AWS DevOps/Cloud Architect
Resume:
Darren Ybarra
ad0a9n@r.postjobfree.com
Summary
Mr. Ybarra has 10+ years in IT operations, software development, and cloud architecture with a broad set of skills and certifications. Advanced knowledge and hands-on engineering in developing, improving, and designing highly available, secure, and performant microservices architectures on Kubernetes in AWS. High capacity DevOps Architect role in charge of designing and improving enterprise-wide CI/CD process using both Jenkins and GitOps models
(FluxCD, Helm, Container Registry). Advanced knowledge in designing and building various architectures in AWS using serverless technologies as well as Kubernetes in a fast-paced GitOps workflow. Led database design and maintenance for Apache Cassandra, RDS MySQL, Aurora, and DynamoDB implementations. Highly skilled in Web Development and scripting technologies using Ruby on Rails, Python, Django, Java Spring Boot, and React. Follower of agile processes and principles with Scrum and Kanban for software development. A passion for cloud technologies as demonstrated by my Red Hat Linux, Puppet, Apache Cassandra, and professional AWS and Google Cloud Platform certifications. Certifications
● Certified Kubernetes Administrator
● AWS DevOps Engineer - Professional
● AWS Solutions Architect - Professional
● Google Cloud Certified Professional Cloud Architect
● Google Cloud Certified Professional Security Engineer
● Google Cloud Certified Associate Cloud Engineer
● Datastax Certified Professional on Apache Cassandra
● AWS Web Services Solutions Architect - Associate
● Red Hat Certified Systems Administrator (RHCSA)
● Puppet Certified Professional
Education
Bachelor of Science, Computer Science
University of Texas at San Antonio
Development Experience
● Primary Languages - Python, Ruby on Rails, PHP, Java Spring Boot, HTML5, CSS3, Bootstrap, BASH, Perl, jQuery, Ajax, JavaScript, SQL, React, Django
● Cloud Architecture - AWS EC2, AWS ELB, AWS VPC, AWS S3, AWS Route 53, AWS RDS, DynamoDB, AWS CloudWatch, AWS Lambda, AWS CloudFormation, High Availability, Cost Optimization, Performance Efficiency, Security, Reliability, Operational Excellence, Heroku, Kubernetes Cluster Design/Optimization/Management, Azure Kubernetes Service (AKS), Google Kubernetes Engine (GKE), GCE, GCS, Cloud Build, GCP VPC
● Automation Development - GitLab, GitOps, FluxCD, Helm, AWS ECR, GCP Container Registry, Azure Container Registry, Ansible, Terraform, CloudFormation, Puppet, Chef, Ruby, Python, Bash, CI/CD (Continuous Integration/Continuous Deployment), Jenkins, AWS CodePipeline, AWS CodeBuild, AWS CodeDeploy, TravisCI
● Operating Systems - Red Hat Enterprise Linux, Ubuntu, Windows Server, Mac OS AWS Experience
● AWS Infrastructure Scripting - CloudFormation, Terraform, Ansible
● AWS Core Services - EC2, S3, CloudFront, RDS, IAM
● AWS Networking Services - VPC, ELB, Route53
● AWS Code* Services - CodePipeline, CodeBuild, CodeDeploy
● AWS Security Services - Config, IAM, KMS, WAF
● AWS Serverless Services - Lambda, API Gateway, Aurora, AWS Fargate
● AWS Database Services - DynamoDB, RDS, Cassandra
● AWS Container Services - EKS, ECS, ECR
● AWS Application Services - SQS, Step Functions, EventBridge, SNS, SES Professional Experience
AWS Cloud Architect, Nikola Labs (October 2021 - present)
● Architected and designed automated and secure workflows for accessing RDS MySQL databases from developer workstations.
● Designed and implemented infrastructure as code from the ground up to automate infrastructure and application deployments using Terraform for cloud native serverless architecture.
● Designed and implemented secure and automated pipelines for infrastructure and application deployments using Atlassian Bitbucket Pipelines.
● Successfully assessed and introduced AWS Timestream for time-series data as it became inefficient to store in RDS MySQL.
● Performed RDS MySQL to AWS Timestream custom database migration.
● Assessed and implemented AWS QuickSight for BI analytics and visualizations.
● Implemented highly secure integration for AWS QuickSight from a private RDS MySQL database using VPC connection.
● Assessed and implemented multi-phase strategy for monitoring, logging, and alerting of serverless architecture.
● Introduced code reusability and best practices for Python AWS Lambda functions with Lambda Layers and AWS Lambda Powertools.
● Introduced best practices around secret management for RDS and Lambda.
● Designed AWS Step Functions workflows for AWS IoT integrations using parallel actions and native AWS API integrations.
● Designed IAM best practices for both engineering team and cloud resources using principle of least privilege.
● Designed and implemented multi-account structure for AWS accounts to separate production from QA and Dev environments.
● Designed and implemented dynamic environment creation from an automated pipeline using Terraform.
● Designed and implemented automated testing for frontend (React) and backend
(API Gateway/AWS Lambda) components.
AWS Architect, IDEMIA (November 2020 - October 2021)
● Architected and implemented a serverless architecture in AWS using Lambda, API Gateway, VPC, Route53, KMS, DynamoDB, and RDS.
● Designed and implemented reusable infrastructure as code with the CDK for Terraform in Python.
● Designed and implemented application secrets management through pipeline automation and IaC.
● Designed and implemented pipeline modules using GitLab CI/CD pipelines to be reused across multiple microservices projects.
