Engineer Manager
Resume:
George Fan
Email: ************@*****.*** Phone: 510-***-**** Home location: Pleasanton, CA 94588
Professional Profile
A DevOps engineer and software developer who is eager to apply his extensive knowledge and experience in public and private cloud architecture, design, development, deployment, troubleshooting, and monitoring. Skilled at API management, public and private cloud, Software development in Java, System engineering and Networking. Effective communicator with a deep passion for technology and the ability to perform well in a team.
Work Experience
Kaiser Permanente 11/2018 – 11/2020, Senior System Integration Engineer, Pleasanton, CA
A key team member who helped to integrate, configure and deploy Apigee Edge as the Kaiser’s API proxy on private cloud infrastructure. The new API system successfully replaced the older Data Power and APIC for better serving Kaiser’s doctor net and patient scheduling with doubled performance and reliability. The test results showed the much lower number of failures and interruption.
Contributed to the Apigee data center topology planning and design for highly scalable, redundant, resilient API services on clusters of nodes with high availability
Installed, configured, and updated the complex Apigee edge components
Setup Apigee portals for developing, publishing, managing, and monitoring APIs in dev, perf, QA, and production environments. This enabled the visualization of API request and response flows
Configured SSO with SAML for accessing the API platforms so that boosted productivity and improved compliance and security capabilities
Resolved numeric issues in platform integration, configuration, and performance
Expanded horizontal scale with adding router, message processors, and Cassandra nodes in clusters
Configured and troubleshoot Virtual Hosts and SSL Key stores and Trust stores
Setup monitoring environments with tools such as Dynatrace for effectively identifying issues, notifying team, generating reports, and problem analytics
Establishing automation for nodes backup, upgrade, and deployment. This will make it possible to schedule daily tasks for backup and security compliance scanning
Developed proxies with security, mediation, traffic management, and policies including spike arrest, quota, access control, OAuth, threat protection, shared flows, variables, raise fault and caches
Troubleshooted Proxies with Apigee tracing, SoapUI, Postman, and Splunk
Worked on Java applications for connectivity tests with back end services such as HR access and member lookup
Technology environment: Apigee on-premise private cloud, Red Hat Linux, Java, Bash, JSON, REST, SOAP, Splunk, Dynatrace
Safeway/Albertsons June 2014 – October 2018, Senior DevOps Engineer, Pleasanton, CA
An early DevOps engineer who participated in the microservice design and network planning, service application migrating from on-primes data centers to Azure public cloud. This successful move saved the pricey costs of data center operations and speed up the new applications brought online.
Experience:
• Hands-on experience working with Application teams to deliver leading platforms and services.
• Proven experience in working on Azure environments & its offerings (PaaS, SaaS or IaaS), load balancer, Firewall, DNS, Virtual Networking, Security Policy, Automation, Service Deployment, RDS, Monitoring, and Troubleshooting.
• Deep experience in Cloud APIs with API Management configuration through inbound/backend/outbound policy, API mediation, URL transformation, Authorization, URL filtering and identity caching/validation.
• Ability to troubleshoot multiple cloud resources and services.
• Deploy high availability, performant and secure platform and services.
• Configure CI/CD pipeline for automated process for build, test and deployment of services.
• Migrate IaaS microservices to containerized environments.
Projects:
Worked on the design and building Safeway's Loyalty public cloud with Azure.
POC for choosing public cloud provider between AWS and Azure.
Implemented Virtual Machine RBAC with Azure Active Directory and IAM, which greatly improved user security and enabled the audit for user’s activity on VM level.
Created APIs with Azure APIM and policies for security and URL transformation. This strengthened the overall API security to prevent some attack.
Built end-to-end infrastructure from VM to Application Gateway to API gateway. As parts of Azure’s microservice implementation, this constructs front HTTP interface to backend service redundancy.
Used ARM templates as infrastructure as code to deploy Azure resource repeatedly.
Created Powershell scripts to install extensions, open ports, encrypt VMs and generate certificates.
Setup site to site VPN between Azure and on-premise network to retrieve data on non-cloud servers.
Configured virtual networks, subnet, Nic, load balancer and firewall.
