Sjon-Paul Brown, DevOps Engineer and Developer in Franklin, TN, United States
Sjon-Paul Brown

DevOps Engineer and Developer in Franklin, TN, United States

Member since June 10, 2020
Sjon-Paul is a DevOps engineer who thrives on producing scalable systems and automation that stand the test of time. While deploying and managing software within the cloud, Sjon-Paul understands and handles the complexities of the AWS ecosystem so that everything works smoothly and on time. Sjon-Paul is also an advocate of creating secure, stable software and infrastructure that is predictable and maintainable over time.
Sjon-Paul is now available for hire

Portfolio

  • Udacity
    AWS IAM, Identity & Access Management (IAM), Role-based Access Control (RBAC)...
  • Health IQ
    AWS Elastic Beanstalk, Amazon SQS, AWS SES, AWS Kinesis, AWS CloudWatch...
  • Built Technologies
    Amazon Web Services (AWS), AWS CodeBuild, AWS ALB...

Experience

Location

Franklin, TN, United States

Availability

Part-time

Preferred Environment

Amazon Web Services (AWS), Teams, Slack, AWS, VS Code, Docker, Linux

The most amazing...

...thing I've created was automation to handle the parallelization of software builds which increased the speed of builds while also increasing security.

Employment

  • Security Content Creator/Instructor

    2021 - PRESENT
    Udacity
    • Developed a capstone project to display a student's technical ability.
    • Designed and created exercises to guide students towards accumulating skills to complete a capstone project.
    • Created and designed content and material to teach students.
    Technologies: AWS IAM, Identity & Access Management (IAM), Role-based Access Control (RBAC), ABAC, Access Control
  • DevOps Engineering Contractor

    2020 - 2021
    Health IQ
    • Created and implemented a log delivery mechanism for delivering CloudWatch logs to SIEM.
    • Audited and evaluated the security of the AWS environment as well as third-party systems that maintained data.
    • Helped implement credential management for containerized services.
    • Evaluated current CI/CD processes and provided recommendations for streamlining builds/deployments.
    • Evaluated resource utilization with costs to provide recommendations for reducing infrastructure costs.
    Technologies: AWS Elastic Beanstalk, Amazon SQS, AWS SES, AWS Kinesis, AWS CloudWatch, AWS OpsWorks, New Relic, SumoLogic, AWS, SIEM
  • Senior DevOps Engineer

    2020 - 2021
    Built Technologies
    • Created automation framework for creating GitHub Repos and CI processes to enforce standard repo configurations.
    • Managed and deployed Web Application Firewalls (WAF) in front of all public-facing endpoints.
    • Migrated the existing service infrastructure to Terraform resources.
    • Implemented highly available site-to-site IPSec tunnels in a multi-region capacity.
    • Designed and created a custom passwordless authentication flow for AWS Cognito.
    • Created and implemented DevSecOps CI processes for executing static code analysis on purchase requisition (PR) creation.
    • Migrated self-hosted and on-premise Sentry to Sentry.io.
    • Constructed a cross-region and cross-account snapshot backup service for disaster recovery.
    • Created a log delivery service for delivering logs to various providers.
    Technologies: Amazon Web Services (AWS), AWS CodeBuild, AWS ALB, Web Application Firewalls (WAF), Amazon CloudFront CDN, AWS CloudFormation, Terraform, Python, Docker, AWS, Amazon Cognito, DevSecOps, GitHub, AWS API Gateway, AWS Kinesis, Amazon SQS
  • AWS Engineer

    2017 - 2020
    Ramsey Solutions
    • Supported the infrastructure and deployments for hundreds of services hosted on AWS ECS and AWS Lambda.
    • Developed automation for managing software and infrastructure deployments within CI/CD pipelines.
    • Migrated the automation so that it could be more easily developed and tested.
    • Developed AWS account automation and helped implement networking to connect environments.
    • Created log service to ingest client-side log events.
    • Migrated self-hosted git servers to CodeCommit for better reliability.
    Technologies: Amazon Web Services (AWS), AWS ECS, AWS EC2, API Gateways, AWS Lambda, Linux, Ansible, Python, AWS CloudFormation, Docker, AWS
  • System Support Specialist

    2017 - 2017
    Connected Nation
    • Improved the existing support solutions for internal employees.
    • Helped with planning internal infrastructure migrations.
    • Managed Linux servers used for mobile drive testing.
    Technologies: Rackspace, Windows, Linux
  • Technical Support Assistant

    2016 - 2017
    Connected Nation
    • Hosted and supported Linux servers used for mobile drive testing.
    • Improved internal help desk support for remote and onsite employees.
    • Managed internal hardware and software support requests.
    Technologies: Nginx, Linux, Windows
  • End User Support Intern

    2014 - 2016
    Connected Nation
    • Decreased the amount of time it took to image newly provisioned machines.
    • Managed incoming support requests for internal and remote employees.
    • Procured software and hardware for employees upon request.
    Technologies: Windows

Experience

  • WAF Implementation

    I managed and deployed a WAF solution across all public endpoints to ensure that malicious traffic was blocked before being delivered to our application. This required intense evaluation of existing traffic patterns to ensure that valid application traffic would not be blocked upon rollout. The entire solution was managed within infrastructure as code to ensure the configurations could be enforced, audited, and automated.

  • GitHub Configuration and CI Framework

    I managed the creation and implementation of a configuration framework to standardize and enforce GitHub repo configurations to ensure that repositories were correctly configured with the proper settings. This framework also allowed for the definition and orchestration of various CI processes that allowed for the parallelization of various CI process that would need to be executed throughout the SDLC. This created a framework for creating and enforcing repository standards while also providing the necessary CI infrastructure to allow for easy integration and execution of various workflows.

  • Multi-region IPSec Tunnel Implementation

    I implemented a site-to-site IPsec VPN in a multi-region capacity. This IPSec VPN was configured from scratch and was configured to automatically recover from instance failures and rotations. This implementation ensured that the VPN was available in multiple regions and would automatically recover from failures while also ensuring that proper routing was dynamically configured.

Skills

  • Tools

    Terraform, AWS ECS, AWS CloudFormation, AWS IAM, AWS CloudWatch, Amazon CloudFront CDN, Ansible, AWS CodeBuild, VS Code, Slack, Nginx, Jenkins, Amazon Cognito, GitHub, Amazon SQS, AWS SES, AWS OpsWorks, VPN, AWS Athena
  • Paradigms

    Continuous Delivery (CD), Continuous Integration (CI), DevOps, Test-driven Development (TDD), Serverless Architecture, Microservices Architecture, DevSecOps, Role-based Access Control (RBAC), ABAC
  • Platforms

    AWS Lambda, AWS EC2, Amazon Web Services (AWS), Linux, Docker, AWS ALB, Windows, Rackspace, AWS Kinesis, AWS Elastic Beanstalk, New Relic
  • Other

    AWS, AWS API Gateway, AWS CodePipeline, Teams, API Gateways, Web Application Firewalls (WAF), SumoLogic, SIEM, IPsec, Web Application Firewall (WAF), AWS WAF, Identity & Access Management (IAM), Access Control
  • Languages

    Python, SQL
  • Storage

    MySQL, AWS S3

Education

  • Bachelor of Science degree in Computer Information Technologies
    2014 - 2017
    Western Kentucky University - Bowling Green, KY, United States

Certifications

  • AWS Certified Developer — Associate
    AUGUST 2017 - SEPTEMBER 2020
    AWS
  • AWS Certified Solutions Architect — Associate
    JULY 2017 - AUGUST 2020
    AWS

To view more profiles

Join Toptal
Share it with others