Summary
Overview
Work History
Education
Skills
Certification
Techskills
Timeline
Generic

Seun Olufemi

London

Summary

Dynamic DevOps/DevSecOps/Site Reliability Engineer with over a decade of hands-on experience, specialising in optimising infrastructure provisioning and application deployment across both development and production environments. Expert in architecting and managing comprehensive cloud-based ecosystems, with a particular focus on AWS. Proficient in leveraging CI/CD tools to implement Infrastructure as Code (IaC), driving efficient, scalable, and secure resource management. Demonstrated success in supporting applications in both Linux and Windows environments. Adept in various programming languages and recognised for being a quick learner, with a strong ability to adapt to new technologies and methodologies swiftly.

Overview

12
12
years of professional experience
1
1
Certification

Work History

Site Reliability Engineer

Legend
08.2022 - Current
  • CI/CD Pipeline Development: Constructed and optimised CI/CD pipelines using GitLab CI/CD, GitHub Actions, and Jenkins
  • Developed IaC scripts to deploy and configure self-hosted runners utilising Docker executors, pre-installing essential software packages like Chocolatey for Business and JFrog CLI, and enabling seamless and automated software delivery.
  • Kafka Provisioning and Migration: Led the migration from AWS Kafka to Confluent Kafka, automating deployments using Terraform, and integrating with Okta for user authentication and IAM role-based access control
  • This initiative improved system performance, security, and streamlined operations.
  • Cross-Platform DevOps: Delivered comprehensive DevOps support across AWS, Microsoft Azure, and hybrid environments
  • Implemented secure integrations, CI/CD pipelines, and automated deployments, significantly enhancing operational efficiency and system reliability across diverse platforms, including Windows, Ubuntu, and macOS.
  • Infrastructure as Code (IaC): Provisioned reusable Terraform modules for core AWS services such as VPC, EC2, EFS, Security Groups, Lambda, CloudWatch, SNS, SES, S3 buckets, CloudFront, and WAFV2
  • This standardised infrastructure provisioning, ensuring consistency and reducing configuration drift.
  • Kubernetes and EKS Management: Implemented a central EKS cluster, migrating sites and consolidating multiple team-owned clusters from different AWS accounts into this centralised environment
  • Managed namespaces to ensure secure, isolated environments for each team, utilising Kubernetes Role-Based Access Control (RBAC) and other security implementations to restrict access to only the resources within their respective namespaces
  • Conducted upgrades and managed scaling, employing blue-green deployments and node draining strategies to ensure zero downtime.
  • RDS/S3 Migration: Developed a custom script to streamline the migration of RDS databases from a team in another AWS account to a central AWS account
  • Successfully consolidated databases from multiple RDS instances into a single central RDS instance, ensuring that all environments were migrated smoothly
  • Automated the process with a script that not only handled the initial migration but also allowed for syncing changes between the legacy database and the new one, ensuring up-to-date data throughout the migration process
  • This was critical for the successful migration of applications from the legacy EKS cluster to the central EKS cluster
  • Additionally, the same approach was applied to the migration of S3 buckets, automating and standardising the transition for seamless integration.
  • Microservices Observability: Enhanced microservices observability with OpenTelemetry for distributed tracing, coupled with Jaeger and Grafana Loki
  • Implemented centralised logging and monitoring, providing real-time insights into application performance and facilitating quick diagnosis of bottlenecks across the entire Kubernetes environment.
  • Security and Zero Trust Model: Implemented automated security scanning tools (SAST, DAST, container image scanning) within CI/CD pipelines
  • Established a Zero Trust security model using Istio and HashiCorp Boundary, enhancing security across microservices and infrastructure
  • Conducted thorough security assessments of third-party libraries and dependencies.
  • Chaos Engineering and Resilience Testing: Established a Chaos Engineering practice using Gremlin and AWS Fault Injection Simulator, conducting failure injection tests to improve system resilience, reducing incident rates by 25%.
  • Automation and Monitoring: Automated the deployment and monitoring of infrastructure using tools like Dynatrace, Grafana, and Icinga


  • Cost Optimisation: Integrated cost monitoring tools like Infracost into Terraform repositories and implemented significant cost-saving strategies, reducing AWS monthly costs by over 30%
  • Conducted regular cost analysis to ensure ongoing savings.
  • Backup and Disaster Recovery: Implemented multi-account backup and disaster recovery solutions for Amazon RDS using AWS Lambda, EventBridge, and AWS Backup policies, ensuring data resilience.
  • Led cross-functional teams in high-stakes projects, ensuring timely delivery and exceeding quality expectations.
  • Developed custom scripts/tools as needed to automate routine tasks, increasing overall team productivity and efficiency.
  • Improved incident management workflows by creating comprehensive documentation on troubleshooting procedures and common issues resolution steps.

