Sergey Nazarov, Cloud Security Developer in Seattle, WA, United States
Sergey Nazarov

Cloud Security Developer in Seattle, WA, United States

Member since April 11, 2018
Sergey is a seasoned DevOps and cloud architect with more than a decade of experience building infrastructures for large-scale web projects. With a background in cybersecurity and server-side development, he's successfully built secure, fault-tolerant, and scalable solutions running on bare metal as well as in the cloud. A big fan of Cloud Native principles and technologies such as Docker and Kubernetes, Sergey's enjoying working with distributed teams in agile fast-paced environments.
Sergey is now available for hire


  • CDW
    Docker, Terraform, Kubernetes, Google Cloud Platform (GCP)
  • Green Cloud
    Identity & Access Management (IAM), Cloud, TensorFlow, Cloud Dataflow...
  • Imbellus (via Toptal)
    Elasticsearch, AWS CodePipeline, AWS CodeBuild, Jenkins, Terraform...



Seattle, WA, United States



Preferred Environment

Alpine Linux

The most amazing...

...project I've worked on is an open-source cloud-agnostic infrastructure-as-code framework that manages the full lifecycle of Kubernetes applications.


  • Hybrid Cloud Architect

    2019 - PRESENT
    • Designed hybrid cloud solutions for CDW customers (CI/CD pipelines to enable multi-cloud microservices deployments and Kubernetes enablement/migration/assessment projects).
    • Mentored fellow engineers to help with certifications required by vendor partnerships.
    • Worked with Google engineers and customers to drive GCP adoption projects.
    • Contributed to a number of Cloud Native open source projects.
    Technologies: Docker, Terraform, Kubernetes, Google Cloud Platform (GCP)
  • Architect

    2019 - 2019
    Green Cloud
    • Designed a highly scalable, secure, and cost-effective solution to handle live metric streaming from a massive pool of IoT devices for AI-based predictive analysis.
    • Designed a cloud organizational structure and security model, following principles of separation and least privilege.
    • Provided leadership and strategic guidance during the solution implementation process to ensure that business requirements are met.
    • Established key processes and guidelines, aiming for the desired level of security compliance.
    • Worked on solution documentation, created playbooks for the most common situations and scenarios to ensure a smooth handoff.
    Technologies: Identity & Access Management (IAM), Cloud, TensorFlow, Cloud Dataflow, Google Cloud SQL, BigQuery, BigTable, AWS IoT Core, Google Kubernetes Engine (GKE)
  • DevOps

    2019 - 2019
    Imbellus (via Toptal)
    • Helped to troubleshoot and resolve issues with existing architecture and processes to improve development velocity and reduce operations toil.
    • Automated infrastructure deployments to support on-demand resource provisioning in regions closest to the end-customer to minimize latency.
    • Upgraded an existing CI/CD workflow to reduce build failure rates and support multi-region deployments.
    • Optimized infrastructure observability with centralized logging and log-based metrics.
    • Improved incident response times by establishing key metrics and configuring alert policies based on them.
    • Designed a centralized identity management solution for edge authentication and access control.
    • Provided technical guidance to ensure best practices and to plan smooth migration of existing workloads to containers and Kubernetes.
    Technologies: Elasticsearch, AWS CodePipeline, AWS CodeBuild, Jenkins, Terraform, Amazon EKS, Amazon Route 53, Amazon Virtual Private Cloud (VPC), Amazon S3 (AWS S3), Relational Database Services (RDS), AWS Simple Notification Service (AWS SNS), Amazon Simple Queue Service (SQS), AWS Key Management Service (KMS), Identity & Access Management (IAM), Amazon CloudFront CDN, Amazon Cognito, AWS Kinesis, AWS Lambda, AWS Elastic Beanstalk
  • DevOps

    2018 - 2019
    Raising the Floor
    • Worked on the design and implementation of a FERPA-compliant cloud-agnostic infrastructure-as-code framework that manages the full lifecycle of Kubernetes applications.
    • Migrated legacy EC2-based Kubernetes deployments to GKE.
    • Designed and implemented an application-transparent cloud KMS-based secrets management system with the support of secret/key material population and rotation.
    • Designed and implemented a Locust-based universal load testing solution, capable of simulating real-world web application user behavior on the scale from dozens to millions of simultaneous users.
    Technologies: Amazon Web Services (AWS), Security, Istio, CouchDB, Locust, Helm, Terraform, Google Cloud Platform (GCP), Kubernetes
  • DevOps Lead

    2014 - 2018
    • Led the DevOps team by acting as a facilitator between development, operations, and the customer success teams.
    • Supported the physical infrastructure of the running project: kept relationships with providers, vendors and DC crew, and supervised required maintenance tasks.
    • Hardened the production system's security, established workflows and procedures, prepared documentation to pass the security/availability principle part of the SOC II security audit.
    • Completed the infrastructure automation using Chef and Terraform, unified multiple environments (production, stage/QA, on-premise, private cloud) within the same Chef codebase which improved the Dev/QA experience and reduced maintenance costs for Ops.
    • Improved the system architecture for private cloud installations using Docker, Kubernetes, and Terraform.
    • Implemented the required changes to the application stack and built CI/CD tooling.
    Technologies: Amazon Web Services (AWS), Kubernetes, Docker, Logstash, Grafana, Elasticsearch, Vagrant, Terraform, Google Cloud Platform (GCP), Linux
  • DevOps

