Juan-Carlos Alberto
Clifton
Summary
Senior DevSecOps Engineer with extensive experience in Terraform, Docker, Kubernetes, and proficiency across all major cloud platforms (AWS, Azure, GCP). Knowledgeable in CI/CD pipelines, leveraging Python as the primary scripting language to automate and optimize deployment processes. Passionate about continuous learning and integrating cutting-edge technologies to drive innovation and efficiency. Adept at embedding security into DevOps practices to build robust, scalable, and high-performance systems. Committed to fostering collaboration across teams to enhance system reliability and streamline operations.
Overview
7
7
years of professional experience
1
1
Certification
Work History
Senior DevSecOps Engineer
Axoni
09.2023 - Current
- Served as the Security Domain Lead for the Core SRE team, collaborating with the Chief Information Security Officer and InfoSec team to identify and prioritize risks
- Developed Python automation scripts integrating AWS Config, AWS Inspector, and RDS to generate an Asset Inventory and report vulnerabilities
- Translate InfoSec priorities requiring DevSecOps support into actionable roadmaps for the Core SRE team, ensuring alignment with security initiatives
- Maintain and ensure the uptime of core development services, including Gitlab, Artifactory, Jfrog, Sonarqube, Prometheus, and Grafana, using Terraform, Docker, EKS, EC2, Python, and Bash
- Implement SentinelOne in our production systems as our primary SIEM, utilizing Terraform for IaC. This enabled the integration of logs from Cloudwatch, ZScaler, and our core services across multiple accounts.
- Oversee the monthly patching of systems, with immediate action on critical vulnerabilities to maintain security and operational integrity
- Manage and coordinate all aspects of security reporting, system maintenance, and DevSecOps initiatives across multiple AWS accounts
- Created detailed documentation for all engineering processes and procedures to ensure easy knowledge sharing
DevSecOps Engineer
Raft
02.2023 - 09.2023
- This position is with the government and most of my work is classified
- Due to this, I cannot share much information about my projects or my day to day
- Automate AWS infrastructure setup using Terraform and deploy mission critical systems using Ansible
- Manage existing Kubernetes clusters containing mission critical systems and set up new systems in Kubernetes that require high availability
- Support infrastructure running Gitlab as well as leverage Gitlab CI/CD pipelines to deploy and update mission critical systems
- Manage secrets using Hashicorp Vault
- Setup/Manage monitoring and alerting of AWS and Kubernetes resources using Prometheus, Grafana, and OpenSearch
- Worked with Security team to resolve vulnerabilities found within multiple applications and infrastructures
- Create and manage service accounts for automation within critical systems,Kubernetes environments, and AWS VMs
- Create and manage IAM roles for service accounts and EC2 instances
DevOps Fellow
HearstLab
01.2022 - 02.2023
- Work directly with the CTO's of the portfolio companies to establish DevOps Best Practices
- Save portfolio company's CTO and developer time by fulfilling the top requests on their 'Wish List' while keeping Security Standards in mind
- Architected and built a Data Lake in AWS, pulling in data from various third-party databases and Mixpanel
- Codify Infrastructure using Terraform while keeping GitOps procedure and security in mind
- Create CI/CD Pipelines to automate the build, testing, and deployment of multiple portfolio company applications using Github Actions, CodePipeline, AWS Amplify, Azure Pipelines, Cloud Build, CircleCI, and Vercel
- Architect and implement a containerized microservice architecture using Terraform, Docker, and AWS Fargate
- Create Datadog Dashboards, enabling the CTO to track errors in real time rather than respond to user complaints as well as allowing for their team to replay the user session during the time the error was experienced
- Created a Task Tracker within Airtable that mimics Jira Kanban Boards and tracks data allowing me to predict how effective I will be for a portfolio company