Created automation scripts to update VMs with extensions, agents, drivers and user accounts. As a result, it enhanced the daily operations and greatly simplified the maintenance processes.
Setup VNet peering and subnet addressing for accessing multiple environments from API gateway for reducing substantial APIM instance cost.
Built VM configuration automation with Ansible to deploy/update virtual machines and services
Participated CI/CD pipeline design and implementation with Jenkins, PCF concourse and Azure pipelines. This helped to automat build-test-deploy parallel jobs.
Troubleshoot infrastructures and maintained the production environments to support development
Built microservice infrastructures with AKS/Kubernetes and Docker container to enable auto-scaling and speeding up the development cycles.
Deployed applications and dependencies on Kubernetes with Helm and Helm Charts
Setup and configured monitoring tools with OMS, and App Dynamics. This helped a lot on service availability and higher performance as well as reducing service failures.
Technology: Azure, Ubuntu Linux, Windows Server, Bash, Java, .net, Ansible, Jenkins CI/CD, PowerShell/CLI, AKS, Kubernetes, Docker
JPMorgan May 2013 – June 2014, Senior Application Developer, Pleasanton, CA
Design and develop new features for JPMorgan’s Order-to-Pay platform. My contributions to the platform enhanced the service usability and optimization as well as more compliance with government’s regulations
Designed and implemented new features for email notifications, security, invoice and order flow management.
Developed new services such as opt-out email notification on the web and mobile framework.
Built new features such as order shipping scheduler and invoice automation.
Technology: Java, J2EE, JUnit, Android, Eclipse, Oracle DB, WebLogic, REST, SOAP, JSP, HTML, XMLT, Spring Batch, Web Service
GE September 2012 – May 2013, Software Architect, San Ramon, CA
Architect, design and develop cloud deployment tools and services for analytic cloud. The efforts lead to fill the gap between unmanaged variety of analytic source and a reliable hub center of such data
Designed new catalog service architecture for the analytic cloud.
Worked on analytic deploy, execution, and result reporting integration tools.
Prototyped and deployed analytic catalog service on HP SOA Systinet
Architected and developed orchestration and deployment platform for analytic cloud
Technology: Java, J2EE, Python, Spring, JPA, Data Modeling, Eclipse, XSD, REST, SOAP, SOA, JSON, JUnit, Web service, Oracle, OSGI
Futurewei January 2012– August 2012 Network Architect, Santa Clara, CA
Architect, prototype, design and implement cloud infrastructure management (IaaS). The design was partially adapted in the company’s early cloud management products.
Architected and designed cloud resource infrastructure management services
Developed virtual resource abstraction layers that manage heterogeneous virtualization platforms.
Worked on network service for discovering, configuring, and monitoring devices in data center
Designed enterprise service bus (ESB) client to implement SOA through service integration.
Technology :SOA, Java, J2EE, JSON, ESB, Tomcat, Eclipse, Hibernate, REST, Linux, Python, OpenStack, AWS, Hyper-V, OpenNMS. vSphare, RabbitMQ, vSphere SDK, Hyper-V VMI, SCVMM API and Jcloud
Cisco Systems March 2006 – December 2011 Senior Software Engineer San Jose, CA
Architect, design and develop network management infrastructure and applications. Contributed to multiple successful Cisco’s network management products, which brought network topology and configuration visualization values to thousands of network configuration engineers.
Created REST APIs to serve web client request from JavaScript/JSON.
Device image distribution and activation management for activating images on devices via CLI and SNMP commands.
Built multi-threaded socket connection pool manager for executing the activation scripts
VLAN with STP topology that provides visual network monitor for operators to locate problematic elements on a network quickly and accurately
Built Cisco Network Management tools for configuring routers for RIP, OSPF and BGP
Created the view and backend topology data module, which shows nodes and connected links with alarm label overlays.
MPLS VPN service configuration management – contributed to MOs (managed objects) design and implementation for enabling an interface of VRF (VPN routing forwarding table) and troubleshooting.
L3 (Layer 3) network configuration – resolved issues in MO/CLI mapping for provisioning policy templates.