● Designed and implemented reusable CDK for Terraform constructs for both client-certificate mutual authentication and OAuth workflows.
● Designed and implemented automation for microservices to integrate with a 3rd party OAuth provider using the CDK for Terraform.
● Designed and implemented reusable standards for test automation for all microservices projects (unit, integration, functional, and end-to-end).
● Designed and implemented a full authentication and authorization workflow using React on the frontend and an API Gateway Lambda authorizer on the backend.
● Designed and implemented security automation in the GitLab CI/CD pipeline using OWASP ZAP for Dynamic and Static application security testing. (SAST and DAST)
● Designed and implemented advanced developer workflow for creating GitLab Review Apps associated with feature branches for a full live environment used for feature testing and stakeholder signoff.
● Designed and implemented cost-saving mechanisms in the DevOps pipeline to reuse costly infrastructure in non-production environments such as sharing common infrastructure between GitLab Review Apps (Secrets Manager secrets, NAT Gateways, KMS keys, etc.)
● Designed and implemented reusable serverless architectures through IaC to leverage multi-account resource provisioning across commercial and AWS GovCloud accounts.
● Implemented security tests in the pipeline for infrastructure as code modules.
● Increased business agility and enabled quick and secure setup of new microservices projects through reusable API’s for IaC and pipeline modularization. Lead DevOps Automation Engineer, Charles Schwab (July 2020 - November 2020)
● Designed and implemented DevOps automation pipeline using Atlassian Bamboo pipelines.
● Managed a team of engineers (offshore) to maintain and enhance build and deployment pipelines that support 6+ engineering teams.
● Architected and maintained reusable components shared by 30+ microservices projects.
● Designed and implemented deployment pipelines to Pivotal Cloud Foundry environments.
● Designed and implemented a lift-and-shift migration from on-premises to cloud environments using SaltStack and Bamboo pipelines.
● Designed a DataOps automation project for migrating on-premises data to Google Cloud (BigQuery) using Bamboo pipelines.
DevOps Automation Engineer (DAE II), Stelligent Systems LLC (January 2020 - October 2021)
● Building AWS infrastructure with:
AWS Infrastructure Scripting (CloudFormation)
AWS Core Services (S3, IAM, VPC, EC2, Auto-Scaling Groups, ELB, CloudWatch, Parameter Store, Systems Manager, KMS)
AWS Code* Services (CodePipeline, CodeBuild, CodeDeploy)
AWS Serverless Services (Lambda, API Gateway, SAM)
AWS Security Services (AWS Config, Guarduty)
AWS Service Catalog
AWS Container Services (AWS ECS, EKS, ECR)
iHeartMedia (May 2017 - January 2020)
● Leadership role in DevOps for automating business processes, monitoring (ELK stack and New Relic), alerting, high availability, performance, security, cost management, infrastructure as code, agile task management using JIRA, and delegation of tasks to a small team of DevOps engineers.
● Led SRE and DevOps team for GitOps workflow implementation with FluxCD, GitHub, Helm, ECR, and AWS EKS.
● Led SRE/DevOps team in Kubernetes migration from EC2 to EKS.
● Reduced feature lead time from ~1 month to 3 days.
● Led a high capacity team to implement many standards for automation and CI/CD best practices that spanned across the organization to every team.
● Created test automation framework to reduce manual testing down 75%. ● Reported to VP of Software Engineering to lead AWS cost-savings effort to save ~15k per month.
● Reported to VP of Software Engineering to create developer productivity metrics dashboard using Ruby on Rails and GitHub API.
● Created, managed, and optimized CI/CD process to release quality code to a Kubernetes and legacy on-prem production environment with code quality, test automation, and security best practices.
● Managed all nonprod and production environments using infrastructure as code in AWS using Kubernetes, S3 static web hosting, CloudFront distributions, RDS, and Lambda.
● Enhanced standard pipeline to integrate Jenkins with JIRA, Slack, and ServiceNow in order to automate manual processes for enterprise-wide change management using Python.
● Implemented Azure Kubernetes Service (AKS) POC as a part of an Enterprise Architecture initiative.
● Worked with a global team of engineers to design and improve architecture to create sustainable and high quality business applications for our stakeholders.
● Implemented a Heroku setup with GitHub integration for cross-organization implementation for an Enterprise Architecture initiative. Southwest Business Corporation (August 2015 - May 2017)
● Automated parsing of CSV user data to create Excel reports using Python.
● Decreased time to completion of manual reports using Python by 50% with greater accuracy.
● Automated scheduled reports using an SQL-based reporting language called WebFocus.
● Leadership role in reporting for Zendesk implementation.
● Utilized Python to automate the conversion of PDF reports to text files for parsing and transferred to Excel files.
● Worked in agile environment to implement automation using Python scripting. Southwest Research Institute (June 2012 - August 2015)
● Developed an internal Ruby on Rails web application in order to manage personnel records.
● Implemented a PostgreSQL backend database with an Nginx frontend reverse-proxy server on a CentOS 6.5 Linux infrastructure.
● Used RSpec (unit testing), HTML5, CSS3, and the Bootstrap framework for the user interface.
● Worked in a Scrum development environment using Git with Bitbucket for our version control software.
● Helped setup Microsoft SQL Server 2008 R2 on Windows servers.
● Helped setup Apache and Tomcat for CentOS 6 Linux servers.
● Support and maintain Linux cluster infrastructure.
● Helped develop Bash scripting for system administration.
Contact this candidate