Senior DevOps Engineer

Yoox Net-A-Porter Group
05.2018 - 08.2022
  • Team Lead: Led a team of five Engineers building and automating the deployment of WCS commerce application on AWS
  • Custom AMI: Implemented an immutable AMI (commerce as a product) for simplified and consistent deployment across different environments
  • CICD: Created various Jenkins pipelines for automated deployments and used best practices to design a formidable CI/CD workflow
  • Groovy: Major contributor to a reusable Jenkins shared library using Groovy
  • Terraform IAC: Created reusable terraform Modules for infrastructure deployments to AWS including EC2, S3, RDS, ASG, Route53, VPC, Load Balancers
  • Implemented a solution for delivering mutable data to IBM index server (EC2) from S3 using Lambda, CloudWatch events, and AWS SSM
  • Implemented Falco security roll out to base images using ansible
  • Maintained and improved orphaned codes (bash & Python)
  • Application Support: Technical support for IBM WebSphere v8/v9 application servers / IBM MQ / IBM APIC / Other Microservices
  • Support: Supported other core platform services including IBM APIC/MQ, CoreMedia suite, Akamai, legacy environment App Integration and Deployment (Docker, Ansible, Terraform, Jenkins, Git, Vagrant, Gradle, Maven, NPM, Ant, K8s)
  • OpenShift: Deployed and configured new OpenShift cluster
  • JFrog artifactory: Configured and managed JFrog artifactory
  • Team collaboration with Atlassian tools, Jira/confluence/Bitbucket/gitlab/Slack
  • Ansible: Created various ansible playbooks for server configurations
  • Implemented use of dynamic inventory across various ansible projects.
  • On-Call: Led on-call ROTA as DevOps engineer for WCS application support
  • Scripting: Refactored various scripts (python and bash) for neatness and migrated some complex bash scripts to ansible thereby allowing a simpler and easily maintained deployment process
  • Monitoring: Implemented a global monitoring solution incorporating Zabbix, Grafana, PagerDuty, and Dynatrace, leading the migration of different teams from existing monitoring tools
  • Zabbix: Deployed various lambda applications written in Python for collecting custom metrics for most AWS services from CloudWatch and configuring Zabbix to retrieve such metrics via the API
  • Ansible: Created ansible playbooks for Filebeat configuration specially for retrieving custom logs from deployed wcs applications
  • Grafana: Deployed Grafana and integrated it with various data sources for live metrics and alerts overview, improving visibility into system performance
  • EFK: Exposure to ELK stack configuration and management

Linux Systems Administrator

Syscon Justice Systems
06.2014 - 05.2018
  • Microsoft Azure: Implemented a DevOps approach for software development and migrated on-premises servers and applications to Microsoft Azure via console
  • Led the migration of Microsoft Exchange to Office 365, ensuring a smooth transition and minimal downtime
  • Managed the migration of Active Directory to Azure AD, streamlining identity management and enhancing security.
  • VMWare: Deployed and managed virtual servers in VMWare ESXi hosts, providing robust and scalable virtualisation solutions across the organisation.
  • Hybrid Deployment: Designed and deployed a hybrid hosting solution, seamlessly integrating on-premises servers with those deployed in Microsoft Azure
  • Ensured consistent performance and availability across the hybrid environment.
  • Terraform: Onboarded Infrastructure as Code (IaC) using Terraform, commenced the import of existing manually deployed infrastructure into Terraform, and set the organisational standard for managing all future deployments with IaC.
  • Linux System Management: Managed the deployment and patching of various Linux systems, including Solaris and Red Hat
  • Ensured systems were up to date with the latest security patches and software updates, maintaining high levels of system security and performance.
  • Support: Provided support for over 200 clients and remote servers (VMWare) globally across the organisation, resolving technical issues and ensuring continuous system availability.
  • IT Procurement: Managed supplier relationships to secure cost-effective technology acquisitions and software licenses, contributing to significant cost savings for the organisation.
  • IT Innovation: Researched and proposed key IT innovations, driving the successful adoption of new technologies that improved operational efficiency and reduced costs.
  • Networking: Configured and managed network infrastructure on-premises, including Cisco switches and firewalls, ensuring secure and efficient network operations.
  • Version Control: Implemented GitHub as the primary version control system, successfully migrating existing codebases from PVCS
  • This transition enhanced collaboration and streamlined version management.
  • Documentation: Authored and maintained comprehensive documentation for system configurations, deployment procedures, and support processes, ensuring that all operations are well-documented and easily replicable.
  • Release Management: Managed the release process for various environments, coordinating the deployment of updates and new features across multiple platforms, ensuring timely and error-free releases.
  • International Travel and Leadership: Occasionally travelled to company locations abroad to lead core IT changes, oversee server migrations, and ensure the successful implementation of new infrastructure
  • Played a key role in onboarding new staff members into the team, providing training and support to ensure their successful integration.

