Manager Security
Resume:
OMER YAKISMA
adjgc8@r.postjobfree.com
EDUCATION
Online Bootcamp and Courses
Concentration: Cloud Computing and DevOps Engineering Celal Bayar University
Teaching Certification Program
Concentration: Teaching Pedagogy
Celal Bayar University
B.S. in Mathematics
Concentration: Computational Mathematics and Topology PRIMARY-TOOL-KIT
• Programming Languages: Bash, Python
• Scripting and Config Files: .sh .py .yaml .tf .groovy
• OS: Linux Distros(centos/rhel and ubuntu)
• Cloud-Platforms: GoogleCloud, AWS, Azure
• App-Servers: Web-Servers(Apache, Nginx, Tomcat), Caching-Servers(Redis), DB and RDS-Servers(Oracle, Mysql- MariaDB, PostgreDB, MongoDB, Cassandra, DynamoDB)
• Web-Frameworks: Basics of Flask and API’s
• Cont-Orchestration: Docker, Kubernetes/OpenShift
• Cont-Orchestration Integrations: Helm-Charts, ISTIO, externalDNS, Ingress-Controller, Cert-Manager
• Configuration Management: Ansible, Ansible Vault, Ansible Tower (AWX, R1Soft), R1Soft, Packer
• Infra-Provisioning (IaaC): Terraform
• CI/CD: Jenkins, Waypoint
• Infra-Monitoring: Prometheus, Grafana
• App-Monitoring: Jaeger
• Log-Management: ELK
• Key-Management: HashiCorp-Vault
• System-Security: SonarQube
• Artifactory Management (Image-Security): Docker Hub, SonaType Nexus
• SCM (Repo Management): GitHub
SECONDARY TOOL-KIT
• Dev-Tools : VS Code, Postman
• Doc-Tools : Github Wiki
• Arch-Tools : Draw.IO, CloudCraft
OMER YAKISMA
2
EXPERIENCE
INTERNSHIP
DevOps Engineer Intern AT Evolve Cyber (March 2020 – December 2020) PRACTICES
Automation with Shell and Python Scripting
3-Tier App on AWS with boto3 and Lambda Functions
Configuration M. with Ansible Playbooks, R1Soft,
IaaC with Terraform and Helm-Charts
K8 Clustering including DNS, ExternalDNS, TLS, and Ingress-Controller, etc. CI/CD including Versioning, Security, and Monitoring ISTIO PRACTICES IN K8
Service Meshing (Envoy Proxies and Istiod)
Visualization. with Kiali
Distributed Tracing with Jager and Zipkin
Monitoring Metrics with Prometheus and Grafana
Resilience Testing with Fault Injection
Securing K8 Cluster with mTLS and Cert-Manager
Traffic Management (Weighted, Matching, and Suspended) Istio Gateways (Egress and Ingress)
Virtual Services & Destination Rules
Canary Releases & Hollow Releases
ConsistentHash as Session Affinity
OutlierDetection as Circuit Breaking
PROJECTS
• Installed WordPress through AWS
• Created HA/Fault-T/Prod-R Kubernetes Infrastructure in AWS with Terraform/Helm-Chart/Kops
• Configured R1Soft Agent for Backup/Disaster Recovery
• Built 3-Tier App with Terraform and Modules
• Deployed Prometheus/Grafana/Jenkins with Helm-Charts on the EKS
• Configured Ingress Controller with Helm-Chart and Terraform
• Built Kubernetes Environment on Google Cloud
• Deployed Jenkins/Prometheus/Grafana/Vault/Nexus/Kubernetes-Dashboard on Kubernetes Cluster with terraform and helm- charts
• Created Helm-Chart for Cert-Manager
• Service Mesh with Istio in Kubernetes Clusters and Proxies to create, integrate, and to modernize solutions including managing and observing microservice-based applications such as High Performing Proxies, Meshing, Security, and Monitoring via cluster topologies (Control and Data Planes) in GCP and other cloud providers. OMER YAKISMA
3
PROFESSIONAL SKILLS
• Setting up environments in AWS, Azure and Google Cloud for a variety of web services
• AWS Services such as VPC, EC2, IAM, Subnets, CloudFront, S3, SNS, CloudWatch, Route53, CouldTrail, PaaS(Lamdda, Kinesis
& RDS, etc)
• Obtaining High Availability and Fault Tolerance for AWS EC2 instances utilizing services like ELB & Auto Scaling
• Creating dynamic routing/load balancing capability enabling large application scaling, used ingress rules and Ingress Controllers and Nginx.
• Building and configuring virtual data centers in the Amazon Web Services (AWS) cloud to support Enterprise Data Warehouse hosting including Virtual Private Cloud (VPC), Public and Private Subnets, Security Groups, Route Tables, Elastic Load Balancer
• Cloud automation with technologies such as Terraform for building, changing, and versioning infrastructure and managing the existing cloud infrastructure as well as custom in-house solutions
• Docker and Kubernetes on multiple cloud providers, from helping developers build and containerize their application (CI/CD) to deploying either on public or private cloud
• Using Jenkins pipelines to drive all micro services builds out to an image registry and then deployed to Kubernetes, Created Pods and managed using Kubernetes
• Writing terraform templates that can spin up infrastructure for multi-tier applications and provisioning boot strapped software on cloud with terraform
• Docker and Kubernetes for container Security by implementing monitoring/auditing security events on container and by implementing container network security detection
• Using Kubernetes Helm charts and creating reproducible builds of the Kubernetes applications
• Managing Kubernetes manifest files and releases of Helm packages.
• Ansible and Ansible Tower to automate repetitive tasks, to deploy critical applications quickly and to proactively manage the changes and Writing playbooks to manage web applications
• Creating Ansible playbooks to automatically install packages from a repository, to change the configuration of remotely configured machines and to deploy new builds.
• Utilizing ansible for VM provisioning and cloud instance management
• Managing systems with Ansible; created custom roles and playbooks
• Jenkins CI/CD pipeline jobs for end-to-end automation to build, test and deliver artifacts and troubleshoot the build issue during the Jenkins build process
• Writing Jenkins Pipeline Groovy Scripts for Continuous Integration (CI)and built workflows also used Jenkins for uploading Artifacts into Nexus Repository.
• Working on variety of Linux platforms (Ubuntu, Redhat, Centos, Amazon Linux, etc.) which includes installation, configuring and maintenance of applications on the environment.
• Monitoring servers using Prometheus, Grafana CloudWatch, etc for Resource, Network, and Log Trace Monitoring
• Branching, tagging and maintaining the version across the environments using decentralized SCM tools like GIT and centralized tools like NEXUS on platforms and Used GITHUB and NEXUS as source code repositories.
• System Administration, System Builds, Server Builds, Installs, Upgrades, Patches, Migration, Troubleshooting, Security, Backup, Disaster Recovery, Performance Monitoring, and Fine-Tuning on Unix-Like Operating Systems
• Experiencing in troubleshooting application level issues to perform root cause analysis.
• Managing users and groups in Linux servers to create, modify and delete users/groups and troubleshooting user related issues.
• Maintaining role-based access control by using Ansible Tower and Implemented IT orchestration using Ansible to run tasks in a sequence which can work on different servers.
• Configuring the Ansible playbooks with Ansible Tower for users to run
• Deploying automation solutions in scripting languages including Bash, Python, Jason, Yaml, HCL(tf), Jenkinsfile(groovy)
Contact this candidate