Dmitry Kireev,美国佛罗里达州迈阿密的开发人员
Dmitry is available for hire
Hire Dmitry

Dmitry Kireev

Verified Expert  in Engineering

Cloud Architect Developer

Location
Miami, FL, United States
Toptal Member Since
November 21, 2019

Dmitry是一名云架构师和站点可靠性工程师,拥有超过十年的丰富专业经验,严格遵循DevOps方法. 他从零开始为现代云系统设计和构建了多个平台无关的基础设施. 德米特里拥有在大规模环境中实际操作的良好记录. 他还精通IaC、自动化和脚本,以及监控和可观察性.

Amazon RDSSoftware as a Service (SaaS)Cloud ArchitectureCloud InfrastructureAWS DevOpsNetwork SecurityLinuxGitAmazon Web Services (AWS)GitHubAmazon EC2AgileDevOpsAmazon CloudWatchDatadog

Portfolio

HazelOps
Amazon弹性容器服务(Amazon ECS), AWS DevOps, GNU Make...
SimplyWise, Inc.
Kubernetes, Amazon EKS, Django, Datadog
Sport Betting B2B SaaS Provider (US)
亚马逊网络服务(AWS)、无服务器、容器编排...

Experience

Bash - 15 yearsLinux - 14 yearsAmazon Web Services (AWS) - 10 yearsDevOps - 8 yearsDocker - 6 yearsTerraform - 5 yearsAmazon弹性容器服务(Amazon ECS)——5年Ansible - 4 years

Availability

Part-time

Preferred Environment

Terraform, Linux, GitHub, Docker, Amazon Web Services (AWS), DevOps, Serverless, Amazon弹性容器服务(Amazon ECS), Amazon EKS, CI/CD Pipelines, Architecture

The most amazing...

...thing I've architected, deployed, and managed is a scalable, 与软件工程团队一起为物联网安全产品提供高可用性云.

Work Experience

现场可靠性工程负责人|顾问

2015 - PRESENT
HazelOps
  • 在不同的项目中担任多个咨询职位.
  • 为初创公司构建可扩展的基础设施:多环境, with infrastructure as code, self-healing, scalable, and predictable environments on AWS.
  • 处理用于Dockerizing JVM、PHP和Python应用程序的遗留代码.
  • 根据基础设施绩效的关键因素和基于建议的行动项目,分析和审计了数十份全周期报告的绩效.
  • 帮助软件工程师实现DevOps, including close communication, strategy, and process improvement.
  • 通过拥有SLA来测量站点可靠性实践, SLO, and SLIs; eliminating toil; and increasing observability—automation, monitoring, and error budgeting.
  • Implemented CI/CD, 促进数十个不同项目的流线型部署管道, including GitLab, Jenkins, and CircleCI. 利用Docker,注册表和多阶段构建.
  • 在客户环境中创建OPS程序, including service-based alerting, on-call rotation, and escalations.
  • 部署和维护Apache Kafka, 包括通过Terraform进行全周期管理, Ansible, and Docker.
技术:Amazon弹性容器服务(Amazon ECS), AWS DevOps, GNU Make, Amazon Web Services (AWS), Grafana, HAProxy, Python, WordPress, PHP, Java, Serverless, ECS, Docker Swarm, Docker, Ansible, Terraform, NGINX, DevOps, SSL Certificates, Digital Certificates, Traefik, JVM, Flask, Linux, Bash, SQL, PostgreSQL, Amazon RDS, Ruby on Rails (RoR), Amazon EKS, AWS NAT Gateway, Datadog, Software as a Service (SaaS), Docker Compose, Agile, MySQL/MariaDB, Redis, Agile Software Development, Jira, Confluence, SSL, Containerization, TypeScript, Containers, Deployment, Helm, Azure, Kubernetes, Azure DevOps, Cloud, AWS Cloud Architecture, Cloud Architecture, APIs, Infrastructure as Code (IaC), CI/CD Pipelines, Amazon EC2, VPN, Node.js, Google Cloud Platform (GCP), Container Orchestration, Amazon CloudWatch, Amazon Simple Queue Service (SQS), Amazon Aurora, AWS Fargate, AWS Lambda, Amazon DynamoDB, AWS CodeBuild, GitHub, Git, Continuous Integration (CI), Agile DevOps, AWS CloudFormation, Amazon API, Monitoring, Infrastructure Monitoring, Application Monitoring, Enterprise Architecture, Continuous Delivery (CD), Microservices, Microservices Architecture, Django, RabbitMQ, Celery, AWS Elastic Beanstalk, ChatGPT, Machine Learning, Serverless Architecture, Cloud Infrastructure, Architecture, Infrastructure, Cybersecurity, Network Security, Redis Cache, Load Balancers, Heroku, Site Reliability Engineering (SRE)