- This Tracker also enables me to provide output for multiple portfolio companies in a single sprint
- Created a DevOps Assessment to properly score each portfolio company and understand how much attention they should receive from a DevOps perspective
- Create AWS Lambda Functions using python to save the portfolio companies' resources and help them transition
- Always-on EC2 instances
DevOps Engineer
Wheels Up
09.2019 - 01.2022
- Built their CI/CD pipeline using Python, Ansible, and custom docker images
- Workflows were set to kick
- Based on GitOps procedures with an included security scan to catch code that may expose vulnerabilities
- Coordinate with security team to resolve vulnerabilities
- Administer access to Jenkins and control access to jobs
- Built an environment refresh tool to put in the hands of the QA team,allowing the DevOps team to focus on their projects
- Automated the setup of directories, Ansible information, and startup scripts for new services, allowing the DevOps team to focus on higher priority requests and simplifying the process for new hires
- Built a deployment tracker with information being written to an SQL database in real time
- A Grafana table displayed this information allowing all to see what branch was last deployed for a specific service in each environment
- Troubleshoot issues related to the CI/CD pipeline, Docker environments, legacy server environments and staging/production environments
- Setup monitors within Datadog that will generate alerts
- Upgraded the Nexus Repository from a single instance to a highly available cluster to ease the transition to a Kubernetes cluster
- Maintain 50+ CentOS VMs in a Rackspace environment and create new servers based on infrastructure requirements
- Manage service accounts within the VMs
- Create and update firewall rules to support connections between the VMs
Lead Systems Engineer
Hub City Media
10.2017 - 08.2019
- Coordinate code changes using Bitbucket and prepare documentation for the Managed Support Team
- Automate processes to ensure business continuity of client environments
- Lead a team of Systems Engineers and ensure they are meeting goals,internally tracked through Jira
- Generate alerts and automate processes using Python to ensure continued functionality of client enterprise infrastructure
- Meet monthly with executive leadership to discuss possible paths to improve team efficiency and determine learning opportunities for direct reports and colleagues
- Develop client independent monitoring tools to feed data to AWS Cloudwatch and Google Stackdriver
- Create tools around a Kubernetes environment using Python that allow less experienced coworkers to interact with and support a client environment
- Support enterprise systems through client interaction, application of product patches, and monitoring of the environment
- Automate daily healthy checks on a client environment to ensure the continued health of a system, reducing tedious manual tasks
- Create and implement security standards following NIST guidelines for the company
- Work within Unix/Linux environments running the ForgeRock IAM/IDM systems in order monitor VM resources, manage logs, and troubleshoot issues
Education
New Jersey Institute of Technology
Newark, NJ12.2017
Skills
- Python
- Bash
- Ansible
- Terraform
- Docker
- Kubernetes
- Linux
- AWS
- GCP
- Azure
- Prometheus
- Grafana
Certification
CompTIA Security
Timeline
Senior DevSecOps Engineer
Axoni
09.2023 - Current
DevSecOps Engineer
Raft
02.2023 - 09.2023
DevOps Fellow
HearstLab
01.2022 - 02.2023
DevOps Engineer
Wheels Up
09.2019 - 01.2022
Lead Systems Engineer
Hub City Media
10.2017 - 08.2019
New Jersey Institute of Technology
Similar Profiles
Jane MoreJane More
Environmental Manager at Macys Herald SquareEnvironmental Manager at Macys Herald Square
SHAUN KANESHAUN KANE
Manager – NYC Flagship Store at TIFFANY & CO.Manager – NYC Flagship Store at TIFFANY & CO.
MEHJABEEN MUJTABAMEHJABEEN MUJTABA
Nurse Practitioner at G & S MedicalNurse Practitioner at G & S Medical
Elmer RevolloElmer Revollo
Meat Department Clerk at PriceritesupermarketsMeat Department Clerk at Priceritesupermarkets
NAGAKISHORE PANDINAGAKISHORE PANDI
Senior DevSecOps Engineer at AIS India Pvt LtdSenior DevSecOps Engineer at AIS India Pvt Ltd