Робоча історія

LiveOps Engineer

Cyber Security Research Engineer

DevOps Engineer

As the primary engineer responsible for supporting and maintaining the Tenable Security Center ("Tenable.sc") and an infrastructure of over 100 active Nessus scanners, I utilized a range of technologies to ensure optimal performance and security. Leveraging Linux, Bash, Python scripting, Jenkins, Gerrit, Git, and Docker, I automated processes and enhanced efficiency. For monitoring and visualization, I employed Grafana to display metrics, Loki for log storage, and checkmk for comprehensive system monitoring.

I used Jenkins to automate Python scripts, such as sending email notifications to users about the status of Nessus scanners within Docker containers. For troubleshooting, I utilized tools like OpenSSL, traceroute, tcptraceroute, mtr, and curl. When Jenkins wasn't suitable for certain tasks, I automated Bash scripts using cron jobs.

I escalated tickets to vendors when necessary and employed Jira Query Language for root cause analysis. Adopting the Kanban methodology, I effectively tracked and managed my work. Additionally, I developed a script to notify me before SLA expirations, enabling my team and me to provide the best possible service, improve user support, and measure our performance through user satisfaction.

Key Skills

• Support and Maintenance: Tenable.sc, Nessus scanners
• Administration: Linux, Bash, Python, Jenkins, Gerrit, Git, Docker
• Monitoring and Visualization: Grafana, Loki, checkmk
• Automation: Jenkins, cron, Python scripts
• Troubleshooting: OpenSSL, traceroute, tcptraceroute, mtr, curl
• Analysis and Management: Jira Query Language, Kanban methodology
• Service Enhancement: Developed scripts for SLA notifications, improved user support

System Administrator (Support Engineer) and DevOps engineer

Experienced IT Support Specialist with a strong background in Tier 1 support, specializing in the installation and troubleshooting of customer systems. Proficient in configuring and managing both Linux and Windows operating systems, including Windows 10, Windows 11, Windows Server 2012, and Windows Server 2016. Skilled in network configuration on endpoints, Windows Active Directory (AD), Group Policy Objects (GPO), and Windows DNS services.

Successfully investigated and resolved security incidents following hacker breaches, contributing to enhanced system security. Experienced in configuring DNS servers using Bind and supporting the WHOIS database and protocol to ensure accurate domain information and efficient domain name resolution. Proficient in deploying websites on cPanel using GitLab pipelines, streamlining the deployment process and improving operational efficiency.

Committed to upholding Service Level Agreements (SLAs) by providing timely and effective solutions to customer requests. Recognized for strong problem-solving abilities and a customer-centric approach that enhances user satisfaction and trust.

Key Skills

• Technical Support (Tier 1): Installation and troubleshooting of customer requests.
• Operating Systems: Linux, Windows 10/11, Windows Server 2012/2016.
• Network Configuration: Endpoints, Windows AD, GPO, Windows DNS.
• DNS Servers & Bind: Configuring DNS servers and managing domain name resolutions.
• Email server with Zimbra WEB GUI.
• Install/Configure SSL/TLS certificates.
• WHOIS Protocol Support: Maintaining accurate domain information.
• Web Deployment: Installing websites on cPanel using GitLab pipelines.
• Security Incident Investigation: Resolving issues post-hacker breaches.
• SLA Compliance: Meeting and exceeding Service Level Agreements.
• Customer Service: Excellent communication and interpersonal skills.
• Troubleshooting: Strong analytical skills for efficient issue resolution.

IT support (System Administrator) and Consultant

DevOps Engineer in Tier1 team

I worked in a Tier 1 technical support team. The primary requirement of my role was to ensure the timely operation of Red Hat and CentOS 7 virtual machines. For user configuration, such as adding public keys, I used Puppet. Occasionally, my team and I used Ansible for orchestration. I configured virtual IP addresses and added Nagios checks to monitor Linux VMs.

I followed ITIL practices as described in RFCs before making any changes in production. My team and I provided root cause analysis (RCA) upon client requests. One of my achievements was significantly reducing the abuse rate, which removed our IP addresses from blacklists and improved the company's reputation.

I developed scripts to automate routine tasks. These scripts ran in Docker containers within Jenkins, where they performed their magic. Prometheus collected metrics for analytics, and Grafana beautifully visualized them. This approach sped up my response time, allowing me to quickly identify issues such as CPU load, whether it affected a single node, how long it lasted, and if there were any related services.

Additionally, my team and I used BigPanda to aggregate Nagios alerts. I logged into Observium to investigate network incidents. Our virtual machines operated on ESXi and Cisco UCS, which required me to log into vSphere and manage the VMs. If an issue occurred with a VM, I logged into the CMDB, identified the affected node, and removed it from the load balancer. This approach allowed seamless redirection of user traffic to backup VMs, ensuring users were unaware of any issues.

For software installations, I followed a similar process: logged into the CMDB, removed nodes from the load balancer, patched the system, conducted smoke tests, and reintegrated the nodes if everything was fine. As a result, our clients and management were impressed with our approach.

SoftServe IT University

Network and System Administrator

I am an experienced Full-Stack Support Specialist with a strong background in managing and supporting both client and server operating systems, including Windows XP, 7, 8, 10, macOS, and Windows Server 2003/2008 R2. My expertise extends to network administration, where I have worked extensively with Mikrotik routers, RouterOS, and implemented Cisco Meraki solutions for SD-WAN and wireless networking.

I specialize in optimizing network performance through Quality of Service (QoS) policies and enhancing security measures using Intrusion Detection and Prevention Systems (IDS/IPS). I have a proven track record in deploying and managing Virtual Desktop Infrastructure (VDI) and Remote Desktop Services (RDS), enabling efficient remote access and virtualization for users.

In addition, I have administered Symantec Endpoint Security to ensure robust protection across endpoints and have implemented advanced anti-spam solutions using SPAMHAUSE with customized regex configurations. My experience with Active Directory, DHCP, and Print Servers has allowed me to streamline network services and improve user management.

Automation is a key part of my skill set; I leverage PowerShell scripting and Group Policy Objects (GPO) to automate routine tasks and configurations, enhancing efficiency and reducing the potential for errors. I am also adept at malware and virus remediation using Linux-based tools, booting infected Windows hosts via USB or PXE to effectively clean and restore systems without compromising data integrity.

I'm passionate about leveraging technology to improve organizational efficiency and security, and I am always looking for new challenges to apply my expertise.

OurLan ISP (own business)

Install and administer LAN, MAN and WAN of ISP network. Manage smart switches, routers, and billing.

Install and support fiber optics cables UTP/STP cables, have experience with installation SCS.

First practice at TCP/IP and other relative technologies.

Build small Data Centres. Mount servers, network devices in to racks.

Hardware troubleshooting.