Alexandru Ignat

Expanded my expertise in AWS security, focusing specifically on WebBeds client.

• Bastion Access Restriction: Developed new AWS security policy, replacing direct access to bastion instances with Session Manager-based access method, thereby significantly enhancing security posture of organisation .
• IAM Users Audit: Conducted detailed audit of IAM users, their privileges, and usage patterns. Developed and implemented IAM users audit tool for greater control and visibility.
• Terraform Infrastructure as Code: Successfully migrated management of subnets, route tables, security groups (SG), Route53, and Application Load Balancer (ALB)/Network Load Balancer (NLB) to Infrastructure as a code using Terraform.
• Documentation & Diagramming: Created comprehensive documentation and diagrams for implemented changes.

☁️Cloud: AWS cloud, AWS CloudTrail, VPC Flow Logs

🛠️Infrastructure as Code: Terraform

📜Scripting: Python, Bash.

🏗CICD Pipeline: Github Actions.

👨‍🎤DevOps and SRE practices, AWS Security Audit

Designing, developing, and automating a resilient and scalable Apache Airflow environment for data processing.

• Implemented infrastructure in cloud, ensuring that it is secure, scalable, highly available, and efficient.
• Managed, setup and configuration of infrastructure, establishing necessary network and security configurations.
• Configured security features such as role-based access control (RBAC) to define and manage access permissions.
• Implemented CI/CD pipelines using Azure DevOps for automatic testing and deployment of code changes.
• Automated system for pushing new requirements, installing plugins, and changing DAGs.
• Training and handover process to in-house teams.

☁️Cloud: Azure Cloud.

🛠️Infrastructure as code: Terraform, AWS Cloudformation.

📜Scripting: Python, Bash

🏗CI/CD Pipeline: Azure DevOps

👨‍🎤DevOps and SRE Practices.

• Designing, implementing, and maintaining infrastructure in Azure.
• Implementing infrastructure as code using Terraform, and ensuring that infrastructure is scalable, secure, and highly available.
• Onboard new and existing teams to Cloud Native Platform

☁️Cloud: Azure Cloud

🛠️Infrastructure as code: Terraform.

📦Containerization & Orchestration: Docker, Kubernetes, AKS.

📜Scripting: Bash.

🏗CICD Pipeline: Github Actions, Jenkins.

👨‍🎤DevOps and SRE practices, Developer Experience.

• Designing and implementing AWS network (VPC) and S3 storage solution for Gibraltar Bank. This was accessible via AWS API gateway for integration with both bank's Oracle core banking platform and on-premise systems/LAN.
• Implemented infrastructure as code using AWS CloudFormation and ensured that infrastructure was secure, scalable, highly available, and compliant with regulatory requirements.
• Ensured secure access by implementing AWS VPN for Oracle and on-premise connections, and integrated AWS IAM for access control and AWS KMS for key management.

☁️Cloud: AWS Cloud

🛠️Infrastructure as code: AWS CloudFormation.

📜Scripting:Bash, Python.

🏗CICD Pipeline: Github Actions, Jenkins.

👨‍🎤DevOps and SRE practices, Custom Well-Architected Framework based on Amazon's, Security and Compliance Audits.

Main goal was to reduce current intake process from 2 hours to 2 minutes 80% of time.

• Utilised Azure DevOps to design, create, and manage CI/CD pipelines for full development cycle. Implement automation scripts using Bash and PowerShell to speed up and streamline deployments.
• Manage and optimise cloud infrastructure on Azure to automate provisioning and management of infrastructure.
• Developed strategy for promoting code through dev, test, and prod environments.
• Ensure that each environment is properly set up and isolated to prevent issues during testing and deployment.

☁️Cloud: AZURE services including API management, Azure Logic Apps, Azure functions app, Azure SQL, Azure WebApp, Azure Key-Vault.

🛠️Infrastructure as code: Terraform, ARM templates.

📜Scripting: Bash, PowerShell,ASP.NET Core.

🏗CICD Pipeline: Azure Devops.

👨‍🎤DevOps and SRE practices.

Goal was to build UK’s best car buying experience.

• Joined at early stages of their journey
• Responsible for designing, building, and maintaining software platform that powers company's products and services.
• Working closely with cross-functional teams to understand their needs, ensuring platform meets their requirements and that platform is scalable, reliable, and secure.
• Develop and maintain platform documentation, including architecture diagrams and runbooks.

☁️Cloud: AWS services including ECS, EC2, Lambda, VPC, IAM, Route53, CloudFront, S3, RDS, ElasticCache, ElasticSearch,AWS Config, Security Hub, AWS Organization, Cloudtrail, Cloudwatch, Kinesis, Eventbridge.

🛠️Infrastructure as code: Terraform, CloudFormation, Serverless.

📜Scripting: Bash, Python,NodeJS, Typescript, Javascript.

🏗CICD Pipeline: GitlabCI, CircleCI, Github Actions.

🧪 Third-party services: Opsgenie, Cloudflare, ElasticCloud, Sentry.

👨‍🎤DevOps and SRE practices, Developer Experience.

As part of Amido's intensive DevOps Academy, completed variety of certifications and courses in Azure, AWS, Python, and Terraform.

• Furthered skills in cloud and worked alongside more than 15 different DevOps mentors across multiple projects.
• Assisted in setting up and securing infrastructure for range of clients, including :Condor Ferries, Nandos, Global Radio, Asos.
• Applied automation solutions using Infrastructure as Code technologies such as Azure's ARM templates and Terraform.
• Worked extensively on both AWS and Azure platforms, implementing and maintaining secure and scalable infrastructure for multiple clients. Ensured adherence to best practices and compliance requirements.

☁️Cloud: AWS, Azure Cloud

🛠️Infrastructure as code: Azure ARM templates, Terraform, AWS Cloudformation.

📜Scripting: Bash.Python

🏗CICD Pipeline: AWS CodePipeline, Azure DevOps, Jenkins, CircleCI, Github Actions.

👨‍🎤DevOps and SRE practices.

👷 🏗Projects:

⚙️Integration OTRS With SQL Database

- Integration of OTRS(Ticketing tool) with LANDesk Asset Management. - Technologies used: AWS, Ivanti, SLQ, OTRS, Terraform, Bash

👩‍🦯Linux Migration And Upgrade Asset Management Tool Core Server

- Technologies used: AWS EC2, Terraform, Ivanti, Bash, Linux Senior Infrastructure Engineer-Project Based

-Working closely with development teams, we've been able to optimise and automate the Device Management infrastructure processes.

- Technologies used: Ivanti, Bash, PowerShell, Linux