Schlagwörter
Skills
- Key Areas
- Linux-related middleware, container- and cloud-stacks, devops, tailored processes, automation
- Software-architecture and -development
- Network planning and security
- Operating Systems
- Linux expert, esp. RedHat/Fedora/CentOS and Debian/Ubuntu. Also numerous other derivates like NixOS and MirageOS. Mastering a wide range of standard Linux services, e.g. cgroups, systemd, sshd, bind, dhcpd, iptables/netfilter, rsyslog, syslogng, snmpd, auditd, smbd, postfix, squid, openvpn, redis, tor, ...
- MacOS, IOS
- AIX
- embedded systems / soc e.g. raspberry, vocore, arduino, esp32, esp8266
- (Programming) languages, including:
- Python/Jython
- Unix Shell
- Java, Java EE
- Go
- XML/XSD/XSLT
- yaml/json
- C, C++
- Cloud systems and tooling, including:
- OpenTelekomCloud/OpenStack (and cli tools)
- GCP, GKE (and cli tools)
- AWS (and cli tools)
- terraform
- puppet
- ansible
- cloud-init
- packer
- Middleware and supporting systems, including:
- Kubernetes (k8s)
- WebSphere
- Geronimo / WebSphere CE / Liberty profile
- JBoss
- Oracle WebLogic
- Nginx
- Apache
- Tomcat
- GitLab
- Jenkins
- Prometheus/Grafana
- haproxy
- Confluence
- Jira
- BitBucket
- Artifactory
- Bugzilla
- ...
- Development environments and tools, including
- Microsoft VS-Code
- IntelliJ, Eclipse
- Distributed development (Unix/Windows)
- git, svn, cvs
- ant, maven
- docker
- vagrant
- npm
- pip
- gem
- Relational databases
- PostgreSQL
- MySQL
- Oracle
- DB2
- Microsoft SQL Server
Projekthistorie
Contribute to the codebase for automated installation of ONCITE Edge Clouds, a Kubernetes and OpenStack-based on premise mini data center. Review and supplement Prometheus-based monitoring and alerting. Design and implement connectivity to monitor Cumulus switches and Junos firewalls in the separated management network.
Design and implementation of an overall observability solution for monitoring and visualization of GEC customer infrastructure. Design and implementation of a controller/agent solution for automatic provisioning and deployment of customer systems (golang, REST, ORM, Dependency Injection). Evaluate and build centralized metrics and logging infrastructure (Prometheus, Loki, Victoria Metrics, Promtail) on Kubernetes (k3s, k3d, Rancher).
Design and develop multi-tenant, multi-cloud IPsec VPN concept based on SUSE Linux, Strongswan and Free Range Routing (FRR). Evaluate alternatives regarding manageability and performance. Design and implement zero-downtime failover concept with automatic route redistribution using BGP. Build automation code using Github workflows, Terraform Enterprise (TFE) and ansible/AWX.
Setup multi-tenant, multi-stage Open Telekom Cloud (OTC) infrastructure using terraform and openstack. Design and implement dynamic provisioning concept using puppet and ansible. Iteratively carve out multi-developer gitops-style workflows. Implement and proof Splunk HA multisite setup. Design and implement comprehensive platform monitoring using Prometheus/Grafana as well as Splunk ITSI.
Establish concept for manageable global auditing using Puppet, optimize auditing rules for scale, create central rsyslog receiver and attach it to Splunk, setup and tune Splunk app
Build concept for democratised operational model to improve traditional team-silo approach, promote idea throughout teams, build concept to allow for different operational rules divided by OTC-tenant
Design, implement and introduce system management solution based on a combination of GitLab and Puppet. Negotiate requirements with customer. Create modular design to allow for separately maintained modules and stages to split responsibilities. Setup server services using docker. Introduce mechanism and train staff.
Work together with developers on SpringBoot application, enable application for SAF and define operational rules. Setup, optimize and manage OS using Puppet. Assist in setting up multi-hop network access and monitoring.
Build minimal system model for host-OS using Puppet, refine hiera usage model. Establish multi-stage docker environment. Design docker-based operation model (failover, state externalzation etc.). Evolve playbooks and operational workflows.
Build JBoss system model using Puppet. Setup and deploy application on JBoss EAP. Design and implement JBoss multi-instance operating and deployment/staging model. Evolve concept together with developers. Train staff regarding operating model.
Build system model using Puppet. Implement operating model using SAF framework (see below). Discuss and negotiate requirements with customer
Design and implement flexible REST-style monitoring and alerting application for MQ using Python and CherryPy, negotiate alerting requirements
Design, create, and implement installation model for WebSphere MQ / Integration Broker platform built on Linux. Setup platform incorporating customer requirements (e.g. deployment model, logging, failover, backup). Migrate and improve operating model from predecessor Message Broker platform
Evaluation of different platform approaches (IBM WorkLoad Deployer, Cell based, Jobmanager based). Bid preparation in corporation with sales department. Design and implementation of two separate platform architectures („Low End“ and „High End“). Design and implementation of automated setup routine. Build collaborative model to enhance cross division teamwork. Design and implement simplified deployment process using ant.
Architectural design of different approaches (solitary and coexisting). Design and evolve (together with development teams) minimalistic requirements for efficient operation. Design and implement deployment/staging and operation model using standard Linux tools (e.g. git, ssh, rsync, bash, python).
Establish minimalistic, robust and clientless mechanism to synchronize code artifacts over groups of Linux machines. Develop modular design to allow for separately maintained modules to split responsibilities. Invent concept to allow at-sync-time artifact merging of arbitrary module combinations.
Reisebereitschaft
Sonstige Angaben
- Useful solutions evolve from thoughtful modelling
- Diverse input improves architecture
- Architecture leads, the toolset follows
- Simplicity is key