Dmitry Kireev, Developer in Miami, FL, United States
Dmitry is available for hire
Hire Dmitry

Dmitry Kireev

Verified Expert  in Engineering

Cloud Architect Developer

Location
Miami, FL, United States
Toptal Member Since
November 21, 2019

Dmitry is a cloud architect and site reliability engineer with over a decade of intense professional experience strictly adhering to the DevOps methodology. He has architected and built multiple platform-agnostic infrastructures from scratch for modern cloud systems. Dmitry has a proven track record of hands-on operations in high-scale environments. He is also proficient with IaC, automation, and scripting, as well as monitoring and observability.

Portfolio

HazelOps
Amazon Elastic Container Service (Amazon ECS), AWS DevOps, GNU Make...
SimplyWise, Inc.
Kubernetes, Amazon EKS, Django, Datadog, Scaling, AWS IAM...
Sport Betting B2B SaaS Provider (US)
Amazon Web Services (AWS), Serverless, Container Orchestration...

Experience

Availability

Full-time

Preferred Environment

Terraform, Linux, GitHub, Docker, Amazon Web Services (AWS), DevOps, Serverless, Amazon Elastic Container Service (Amazon ECS), Amazon EKS, CI/CD Pipelines, Architecture

The most amazing...

...thing I've architected, deployed, and managed is a scalable, highly available cloud for an IoT security product alongside the software engineering team.

Work Experience

Head of Site Reliability Engineering | Consultant

2015 - PRESENT
HazelOps
  • Took on multiple consulting positions in different projects.
  • Built scalable infrastructures for startups: multi-environment, with infrastructure as code, self-healing, scalable, and predictable environments on AWS.
  • Took care of the legacy code for Dockerizing JVM, PHP, and Python apps.
  • Analyzed and audited performance for dozens of full-cycle reports based on key factors of infrastructure performance and action items based on proposals.
  • Helped software engineers implement DevOps, including close communication, strategy, and process improvement.
  • Instrumented site reliability practices by owning SLA, SLO, and SLIs; eliminating toil; and increasing observability—automation, monitoring, and error budgeting.
  • Implemented CI/CD, facilitating a streamlined deployment pipeline for dozens of different projects, including GitLab, Jenkins, and CircleCI. Utilized Docker, registry, and multi-stage builds.
  • Created OPS procedures in customers' environments, including service-based alerting, on-call rotation, and escalations.
  • Deployed and maintained Apache Kafka, including full-cycle management via Terraform, Ansible, and Docker.
Technologies: Amazon Elastic Container Service (Amazon ECS), AWS DevOps, GNU Make, Amazon Web Services (AWS), Grafana, HAProxy, Python, WordPress, PHP, Java, Serverless, ECS, Docker Swarm, Docker, Ansible, Terraform, NGINX, DevOps, SSL Certificates, Digital Certificates, Traefik, JVM, Flask, Linux, Bash, SQL, PostgreSQL, Amazon RDS, Ruby on Rails (RoR), Amazon EKS, AWS NAT Gateway, Datadog, Software as a Service (SaaS), Docker Compose, Agile, MySQL/MariaDB, Redis, Agile Software Development, Jira, Confluence, SSL, Containerization, TypeScript, Containers, Deployment, Helm, Azure, Kubernetes, Azure DevOps, Cloud, AWS Cloud Architecture, Cloud Architecture, APIs, Infrastructure as Code (IaC), CI/CD Pipelines, Amazon EC2, VPN, Node.js, Google Cloud Platform (GCP), Container Orchestration, Amazon CloudWatch, Amazon Simple Queue Service (SQS), Amazon Aurora, AWS Fargate, AWS Lambda, Amazon DynamoDB, AWS CodeBuild, GitHub, Git, Continuous Integration (CI), Agile DevOps, AWS CloudFormation, Amazon API, Monitoring, Infrastructure Monitoring, Application Monitoring, Enterprise Architecture, Continuous Delivery (CD), Microservices, Microservices Architecture, Django, RabbitMQ, Celery, AWS Elastic Beanstalk, ChatGPT, Machine Learning, Serverless Architecture, Cloud Infrastructure, Architecture, Infrastructure, Cybersecurity, Network Security, Redis Cache, Load Balancers, Heroku, Site Reliability Engineering (SRE), Scaling, Amazon CloudFront CDN, AWS IAM, Amazon Virtual Private Cloud (VPC), CORS