EKS Expert

2023 - 2024
SimplyWise, Inc.
  • 将一个复杂的瞬态错误分解为一系列假设.
  • 用最少的文档分析AWS上当前的EKS/Django配置.
  • 使用Datadog和CloudWatch的故障排除方法追踪Django/EKS中奇怪错误的来源.
  • 提出问题的最佳解决方案,并支持团队实施.
技术:Kubernetes, Amazon EKS, Django, Datadog

Senior Cloud Architect

2022 - 2023
Sport Betting B2B SaaS Provider (US)
  • 改进现有基础设施,通过GLI认证.
  • 通过Terraform实现了基于IAM和角色的PostgreSQL无密码访问.
  • Improved remote access patterns; migrated to OpenVPN.
Technologies: 亚马逊网络服务(AWS)、无服务器、容器编排, Amazon CloudWatch, Amazon Simple Queue Service (SQS), Amazon Aurora, AWS Fargate, AWS Lambda, GitHub, Git, Continuous Integration (CI), Agile DevOps, Terraform, Amazon RDS, Monitoring, Infrastructure Monitoring, Application Monitoring, Continuous Delivery (CD), CI/CD Pipelines, Containerization, Microservices, Microservices Architecture, Celery, ECS, Serverless Architecture, Cloud Infrastructure, Architecture, Infrastructure, Cybersecurity, Network Security, Redis Cache, Load Balancers, Site Reliability Engineering (SRE)

云架构师|站点可靠性工程师

2021 - 2022
Game Asset Marketplace (Stealth)
  • 提高了当前EKS集群的安全性和可靠性.
  • 设计并实现了CI/CD系统,以零停机时间部署/回滚应用程序.
  • 处理遗留系统的故障排除和维护支持.
  • 为基础设施整体设计安全性改进.
  • 设计分支和分级改进以促进更快的QA.
技术:亚马逊网络服务(AWS)、亚马逊EKS、亚马逊EC2、 .NET, Rancher, Azure DevOps, Cloudflare, VPN, Container Orchestration, Amazon CloudWatch, Amazon Aurora, AWS Fargate, AWS Lambda, GitHub, Git, Continuous Integration (CI), Agile DevOps, AWS CloudFormation, Terraform, Amazon RDS, Amazon API, Monitoring, Infrastructure Monitoring, Application Monitoring, Continuous Delivery (CD), CI/CD Pipelines, Containerization, Microservices, Microservices Architecture, Celery, ECS, Serverless Architecture, Cloud Infrastructure, Architecture, Infrastructure, Cybersecurity, Network Security, Redis Cache, Load Balancers, Heroku, Site Reliability Engineering (SRE)

