← В ленту
Регистрация: 11.01.2023

Alexey Podsadnik

Специализация: Devops Engineer
Docker Git go Jenkins Linux Python Windows Ansible Grafana Kubernetes macOS TeamCity
Docker Git go Jenkins Linux Python Windows Ansible Grafana Kubernetes macOS TeamCity

Портфолио

Tinkoff Bank

International fintech company. Developing, maintaining and automating security tools for configuration management and secure software development with shift left security and everything as code approach. - Implementing security tools (SAST, DAST, IAST, SCA, IaC security, fuzzing, secret detection) into CI/CD pipelines (Gitlab CI, Jenkins, TeamCity). - Contributing to the vulnerability management platform development and providing its maintenance. - Implementing and maintaining of dependency management processes and tools (SCA). - Developing a security scanners wrapper on Go to make it easier for developers use it for security testing. - Implementation of SSDLC frameworks (BSIMM). - Open-source projects security scoring & usage restricting. - Providing Kubernetes clusters hardening. - Implementing security tools in Kubernetes clusters (RASP). - Enforcing custom policies on Kubernetes objects using OPA. - Building secure base images for the development teams. - Setting up the collection of metrics and logs from security tools (ELK, Prometheus, Victoria Metrics).

Tinkoff Bank

- Building dashboards and setting up alerting (Grafana). - Securing cloud infrastructure (AWS, GCP + Terraform) - Participating in infrastructure architecture and services development. - Workshops for development teams. - Building secure workflows with sensitive data. - Building a secure data warehouse/data lake. - Design and implement a service to search for sensitive data in logs and databases. - Building data sanitation processes, data flow inventory - Implementing and maintaining sensitive data discovery tools in web applications. - Raising data security awareness among analysts and data scientists.

Otkritie Bank

International financial corporation. - Providing maintenance and adjusting Internet access control systems. - Participating in projects for creating comprehensive technical solutions to secure network perimeter, cloud infrastructure (AWS, YaC), virtualisation systems (OpenStack, VMware). - Security tools provisioning (Ansible, Puppet). - Personal consultations and engagements with companies team members for knowledge sharing.

Скиллы

Ansible
ContainerD
Docker
Git
Github Actions
Gitlab CI
Go
Grafana
HashiCorp Terraform
Helm
Jenkins
Kubernetes
Kustomize
Linux
MacOS
Puppet
Python
TeamCity
Windows

Опыт работы

DevSecOps Engineer
с 04.2019 - По настоящий момент |Tinkoff Bank
Gitlab CI, Jenkins, TeamCity, SCA, Grafana, BSIMM, CI/CD, Kubernetes, AWS, GCP, Terraform
International fintech company. Developing, maintaining and automating security tools for configuration management and secure software development with shift left security and everything as code approach. - Implementing security tools (SAST, DAST, IAST, SCA, IaC security, fuzzing, secret detection) into CI/CD pipelines (Gitlab CI, Jenkins, TeamCity). - Contributing to the vulnerability management platform development and providing its maintenance. - Implementing and maintaining of dependency management processes and tools (SCA). - Developing a security scanners wrapper on Go to make it easier for developers use it for security testing. - Implementation of SSDLC frameworks (BSIMM). - Open-source projects security scoring & usage restricting. - Providing Kubernetes clusters hardening. - Implementing security tools in Kubernetes clusters (RASP). - Enforcing custom policies on Kubernetes objects using OPA. - Building secure base images for the development teams. - Setting up the collection of metrics and logs from security tools (ELK, Prometheus, Victoria Metrics). - Building dashboards and setting up alerting (Grafana). - Securing cloud infrastructure (AWS, GCP + Terraform). - Participating in infrastructure architecture and services development. - Workshops for development teams. - Building secure workflows with sensitive data. - Building a secure data warehouse/data lake. - Design and implement a service to search for sensitive data in logs and databases. - Building data sanitation processes, data flow inventory. - Implementing and maintaining sensitive data discovery tools in web applications. - Raising data security awareness among analysts and data scientists.
Cybersecurity Engineer
03.2015 - 11.2019 |Otkritie Bank
Ansible, Puppet, OpenStack, VMware, AWS, YaC
International financial corporation. - Providing maintenance and adjusting Internet access control systems. - Participating in projects for creating comprehensive technical solutions to secure network perimeter, cloud infrastructure (AWS, YaC), virtualisation systems (OpenStack, VMware). - Security tools provisioning (Ansible, Puppet). - Personal consultations and engagements with companies team members for knowledge sharing.

Образование

Specialist's Degree in Cybersecurity
2009 - 2014
Russian State University for the Humanities

Языки

АнглийскийСреднийРусскийРодной
DockerGitgoJenkinsLinuxPythonWindowsAnsibleGrafanaKubernetesmacOSTeamCity