EKS Expert

2023 - 2024
SimplyWise, Inc.
  • Decomposed a complex transient bug into a series of hypotheses.
  • Analyzed the current EKS/Django configuration on AWS with minimal documentation.
  • Tracked down the source of odd errors in Django/EKS using troubleshooting methods with Datadog and CloudWatch.
  • Proposed an optimal solution to the issue and supported the team in implementing it.
Technologies: Kubernetes, Amazon EKS, Django, Datadog, Scaling, AWS IAM, Amazon Virtual Private Cloud (VPC)

Senior Cloud Architect

2022 - 2023
Sport Betting B2B SaaS Provider (US)
  • Improved the current infrastructure to pass the GLI certification.
  • Implemented IAM and role-based PostgreSQL password-less access managed via Terraform.
  • Improved remote access patterns; migrated to OpenVPN.
Technologies: Amazon Web Services (AWS), Serverless, Container Orchestration, Amazon CloudWatch, Amazon Simple Queue Service (SQS), Amazon Aurora, AWS Fargate, AWS Lambda, GitHub, Git, Continuous Integration (CI), Agile DevOps, Terraform, Amazon RDS, Monitoring, Infrastructure Monitoring, Application Monitoring, Continuous Delivery (CD), CI/CD Pipelines, Containerization, Microservices, Microservices Architecture, Celery, ECS, Serverless Architecture, Cloud Infrastructure, Architecture, Infrastructure, Cybersecurity, Network Security, Redis Cache, Load Balancers, Site Reliability Engineering (SRE), Scaling, Amazon CloudFront CDN, AWS IAM, Amazon Virtual Private Cloud (VPC), CORS

Cloud Architect | Site Reliability Engineer

2021 - 2022
Game Asset Marketplace (Stealth)
  • Improved the security and reliability of the current EKS cluster.
  • Designed and implemented the CI/CD system to deploy/roll back the application with zero downtime.
  • Handled troubleshooting and maintenance support for legacy systems.
  • Designed security improvements for the infrastructure overall.
  • Designed branching and staging improvements to facilitate faster QA.
Technologies: Amazon Web Services (AWS), Amazon EKS, Amazon EC2, .NET, Rancher, Azure DevOps, Cloudflare, VPN, Container Orchestration, Amazon CloudWatch, Amazon Aurora, AWS Fargate, AWS Lambda, GitHub, Git, Continuous Integration (CI), Agile DevOps, AWS CloudFormation, Terraform, Amazon RDS, Amazon API, Monitoring, Infrastructure Monitoring, Application Monitoring, Continuous Delivery (CD), CI/CD Pipelines, Containerization, Microservices, Microservices Architecture, Celery, ECS, Serverless Architecture, Cloud Infrastructure, Architecture, Infrastructure, Cybersecurity, Network Security, Redis Cache, Load Balancers, Heroku, Site Reliability Engineering (SRE), Scaling, Amazon CloudFront CDN, AWS IAM, Amazon Virtual Private Cloud (VPC), CORS

