Resume/CV

Profile


Senior DevSecOps and Technical Lead with strong Linux background and a focus on Application Security and experience with penetration testing

Specialties: Automation/Orchestration (Ansible, Puppet, Chef, Terraform, etc.), Backend Development (Python,Ruby, Go), Cloud Native Platforms (Kubernetes), Web Application Security, Reverse Engineering, WebApplication Pentesting

Experience

Staff DevOps Engineer

Mappedin

January 2024 - Present
  • DevOps Engineer for Core Services Team

Senior Platform Engineer / Technical Lead

Petabloc Cloud Consulting

March 2022 - October 2023
  • Led a team of 3-5 engineers to deliver various platform improvements for clients
  • Re-architected client's AWS organization to match their need for a more mature production environment
  • Assisted with SOC2 Type II audit
  • Designed and implemented new security practices for startup client
  • Took part in internal mentorship program, mentored several junior engineers in various technologies
  • Led a project to lift-and-shift a client's out-of-date Kubernetes environment, used this as an opportunity to re-conceptualize their current environment


SecOps Specialist

Scotiabank (Scotia Digital)

February 2017 - March 2022
  • Helped launch DevSecOps practice within Canadian Digital Banking Unit
  • Assisted in the launch of Scotiabank's brand new mobile banking app
  • Built automated DevSecOps Jenkins pipelines for SAST and DAST platforms (HPE Fortify & WebInspect Enterprise) as well as for Open Source Compliance (Blackduck) and Mobile App Security Testing for both iOS and Android (NowSecure)
  • Built out and ran Whitebox pentesting practice for Digital Factory applications
  • Built deployment pipeline for ScotiaOnline environment, cross-train ScotiaOnline developer team in CI/CD and Git
  • Ran office-wide CTF (Capture-the-Flag) ethical hacking tournament to raise awareness of common security issues.

DevOps Engineer (SD Elements)

Security Compass

January 2015 - February 2017
  • Supported development/deployment of Django/ReactJS-based Secure SDLC web appliance used by major banks, Fortune 500s
  • Assisted clients with deployment and integration issues
  • Developed/maintained internal vSphere lab environment and wrote custom tools to manage/auto-provision virtual machines in the lab.
  • Developed production log monitoring system based on Graylog2 + Elastic Filebeat
  • Assisted in maintenance of production SaaS environment (actioning alerts, assisting with system/app upgrades, planning maintenance windows).
  • Assisted in development/deployment of new infrastructure (puppet) code for various components within SD Elements production SaaS environment.
  • Migrated CI environment from Jenkins to Gitlab CI.
  • Developed elastic CI runner environment using Gitlab CI + Docker Machine.
  • Assisted Security Compass’ Advisory team in conducting routine penetration tests on the SD Elements application itself.

Technical Systems Analyst (Contract)

Royal Bank of Canada

July 2014 - November 2014
  • Assisted in migration from Nagios XI/Groundwork-based monitoring system to centralized Zabbix solution.
  • Adapted current custom check scripts to work with Zabbix API.
  • Provided new Zabbix-friendly, all-in-one method for obtaining metrics from heterogeneous (DB2, Oracle, MySQL, Sybase) database environments.

Systems Admin (Unix Infrastructure Team)

LoyaltyOne, Inc.

September 2012 - June 2014
  • Worked with key stakeholders from various lines of business, was the point-of-contact/SME for several high-visibility projects including several POCs for various Big Data applications.
  • Assisted in revamping and further automating our provisioning/decommissioning process through the use of tools such as Puppet, mCollective, IBM Urban Code Deploy and Red Hat Cloudforms.
  • Assisted in developing a unified environment and application monitoring system using Nagios, Graphite and Dashing.
  • Ongoing responsibilities included ongoing support for ETL/Data Warehousing teams, infrastructure planning and implementation, assistance with OS, database and application patching, process documentation and knowledge transfer, monthly on-call pager and ticket support, and various sundry systems administration tasks for the many teams within LoyaltyOne’s IT department.

Linux System Administrator (Contract)

Decisioning Solutions

October 2011 - April 2012
  • Aided in migrating ageing Solaris 9/10 data warehouse platform to CentOS.
  • Implemented monitoring system for VMWare ESXi 5.1 and JBoss 7 Application Servers using Zabbix alongside custom python-based VMWare-to-Zabbix API middleware.
  • Performed successful POC and upgrade from JBoss 4 to JBoss 7.
  • Designed automated environment provisioning process using puppet/mCollective.
  • Ongoing responsibilities included security patching and various sundry requests from development teams.

Linux System Administrator (Contract)

Primary Support Systems

March 2011 - May 2011
  • Responsible for providing infrastructure services and support to SMBs across the Greater Toronto Area in the form of hosted mail/groupware, VDI, VPN, and web hosting among other services.
  • Developed a new internal documentation system
  • Helped establish new internal security policies
  • Designed and implemented a Zimbra-based groupware solution as well as a new XenServer-based virtualization platform

Linux System Administrator (Contract)

The Debono Group

March 2010 - September 2010
  • Built highly available custom Linux-based virtualization cluster from the ground up using OpenVZ + Heartbeat Implemented new security procedures and practices including monthly Nessus scans
  • Built highly available Debian/Ubuntu Linux-based Flash Media Servers as part of a video logging application Created custom video archive/backup solution in Python using AWS S3
  • Redesigned documentation system
  • Implemented IPSec VPN technology for remote administration of the network

Linux System Administrator (Contract)

Kanetix

September 2009 - December 2009
  • Developed HA web proxy cluster using SuSE Linux Enterprise Server, Heartbeat and Nginx
  • Assisted in infrastructure maintenance tasks (Security updates/patches, system maintenance)
  • Worked in conjunction with marketing staff on a large-scale Linux web server migration
  • Assisted in the construction of a Highly-Available Citrix XenServer Cluster for use in-house
  • Assisted in the implementation of an Oracle 12g RAC in both in-house lab as well as production environments.

Linux System Admin/Helpdesk Tech

HostForWeb, Inc.

April 2007 - September 2009
  • Off-Site System Administration of CentOS, RHEL, Fedora, Debian, and FreeBSD environments
  • Network and Server Security Hardening
  • Managed large-scale (approx. 150 physical hosts) CentOS/OpenVZ-based virtualization farm
  • Heavy use of Kayako SupportSuite as a client portal to company trouble ticket system
  • Provided user training and product updates.

Certifications

Hashicorp Certified Terraform Associate

Obtained May 2022

AWS Certified Cloud Practitioner

Obtained January 2023