Insurance Australia Group
- 培训团队并发分布式持续交付, 使产品缺陷接近于零.
- 用于改进应用程序正常运行时间和可靠性的概念化多云方法, targeting 99% uptime.
- 定制用于兼容Containizen的使用中的容器,将CI部署启动10倍.
- 领导Kubernetes秘密管理升级, 激励团队遵循零信任原则.
Technologies: Kubernetes, Amazon Elastic Container Registry (ECR), DevOps, Agile, Microservices, Docker, GitHub, Continuous Delivery (CD), Linux, Amazon S3 (AWS S3), Amazon Web Services (AWS), Google Cloud Platform (GCP), Java, API Architecture, RESTful Microservices, Fog Computing, Containerd, IT Security, Zero Trust, Network Security Monitoring, Cilium, 云原生计算基金会(CNCF), Containerization, Container Orchestration, Secure Containers, Cloud Storage, Data Management, 内容分发网络(CDN), Data Architecture, NixOS, Build Pipelines, Operations, Clustering, Security Architecture, Caching, Containers, Amazon EKS, Microservices Architecture, Cloud Native, Continuous Integration (CI), Continuous Development (CD), Open Policy Agent (OPA), Pomerium, Network Stack, 高可用性灾难恢复(HADR), Business Continuity & Disaster Recovery (BCDR), Cloud, Istio, DevSecOps, Cloud Infrastructure, 大规模分布式系统, Disaster Recovery Consulting, Immutable Infrastructure, Internet Protocols, Orchestration, Distributed Systems, Web Security, Web, Infrastructure, Monitoring, Continuous Discovery, Service Meshes, IT Audits, Agile Software Development, Foggy Ubiquity, Cluster Computing, Distributed Caches, Distributed Software, Distributed File Systems, Distributed Computing, PlanetScale, Decentralized Systems, Decentralized Applications, 分散自治组织(DAO), Consulting, IT Consulting, Web Consulting, Technical Consulting, Software Consulting, Technology Consulting, Cloud Security, Architecture
Atlassian
- 针对eBPF互动和挑战的概念化兵棋. 团队能够提前分析在生产情况下可能持续数小时的挫折.
- 与Atlassian和Sysdig合作进行eBPF安全和监控, 在五分钟内解释大多数生产问题.
- 改造了网络,使其在路线上具有区域意识, 通过集群提取流量的100%可见性.
- 通过eBPF安全可观察层路由所有容器流量, 锁定超过99%的恶意行为者的易受攻击的机会扫描或探测.
- 仲裁由WireGuard将容器网络接口替换为透明mTLS, 阻止机器之间100%未加密的通信.
- 仅对批准的pod保护集群内对EKS API的请求, 哪些通常占不到5%的活跃豆荚.
- 促进Kubernetes秘密管理升级到开源标准, 将集群内秘密泄露的风险评估为几乎为零.
Technologies: Kubernetes, Amazon Elastic Container Registry (ECR), DevOps, Agile, Microservices, Docker, GitHub, Continuous Delivery (CD), Linux, Amazon S3 (AWS S3), Amazon Web Services (AWS), Java, API Architecture, RESTful Microservices, Fog Computing, Containerd, IT Security, Zero Trust, Network Security Monitoring, Cilium, 云原生计算基金会(CNCF), Containerization, Container Orchestration, Secure Containers, Cloud Storage, Data Management, 内容分发网络(CDN), Data Architecture, NixOS, Build Pipelines, Operations, Clustering, Security Architecture, Caching, Containers, Amazon EKS, Microservices Architecture, Cloud Native, Continuous Integration (CI), Continuous Development (CD), Open Policy Agent (OPA), Pomerium, Network Stack, Cloud, DevSecOps, Cloud Infrastructure, 大规模分布式系统, Disaster Recovery Consulting, Immutable Infrastructure, Internet Protocols, Orchestration, Distributed Systems, Web Security, Web, Infrastructure, Monitoring, Continuous Discovery, IT Audits, Agile Software Development, Foggy Ubiquity, Cluster Computing, Distributed Caches, Distributed Software, Distributed File Systems, Distributed Computing, PlanetScale, Decentralized Systems, Decentralized Applications, 分散自治组织(DAO), Consulting, IT Consulting, Web Consulting, Technical Consulting, Software Consulting, Technology Consulting, Cloud Security, Architecture
ANZ Group
- 实现了安全的代码审计跟踪,可追溯至生产, 100%限制未签名或目视验证的容器.
