Manhattan Beach, CA 90266 | kirk (at) icapsolutions.com
Senior IT Professional – A seasoned IT leader with extensive experience in cloud architecture, design, implementation, and support across diverse technologies. Proven track record in managing and delivering projects on time and within budget, while effectively addressing day-to-day challenges through a hands-on approach.
Key Skills and Expertise:
- Cloud Architecture & Management – Proficient in AWS services, including Kubernetes (EKS and OpenShift), EC2, S3, RDS, Redshift, DynamoDB, API Gateway, Lambda, and more.
- DevOps Engineering – Strong background in implementing CI/CD pipelines, using tools like Terraform for infrastructure as code.
- System Administration – Hands-on experience in system administration, ensuring optimal performance and security of cloud environments.
- Application & Database Development – Expertise in software development and database management, including MySQL and RDS.
- Network Architecture – Skilled in designing and maintaining secure network architectures within the cloud, utilizing VPC, OpenVPN, and Route 53.
- Project Management – Adept at leading teams and guiding architectural design while ensuring alignment with business objectives.
Dedicated to driving innovation and efficiency in cloud solutions, fostering collaboration across teams, and delivering exceptional results in complex environments.
Professional Experience
First Republic Bank / JPMorgan Chase– (March 2023 – Present)
Senior Cloud Engineer
Hired directly from IBM as a permanent full time employee, responsible for developing and maintaining a proprietary CICD pipeline along with managing a team of support specialists. Application deployments to multiple environments include auto generating configuration files covering a variety of containerized options. The service layers include Kubernetes ( OpenShift and EKS ), JFrog Artifactory, Hashicorp Vault, Github, CloudBees Jenkins, and AWS RDS Postgres DB.
- Team lead for supporting hundreds of engineers to use the tools for deploying programs and applications to multiple environments.
- Hands on support of CICD pipelines and containerized applications.
Technologies: Kubernetes (RedHat OpenShift Container Platform OCP), JFrog Artifactory, Hashicorp Vault, CloudBees Jenkins, AWS EKS (Kubernetes), PostgreSQL (AWS Aurora)
TAOS / IBM – (Jan 2021 – March 2023)
Consultant – Cloud Engineer
As a consultant for IBM (formerly TAOS), contracted to First Republic Bank as a Cloud Engineer and member of an enterprise architecture team responsible for providing cloud infrastructure and support for hundreds of engineers. Developing/maintaining/supporting a sophisticated CI/CD pipeline designed to ease the burden of application development lifecycles. Collaborating with multiple teams in all design aspects to ensure delivery of robust solutions.
- Responsible for all aspects of multiple projects including development and maintenance.
- Real time support for hundreds of engineers.
- End to end troubleshooting of CICD pipelines and containerized applications including Kubernetes (RedHat OpenShift), Artifactory, Jenkins, Hashicorp Vault, RDS PostgreSQL, as well as 4 git repositories housing the CICD processes.
- Training: Certified GCP (Google Cloud Platform) Professional Architect
Technologies: Kubernetes (RedHat OpenShift Container Platform – OCP), Artifactory, Hashicorp Vault, CloudBees Jenkins, AWS EKS (Kubernetes), PostgreSQL (AWS Aurora), GitHub Repository
TrueData – Los Angeles, CA (Sept 2017 – Dec 2020)
Sr DevOps Engineer
Sr DevOps Engineer responsible for providing company wide leadership and direction for all AWS and other various technologies. Instrumental in saving the company 30% in AWS expenses on a monthly basis while working closely with Chief Operations Officer. Managed several engineers while developing and delivering various IT projects on time and within budget. Tackling day to day technology challenges, along with providing overall guidance in architecture and design, utilizing dozens of AWS services.
- Responsible for AWS Cloud management and budget, reducing the monthly cost of service by 30%. This included S3 lifecycle adjustments, API Gateway throttling, Mobile SDK redesign, EC2 management, RedShift cluster reduction and tuning, Kinesis data pipeline management, and fine tuning all AWS services across the board.