云架构师|站点可靠性工程师

2021 - 2022
ONFO, LLC
  • 设计并实现多环境AWS架构.
  • 设计并实现了一个CI/CD系统,以零停机时间部署/回滚应用程序.
  • Updated and migrated a .NET应用程序到新环境.
  • 更新并迁移了一个TypeScript/Serverless应用到新环境.
  • 为私有恒星节点设计和部署不可变的基础设施.
技术:亚马逊网络服务(AWS)、DevOps、Stellar SDK、 .NET, Serverless, Docker, Docker Compose, Container Orchestration, Amazon CloudWatch, AWS Fargate, AWS Lambda, TypeScript, Amazon DynamoDB, GitHub, Git, Continuous Integration (CI), Agile DevOps, AWS CloudFormation, Terraform, Amazon RDS, Monitoring, Infrastructure Monitoring, Application Monitoring, Continuous Delivery (CD), CI/CD Pipelines, Containerization, Microservices, Microservices Architecture, ECS, Serverless Architecture, Cloud Infrastructure, Architecture, Infrastructure, Cybersecurity, Network Security, Redis Cache, Load Balancers, Site Reliability Engineering (SRE)

云架构师|站点可靠性工程师

2020 - 2021
Tatango, Inc.
  • 设计并实现了一个多环境AWS架构.
  • 设计并实现了一个CI/CD系统,以零停机时间部署/回滚应用程序.
  • 更新Rails应用程序并将其迁移到新环境.
  • 更新并迁移了一个TypeScript/Serverless应用到新环境.
技术:亚马逊网络服务(AWS), SQL, AWS CodeDeploy, AWS DevOps, Redshift, Datadog, ECS, Serverless, Ruby on Rails (RoR), Terraform, VPN, Container Orchestration, Amazon CloudWatch, AWS Fargate, AWS Lambda, GitHub, Git, Continuous Integration (CI), Agile DevOps, Amazon RDS, Amazon API, Monitoring, Infrastructure Monitoring, Application Monitoring, Network Monitoring, Enterprise Architecture, Continuous Delivery (CD), CI/CD Pipelines, Containerization, Serverless Architecture, Cloud Infrastructure, Architecture, Infrastructure, Cybersecurity, Network Security, Redis Cache, Load Balancers, Site Reliability Engineering (SRE)

Lead Site Reliability Engineer

2016 - 2019
Flo Technologies
  • 在AWS上从零开始设计并执行复杂的物联网基础设施:多层, 多子网可扩展云AWS基础设施, 多应用无状态堆栈与弹性Beanstalk, ECS和Docker, 与Docker平台无关的本地工作区.
  • 创建和管理可操作的基础设施:幂等扮演和角色,以支持基础设施需求,并在Apache Foundation下为多个平台编写社区可用的角色.
  • 设计和实现CI/CD:使用高流量服务的绿色部署完成应用程序生命周期, 支持SaaS或托管CI服务器的平台无关框架, 以及软件工程师的无障碍管道.
  • 构建和管理的监视解决方案:来自多个源的日志和数据聚合(ELK), on-prem monitoring via TICK, Grafana. 在需要时使用Datadog和New Relic进行SaaS监控.
  • 设计并执行操作流程:面向服务的OLA, Pagerduty with monitoring solutions, 和Pagerduty“服务所有者优先”的政策.
  • 创建并维护关键分布式系统的升级流程,确保在整个三年的时间跨度内实现无停机和无数据丢失的升级.
Technologies: AWS DevOps, GNU Make, Amazon Web Services (AWS), Transport Layer Security (TLS), Linux, CircleCI, Docker, TICK Stack, ELK (Elastic Stack), GitLab, Apache Kafka, Ansible, AWS CloudFormation, Terraform, DevOps, SSL Certificates, Digital Certificates, Grafana, JVM, InfluxDB, Bash, SQL, Internet of Things (IoT), Amazon RDS, AWS NAT Gateway, Datadog, Software as a Service (SaaS), Docker Compose, Agile, Redis, Agile Software Development, Jira, Confluence, SSL, Containerization, Containers, Deployment, Cloud, AWS Cloud Architecture, Cloud Architecture, APIs, Infrastructure as Code (IaC), CI/CD Pipelines, Amazon EC2, VPN, Amazon CloudWatch, Amazon Simple Queue Service (SQS), AWS Lambda, TypeScript, Amazon DynamoDB, GitHub, Git, GitLab CI/CD, Continuous Integration (CI), Agile DevOps, Amazon API, Monitoring, Infrastructure Monitoring, Application Monitoring, Network Monitoring, Enterprise Architecture, Continuous Delivery (CD), Microservices, Microservices Architecture, AWS Elastic Beanstalk, Cloud Infrastructure, Architecture, Infrastructure, Cybersecurity, Network Security, Redis Cache, Load Balancers, Site Reliability Engineering (SRE)