Cloud Architect | Site Reliability Engineer

2021 - 2022
ONFO, LLC
  • Designed and implement a multi-environment AWS architecture.
  • Designed and implemented a CI/CD system to deploy/roll back the application with zero downtime.
  • Updated and migrated a .NET application to the new environment.
  • Updated and migrated a TypeScript/Serverless application to the new environment.
  • Designed and deployed an immutable infrastructure for private Stellar nodes.
Technologies: Amazon Web Services (AWS), DevOps, Stellar SDK, .NET, Serverless, Docker, Docker Compose, Container Orchestration, Amazon CloudWatch, AWS Fargate, AWS Lambda, TypeScript, Amazon DynamoDB, GitHub, Git, Continuous Integration (CI), Agile DevOps, AWS CloudFormation, Terraform, Amazon RDS, Monitoring, Infrastructure Monitoring, Application Monitoring, Continuous Delivery (CD), CI/CD Pipelines, Containerization, Microservices, Microservices Architecture, ECS, Serverless Architecture, Cloud Infrastructure, Architecture, Infrastructure, Cybersecurity, Network Security, Redis Cache, Load Balancers, Site Reliability Engineering (SRE), Scaling, Amazon CloudFront CDN, AWS IAM, Amazon Virtual Private Cloud (VPC), CORS

Cloud Architect | Site Reliability Engineer

2020 - 2021
Tatango, Inc.
  • Designed and implemented a multi-environment AWS architecture.
  • Designed and implemented a CI/CD system to deploy/roll back the application with zero downtime.
  • Updated and migrated a Rails application to the new environment.
  • Updated and migrated a TypeScript/Serverless application to the new environment.
Technologies: Amazon Web Services (AWS), SQL, AWS CodeDeploy, AWS DevOps, Redshift, Datadog, ECS, Serverless, Ruby on Rails (RoR), Terraform, VPN, Container Orchestration, Amazon CloudWatch, AWS Fargate, AWS Lambda, GitHub, Git, Continuous Integration (CI), Agile DevOps, Amazon RDS, Amazon API, Monitoring, Infrastructure Monitoring, Application Monitoring, Network Monitoring, Enterprise Architecture, Continuous Delivery (CD), CI/CD Pipelines, Containerization, Serverless Architecture, Cloud Infrastructure, Architecture, Infrastructure, Cybersecurity, Network Security, Redis Cache, Load Balancers, Site Reliability Engineering (SRE), Scaling, Amazon CloudFront CDN, AWS IAM, Amazon Virtual Private Cloud (VPC), CORS

Lead Site Reliability Engineer

2016 - 2019
Flo Technologies
  • Designed and executed a complex IoT infrastructure from scratch on AWS: multi-tier, multi-subnet scalable cloud AWS infrastructure, multi-application stateless stack with Elastic Beanstalk and ECS and Docker, platform-agnostic local workspaces with Docker.
  • Created and administered Ansible infrastructure: idempotent plays and roles to support infrastructure needs and wrote community-available roles for multiple platforms under Apache Foundation.
  • Designed and implemented CI/CD: complete application lifecycle with green deployments of high-traffic services, platform-agnostic framework to support SaaS or hosted CI servers, and hassle-free pipelines for software engineers.
  • Constructed and administered monitoring solutions: log and data aggregation from multiple sources (ELK), on-prem monitoring via TICK, Grafana. SaaS monitoring with Datadog and New Relic when needed.
  • Devised and executed operational procedures: service-oriented OLA, Pagerduty with monitoring solutions, and Pagerduty "Service Owner First" policy.
  • Created and maintained an upgrade procedure for critical distributed systems to allow no-downtime and no-data loss upgrades for the whole three-year time span.
Technologies: AWS DevOps, GNU Make, Amazon Web Services (AWS), Transport Layer Security (TLS), Linux, CircleCI, Docker, TICK Stack, ELK (Elastic Stack), GitLab, Apache Kafka, Ansible, AWS CloudFormation, Terraform, DevOps, SSL Certificates, Digital Certificates, Grafana, JVM, InfluxDB, Bash, SQL, Internet of Things (IoT), Amazon RDS, AWS NAT Gateway, Datadog, Software as a Service (SaaS), Docker Compose, Agile, Redis, Agile Software Development, Jira, Confluence, SSL, Containerization, Containers, Deployment, Cloud, AWS Cloud Architecture, Cloud Architecture, APIs, Infrastructure as Code (IaC), CI/CD Pipelines, Amazon EC2, VPN, Amazon CloudWatch, Amazon Simple Queue Service (SQS), AWS Lambda, TypeScript, Amazon DynamoDB, GitHub, Git, GitLab CI/CD, Continuous Integration (CI), Agile DevOps, Amazon API, Monitoring, Infrastructure Monitoring, Application Monitoring, Network Monitoring, Enterprise Architecture, Continuous Delivery (CD), Microservices, Microservices Architecture, AWS Elastic Beanstalk, Cloud Infrastructure, Architecture, Infrastructure, Cybersecurity, Network Security, Redis Cache, Load Balancers, Site Reliability Engineering (SRE), Scaling, Amazon CloudFront CDN, AWS IAM, Amazon Virtual Private Cloud (VPC)

