Infrastructure and DevOps engineer with 7+ years of experience implementing and managing CI/CD pipelines, infrastructure-as-code, and cloud platforms. End-to-end ownership across AWS, Azure, GCP and OpenStack, including networking, security, monitoring, and compliance (PCI-DSS 4.0). Comfortable with Linux at every level, from RHEL production fleets to building Gentoo and LFS as a daily driver. Known for fast execution and shipping reliable platforms that scale with the product.
Experience
Cloud Infrastructure Engineer, Farel (YC S20)
Jul 2023 – Present · Full-time
Migrated the entire production stack from AWS to Azure as the initial onboarding engagement, using Terraform, Ansible, and GitLab CI.
Built and maintain the company's first PCI-DSS 4.0 compliant infrastructure from scratch. Passed annual re-validation in 2024, 2025, and 2026.
Implemented branch-isolated Kubernetes environments: each Git branch spawns an ephemeral, fully isolated deployment that auto-removes on merge, enabling parallel non-blocking development.
Connected Azure Kubernetes workloads to multi-country on-premise data centers via policy-based IPSec (StrongSwan + iptables + Ansible).
Cloud Infrastructure / DevOps Consultant, GRACE
Autumn 2025 · Paris, FR · Remote
Built complete cloud infrastructure, Kubernetes platform, and end-to-end CI/CD pipelines for GRACE, a French fintech offering AI-powered embedded insurance and claims processing for luxury goods (partnered with brands including Messika and RIMOWA).
Infrastructure / DevOps Consultant, Information Security firm
Summer 2025
Designed and deployed a Kubernetes cluster on Proxmox VMs backed by Fibre Channel SAN storage for a regional information-security firm providing services to a state cadastral registry.
DevOps / SRE, Aitu-DALA
Nov 2019 – Mar 2023 · Full-time · Astana, KZ · Remote
Built and operated a Prometheus-based monitoring stack across the company: Alertmanager, dozens of Grafana dashboards, Slack + IRC integration, downsampled long-term storage with S3 snapshots, and Twilio voice + SMS alerting via a custom Python relay.
Wrote and maintained 57 GitLab CI/CD pipelines: build, test, component-test, ephemeral per-branch deployments, and tagged release flows.
Deployed Loki-based logging and multi-location blackbox monitoring with an interactive response-time map.
HA Nginx HTTP/TCP load balancers with VTS metrics and Keepalived; Ingress-Nginx, Ambassador / Emissary / Envoy gateways tuned for production.
Built custom RHEL-compatible OS images via Kickstart + Packer with CIS benchmark hardening applied.
Provisioned Kubernetes clusters with Kube-Spray; ran "Kubernetes the Hard Way" deployments for component-level testing.
OpenStack infrastructure managed via Terraform; ConsulDNS as a PowerDNS recursor for dynamic dev-environment domains.
Helm-chart-based deployments with migration pre-hooks; decentralized per-service config kept in each microservice repo.