- 通过识别汽包,降低了灾难恢复策略失败的风险, 防止超过25%的永久性数据丢失.
- 根据fog Ubiquity的经验教训,评估ANZ的内部PaaS, 是什么让它的平台更加成熟.
- 根据信息安全推荐的模式诊断协作故障点, 团队之间的合作增加30%.
- 通过演示假参与者如何劫持提交来标准化代码签名. 超过95%的提交在Git上通常是未签名的.
- 阐明了全球规模的网络操作如何将风险降低到零.
- 为GDPR分配数据主权模式,并为立法遵从性跟踪数据主权10.
Technologies: Kubernetes, Serverless, Amazon Elastic Container Registry (ECR), DevOps, Agile, Microservices, Docker, GitHub, Continuous Delivery (CD), Linux, Amazon S3 (AWS S3), Amazon Web Services (AWS), Google Cloud Platform (GCP), Java, Go, API Architecture, RESTful Microservices, Fog Computing, Containerd, IT Security, Zero Trust, Network Security Monitoring, Cilium, 云原生计算基金会(CNCF), Containerization, Container Orchestration, Secure Containers, Google Container Engine, Cloud Storage, Data Management, 内容分发网络(CDN), Data Architecture, NixOS, Build Pipelines, Operations, Clustering, Security Architecture, Caching, Containers, Google Kubernetes Engine (GKE), Microservices Architecture, Cloud Native, Continuous Integration (CI), Continuous Development (CD), Open Policy Agent (OPA), Pomerium, Network Stack, 高可用性灾难恢复(HADR), Business Continuity & Disaster Recovery (BCDR), Hashistack, Serverless Architecture, Cloud, Metal, Istio, DevSecOps, Cloud Infrastructure, 大规模分布式系统, Disaster Recovery Consulting, Immutable Infrastructure, Internet Protocols, Orchestration, Distributed Systems, Web Security, Web, Infrastructure, Monitoring, Continuous Discovery, Service Meshes, IT Audits, Agile Software Development, Foggy Ubiquity, Cluster Computing, Distributed Caches, Distributed Software, Distributed Databases, Distributed File Systems, Distributed Computing, PlanetScale, Decentralized Systems, Decentralized Applications, 分散自治组织(DAO), Hardware, Consulting, Web Consulting, Technical Consulting, Software Consulting, Technology Consulting, Cloud Security, Architecture
nbn
- 编写了一个Kubernetes集群API,用于与裸机服务器接口, 使得iPXE基准测试比VMware提高了20倍.
- 调试AWS NVMe,允许每个NVMe规格的完全读写性能, accelerating throughput by 100x.
- 促进了跨技术栈的相同和可复制的开发环境, 预计CI基础设施成本将降低5倍.
- 在非生产Kubernetes集群中编写了一个自动夜间暂停和恢复功能, 减少70%的基础设施成本.
- 根据Kubernetes集群资源定制计费,将业务单位的运营成本降低50%.
- 启动了Kubernetes在金属上的自动部署, upgrade, and maintenance platform, reducing over $500,000 in VMware license costs.
- 使Kubernetes DNS免受发现攻击,限制了60%的预期恶意行为者.
- 构建从金属到AWS的Kubernetes混合云,机器之间的流量透明加密, 隔离100%的监听攻击.
