Fully supporting betting/gambling platform in AWS. Have performed cross-account migration of entire infrastructure in AWS (including RDS snapshots) with ~30m downtime. Have designed the infrastructure architecture/access flow (VPC, EC2 AutoScaling Groups, RDS, ElastiCache, IAM) and set up budget alerts. Have set up a standalone Jenkins instance taking care of CI/CD processes. Have written blue/green deployment pipelines for both monolith (Laravel) and microservices (Python FastApi in docker). Have performed load testing on a separate infrastructure, detecting flaws with help of NewRelic/Sentry instruments. Have set up monitoring/alerts with NewRelic/PagerDuty. Have set up CloudFlare Domains, WAF, DDoS/Bots protection on multiple domains. Have performed cross-cloud MySQL replication (AWS to Hetzner) securely via VPN.

Fully supporting https://salesmessage.com (USA B2B CRM Platform) from DevOps side starting from the Infrastructure planning stage till production-ready and continuous development stages. -- Have performed Product Infrastructure migration from GCP to AWS Cloud (Compute instances, Cloud SQL, Redis). Have divided the infrastructure into 3 VPCs (maintenance/dev/prod). Have performed switch from AWS RDS (MySQL 5.x compatible) to AWS Aurora Serverless v2. Have implemented Developers' access via AccessPoint and user web-access through ALB. Later set up Wireguard VPN for more handy interaction with private resources. Have implemented and tuned up AWS SQS (as a replacement for PHP Laravel Horizon for queues). Have also Implemented AWS Lambda based microservice architecture (using ALB and API GW) which turned out to show better performance than ECS (docker-based) microservice solutions. Have set up raw data streaming via Kinesis followed by AWS Glue ETL Jobs storing processed data in AWS RDS. Have implemented AWS Polly and AWS MediaConvert services, converting webm video to mp4. Have set up and implemented AWS AutoScaling groups using various scaling strategies (predictive/scheduled/trigger based). Have set up and maintained 2 separate K8s clusters (EKS-based) in Production and non-prod environments. Have written all the K8s definitions for the microservices including cron-jobs, stateful sets/deployments, ingress etc. Have manually applied a bunch of secutiry headers on NGINX side (SCP, SRI, X-XSS, X-Frame Opts, XSRF-Token). Have written modular terraform definitions for the entire infrastructure (using dev/prod workspaces and dynamically calculated counter for the resourses). Have set up a standalone Jenkins Instance and configured pipelines for dev/prod deployments (blue-green) including automated tests (SonarQube/PHP Unit) by SCM MR. All the build stages were performed in docker containers, deployments - simple sets of BASH commands invoked via SSH. Have also written a project-specific implementation of Laradock (which is seriously overcomplicated and hard to get on with for the newcomers) for local development. It's is a docker-compose solution with a BASH control script, which spawns and controls a workspace with a set of containers (MySQL, Redis, PHP-fpm, NGINX, Supervisor, DataDog Agent (optionally) and a couple of Swoole-based microservices). Have also implemented various monitoring solutions like SemaText, ELK, later DataDog and eventually NewRelic. It has included Log parsing patterns, Infrastructure monitoring, Alerts (with OpsGenie as well), Incidents, APM, Distributed Tracing and a couple of Syntetic Tests. Have also written a bunch of handy bash scripts over aws-cli in order to bulk create different resources (mostly lambdas and SQS-queues) before terraform definition was fully finished. Have implemented AWS WAF/NGINX zone throttling in order to protect from DDoS attacks. Have set up and integrated AWS MSK cluster with existing PHP backend / PHP Swoole microservices / NodeJS Lambdas as an event-driven solution alternative to SQS. Have been the one responsible for incident management, resolving, analyzing, conduction hotfixes and post-mortems on the issues.

Have set up and maintained apache httpd / tomcat, nginx web servers. Have written provisioning bash scripts for Vagrant/Terraform. Have set up and maintained an infrastructure in Google Cloud using Terraform on top of Compute Engine (prod env) and also Google Kubernetes Engine (test env). Have implemented Packer solution to build docker images and Ansible playbook for provisioning + Molecule / Terrinfra tests. Have created a Jenkins pipeline for automating app deployment full cycle: integration with GitHub SCM; buildding with Maven/Gradle; performing SonarQube scans to test java applications; storing artifacts (apps and docker images) in local Nexus-powered repo; deploying to Kubernetes cluster / VM. A sample example can be found at https://github.com/siakazak/jenkins-example-pipeline. Also had a slight experiense of setting up ELK stack and LDAP for basic auth.

Have maintained zabbix/newrelic monitoring systems; set up and maintained an infrastructure in Azure Cloud: safe VPN network connection from customers' office to the Azure stack, using customer's hardware key provided by RuToken; up to 30 simultaneous connections to the Terminal server via RDP protocol; Windows web-server IIS + MSSQL database server + backups storage. Have set up and maintained an infrastructure in AWS using CloudFormation/Terraform on top of AWS Auto Scaling Group of EC2 instances, scaled by the amount of requests on web-server/db VMs.

ИСИТ, ingineer