Want to take this with you? Check out the abbreviated PDF version.
Technical Skills
Automation & DevOps
- Scripting (Python, Bash, PowerShell)
- Infrastructure as Code (Terraform, Ansible)
- APIs (REST, JSON, authentication)
- Git (branch/merge strategies, submodules)
- CI/CD (Drone, GitHub Actions, CircleCI)
- GitOps (flux, argocd)
Infrastructure Engineering
- Application Metrics (Prometheus, Datadog)
- Kubernetes (Tanzu, EKS, Rancher)
- Active Directory, LDAP, Kerberos
- VMware (vCenter, ESXi, Tanzu, vCloud Director)
- GCP (App Engine, Cloud Storage, Cloud Functions)
- AWS (S3, EKS, RDS, CloudFormation)
- Certificates & PKI (ADCS, OpenSSL, ACME)
- Containerization (Docker)
Networking & Operating Systems
- Linux (Ubuntu, RHEL)
- Windows (Server Core)
- Juniper (JunOS)
- VPNs (IPSec, SSL, WireGuard, OpenVPN)
- IPv6 (DHCPv6, RA, SLAAC)
- Routing (BGP, OSPF, Quagga)
Project Experience
Helm Deployment Refactor
August 2022
Assessed requirements and authored a custom CircleCI orb to manage the automated packaging and release of Helm charts from code repositories using Flux. Migrated legacy git workflow to a trunk-based model to allow for automated testing of PRs in lower environments and control promotion to production. Added automated verification of successful deployments by querying the Kubernetes API for status and providing feedback to the pipeline.
Terraform Bootstrapping
March 2022
Provided leadership on a small team of engineers to develop a fully automated process to generate ready-to-use Terraform code repositories. Integrated with GitHub Actions to automatically provision GCP Service Accounts configured to use Workload Identity Federation for maximum security. Used templating to allow for one-step provisioning of Terraform repositories for onboarding customers.
Internal Hosting Stack
November 2020
Worked with the development team to plan and build a new internal hosting platform utilizing Docker Swarm. Developed Ansible playbooks to orchestrate deployment of the platform virtual servers (Docker, Logstash, MySQL, HAProxy) as well as orchestrate the CI/CD process for deploying new application code to test and eventually to production.
Staff Cross-training
May 2020
Designed and implemented a training program to prevent single sources of knowledge and siloing of information within the team. Worked with subject matter experts to foster a culture of cross-training and knowledge sharing among team members.
Network Configuration Automation
Feb 2020
Worked with network engineers to develop an automated process via Ansible for configuring customer network interfaces and security filters. Created a Jinja template for JunOS network device configuration and a playbook to control workflow for deployment to network devices. Developed user documentation and trained network team on playbook usage.
Custom Ansible Modules
Sep 2019
Developed custom Ansible modules comprising over 2,000 lines of Python code to interface with a vendor REST API and configure SaaS-based monitoring of internal servers. Added logic in module to ensure idempotence for Ansible playbook runs and display meaningful diff/dry-run output for internal change control vetting.
Management Network Refactor
Feb 2018
Developed a plan for backend management network design including device naming standards, multi-site firewall policies, and credential storage. Managed a year-long project to migrate hundreds of legacy systems from various naming and documentation standards to new systems. Leveraged custom scripting to allow for a simultaneous cutover of all devices to new standards without affecting in-progress projects and orders.
Helpdesk Process Automation
Feb 2017
Authored a custom PowerShell module to interface with helpdesk software REST API and deployed using Git version control. Wrote scripts utilizing the module to implement helpdesk business logic on incoming requests and generate custom reporting for executive dashboards.
Citrix/Wyse Migration
Jun 2016
Migrated two legacy XenApp 6/6.5 farms consisting of 30+ virtual machines hosting 20+ applications to a new XenApp 7.6 farm. Deployed a new Wyse Device Manager server to support the upgrade and/or replacement of 60+ Wyse terminals running user applications.
SAN Migration
Jun 2013
Evaluated vendor offerings for a new SAN and successfully migrated virtual infrastructure consisting of over 30 virtual machines to the new storage with minimal downtime, increasing redundancy and reliability.
T1 PRI to VoIP PBX Migration
Feb 2013
Migrated 60 user phone system to a new VoIP PBX and transferred existing telephone service from a T1 PRI to VoIP. Designed and implemented network for VoIP traffic, including QoS.
Office Network Redesign
Mar 2012
Designed and implemented a new router and switch architecture to increase network reliability and throughput. Migrated from a flat network to 802.1Q VLANs using stacked switches for high availability. Also implemented 802.1x certificate based authentication and the necessary public key infrastructure for end-points to increase network security and prevent unauthorized access.
vCenter Implementation and P2V of existing servers
Nov 2011
Implemented vCenter with shared storage and high availability. Migrated several critical services to the new virtual infrastructure, including MSSQL, Active Directory, and Exchange.
Work History
M1 Finance, Chicago, IL
Senior Site Reliabilty Engineer
Apr 2022 - Present
Maintain infrastructure, deployment pipelines, and monitoring systems to support a large development staff and ensure new features can be delivered rapidly without impacting production workloads. Assist developers with deploying and making changes to backend cloud infrastructure.
Maven Wave, Chicago, IL
Cloud Reliability Engineer
Nov 2021 - Apr 2022
Design management and technical processes for a new business unit focused on delivering managed service offerings rapidly at scale. Lead team projects and provide guidance to junior staff to assist with delivering on department goals.
Deft, Chicago, IL
Lead Platform Architect
March 2020 – Nov 2021
Develop new solutions for internal and customer-facing services with a focus on automation, scale, and manageability. Train and mentor a diverse team of engineers to support best practices and forward-thinking design principles such as automated builds/testing, infrastructure as code (IaC), and continuous integration/continuous deployment (CI/CD).
Systems Engineer II
April 2017 – March 2020
Quickly respond to change requests and monitor system performance for a large and varied customer base. Deploy networking, firewalls, load balancers, virtualization, and storage for new customer orders. Create internal process documentation for a group of over 20 engineers and track billable time.
Ferrara Candy Company, Oakbrook Terrace, IL
Systems Engineer
July 2015 – March 2017
Meet with stakeholders to assess needs and develop new systems based on best practices and business requirements. Manage the day-to-day operations of several interdependent business applications and provide assistance for escalated support requests.
Professional Convention Management Association, Chicago, IL
Network Administrator
September 2011 – July 2015
Solely responsible for the daily operation and maintenance of 50 virtual and physical servers and 70 client workstations. Plan and deploy infrastructure that suits business goals. Evaluate new vendors and working with management to develop short term and long term plans for the department.
Education
University of Illinois at Chicago, Chicago, IL
Master of Science, Management Information Systems
Graduated May 2013
GPA: 3.72
Bachelor of Science, Accounting
Graduated May 2011
GPA: 3.55
Cum Laude, University Honors and College Distinction
Certifications
Please note some certificates were issued under my former name, Scott Evtuch.
Amazon Web Services
- AWS SysOps Administrator - Associate (SOA-C02) February 2022