Systems Administrator

Inmarsat Global Plc
04.2013 - 06.2014
  • Windows Servers: Played a key role in migrating an in-house billing system from Windows Server 2000 to Server 2008, improving system efficiency and security
  • Environment Builds: Performed server builds and staged installs for both Windows and Linux systems as well as installing and configuring various software packages
  • Backup & DR: Configuring backups to both physical and network storage locations using Acronis backup tools as an approach to data recovery in the event of disaster
  • Support: Monitoring and providing crucial 1st and 2nd Line Support onsite and on-call for in-house billing system on Linux and Windows servers and escalating issues to the appropriate analysts when necessary
  • Administered Windows Active Directory, Microsoft Exchange, DHCP, DNS, Group Policies
  • Virtualisation: Deployed and managed servers on VMWare ESXi hosts
  • PowerShell: Validating daily data logs while carrying out the required corrective actions, such as editing and reprocessing using PowerShell CMDlets

Education

Master of Science - Information Technology with Security

University of Greenwich
London, ENG

Bachelor of Science - Industrial Chemistry

University of Ado
Ado, NG

A Levels - FUTA Staff Secondary School

FUTA STAFF SECONDARY SCHOOL
Akure, NG
01.2004

Skills

  • Team Building & Mentorship
  • Advanced Problem Solving & Optimization
  • Strategic Planning & Execution
  • Technical Architecture & Infrastructure Design
  • Team Leadership & Performance Management
  • Stakeholder Collaboration & Communication
  • CI/CD Automation & Toolchain Integration
  • Cloud Infrastructure & Platform Management (AWS, Azure, GCP)
  • Security-Driven DevOps & Compliance
  • Agile Methodologies & Cross-Functional Collaboration
  • Scripting Languages
  • Microservices Architecture and Observability

Certification

  • Certified Kubernetes Administrator (CKA), CNCF, 2022
  • Zabbix Certified Expert, Zabbix, 2018
  • Zabbix Certified Professional, Zabbix, 2018
  • RedHat Certified Systems Administrator (RHCSA), RedHat, 2015
  • Cisco Certified Network Associate (CCNA), 2013
  • CompTIA A+, 2013
  • Microsoft Certified Technology Specialist (MCTS) Windows 7 & Server 2008, 2013

Techskills

  • Windows, Linux (Ubuntu, CentOS, RHEL),
  • GitLab CI/CD, Jenkins, Travis CI, CircleCI,
  • Docker, Kubernetes, OpenShift
  • Ansible, Chef, Puppet, SaltStack
  • AWS, Azure, Google Cloud Platform (GCP), IBM Cloud
  • Terraform, CloudFormation, Pulumi
  • Prometheus, Grafana, Grafana Loki, ELK Stack (Elasticsearch, Logstash, Kibana), Splunk, Nagios
  • Git, GitHub, Bitbucket, GitLab
  • Python, Bash, PowerShell, Groovy, PHP
  • AWS Cognito, Okta, Vault by HashiCorp, Azure AD
  • Snyk, Nessus, Qualys, Metasploit, Snort, Wireshark, ClamAV, Istio
  • Chocolatey, apt-get, yum, JFrog Artifactory, NuGet, npm
  • Jira, Confluence, ServiceNow, Slack, Microsoft Teams
  • RESTful APIs, Snowflake API, GraphQL, SOAP APIs
  • Maven, Gradle, Ant
  • MySQL, DynamoDB, Redshift, PostgreSQL, MongoDB, Redis
  • VMware, Vagrant, VirtualBox, Hyper-V, KVM, Xen, Proxmox, Docker Swarm
  • TCP/IP, DNS, VPN, Load Balancers
  • Kafka (Confluent, AWS Kafka)

Timeline

Site Reliability Engineer

Legend
08.2022 - Current

Senior DevOps Engineer

Yoox Net-A-Porter Group
05.2018 - 08.2022

Linux Systems Administrator

Syscon Justice Systems
06.2014 - 05.2018

Systems Administrator

Inmarsat Global Plc
04.2013 - 06.2014

Master of Science - Information Technology with Security

University of Greenwich

Bachelor of Science - Industrial Chemistry

University of Ado

A Levels - FUTA Staff Secondary School

FUTA STAFF SECONDARY SCHOOL

Similar Profiles

CREATE PROFILE
Seun Olufemi