Technologies: Kubernetes, Node.js, Serverless, Amazon Elastic Container Registry (ECR), DevOps, Azure DevOps, Agile, Microservices, Docker, API Development, GitHub, Redis, Continuous Delivery (CD), Linux, SQLite, Amazon S3 (AWS S3), Amazon Web Services (AWS), Google Cloud Platform (GCP), Azure, Bash, Java, Go, API Architecture, CockroachDB, RESTful Microservices, Fog Computing, Domain Name System (DNS), Containerd, IT Security, Zero Trust, Network Security Monitoring, Cilium, 云原生计算基金会(CNCF), Containerization, Container Orchestration, Secure Containers, Cloud Storage, Data Management, 内容分发网络(CDN), Data Architecture, Code Architecture, NixOS, Build Pipelines, Operations, Clustering, Security Architecture, Caching, Containers, Amazon EKS, Microservices Architecture, Cloud Native, Continuous Integration (CI), Continuous Development (CD), Open Policy Agent (OPA), Pomerium, Network Stack, 高可用性灾难恢复(HADR), Business Continuity & Disaster Recovery (BCDR), Hashistack, Serverless Architecture, Cloud, Governance, Metal, Istio, DevSecOps, Cloud Infrastructure, 大规模分布式系统, Disaster Recovery Consulting, Immutable Infrastructure, Internet Protocols, Orchestration, Distributed Systems, Web Security, Web, Infrastructure, Monitoring, Continuous Discovery, Service Meshes, Mesh Optimization, IT Audits, Agile Software Development, Programming, Foggy Ubiquity, Cluster Computing, Distributed Caches, Distributed Software, Distributed Databases, Distributed File Systems, Distributed Computing, PlanetScale, Decentralized Systems, Decentralized Applications, 分散自治组织(DAO), Hardware, Consulting, IT Consulting, Web Consulting, Technical Consulting, Software Consulting, Technology Consulting, Cloud Security, Architecture
DoiT International
- 提出了优化CNCF体系结构以达到工厂规模稳定性的方法, 目标是在赞助的聚会上100%正常运行.
- 促进了Containizen在安全和操作意识方面的发现,将诊断和修复生产问题的时间缩短了75%以上.
- 为具有挑战性或关键客户提供关键支持, 通常在90分钟内解决问题.
技术:Kubernetes, JavaScript, Node.js, Amazon Elastic Container Registry (ECR), DevOps, Azure DevOps, Agile, Microservices, Docker, API Development, GitHub, Redis, Continuous Delivery (CD), System Administration, Linux, MongoDB, SQLite, Amazon S3 (AWS S3), Amazon Web Services (AWS), Google Cloud Platform (GCP), Azure, Bash, Java, Go, API Architecture, CockroachDB, Python, RESTful Microservices, Fog Computing, Domain Name System (DNS), Containerd, IT Security, Zero Trust, Network Security Monitoring, Cilium, 云原生计算基金会(CNCF), Containerization, Container Orchestration, Secure Containers, Code Coverage, Cloud Storage, Data Management, 内容分发网络(CDN), Data Architecture, Code Architecture, NixOS, Build Pipelines, Operations, Clustering, Security Architecture, Caching, Software Development, Containers, Azure Kubernetes Service (AKS), Google Kubernetes Engine (GKE), Amazon EKS, Microservices Architecture, Cloud Native, Continuous Integration (CI), Continuous Development (CD), Pomerium, Network Stack, 高可用性灾难恢复(HADR), Business Continuity & Disaster Recovery (BCDR), Hashistack, Alibaba Cloud, GitLab CI/CD, Serverless Architecture, Cloud, Metal, Istio, IBM SoftLayer, DevSecOps, Cloud Infrastructure, 大规模分布式系统, Disaster Recovery Consulting, Immutable Infrastructure, Internet Protocols, Demographic Data, Orchestration, Distributed Systems, Web Security, Web, Infrastructure, Monitoring, Continuous Discovery, Secure Coding, Service Meshes, Mesh Optimization, IT Audits, Agile Software Development, Programming, Foggy Ubiquity, Cluster Computing, Distributed Caches, Distributed Software, Distributed File Systems, Distributed Computing, PlanetScale, Decentralized Systems, Decentralized Applications, 分散自治组织(DAO), Hardware, Consulting, IT Consulting, Web Consulting, Startup Consulting, Technical Consulting, Software Consulting, Technology Consulting, Cloud Security, Architecture
Senior DevOps Engineer
2019 - 2020
FriendFinder Networks
- 在完全自动化的隔离环境中实现标准化的CI/CD,以提高效率和安全性, removing 10 servers.
