EXPERIENCE

SRE & DevOps Consultant

Huco (08/2023 - Present)

• Designed, deployed, and operated secure, air-gapped and public cloud OpenShift and RKE2 clusters, adhering to CIS benchmarks and enterprise hardening best practices.
• Provisioned and managed Azure Kubernetes Service (AKS) clusters with cluster autoscaling, node pools, and spot instances for cost optimization while maintaining performance SLAs.
• Built and maintained end-to-end CI/CD pipelines for containerized applications using GitOps tools and integrated artifact scanning via JFrog Xray.
• Configured enterprise-grade ingress solutions including F5 CIS, NGINX Ingress Controller, and NGINX App Protect.
• Implemented Istio service mesh, Kubernetes network policies, and Prisma Cloud for container runtime security.
• Deployed observability stacks with Prometheus, Grafana, Thanos, Alertmanager, Fluentd, and ELK.

SRE - Kubernetes Ecosystem

InfraCloud Technologies (07/2021 - 08/2023)

• Worked as SRE in the Kubernetes ecosystem, helping Rancher integrate monthly Kubernetes patches and minor versions.
• Maintained and upgraded multiple Helm charts including Istio, Kiali, Jaeger-tracing, OPA-Gatekeeper and CIS benchmark.
• Added support for new Docker versions (23.0) to RKE, enabling Rancher, RKE, RKE2 and K3s users to provision clusters.
• Integrated monthly Kubernetes patches with RKE and Rancher, analyzing changelogs and implementing changes.
• Resolved issues related to CNIs and Kubernetes conformance tests.
• Implemented comprehensive testing frameworks for Helm charts using hull framework.

Open Source Contributions

Kiali Project

• Kiali is a management console for Istio service mesh. Fixed URL rewriting issue when using Kiali with kubectl proxy.
• Modified the router to pick up the URL used to access the service, solving accessibility issues on refresh.
• Issue: https://github.com/kiali/kiali/issues/4459
• PR: https://github.com/kiali/kiali/pull/4914