
Adan
DevOps Engineer AWS GCP Azure Kubernetes Terraform CICD Automation
Skills

Bekijk mijn diensten

Portfolio
Werkervaring
DevOps / DevSecOps Engineer — fintech & payments platforms
Wali Systems Inc. • Freelance
Feb 2024 - Present • 2 yrs 5 mos
I build and secure the cloud infrastructure behind a consumer payments platform. My core responsibility is keeping the path from code to production fast, safe, and repeatable. I design and maintain CI/CD pipelines in Jenkins, GitLab CI, and CircleCI that automate building, testing, security scanning, and deployment across development, staging, and production environments. Every container image is scanned with Trivy and every codebase passes SonarQube quality and security gates before it moves forward, so vulnerabilities are caught before they ever reach a server. All infrastructure is managed as code. I write reusable Terraform modules and Ansible playbooks that provision compute, networking, IAM roles, and load balancers across AWS, GCP, and Azure — no click-through setups; every change is reviewable and repeatable. Access follows least-privilege IAM/RBAC, data is encrypted with KMS, and network paths are hardened with firewalls, VPNs, security groups, and private service access. Our microservices run on Kubernetes (EKS/AKS/GKE) with rolling upgrades, autoscaling, and PodDisruptionBudgets for high availability. I build hardened Docker images using multi-stage builds and minimal base images. On the reliability side, I maintain Prometheus, Grafana, and CloudWatch dashboards with alert rules wired to on-call escalation, and I troubleshoot production issues end to end with the development team, documenting runbooks so fixes stay fixed. I also own cloud cost optimization — tracking pricing models, committed-use discounts, and spot strategies — with current initiatives on track to cut roughly 30% of monthly cloud spend.
AWS DevOps Engineer
Buildium • Freelance
Jun 2022 - May 2025 • 2 yrs 11 mos
I was responsible for the AWS infrastructure and delivery pipelines behind a regulated fintech platform, where reliability and security were non-negotiable because the product handled payments and user financial data. I architected the Terraform and Ansible automation that provisioned and secured our AWS estate — EC2, S3, VPC, RDS, and EKS — which reduced provisioning errors by 75% and standardized IAM and encryption configuration across every environment. Manual console changes were eliminated; infrastructure changes went through code review like application code. I deployed and operated microservices on Kubernetes (EKS) using Helm, achieving zero-downtime rolling releases and cutting deployment and release cycles by more than 60%. I hardened our Docker images with multi-stage builds, minimal base images, and scan gates, which reduced container-related production incidents by 40%. Security was embedded in the pipeline, not bolted on afterward: Trivy and SonarQube scanning ran inside Jenkins and GitLab CI so insecure code and images were blocked before deployment. I built the monitoring and logging stack from the ground up — Prometheus, Grafana, CloudWatch, and the ELK stack (Elasticsearch/Kibana) — with dashboards and alerting that cut our mean time to resolution by 35%. I led incident response and root-cause analysis, coordinating directly with developers to prevent repeat failures. I also managed database reliability for MySQL and PostgreSQL on RDS (provisioning as code, automated backups, tested recovery procedures) and wrote Python and Bash automation for security checks, systems testing, and routine operations.