- 通过编码iPXE兼容性,使Kubernetes可以直接在裸机上运行,从而删除了VMware, voiding $100,000+ in license fees.
- 重组为故障转移边缘路由,确保部署零停机时间.
- 将Kubernetes架构在裸机上,作为机器之间加密流量的多数据中心网格, 避免使用跨数据中心代理或VPN.
- 演示了影子环境如何以利用客户信任和安全性来实现零生产缺陷为目标.
Technologies: Kubernetes, Python, DevOps, Agile, Microservices, Docker, GitHub, Redis, Continuous Delivery (CD), System Administration, Linux, MongoDB, SQLite, Amazon S3 (AWS S3), Bash, API Architecture, CockroachDB, RESTful Microservices, Fog Computing, Domain Name System (DNS), Containerd, IT Security, Zero Trust, Cilium, 云原生计算基金会(CNCF), Containerization, Container Orchestration, Secure Containers, Cloud Storage, Data Management, 内容分发网络(CDN), Data Architecture, 内容管理系统(CMS), Build Pipelines, Operations, Clustering, Security Architecture, Caching, Software Development, Containers, Microservices Architecture, Cloud Native, Continuous Integration (CI), Continuous Development (CD), Network Stack, 高可用性灾难恢复(HADR), Business Continuity & Disaster Recovery (BCDR), Cloud, Metal, DevSecOps, Cloud Infrastructure, 大规模分布式系统, Disaster Recovery Consulting, Immutable Infrastructure, Internet Protocols, Demographic Data, Orchestration, Distributed Systems, Web Security, Web, Infrastructure, Monitoring, Continuous Discovery, Secure Coding, IT Audits, Agile Software Development, Programming, Foggy Ubiquity, Cluster Computing, Distributed Caches, Distributed Software, Distributed Databases, Distributed File Systems, Distributed Computing, PlanetScale, Decentralized Systems, Decentralized Applications, 分散自治组织(DAO), Hardware, Consulting, IT Consulting, Web Consulting, Technical Consulting, Software Consulting, Technology Consulting, Cloud Security, Architecture
开发运维工程师,谷歌Kubernetes引擎
2019 - 2019
Maestro
- Examined Node.js memory, throughput, 并发性和稳定的应用程序在多云区域的规模, 解决70%的应用规模挑战.
- Devised better billing, performance, and infrastructure needs, 将云计算成本降低10倍.
- 仲裁删除服务网格,实现10倍流并发.
- 发现了世界上第一个解决Kube-DNS规模问题的解决方案,其GCP吞吐量能够超过100,000+ concurrent DNS requests. 谷歌在一个FAQ页面上发布了这个发现.
- 在Kubernetes上实现了可动态路由的安全WebSockets, 消除豆荚搬迁时的流中断和70%的常规客户流失.
- 说服执行团队,影子环境将最小化生产缺陷,提高生产安全性和稳定性, which doubled customer trust.