Senior Member of Technical Staff

2016 - 2017
Delphix
  • 为一个用于大规模测试框架的新项目设计并实施了多层混合云AWS基础架构.
  • 从多个源构建日志和数据聚合(ELK).
  • 创建了一个虚拟和裸金属主机供应系统(Foreman).
  • 设计并实现了基于nmap的库存软件.
  • 为公司范围内的IT流程和改进做出贡献.
  • 提出了随叫随到轮换的主要部分, monitoring, SOA, and OLA designs and implementations.
Technologies: AWS DevOps, Amazon Web Services (AWS), Python, AWS CloudFormation, Foreman, Ansible, ELK (Elastic Stack), Jenkins, Terraform, DevOps, SSL Certificates, Digital Certificates, Grafana, Telegraf, JVM, Linux, Bash, SQL, Amazon RDS, AWS NAT Gateway, New Relic, Datadog, Software as a Service (SaaS), Docker Compose, Travis CI, Elasticsearch, Agile, MySQL/MariaDB, Redis, Agile Software Development, Jira, Confluence, SSL, On-premise, Containerization, Containers, Deployment, Cloud, AWS Cloud Architecture, Cloud Architecture, APIs, Infrastructure as Code (IaC), CI/CD Pipelines, Amazon EC2, VPN, Amazon CloudWatch, GitHub, Git, GitLab CI/CD, Continuous Integration (CI), Agile DevOps, Monitoring, Infrastructure Monitoring, Application Monitoring, Network Monitoring, Enterprise Architecture, Continuous Delivery (CD), Windows, RabbitMQ, AWS Elastic Beanstalk, Cloud Infrastructure, Architecture, Infrastructure, Network Security, Redis Cache, Load Balancers, Site Reliability Engineering (SRE)

Senior DevOps Engineer

2013 - 2016
Intuit
  • 管理一个大约有300个节点的混合云:AWS、VMware和裸机.
  • 实现自动化、配置管理和供应. 90%的环境是在Puppet和Git中.
  • 管理遗留系统的生命周期 .. NET和c#以及手动部署系统的自动化.
  • 提供配置管理和IaaC: GitFlow中的CI, reusable code, and open-source contribution.
  • 管理和指导初级IT员工,包括分离关注点和简化入职.
  • 领导了大部分收购后基础设施集成项目.
Technologies: AWS DevOps, Amazon Web Services (AWS), Foreman, Git, TeamCity, ELK (Elastic Stack), Puppet, DevOps, SSL Certificates, Digital Certificates, Grafana, Telegraf, JVM, Linux, Bash, Amazon RDS, New Relic, Software as a Service (SaaS), Docker Compose, Travis CI, Elasticsearch, Agile, MySQL/MariaDB, Redis, Agile Software Development, Jira, Confluence, SSL, On-premise, Containerization, Containers, Deployment, Cloud, AWS Cloud Architecture, Cloud Architecture, APIs, Infrastructure as Code (IaC), CI/CD Pipelines, Amazon EC2, VPN, Amazon CloudWatch, GitHub, Continuous Integration (CI), Agile DevOps, AWS CloudFormation, Monitoring, Application Monitoring, Network Monitoring, Enterprise Architecture, Continuous Delivery (CD), Windows, RabbitMQ, Cloud Infrastructure, Architecture, Infrastructure, Network Security, Redis Cache