- Redesigned a cost prohibitive API gateway layer, replacing it with an SDK/Kinesis/Firehose/S3/DB direct pipeline which improved performance and security while reducing overall cost. This complete “serverless” pipeline provides the method for data Ingestion from SDK App to DB end-to-end.
- Implemented a VPN architecture to provide a secured environment enforcing AWS best practices. Introduced OpenVPN + MFA to create a secured and compliant architecture, including multi VPC Peering connections, VPC Endpoints, routing table adjustments, public and private subnet management, and applying strict security group firewall constraints.
- Introduced Cloudformation, Ansible and Terraform for configuration management, deploying infrastructure as code (IaC) and services, pulling legacy nodes into the environment for maintenance and distribution.
- Spearheaded the containerization of corporate products and provided guidance to the engineering staff to utilize modern CI/CD pipelines.
Technologies: Kubernetes, CloudFront, Cloudformation, Terraform, Ansible, Docker, ECS, Fargate, CodeCommit, CodePipeline, CodeBuild, CodeDeploy, EC2, S3, RedShift, MySql, DynamoDB, API Gateway, Kinesis/Firehose, Lambda, CloudWatch, IAM, SQS, VPC, OpenVPN, SSO, Route 53, Cognito, SNS, SES. Expert shell scripting and Python, providing the glue between services within the AWS “soup”.
SalesJobs.com – Manhattan Beach, CA (2006 – 2017)
CTO / Principal DevOps Engineer
- CTO responsible for overall success of job site for 11 years. Determine strategic direction and spearhead technological integration of services and platforms to ease database burdens on labor intensive processes. Streamlined and fine-tune a broken web architecture into a top shelf, productive and easy to use job search website that gross over $200K per month.
- Managed all aspects of company business processes and procedures: Managing personnel, hiring vendors, purchasing equipment, coordinating schedules, providing documentation, etc.
- In charge of all applications and processes, technical development of product: Completely revamped a dysfunctional and broken job board site to a fully functioning and successful business. Sales Jobs website architecture comprised of over 2 dozen Unix servers, dozens of applications and protocols, as well as self managing standalone and cron scripts. All aspects of the system architecture and functionality were redesigned and streamlined to produce a more flexible and streamlined job search website to be one of the top competing job boards.
- Architecture: Apache2 web servers (V2.4), Apache::ASP and Apache2/mod_perl2 front end API utilizing modern OO methods, MySQL/MariaDB databases in a master/slave configuration as well as backups, DNS servers configured as primary and secondary (DJBDNS), access servers providing customers with customized XML and Restful API feeds, multiple email servers (MTA) using DJB Qmail in a multi-node, multi-domain, channelized configuration. Set up firewalls to protect servers with restrictive iptables rules as well as the colo routers firewall (port specific access).
- Consolidated hardware to more robust Sun Microsystems M4 servers running Fedora OS. Transferred the service to an AWS cloud infrastructure using EC2 and RDS instances, developing and implementing strategies for CD/CI using AWS CodeDeploy, CodePipeline and S3. Managed and maintained all aspects of this service, managing AWS front end technologies, loading all supporting Linux core applications, installing custom application programs and services and testing. Responsible for all code, performed all updates, troubleshot all problems, as well as implemented new concepts and techniques. Streamlined code and applications to perform with minimum server resources maximizing front end performance.
- Developed large scale email distribution service for client contact requirements. Created private administrative front end for complete control of product, including monitoring and display of system critical components, alarm system, billing and notification system.
Technologies: EC2, S3, MySql, API Gateway, Lambda, CloudWatch, IAM, VPC, Route 53, Linux, Sql/RDBMS, Oracle, RADIUS, ASP, PERL, CGI, SNMP and Fedora; Qmail – MTA email distribution servers and processes; Object-oriented programs; SEO strategies;
Independent System Engineer – March 2002 – Sept 2006
DoublePrime Inc: Sept 2005 – Sept 2006
Port Blue Inc: May 2003 – Aug 2005
Matab: April 2002 – March 2003
System Engineer
Designed, developed and implemented system architectures including multi-node cluster applications requiring networking and system monitoring and maintenance. Solely designed, developed and implemented a large scale email distribution system comprised of a cluster of Linux nodes and under the management of a central data base and management interface. Hosted complete systems, providing development and staging platforms for virtual web hosting, custom Perl/CGI/DBI programming, DNS services, QMAIL and MTA implementations, database design/warehouse, and customized service tools. Manager of code control utilizing CVS application and practices.
