Sergey Nazarov, Developer in Seattle, WA, United States
Sergey is available for hire
Hire Sergey

Sergey Nazarov

Verified Expert  in Engineering

Cloud Security Developer

Seattle, WA, United States
Toptal Member Since
April 11, 2018

Sergey is a seasoned DevOps and cloud architect with more than a decade of experience building infrastructures for large-scale web projects. With a background in cybersecurity and server-side development, he's successfully built secure, fault-tolerant, and scalable solutions running on bare metal as well as in the cloud. A big fan of Cloud Native principles and technologies such as Docker and Kubernetes, Sergey's enjoying working with distributed teams in agile fast-paced environments.


Docker, Terraform, Kubernetes, Google Cloud Platform (GCP)
Green Cloud
Identity & Access Management (IAM), Cloud, TensorFlow, Cloud Dataflow...
Imbellus (via Toptal)
Elasticsearch, AWS CodePipeline, AWS CodeBuild, Jenkins, Terraform, Amazon EKS...




Preferred Environment

Alpine Linux

The most amazing...

...project I've worked on is an open-source cloud-agnostic infrastructure-as-code framework that manages the full lifecycle of Kubernetes applications.

Work Experience

Hybrid Cloud Architect

2019 - PRESENT
  • Designed hybrid cloud solutions for CDW customers (CI/CD pipelines to enable multi-cloud microservices deployments and Kubernetes enablement/migration/assessment projects).
  • Mentored fellow engineers to help with certifications required by vendor partnerships.
  • Worked with Google engineers and customers to drive GCP adoption projects.
  • Contributed to a number of Cloud Native open source projects.
Technologies: Docker, Terraform, Kubernetes, Google Cloud Platform (GCP)


2019 - 2019
Green Cloud
  • Designed a highly scalable, secure, and cost-effective solution to handle live metric streaming from a massive pool of IoT devices for AI-based predictive analysis.
  • Designed a cloud organizational structure and security model, following principles of separation and least privilege.
  • Provided leadership and strategic guidance during the solution implementation process to ensure that business requirements are met.
  • Established key processes and guidelines, aiming for the desired level of security compliance.
  • Worked on solution documentation, created playbooks for the most common situations and scenarios to ensure a smooth handoff.
Technologies: Identity & Access Management (IAM), Cloud, TensorFlow, Cloud Dataflow, Google Cloud SQL, BigQuery, BigTable, AWS IoT Core, Google Kubernetes Engine (GKE)


2019 - 2019
Imbellus (via Toptal)
  • Helped to troubleshoot and resolve issues with existing architecture and processes to improve development velocity and reduce operations toil.
  • Automated infrastructure deployments to support on-demand resource provisioning in regions closest to the end-customer to minimize latency.
  • Upgraded an existing CI/CD workflow to reduce build failure rates and support multi-region deployments.
  • Optimized infrastructure observability with centralized logging and log-based metrics.
  • Improved incident response times by establishing key metrics and configuring alert policies based on them.
  • Designed a centralized identity management solution for edge authentication and access control.
  • Provided technical guidance to ensure best practices and to plan smooth migration of existing workloads to containers and Kubernetes.
Technologies: Elasticsearch, AWS CodePipeline, AWS CodeBuild, Jenkins, Terraform, Amazon EKS, Amazon Route 53, Amazon Virtual Private Cloud (VPC), Amazon S3 (AWS S3), Relational Database Services (RDS), Amazon Simple Notification Service (Amazon SNS), Amazon Simple Queue Service (SQS), AWS Key Management Service (KMS), Identity & Access Management (IAM), Amazon CloudFront CDN, Amazon Cognito, Amazon Kinesis, AWS Lambda, AWS Elastic Beanstalk


2018 - 2019
Raising the Floor
  • Worked on the design and implementation of a FERPA-compliant cloud-agnostic infrastructure-as-code framework that manages the full lifecycle of Kubernetes applications.
  • Migrated legacy EC2-based Kubernetes deployments to GKE.
  • Designed and implemented an application-transparent cloud KMS-based secrets management system with the support of secret/key material population and rotation.
  • Designed and implemented a Locust-based universal load testing solution, capable of simulating real-world web application user behavior on the scale from dozens to millions of simultaneous users.
Technologies: Amazon Web Services (AWS), Security, Istio, CouchDB, Locust, Helm, Terraform, Google Cloud Platform (GCP), Kubernetes

DevOps Lead

2014 - 2018
  • Led the DevOps team by acting as a facilitator between development, operations, and the customer success teams.
  • Supported the physical infrastructure of the running project: kept relationships with providers, vendors and DC crew, and supervised required maintenance tasks.
  • Hardened the production system's security, established workflows and procedures, prepared documentation to pass the security/availability principle part of the SOC II security audit.
  • Completed the infrastructure automation using Chef and Terraform, unified multiple environments (production, stage/QA, on-premise, private cloud) within the same Chef codebase which improved the Dev/QA experience and reduced maintenance costs for Ops.
  • Improved the system architecture for private cloud installations using Docker, Kubernetes, and Terraform.
  • Implemented the required changes to the application stack and built CI/CD tooling.
Technologies: Amazon Web Services (AWS), Kubernetes, Docker, Logstash, Grafana, Elasticsearch, Vagrant, Terraform, Google Cloud Platform (GCP), Linux


