Post Job Free
Sign in

Google Cloud Linux System

Location:
Vienna, VA
Posted:
January 21, 2025

Contact this candidate

Resume:

Resume

Name: Simon Convey

Status: Permanent resident.

Address: *** ******** **. **. ******, VA 22180

Contact: 918-***-**** *****.******@*****.***

SUMMARY

●Unix / linux system administration, DevOps, AWS, google cloud kubernetes, security and networking. Looking for a challenging role

SYSTEMS AND SOFTWARE

●Many flavours of Unix and Linux, prefers RHEL and debian Linux

●Docker, Kubernetes, Rancher, google cloud.

●XEN, VMware, KVM, OpenStack, AWS with terraform and cloudformation

●Git, Jenkins, Artifactory, Jira integration to build CI/CD pipelines.

●C systems programming, Perl, and shell programming. Basic python.

●Veritas Netbackup, Veritas filesystem (VxFS), Veritas volume manager, ODS

●IPv6, SSL, PKI, web services, sendmail, NAT,SSH, rsync

●Tcp wrappers, TIS toolkit, firewall technology, tcl/tk, python

●Apache, HA proxy, Nginx, directory services (LDAP)

●Exposure to Tomcat, and Weblogic.

●TCP/IP and PPP/SLIP networking, including LAN/WAN and campus solutions

●Strong DNS, NTP, NFS, NIS, LDAP experience

●All aspects of 802.3 networking, from MAC layer to application layer

●Package management (SYS V), rpmbuild, repo’s, intelligent kickstarts.

●Infrastructure design and build..

PROFESSIONAL EXPERIENCE

University of Maryland (2024)

●A difficult ( kerberos + AFS) environment. Security was taken very seriously in this open, but adversarial environment. A hybrid AWS/vmware/mainframe core, with an awfule lot of departmental ad hoc systems.

Podroll Inc (2023)

●A tiny startup. We built a podcasting network/Ad exchange using cloudfare (Javascript), and a suite of reverse proxies (Go) hosted as docker images, managed by docker swarm. I scratch built the monitoring using grafana, prometheus, and various plugins. Telemetry was included, using OpenTelemetry.

Megaphone / Spotify ( 2019 - 2023 )

●Built a 6 cabinet, 100 node datacenter in Coresite. 600Gbps ingress via Telia and century link. AWS direct connect for hybrid access, HA VPN to Google Iowa for a two cloud solution.

●Both the google and physical sites ran the kubernetes infrastructure. Migrated apps across sites as needed.

●Built prometheus / grafana infrastructure for observability.

●Built and tuned hosts as needed.

VT idirect Inc, Herndon. 2011 - 2019

●Source code control for 300+ developers, CVS to git migration.

●Early jenkins adopter, used for orchestrating large compilations and packaging of embedded systems.

●Designed and built linux from scratch, cross compiled for ARMv7, mips64, and powerpc.

●Built and managed various test networks which emulated satellite links, including the space segment.

●Managed software / firmware build farm both on premises, and in the cloud.

●CI/CD pipeline, automatic build on code commit, package based of code branch name, automatically test develop branch.

The Worldbank, DC. (contract) Oct 2008 – 2011

●Security admin, host based firewalls were ISS+iptables, auditing with ESM.

●Integrated RSA secured into LDAP. ( required custom SASL plugin written in C )

●Threat analysis. Consequently I became patch master.

●Configured SElinux on critical systems. This was slow, painful, and error prone.

●Lots of mentoring the junior sysadmins.

●Implemented Wiki for technical content. (They used Lotus Notes….)

●Vigilance. Worldbank is constantly targeted..

Savvis Inc, Sterling VA. (contract) June 2008 – Apr 2009

●Position of public trust. This was managing c.100 solaris + 60 Linux (virtual + physical) on behalf of a government agency. I was able to build, commission, and maintain 6, 32 core ESX hypervisors. Once built, provisioning a new server moved from a 10 day project to less than a day.

Versign Inc, Dulles, VA. (contract to perm ) 2007-2008

●Managing the .com, .net and various other TLD nameservers, including the “A.root-servers.net and J.root-servers.net”. These servers were placed in key infrastructure points around the world, so travel was a requirement. The internet 'A' root servers required very special treatment. Rarely have I seen beauty in IT systems.