DevOps Engineer

2011 - 2013
Docstoc (Acquired by Intuit)
  • 支持180+ Windows和Linux专用服务器的托管以及新服务器部署.
  • 管理网络安全和性能(Juniper SSG), SRX Firewalls, A10 networks load balancer, Radius, IPsec, NAT, and Amazon EC2 VPC).
  • 使用Nagios、ELK和New Relic实现主动监视.
  • 为大规模优化了Linux和Windows服务器性能.
  • 部署和维护本地MySQL数据库.
  • 介绍并实现了ELK堆栈、Elasticsearch、Logstash和Kibana.
技术:亚马逊网络服务(AWS), AWS DevOps, Nagios, Python, MongoDB, MySQL, LB, Juniper, DevOps, SSL Certificates, Digital Certificates, Grafana, Telegraf, JVM, Linux, Bash, Amazon RDS, New Relic, Software as a Service (SaaS), Infrastructure as Code (IaC), Docker Compose, Travis CI, Elasticsearch, Agile, MySQL/MariaDB, Redis, Agile Software Development, Jira, SSL, On-premise, Containerization, Containers, Deployment, Cloud, AWS Cloud Architecture, APIs, Amazon EC2, VPN, Amazon CloudWatch, GitHub, Git, Continuous Integration (CI), Agile DevOps, AWS CloudFormation, Monitoring, Network Monitoring, Continuous Delivery (CD), CI/CD Pipelines, Windows, RabbitMQ, Cloud Infrastructure, Architecture, Infrastructure, Network Security, Load Balancers

ICMK -基础设施作为代码生成框架

http://github.com/hazelops/icmk
该框架试图创建一种方便的方式,将基础设施作为代码进行管理,并且对运行者来说进入门槛很低.

其想法是使用GNU Make作为包装复杂性和呈现良好运行者体验的载体. 这样,就可以在本地或CI上使用一组一致的命令,就像“make deploy”一样简单."

Article: Runner Experience Design

http://automationd.com/developer-experience-design/
在讨论基础设施设计时,我擅长使用凤凰信条的方法. 无论您构建什么,都应该能够由具有足够权限的任何人或任何东西一次又一次地轻松重建.

虽然这样一种诗意的称呼幂等基础设施的方式有许多重要的技术特征, this time, 我想谈谈它的另一面:——任何人或任何有足够权限的东西——跑步者和他们的经验.

文章:如何避免生产中的人力瓶颈

http://automationd.com/how-to-avoid-human-bottlenecks-in-production/
毫无疑问,我们都听说过“瓶颈”这个术语.瓶颈是流程链中的一个流程,其有限的容量降低了整个流程链的容量。.

Generally speaking, 它需要有多个人来运行一个更大的业务来执行创意, design, project management, development, QA, marketing, and infrastructure operations. 当一个人限制了一个团队的能力时,它就变成了一个人的瓶颈.

In this post, 我想强调两种不同类型的人类瓶颈, 从操作和站点可靠性的角度来看,哪些会对团队的生产力产生负面影响.

OpenVPN AS Docker with DUO Security

http://github.com/AutomationD/docker-openvpnas
该映像结合了OpenVPN访问服务器与Duo安全2因素认证. All configuration is done via environment variables; for example, OPENVPN_VPN__DAEMON__0__LISTEN__IP_ADDRESS映射到vpn.daemon.0.listen.ip.地址,在当前的配置文件(如.conf and config.Json),它被设置为一个环境变量的值.

Duo安全是可选的,但强烈推荐,因为基本帐户是免费的. 您所需要做的就是获取API凭据并启用后验证脚本.

Windows Imaging Toolkit

http://github.com/AutomationD/wimaging
WImaging是一组脚本,用于为Foreman准备WIM映像和模板以预置Windows主机. 大多数时候,使用的是官方的微软部署工具——主要是dism.exe.