Senior Member of Technical Staff

2016 - 2017
Delphix
  • Architected and implemented multi-tier hybrid cloud AWS infrastructure for a new project for a high-scale testing framework.
  • Constructed log and data aggregation from multiple sources (ELK).
  • Created a virtual and bare-metal host provisioning system (Foreman).
  • Designed and implemented Nmap-based inventory software.
  • Contributed to company-wide IT processes and improvements.
  • Came up with major portions to on-call rotation, monitoring, SOA, and OLA designs and implementations.
Technologies: AWS DevOps, Amazon Web Services (AWS), Python, AWS CloudFormation, Foreman, Ansible, ELK (Elastic Stack), Jenkins, Terraform, DevOps, SSL Certificates, Digital Certificates, Grafana, Telegraf, JVM, Linux, Bash, SQL, Amazon RDS, AWS NAT Gateway, New Relic, Datadog, Software as a Service (SaaS), Docker Compose, Travis CI, Elasticsearch, Agile, MySQL/MariaDB, Redis, Agile Software Development, Jira, Confluence, SSL, On-premise, Containerization, Containers, Deployment, Cloud, AWS Cloud Architecture, Cloud Architecture, APIs, Infrastructure as Code (IaC), CI/CD Pipelines, Amazon EC2, VPN, Amazon CloudWatch, GitHub, Git, GitLab CI/CD, Continuous Integration (CI), Agile DevOps, Monitoring, Infrastructure Monitoring, Application Monitoring, Network Monitoring, Enterprise Architecture, Continuous Delivery (CD), Windows, RabbitMQ, AWS Elastic Beanstalk, Cloud Infrastructure, Architecture, Infrastructure, Network Security, Redis Cache, Load Balancers, Site Reliability Engineering (SRE), Scaling, AWS IAM, Amazon Virtual Private Cloud (VPC)

Senior DevOps Engineer

2013 - 2016
Intuit
  • Managed a hybrid cloud with around 300 nodes: AWS, VMware, and bare metal.
  • Implemented automation, config management, and provisioning. 90% of the environment is in Puppet and Git.
  • Managed the lifecycle of legacy systems in .NET and C# and the automation of manually deployed systems.
  • Provided CI in configuration management and IaaC: GitFlow, reusable code, and open-source contribution.
  • Managed and mentored junior IT staff, including separation of concerns and easy onboarding.
  • Led most of the post-acquisition infrastructure integration projects.
Technologies: AWS DevOps, Amazon Web Services (AWS), Foreman, Git, TeamCity, ELK (Elastic Stack), Puppet, DevOps, SSL Certificates, Digital Certificates, Grafana, Telegraf, JVM, Linux, Bash, Amazon RDS, New Relic, Software as a Service (SaaS), Docker Compose, Travis CI, Elasticsearch, Agile, MySQL/MariaDB, Redis, Agile Software Development, Jira, Confluence, SSL, On-premise, Containerization, Containers, Deployment, Cloud, AWS Cloud Architecture, Cloud Architecture, APIs, Infrastructure as Code (IaC), CI/CD Pipelines, Amazon EC2, VPN, Amazon CloudWatch, GitHub, Continuous Integration (CI), Agile DevOps, AWS CloudFormation, Monitoring, Application Monitoring, Network Monitoring, Enterprise Architecture, Continuous Delivery (CD), Windows, RabbitMQ, Cloud Infrastructure, Architecture, Infrastructure, Network Security, Redis Cache, Scaling, Amazon CloudFront CDN, Amazon Virtual Private Cloud (VPC)

