENT

Oracle Certified Associate

Oracle

Skills

Tools

Terraform, Bitbucket, Git, GitLab CI/CD, Grafana, Helm, Amazon Elastic Container Registry (ECR), Vault, GitHub, Amazon EKS, Amazon Virtual Private Cloud (VPC), AWS IAM, AWS ELB, Logging, Istio, Azure Kubernetes Service (AKS), Keycloak, Ansible, ELK (Elastic Stack), Kibana, Logstash, Jenkins, RabbitMQ, Observability Tools

Languages

Bash, Bash Script, Python

Paradigms

DevOps, Microservices, Continuous Delivery (CD), Continuous Integration (CI), Azure DevOps

Platforms

Linux, Kubernetes, Docker, Buildkite, Amazon EC2, Amazon Web Services (AWS), Harbor, DigitalOcean, Cloud Native, Azure IaaS, Alpine Linux, Google Cloud SDK, Google Cloud Engine, Oracle Cloud Infrastructure (OCI), Google Cloud Platform (GCP), Azure, Red Hat OpenShift, AWS Lambda, AWS IoT

Storage

Amazon S3 (AWS S3), Elasticsearch, LokiJS, Google Cloud, Oracle Cloud, PostgreSQL, Redis, Amazon DynamoDB, MySQL

Other

Containers, Cloud Infrastructure, Prometheus, Monitoring, Amazon RDS, Telnet Protocol, DevOps Engineer, AWS DevOps, CI/CD Pipelines, Cloud, Scripting, Infrastructure as Code (IaC), Identity & Access Management (IAM), Site Reliability Engineering (SRE), Cloud Computing, Load Balancers, System Administration, Leadership, Argo CD, Service Mesh, GitHub Actions, Cloud Migration, Networking, Filebeat, Google Cloud Build, Infrastructure, Serverless, SSL, SSL Certificates, DNS, Architecture, Cloud Architecture, AWS Cloud Architecture, Platform Engineering, Incident Management

Collaboration That Works

How to Work with Toptal

Toptal matches you directly with global industry experts from our network in hours—not weeks or months.

Share your needs

Discuss your requirements and refine your scope in a call with a Toptal domain expert.

Choose your talent

Get a short list of expertly matched talent within 24 hours to review, interview, and choose from.

Start your risk-free talent trial

Work with your chosen talent on a trial basis for up to two weeks. Pay only if you decide to hire them.

Top talent is in high demand.

Start hiring