技术:谷歌Kubernetes Engine (GKE), MongoDB, PostgreSQL, JavaScript, Serverless, Azure DevOps, Agile, Microservices, Docker, API Development, GitHub, Redis, Continuous Delivery (CD), System Administration, Linux, Amazon S3 (AWS S3), Amazon Web Services (AWS), Google Cloud Platform (GCP), Azure, Bash, API Architecture, CockroachDB, RESTful Microservices, Fog Computing, Domain Name System (DNS), Containerd, IT Security, Zero Trust, Cilium, 云原生计算基金会(CNCF), Containerization, Container Orchestration, Secure Containers, Code Coverage, Cloud Storage, Data Management, 内容分发网络(CDN), Data Architecture, Code Architecture, NixOS, 内容管理系统(CMS), Build Pipelines, Operations, Clustering, Security Architecture, Caching, Software Development, Containers, Azure Kubernetes Service (AKS), Microservices Architecture, Cloud Native, Continuous Integration (CI), Continuous Development (CD), Network Stack, 高可用性灾难恢复(HADR), Business Continuity & Disaster Recovery (BCDR), Cloud, Cloud Infrastructure, 大规模分布式系统, Disaster Recovery Consulting, Immutable Infrastructure, Internet Protocols, Demographic Data, Orchestration, Distributed Systems, Web Security, Web, Infrastructure, Monitoring, Continuous Discovery, Secure Coding, IT Audits, Agile Software Development, Programming, Foggy Ubiquity, Cluster Computing, Distributed Caches, Distributed Software, Distributed Databases, Distributed File Systems, Distributed Computing, PlanetScale, Decentralized Systems, Decentralized Applications, 分散自治组织(DAO), IT Consulting, Web Consulting, Startup Consulting, Technical Consulting, Software Consulting, Technology Consulting, Cloud Security, Architecture
数字主管的顾问 & Emerging Technology
2018 - 2019
Virgin Australia Airlines
- 将架构整理为符合cncf的样式, 撤销遗留的n层和领域驱动的体系结构, 并且将混淆的代码减少了90%.
- 通过“通用日志格式”实现集中日志,并澄清了日志聚合流, 简化JSON查询,使搜索速度提高25%.
- 将集群操作成本降低20%,将容器映像下载时间降低90%.
- 通过CNCF技术检查个人身份信息和支付卡行业合规性.
Technologies: Kubernetes, Containers, Secure Containers, Containerization, Container Orchestration, Security Software Development, Agile Software Development, DDoS, Programming, IoT Security, Foggy Ubiquity, JavaScript, Node.js, Amazon Elastic Container Registry (ECR), DevOps, Microservices, Docker, API Development, GitHub, Redis, Continuous Delivery (CD), Artificial Intelligence (AI), Linux, MongoDB, SQLite, Amazon S3 (AWS S3), Amazon Web Services (AWS), Bash, Java, API Architecture, RESTful Microservices, Fog Computing, Domain Name System (DNS), Containerd, IT Security, Zero Trust, Cilium, 云原生计算基金会(CNCF), Code Coverage, Cloud Storage, Data Management, 内容分发网络(CDN), Data Architecture, Code Architecture, NixOS, Build Pipelines, Operations, Clustering, Security Architecture, Caching, Software Development, Amazon EKS, Microservices Architecture, Cloud Native, Continuous Integration (CI), Continuous Development (CD), Network Stack, 高可用性灾难恢复(HADR), Business Continuity & Disaster Recovery (BCDR), Hashistack, GitLab CI/CD, Serverless Architecture, Cloud, Governance, Metal, Istio, DevSecOps, Cloud Infrastructure, 大规模分布式系统, Disaster Recovery Consulting, Immutable Infrastructure, Internet Protocols, Demographic Data, Orchestration, Distributed Systems, Web Security, Web, Infrastructure, Monitoring, Continuous Discovery, Secure Coding, Service Meshes, IT Audits, Cluster Computing, Distributed Caches, Distributed Software, Distributed Databases, Distributed File Systems, Distributed Computing, PlanetScale, Decentralized Systems, Decentralized Applications, 分散自治组织(DAO), Consulting, IT Consulting, Web Consulting, Technical Consulting, Software Consulting, Technology Consulting, Cloud Security, Architecture