    2010 - 2014
    • Designed and implemented a new bare-metal architecture of a low-latency triple-redundant sharded file system with hot failover, real-time replication, and off-site backups for needs of shared SVN, Git, Perforce, and Mercurial repository hosting.
    • Designed and performed the seamless migration of existing customer base (AWS) into the new infrastructure.
    • Implemented a CI/CD workflow that allowed the team to safely execute over 50 deploys into production per day.
    • Built a bare-metal KVM cluster and developed the required tooling to provide the underlying infrastructure for staging/CI environments.
    • Improved the existing monitoring solution—reducing the number of false positives and increasing the retention periods and resolution for historical metrics.
    Technologies: Amazon Web Services (AWS), ASA, Cisco, Hubot, KVM, Ceph, Elasticsearch, RabbitMQ, Bash, Apache, Jetty, Errbit, Monit, Cloudflare, New Relic, Nagios, HAProxy, Passenger, Capistrano, Pacemaker, Jenkins, DRBD, Chef, Ruby, Mercurial, Perforce, Subversion (SVN), Git, Linux
  • Lead Server-side Developer

    2007 - 2010
    • Built a system of distributed proxies and crawlers to automatically collect and parse more than 500,000 legal documents per day.
    • Developed fuzzy-logic-data-collection algorithms for data crawlers.
    • Constructed a document-indexing pipeline using Sphinx.
    • Designed a simple-and-effective infrastructure-monitoring system using Nagios.
    • Created an HA and fault-tolerant MySQL cluster architecture with ring replication and real-time snapshots using Percona and HAProxy.
    Technologies: Memcached, Nagios, Sphinx Search Engine, Percona, MySQL, PHP-FPM, HAProxy, NGINX, Apache, Linux


  • Languages

    Python, Bash, Go, Java, Ruby, PHP
  • Frameworks

  • Libraries/APIs

    Google Cloud API, TensorFlow
  • Tools

    Terraform, Rake, Google Stackdriver, Helm, Subversion (SVN), Nagios, Git, Chef, Apache, Make, Jetty, Passenger, Capistrano, RabbitMQ, Vagrant, NGINX, Perforce, Jenkins, PHP-FPM, Pacemaker, Errbit, Logstash, Istio, Amazon Cognito, Amazon CloudFront CDN, AWS Key Management Service (KMS), Amazon Simple Queue Service (SQS), AWS Simple Notification Service (AWS SNS), Amazon Virtual Private Cloud (VPC), Amazon EKS, AWS CodeBuild, Google Kubernetes Engine (GKE), BigQuery, Cloud Dataflow, VMware, Fluentd, Grafana, Mercurial, Monit
  • Paradigms

    Continuous Integration (CI), Continuous Delivery (CD), DevOps, Agile Software Development, Microservices Architecture, Concurrent Programming, Scrum
  • Platforms

    Google Cloud Platform (GCP), Kubernetes, Linux, Docker, Amazon Web Services (AWS), Alpine Linux, Percona, AWS Elastic Beanstalk, AWS Lambda, AWS Kinesis, AWS IoT Core, Cloud Native, New Relic, KVM
  • Storage

    Auto-scaling Cloud Infrastructure, MySQL, CouchDB, Elasticsearch, Amazon S3 (AWS S3), BigTable, Google Cloud, Google Cloud SQL, Redis, Sphinx Search Engine, Memcached, Ceph, DRBD
  • Other

    Site Reliability Engineering (SRE), Cloud Security, Unix Shell Scripting, Container Orchestration, Infrastructure Monitoring, Infrastructure as Code (IaC), Linux Administration, Cloud Infrastructure, Google BigQuery, HAProxy, Hubot, Cisco, ASA, Identity & Access Management (IAM), Relational Database Services (RDS), Amazon Route 53, AWS CodePipeline, Firebase Cloud Functions, Cloud, Networking, Cloudflare
  • Industry Expertise

    Cybersecurity, Project Management, Security


  • Master's Degree in Cybersecurity
    2004 - 2009
    Samara State University - Samara, Russia


  • Professional Cloud Network Engineer
    DECEMBER 2020 - DECEMBER 2022
    Google Cloud
  • Concurrency in Google Go
    University of California, Irvine via Coursera
  • Cloud Native Master Specialist
    OCTOBER 2020 - OCTOBER 2022
  • Professional Cloud Security Engineer
    OCTOBER 2020 - OCTOBER 2022
    Google Cloud
  • Terraform Associate
  • Certified Kubernetes Administrator
    Cloud Native Computing Foundation
  • Professional Cloud DevOps Engineer
    Google Cloud
  • TensorFlow in Practice
    JANUARY 2020 - PRESENT via Coursera
  • Machine Learning with TensorFlow on Google Cloud Platform
    Google Cloud
  • Professional Cloud Architect
    DECEMBER 2019 - DECEMBER 2021
    Google Cloud

To view more profiles

Join Toptal
Share it with others