2010 - 2014
  • Designed and implemented a new bare-metal architecture of a low-latency triple-redundant sharded file system with hot failover, real-time replication, and off-site backups for needs of shared SVN, Git, Perforce, and Mercurial repository hosting.
  • Designed and performed the seamless migration of existing customer base (AWS) into the new infrastructure.
  • Implemented a CI/CD workflow that allowed the team to safely execute over 50 deploys into production per day.
  • Built a bare-metal KVM cluster and developed the required tooling to provide the underlying infrastructure for staging/CI environments.
  • Improved the existing monitoring solution—reducing the number of false positives and increasing the retention periods and resolution for historical metrics.
Technologies: Amazon Web Services (AWS), ASA, Cisco, Hubot, KVM, Ceph, Elasticsearch, RabbitMQ, Bash, Apache, Jetty, Errbit, Monit, Cloudflare, New Relic, Nagios, HAProxy, Passenger, Capistrano, Pacemaker, Jenkins, DRBD, Chef, Ruby, Mercurial, Perforce, Subversion (SVN), Git, Linux

Lead Server-side Developer

2007 - 2010
  • Built a system of distributed proxies and crawlers to automatically collect and parse more than 500,000 legal documents per day.
  • Developed fuzzy-logic-data-collection algorithms for data crawlers.
  • Constructed a document-indexing pipeline using Sphinx.
  • Designed a simple-and-effective infrastructure-monitoring system using Nagios.
  • Created an HA and fault-tolerant MySQL cluster architecture with ring replication and real-time snapshots using Percona and HAProxy.
Technologies: Memcached, Nagios, Sphinx Search Engine, Percona, MySQL, PHP-FPM, HAProxy, NGINX, Apache, Linux


Python, Bash, Go, Java, Ruby, PHP




Google Cloud API, TensorFlow


Terraform, Rake, Google Stackdriver, Helm, Subversion (SVN), Nagios, Git, Chef, Apache, Make, Jetty, Passenger, Capistrano, RabbitMQ, Vagrant, NGINX, Perforce, Jenkins, PHP-FPM, Pacemaker, Errbit, Logstash, Istio, Amazon Cognito, Amazon CloudFront CDN, AWS Key Management Service (KMS), Amazon Simple Queue Service (SQS), Amazon Simple Notification Service (Amazon SNS), Amazon Virtual Private Cloud (VPC), Amazon EKS, AWS CodeBuild, Google Kubernetes Engine (GKE), BigQuery, Cloud Dataflow, VMware, Fluentd, Grafana, Mercurial, Monit


Continuous Integration (CI), Continuous Delivery (CD), DevOps, Agile Software Development, Microservices Architecture, Concurrent Programming, Scrum


Google Cloud Platform (GCP), Kubernetes, Linux, Docker, Amazon Web Services (AWS), Alpine Linux, Percona, AWS Elastic Beanstalk, AWS Lambda, AWS IoT Core, Cloud Native, New Relic, KVM


Auto-scaling Cloud Infrastructure, MySQL, CouchDB, Elasticsearch, Amazon S3 (AWS S3), BigTable, Google Cloud, Google Cloud SQL, Redis, Sphinx Search Engine, Memcached, Ceph, DRBD


Site Reliability Engineering (SRE), Cloud Security, Unix Shell Scripting, Container Orchestration, Infrastructure Monitoring, Infrastructure as Code (IaC), Linux Administration, Cloud Infrastructure, Google BigQuery, HAProxy, Hubot, Cisco, ASA, Security, Amazon Kinesis, Identity & Access Management (IAM), Relational Database Services (RDS), Amazon Route 53, AWS CodePipeline, Firebase Cloud Functions, Cloud, Networking, Cloudflare

Industry Expertise

Cybersecurity, Project Management

2004 - 2009

Master's Degree in Cybersecurity

Samara State University - Samara, Russia


Professional Cloud Network Engineer

Google Cloud


Concurrency in Google Go

University of California, Irvine via Coursera


Cloud Native Master Specialist



Professional Cloud Security Engineer

Google Cloud


Terraform Associate



Certified Kubernetes Administrator

Cloud Native Computing Foundation


Professional Cloud DevOps Engineer

Google Cloud


TensorFlow in Practice via Coursera


Machine Learning with TensorFlow on Google Cloud Platform

Google Cloud


Professional Cloud Architect

Google Cloud

Collaboration That Works

How to Work with Toptal

Toptal matches you directly with global industry experts from our network in hours—not weeks or months.


Share your needs

Discuss your requirements and refine your scope in a call with a Toptal domain expert.

Choose your talent

Get a short list of expertly matched talent within 24 hours to review, interview, and choose from.

Start your risk-free talent trial

Work with your chosen talent on a trial basis for up to two weeks. Pay only if you decide to hire them.

Top talent is in high demand.

Start hiring