Upgrade Projekt einstellen
Profilbild von Robert Andruschow DevOps / DevSecOps / Site Reliability / Cloud Engineer | andruschow.de aus Berlin

Robert Andruschow

Berlin
nicht verfügbar bis 14.08.2024

Letztes Update: 22.03.2024

DevOps / DevSecOps / Site Reliability / Cloud Engineer | andruschow.de

Abschluss: B. Sc. Technomathematik
Stunden-/Tagessatz: anzeigen
Sprachkenntnisse: deutsch (Muttersprache) | englisch (verhandlungssicher) | französisch (Grundkenntnisse) | spanisch (Grundkenntnisse)

Schlagwörter

Dateianlagen

UP42-Arbeitszeugnis-EN-Robert-Andruschow_030723.pdf
Bonial-Arbeitszeugnis_030723.pdf
Robert-Andruschow-CV-03-2024_220324.pdf

Skills

https://andruschow.de

DevOps / DevSecOps / Site Reliabiltiy / Cloud Infrastructure Engineer with 12 years of experience in the industry. 
I am focused on cloud technologies and support companies with technical expertise and ownership.

Projekthistorie

08/2023 - bis jetzt
Site Reliability Engineer
Bundesdruckerei GmbH (Internet und Informationstechnologie, 5000-10.000 Mitarbeiter)
  • Working on the two projects Smart-eID, the digital passport for Germany, and Elektronische Zulassungsbescheinigung I, the digital car registration document for Germany.
  • Site Reliability Engineering on top of BDR's OpenShift Platform, using GitLab, Helm, Terraform, Prometheus, Grafana, OpsGenie, Uptrends, and Blackbox Exporter among others
  • Design and negotiation of a release process for all digital document backend systems in Bundesdruckerei. Started implementation.
  • Introduction of a team-internal 360 degree feedback process
  • Introduction of RFC's for solutions design
  • Abstracting SRE tooling for project-generic use rathan than per-project implementation
  • Design and implementation of a monitoring solution for the Governikus eID-Server
08/2023 - bis jetzt
Cloud Consultant
KiVVON Media GmbH (Internet und Informationstechnologie, 10-50 Mitarbeiter)
  • Supporting a startup development team with their AWS/Cloud setup
  • Definition of company cyber security agenda supported by AWS Security Hub and organization as well as hands-on work in acting on it
  • Creation of new environment-specific VPC networks (utilizing Terraform) including Client VPN, ALB's/NLB's, CloudFront Protection, private RDS DB's following the AWS Well-Architected Framework and organizing the move of the whole platform to them
  • Concept for AWS IAM User Managment following the Principle of Least Privilege
  • Introduction of Terraform for Infrastructue-as-code
  • Introduction of RFC's for solutions design
06/2020 - 05/2023
Senior DevOps Engineer
UP42 GmbH (Internet und Informationstechnologie, 50-250 Mitarbeiter)
  • Built and maintained cloud infrastructure in mainly GCP, but also AWS and Azure
  • Terraformed all the things using various providers including GCP, AWS, Azure, Pingdom, DataDog, Cloudflare (Zero Trust), Spot.io, OpsGenie and GitHub
  • Creation and maintenance of GKE-based Kubernetes clusters hosting the entire UP42 platform
  • Designed and implemented secrets management using HashiCorp Vault
  • Introduction of Cloudflare Zero Trust: Providing non-public IP access to internal applications utilizing SAML and GitHub authorization
  • Introduction of cloud user and service permissions scheme based on the principle of least privilege
  • Managed conduction of penetration tests with multiple external companies and organized fixing the found issues
  • Support of SOC 2 Type 2 cyber security certification process
  • Increased observability of the system using Datadog, GCP Metrics and Pingdom and introduced alerting and on-call using OpsGenie
  • Reduced Kubernetes cluster node costs by 75 percent using spot.io
  • Network design and administration: NAT's, firewall rules, routing, peering, Shared VPC's.
  • Designed and implemented application and infrastructure CI/CD pipelines with CircleCI and Slack reporting
  • Supported software engineers with SRE-related questions and problems
  • Supported various product efforts in the geospatial domain
  • Hiring Manager for SRE team: Interviewed and hired new team members
  • First steps into leadership role with 1 report and being part of the extended leadership group
Tech Stack: GCP (GKE, Shared VPC / Cloud NAT / Firewall and Routing, IAM, CloudSQL, Pub/Sub, GCS, GCR, Logging), Kubernetes, Terraform, Helm, Docker, CircleCI, GitHub (Actions), ArgoCD, Argo Workflows, HashiCorp Vault, DataDog, Prometheus / Alertmanager / Grafana, Cloudflare (Zero Trust), OpsGenie, Pingdom, Spot.io, AWS (IAM / S3 / SageMaker), Ruby, Golang, Java / Kotlin, bash/zsh/ash, Windows VM Licensing
10/2017 - 05/2020
DevOps Engineer
Bonial (Medien und Verlage, 250-500 Mitarbeiter)
  • Designed and implemented SDLC and CI/CD processes using Spinnaker and Jenkins
  • Initiated containerization in the company, first with AWS ECS, then with Kubernetes / EKS
  • Deep dive into Kubernetes and EKS - as a team, we provided a fully-automated cluster setup using terraform including CI/CD with Spinnaker, logging with fluentd/Cloudwatch/Elasticsearch, monitoring with Prometheus and on-call with VictorOps
  • Built and extended a staging environment creation app that builds dozens of staging environments every day.
  • Built metrics proxy for DataDog able to white- and blacklist custom metrics sent to DataDog. High performance system with 6000 requests/m.
  • Implemented Slack ChatOps app that could trigger/halt/proceed Spinnaker builds.
  • Extending and maintaining our AWS infrastructure using infrastructure-as-code using terraform and CloudFormation
  • Main go-to-person for all SDLC revolving topics for our around 100 developers. Introduced SDLC ambassador program organizing knowledge transfer to the teams.
10/2011 - 10/2017
Backend Developer
Bonial (Medien und Verlage, 250-500 Mitarbeiter)
  • Implementing web apps, KPI logic and b2b logic in spring-* and grails
  • Maintaining main notification system
  • Dealing with design and migrations of various db systems
  • Auto-scaling patterns, anti-trainwreck patterns, microservices, AWS and Behaviour Driven Development / automated testing approach
  • Working in an international always-growing and -learning IT team using Scrum and Kanban

Reisebereitschaft

Weltweit verfügbar
* Berlin Metropolitan Area * Alternatively remote with occasional presence in the DACH area
Profilbild von Robert Andruschow DevOps / DevSecOps / Site Reliability / Cloud Engineer | andruschow.de aus Berlin DevOps / DevSecOps / Site Reliability / Cloud Engineer | andruschow.de
Registrieren