DevOps Engineer

2011 - 2013
Docstoc (Acquired by Intuit)
  • Supported colocation with 180+ Windows and Linux dedicated servers as well as new server deployment.
  • Managed network security and performance (Juniper SSG, SRX Firewalls, A10 networks load balancer, Radius, IPsec, NAT, and Amazon EC2 VPC).
  • Implemented proactive monitoring using Nagios, ELK, and New Relic.
  • Optimized Linux and Windows server performance for high scale.
  • Deployed and maintained on-premise MySQL databases.
  • Introduced and implemented an ELK stack, Elasticsearch, Logstash, and Kibana.
Technologies: Amazon Web Services (AWS), AWS DevOps, Nagios, Python, MongoDB, MySQL, LB, Juniper, DevOps, SSL Certificates, Digital Certificates, Grafana, Telegraf, JVM, Linux, Bash, Amazon RDS, New Relic, Software as a Service (SaaS), Infrastructure as Code (IaC), Docker Compose, Travis CI, Elasticsearch, Agile, MySQL/MariaDB, Redis, Agile Software Development, Jira, SSL, On-premise, Containerization, Containers, Deployment, Cloud, AWS Cloud Architecture, APIs, Amazon EC2, VPN, Amazon CloudWatch, GitHub, Git, Continuous Integration (CI), Agile DevOps, AWS CloudFormation, Monitoring, Network Monitoring, Continuous Delivery (CD), CI/CD Pipelines, Windows, RabbitMQ, Cloud Infrastructure, Architecture, Infrastructure, Network Security, Load Balancers, Scaling, AWS IAM, Amazon Virtual Private Cloud (VPC)

ICMK - Infrastructure as Code Make Framework

https://github.com/hazelops/icmk
This framework is an attempt to create a convenient way to manage infrastructure as code with a low barrier of entry for the runner.

The idea is to use GNU Make as a vehicle for wrapping the complexity and presenting a nice runner experience. This way, a coherent set of commands can be used locally or on the CI, as simple as "make deploy."

Article: Runner Experience Design

https://automationd.com/developer-experience-design/
I'm adept at the Credo of Phoenix approach when discussing infrastructure design. Whatever you build should have the ability to be rebuilt with none-to-minimal effort over and over again by anyone or anything with sufficient permissions.

While such a poetic way of calling idempotent infrastructure has many important technical characteristics, this time, I'd like to talk about the other side of it:—anyone or anything with sufficient permissions - runners and their experience.

Article: How to Avoid Human Bottlenecks in Production

https://automationd.com/how-to-avoid-human-bottlenecks-in-production/
There is no doubt we've all heard of the term "bottleneck." A bottleneck is one process in a chain of processes such that its limited capacity reduces the capacity of the whole chain ( Wiki).

Generally speaking, it is required to have multiple humans to run a larger business to perform ideation, design, project management, development, QA, marketing, and infrastructure operations. When a single human limits a capacity of a team, it becomes a human bottleneck.

In this post, I'd like to highlight two distinct types of human bottlenecks, which can both make a negative impact on the productivity of the team from the perspective of operations and site reliability.

OpenVPN AS Docker with DUO Security

https://github.com/AutomationD/docker-openvpnas
This image incorporates OpenVPN Access Server with Duo Security 2 factor auth. All configuration is done via environment variables; for example, OPENVPN_VPN__DAEMON__0__LISTEN__IP_ADDRESS is mapped to vpn.daemon.0.listen.ip.address, which is searched in present configuration files (as.conf and config.json), which is set to a value of an environment variable.

Duo Security is optional but is highly recommended since the basic account is free. All you need to do is get API credentials and enable the post-auth script.

Windows Imaging Toolkit

https://github.com/AutomationD/wimaging
WImaging is a set of scripts to prepare WIM images and templates for Foreman to provision Windows hosts. Most of the time, official Microsoft deployment tools are used—mostly dism.exe.