- Development and maintenance of complex Apache/mod_perl/Mysql systems for legal (Lawyer) services
- Design and deployment of complex multi node MTA email distribution system, complete with front end web admin tool and back end management access.
- Facilitated numerous short-term projects, coordinating hosting companies, customizing program implementations, creating databases, and providing consulting services.
FairIsaac, Irvine CA (2002)
Software Engineer
Charged with designing and administering proprietary EDI application (Claimport), providing on-line web interface for the insurance industry. Directly accountable for entire functionality of application including all development, management, and maintenance of Linux, and version control (CVS). Analyze, define and execute new customer requirements. Coordinate QA procedures and schedules for production code rollout.
- Ensure optimal performance of EDI application, consisting of hundreds of Perl modules and hosted by RH Linux with Apache, by utilizing Informix database backend and client-server application plug-in.
CitySearch, Pasadena, CA 2001
Software Developer
Developed, configured, and installed automated registration process in a large Apache/Mod_Perl, Oracle, and MYSQL database. Worked in a Linux environment utilizing, standard Perl packages and custom Perl object-oriented modules. Integrated HTML templates as well as designed new Perl packages and object modules to fit into existing Apache/Mod_Perl architecture.
- Built several large script/program files and packages to extract, manipulate, and insert data into a large RDBMS model from flat text, dbf, and standard formats.
Rotor Inc., Hollywood, CA 2000
Software Developer
Directed, guided and coordinated activities of developers and QA technicians, leading several projects in Unix environments. Rendered DBA backup and support services including complete implementation of data restructure in Oracle. Assisted developers with troubleshooting and fine-tuning, engaging in data extraction, manipulation, and storage of live real-time log files.
- Planned and executed several Perl software solutions for distributed interactive systems.
- Created backend applications including Perl, Java scripting, Oracle, and web front-end interfaces.
- Developed a platform for system testing which included a web interface, interactive system control, client server port communication, and historical data mapping.
TRW (now Northrop), Redondo Beach, CA 1985 – 1999
Systems Engineer
As an engineer assigned to the company wide communications group, fully responsible for all hardware and software design, testing, troubleshooting and user support for private local network, supporting all voice and data communications including video. The network comprised of a large LAN/WAN topology and included approximately 20+ buildings of which was called “Space Park”. Our group performed all voice and data installation and and maintenance tasks as well as provided direction for new technologies. Configured and installed hardware, including multiple network access servers, routers and all LAN-related equipment. Developed software solutions for customized front-end/back-office web interface. Facilitated custom web interface providing tools for customers and administration. Analyzed and reviewed network activities including various protocol for distributed and point-to-point technologies. Provided support to nearly 4,000 clients.
Telephony Network- Installed and maintained the telephony system and provided connectivity from the MDF (main distribution frame) and everything in between (cross connects in the MDF and communication closets as well as T1 access from building to building) to the phone at the employee desk.
Data Network – Provided all data communication needs, LAN installation for local building networking as well as WAN connectivity from building to building using Cisco routers, switches, bridges, and T1/T3 communication links (Timeplex Multiplexers). I was specifically assigned to the Timeplex Multiplexer equipment as well as the Ascend ISDN routers, providing point to point connectivity from building to building along with many other responsibilities.
Demonstrated expertise in management of software systems including Linux, Sql/RDBMS, Oracle, RADIUS, ASP, Perl, CGI, SNMP, and 3rd party vendor products.
I was with TRW for 15 years, I have a very long list of accomplishments but eventually left the company under my terms and with a stellar reputation.
Education / Training
B.S. Degree in Electrical Engineering – California State University Long Beach, CA
Certifications:
- Certified GCP (Google Cloud Platform) Professional Cloud Architect
- MCSE (Microsoft Certified Systems Engineer)
- Oracle RDBMS
Additional: Security Clearance and EBI Secret Clearance (Issued Nov. 1995)