Technology: Java, J2EE, Eclipse, Spring, Struts, Hibernate, REST, SOAP, Tomcat, JSP, DOJO, Tomcat, JBoss, WebSphere, SQL, Oracle, XML, UML, Unix, Linux, OSGI, VLan, RIP, OFPF, BGP and MPLS VPN
InnoPath Inc. July 2004 - March 2006 Senior Software Engineer Sunnyvale, CA
Architect, design and develop components for mobile device management server products
Build mobile device activation service management, which allows operators to evaluate, stage, upgrade and activate new vender’s software images on a large volume of devices over the air or wire.
Created mobile device activation job reports, which enable operators to analyze, and statistic the services done on all or individual of devices.
Designed and developed common access control for InnoPath mobile device activation server. Technology: Java, Servlet, JSP, HTML, XML, Oracle, SQL, SQL2Java, Eclipse, Tomcat, Ant, CVS, Unix, SNMP, Crystal Report
Nokia January 2000 - July 2004 Senior Software Design Engineer Mountain View, CA
architect, design, prototype, develop the Intelligent Service Node (ISN) server – carrier- grade, service-aware IP edge device as a gateway between radio core network and the Internet and ISN Operation Management System (OMS) – web-based network element and service configuration system. My key contribution to Nokia mobile network management is the device agent layer for critical connections between devices such as routers, switches and managing servers.
WAP AND GGSN user-service policy configuration - created a CLI command service module and contributed to configuration chain manager of GGSN (gateway GPRS support node).
WAP (wireless application protocol) data packet analyzer and proxy as control plan- designed and implemented the WAP agent and user configuration manager.
ISN OMS development – created the license management and the cut-through feature that redirects the client telnet connection to ISN device.
Object-SQL mapping utility - created the database access interface for MOs(managed objects)
OMS server project - designed and developed the versioning feature, which enables software upgrade on OMS. Worked on Ethernet interface configuration manager and device discovery/audit service
Technology: Java, C/C++, J2EE, EJB, Python, Unix, Linux, QNX, Oracle 8i, ClearCase, TCP/IP, WAP
Experian July 1998 - January 2000 Software Consultant Orange, CA
participate requirement analysis, design components and admin database for the Business Credit Information System Server (BCIS) that allow consumers to obtain credit-related information for a company or agency over the internet.
Worked on inquiry rules engine for the processes of data search and match requests
Created business name and address standardization library for inquiry and update
Designed and implemented client interface for authentication and request verification
Worked on demo web pages for testing data traffic through the search-match engine
Created XML-Object mapping code for loading and populating users request data stream
Contributed to the architecture and design of business interface data model for BCIS
Prototyped EJB session and entity beans for data transactions and inquiry
Created programs to test the performance of server throughput and concurrency
Created and administrated DB2 databases for project development and test
Wrote Java swing-based GUI application to input client data for unit tests
Technology: Java, EJB, Swing, JNI, C++, XML, Unix, NT, DB2, WebLogic, UML
NetManage Inc. January 1998 - July 1998, Staff Software Engineer 1/1998-7/1998 Irvine, CA
Design, development, enhancement and troubleshooting for the Chameleon Link 97 suits, which is terminal emulation software that allows IBM mainframe users to work on PC.
Created the user login/logout script automation features
Converted graphics drawing DLLs to COM object servers
Solved graphic display problems in IBM 3270 emulator data stream mode
Solved interface version compatibility problems of connection session for a COM server
Technology: Microsoft Visual C++, Win32 API/GDI, NT and Windows 95.
BT Electronics Inc. June 1994 - January 1998 Software engineer Northville, MI
Design, prototype, development and test the Site-Link software project. The product is a distributed device connection and control system. The system is used for gas station equipment and home automation devices.
Developed ActiveX controls for connecting test tool front end and database user interface
Created COM connection manager to process request and response from a control network
Created messaging server to post alarms and status event to the application layer
Implemented ActiveX controls in Site-link software development kit for application developers
Wrote a system message logger and viewer program for the Site-Link server
Technology: Visual C++, MFC, Visual Basic, Access, COM, DCOM, ATL, ODBC
Education
Wayne State University Master of Science 5/1994 Computer Engineering Detroit, MI
Nanjing Institute of Post & Telecommunications Bachelor of Science 6/1986 Electrical Engineering Nanjing, China
Contact this candidate