Global Exchange Service Inc, Gaithersburg, MD. 2006-2007

●Linux/Solaris/HP-UX systems Engineer. 3rd line role involving troubleshooting, initial build, maintenance and assisting operations. A typical engineering or 3rd line role. We were expected to fix anything which the 1st and second line couldn’t. The most enjoyable aspect was being able to develop and train the junior system administrators.

JPMorgan Chase, London UK. (Contract) 2005-2006

●Commissioning Engineer: Architect and commission 8, 16 way Fujitsu Primepower servers to act as preprocessors to the core derivitives trading systems, which were comprised of 4 fully populated E25k’s. This was a relatively simple project on the surface, but made very difficult by the fact that we were allowed no absolutely no downtime or testing against the core systems. It had to work first time.

COLT Telecom, London. (Contract) 2004/2005

● Support both internal HP/UX billing systems and client owned servers. I specialized in performance tuning focusing on SAN and Gigabit networking. I became the firms technical troubleshooter. Even though the internal systems were mainly HP/UX, I still find this an awkward unix to deal with.

●The client owned hosts were mainly Linux and Solaris, and being client owned, varied enornmously in their requirements for build, maintenance and administration. These hosts were subject to penalty SLA’s

Sun Professional Services. UK. (Contract) 2004

● Various short term contracts to assist Large Sun clients, including a large DNS and firewall infrastructure for Vodaphone UK, and bulk rack installs for British Telecom

Credit Suisse First Boston.. London (contract to perm) 1998-2003

Global Engineering Team

●The firms troubleshooting team, expected to go anywhere in the world at short notice.

●Design, Implementation and testing of Solaris software to be deployed throughout the firm on a global basis. All aspects of deployment were fully automated, running flawlessly on over 3,500 hosts worldwide

●‘Buck stops here’ problem resolution, from the network layer through to the application. I was responsible for fixing anything which the normal system administrators could not

●Patching and hand upgrades on a per host basis were eliminated, we developed a single system image capable of supporting all platforms, from sparc10 to Starfire

●All applications required by the firm were supported by one software image. No special engineering or exceptions were allowed, or required.

●Implement the security baseline standards in the core Solaris builds.

Team Leader – Equities Trade floor

●Responsible for a team of six system administrators running 220 live trading hosts. 30% of all stock trading on the London stock exchange originated on the hosts. Downtime was not an option

●Seamlessly moved these 220 hosts from one location to another, with no application downtime whatsoever

●Turned discrete location based teams into a global, fully integrated ‘follow the sun’ support team. This proved to be of great value to the firm as trading systems merged to form one continuous trading day

Iway Technologies B.V. Netherlands. (Contract) 1996-1998

Webmaster and Sr. System Administrator

●This Startup ISP quickly won the contract to host all of sites for the Dutch Government, and consequently required extreme security measures to defend against hackers and maintain uptime. I was able to secure these sites against sustained malicious attacks, and keep the government websites online

Epic Multimedia group. UK 1993-1996

Network Engineer / System Administrator

●Epic multimedia group is Europe’s largest multimedia production house

●A pioneer in the field of digital video, EMG storage and network performance requirements some of the most extreme that I have ever encountered

●The network consisted of Silicon graphics servers, Unix, NT and NeXT hardware.

●Maintaining a dynamic infrastructure in a company doubling in size every 4 months

NexNix Open systems. UK. 1991-1993

Open Systems Consultant

●The birth of the open systems revolution brought about a new beginning in the industry, one which we were able to take advantage of.

●Designing and building system from scratch.

●Focused on leading clients away from very expensive proprietary hardware and software, to open, highly integrated cost effective solutions

●Often able to replace all a firms hardware and software for less than the cost of the annual maintenance contract on proprietary systems.

●TCP/IP and SQL were our core components.

University of Essex. UK 1987-1989

Research Technician – Chemistry:

●Assisting first and second year students during lab work.

●Produced the first year physical chemistry lab course, and built the lab from scratch

●Assisted in the design and build of magnet systems for MRI scanners

●Build specialist hardware from exotic materials to support the research team

●Conducted intricate enzyme extractions, and tested these enzymes in vivo.

EDUCATION

●BS in Computer Science and Artificial Intelligence

School of Cognitive Sciences, University of Sussex, England

●Associate Degree in Chemistry



Contact this candidate