All relevant configuration files like unattend.xml are rendered by Foreman and downloaded at build time.

IZE: Opinionated Infrastructure Tool

https://github.com/hazelops/ize
This tool is designed as a simple wrapper around popular tools so that they can be easily integrated into one infra: Terraform, ECS deployment, Serverless, and others.

It combines infra, build, and deploy workflows in one and is too simple to be considered sophisticated. So let's not do it but rather embrace the simplicity and minimalism.

Tools

Git, GNU Make, Ansible, AWS CloudFormation, ELK (Elastic Stack), GitLab, GitLab CI/CD, Terraform, Docker Compose, Grafana, Telegraf, CircleCI, Travis CI, Traefik, Amazon CloudWatch, Amazon Elastic Container Service (Amazon ECS), GitHub, VPN, AWS Fargate, Amazon CloudFront CDN, AWS IAM, Amazon Virtual Private Cloud (VPC), Docker Swarm, NGINX, Puppet, Jenkins, Amazon EKS, Amazon Simple Queue Service (SQS), RabbitMQ, Celery, TeamCity, Nagios, Makefile, AWS CodeDeploy, Jira, Helm, Confluence, Splunk, Stellar SDK, AWS CodeBuild

Paradigms

Agile, Continuous Delivery (CD), Continuous Integration (CI), DevOps, Microservices, Microservices Architecture, Serverless Architecture, Azure DevOps, Automation, Agile Software Development

Platforms

Linux, Docker, Amazon Web Services (AWS), AWS Elastic Beanstalk, Amazon EC2, Kubernetes, AWS Lambda, Windows, Apache Kafka, JVM, Heroku, Azure, WordPress, New Relic, Windows Server, Google Cloud Platform (GCP), Blockchain, Rancher

Storage

Datadog, Amazon Aurora, MySQL, MongoDB, InfluxDB, Redis, On-premise, Amazon DynamoDB, Redis Cache, Elasticsearch, MySQL/MariaDB, Databases, PostgreSQL, Redshift

Industry Expertise

Network Security, Cybersecurity

Other

Site Reliability Engineering (SRE), GitHub Actions, AWS DevOps, SSL Certificates, Digital Certificates, CI/CD Pipelines, Amazon RDS, Software as a Service (SaaS), Infrastructure as Code (IaC), SSL, Cloud, Containerization, AWS Cloud Architecture, Containers, Deployment, Cloud Architecture, Container Orchestration, Agile DevOps, Monitoring, Infrastructure Monitoring, Application Monitoring, Cloud Infrastructure, Architecture, Infrastructure, Load Balancers, Scaling, Networking, Internet of Things (IoT), AWS NAT Gateway, APIs, Enterprise Architecture, CORS, TICK Stack, Transport Layer Security (TLS), Foreman, Juniper, LB, ECS, Serverless, HAProxy, Communication, English, Business, Economics, Software Development, Business Planning, Cloudflare, Hospitality, Network Monitoring, ChatGPT, Machine Learning

Languages

Python, Bash, Java, PHP, Markdown, Go, JavaScript, SQL, TypeScript

Frameworks

Flask, Django, Ruby on Rails (RoR), Windows PowerShell, .NET, Serverless Framework

Libraries/APIs

Amazon API, Node.js

2006 - 2009

Bachelor's Degree in Business Communication (English)

Tula State University - Tula, Russia

2004 - 2009

Bachelor's Degree in Business Administration

Tula State University - Tula, Russia

Collaboration That Works

How to Work with Toptal

Toptal matches you directly with global industry experts from our network in hours—not weeks or months.

1

Share your needs

Discuss your requirements and refine your scope in a call with a Toptal domain expert.
2

Choose your talent

Get a short list of expertly matched talent within 24 hours to review, interview, and choose from.
3

Start your risk-free talent trial

Work with your chosen talent on a trial basis for up to two weeks. Pay only if you decide to hire them.

Top talent is in high demand.

Start hiring