所有相关的配置文件,如unattend.xml由Foreman渲染并在构建时下载.

IZE:自以为是的基础设施工具

http://github.com/hazelops/ize
该工具被设计为流行工具的简单包装,以便可以轻松地将它们集成到一个基础设施中:Terraform, ECS deployment, Serverless, and others.

It combines infra, build, 并在其中部署工作流,它太简单而不能被认为是复杂的. 所以让我们不要这样做,而是拥抱简单和极简主义.

Tools

Git, GNU Make, Ansible, AWS CloudFormation, ELK (Elastic Stack), GitLab, GitLab CI/CD, Terraform, Docker Compose, Grafana, Telegraf, CircleCI, Travis CI, Traefik, Amazon CloudWatch, Amazon弹性容器服务(Amazon ECS), GitHub, VPN, AWS Fargate, Docker Swarm, NGINX, Puppet, Jenkins, Amazon EKS, Amazon Simple Queue Service (SQS), RabbitMQ, Celery, TeamCity, Nagios, Makefile, AWS CodeDeploy, Jira, Helm, Confluence, Splunk, Stellar SDK, AWS CodeBuild

Paradigms

Agile, Continuous Delivery (CD), Continuous Integration (CI), DevOps, Microservices, Microservices Architecture, Serverless Architecture, Azure DevOps, Automation, Agile Software Development

Platforms

Linux, Docker, Amazon Web Services (AWS), AWS Elastic Beanstalk, Amazon EC2, Kubernetes, AWS Lambda, Windows, Apache Kafka, JVM, Heroku, Azure, WordPress, New Relic, Windows Server, Google Cloud Platform (GCP), Blockchain, Rancher

Storage

Datadog, Amazon Aurora, MySQL, MongoDB, InfluxDB, Redis, On-premise, Amazon DynamoDB, Redis Cache, Elasticsearch, MySQL/MariaDB, Databases, PostgreSQL, Redshift

Industry Expertise

Network Security, Cybersecurity

Other

Site Reliability Engineering (SRE), GitHub Actions, AWS DevOps, SSL Certificates, Digital Certificates, CI/CD Pipelines, Amazon RDS, Software as a Service (SaaS), Infrastructure as Code (IaC), SSL, Cloud, Containerization, AWS Cloud Architecture, Containers, Deployment, Cloud Architecture, Container Orchestration, Agile DevOps, Monitoring, Infrastructure Monitoring, Application Monitoring, Cloud Infrastructure, Architecture, Infrastructure, Load Balancers, Networking, Internet of Things (IoT), AWS NAT Gateway, APIs, Enterprise Architecture, TICK Stack, Transport Layer Security (TLS), Foreman, Juniper, LB, ECS, Serverless, HAProxy, Communication, English, Business, Economics, Software Development, Business Planning, Cloudflare, Hospitality, Network Monitoring, ChatGPT, Machine Learning

Languages

Python, Bash, Java, PHP, Markdown, Go, JavaScript, SQL, TypeScript

Frameworks

Flask, Django, Ruby on Rails (RoR), Windows PowerShell, .NET, Serverless Framework

Libraries/APIs

Amazon API, Node.js

2006 - 2009

商务沟通学士学位(英语)

图拉州立大学-图拉,俄罗斯

2004 - 2009

工商管理学士学位

图拉州立大学-图拉,俄罗斯

Collaboration That Works

How to Work with Toptal

在数小时内,而不是数周或数月,我们的网络将为您直接匹配全球行业专家.

1

Share your needs

在与Toptal领域专家的电话中讨论您的需求并细化您的范围.
2

Choose your talent

在24小时内获得专业匹配人才的简短列表,以进行审查,面试和选择.
3

Start your risk-free talent trial

与你选择的人才一起工作,试用最多两周. Pay only if you decide to hire them.

Top talent is in high demand.

Start hiring