Eduard Sukhoparov

Senior Dev/Sec/Ops Engineer

Wallarm is the only unified, best-in-class API Security and WAAP (Web App and API Protection) platform to protect your entire API and web application.
Unified, automated API security solution works with any platform, any cloud, multi-cloud, cloud-native, hybrid and on-premise environments.

Project: Security Edge ( Read more )
Security Edge project allows customers to easily deploy API security across globally distributed locations at your APIs edge, including:

• 🔍Comprehensive API Discovery
• 🛡️API Posture Management
• ⚡ Real-time API Threat Prevention
• 🚨API Abuse Protection

Read more about the project:

• Wallarm: Security Edge Platform
• Wallarm: How Security Edge revolutionizes API Secrurity
• Linkedin: Security Edge is a new way to deploy API security
• Techstrong TV: interview, how Wallarm is innovating in the API Security market, including Security Edge capability

Accomplishments:

• Design, project and implement the Security Edge from scratch
• Created terraform modules for deploying all cloud resources
• Design and implement terragrunt projects for all environments
• Design and implement cloud network solution for all environments based on AWS TransitGateway
• Created solution based on Kyverno for validating kubernetes resources
• Created necessary helm charts for all components
• Deployed and managed ArgoCD applications and applicationsets for different kubernetes cluster
• Created Grafana dashboards and alerts
• Deployed Grafana Loki and promtail as logging solution
• Deployed Victoriametrics operator as metrics solution
• Create AWS ECR pull through cache rules and private registries
• Created gitlab-ci pipelines to manage customers deployments
• Hardening:
  • Create bottlerocket AMI images for VMs
  • Deploy separated AWS VPN solution for each environment with limited access based on google SSO
  • Deploy cilium with Wireguard traffic encryption between kubernetes nodes and pods
  • Create private ECR registries with vulnerability scanners for container images
  • Deploy kubernetes-secrets operator to sync all secrets from AWS Secrets Manager
  • Deploy Wallarm Ingress Controller with blocking mode to protect all public endpoints
  • Implement Pod Secutiy Standards for all portal components
  • Implement Network Policies for all portal components
• Design, project and implement the observability portal for Security Edge customers from scratch
• Created necessary helm charts for all portal components
• Created gitlab-ci pipelines to manage portal deployments
• Deploy victoriametrics operator with multi-tenancy support
• Deploy kubernetes grafana-operator to manage all customer grafana instances
• Created alerting and synthetic monitoring solutions based on Grafana Cloud
• Created necessary terraform modules for grafana cloud components (OnCall, SyntheticCheks)
• Created integration between victoriametrics alertmanager and grafana cloud
• Created gitlab-ci pipelines to manage grafana cloud deployments

Technologies:

• OS: Linux (Bottlerocket)
• Clouds: AWS (EKS, VPC, TransitGateway, S3, Lambda, CloudWatch, EC2, Route53, ECR), GCP (Compute Engine, Vpc Network, Load Balancing)
• IaC: Terraform/Terragrunt
• Monitoring: VictoriaMetrics, Grafana
• Logging: Loki
• VPN: AWS VPN, Tailscale
• Technologies: Kubernetes, Helm, Crossplane, Kyverno, ArgoCD, Cilium, Karpenter, Grafana
• CI/CD: Gitlab-CI
• Scripting: bash

Senior DevOps/SRE Engineer

Evolution is a world leader in the development of gaming platforms, supplying an impressive client list with trustworthy, turnkey gaming systems.

Accomplishments:

• Created EKS module by Terraform, integrated it with ArgoCD, set up resolving DNS between AWS and on-prem.
• Created solution to nuke AWS resources in test accounts by daily basis.
• Working on a solution for creating Packer images for different clouds
• Created different terraform modules for AWS, GCP and Vmware environments
• Created solution based on Kyverno for validating kubernetes resources
• Created Argo Workflows integration with Gitlab
• Working on POC for Crossplane implementation
• Deploying and managing ArgoCD applications for different kubernetes cluster
• Prepared helm charts for services
• Created Grafana dashboards and prometheus alerts
• Created terraform module for AWS Organizaions (SCP policy) and many others
• Improved gitlab-ci pipelines.

Technologies:

• OS: Linux (Centos)
• Clouds: AWS (EKS, VPC, S3, Lambda, CloudWatch, EC2, Route53), GCP (Compute Engine, Vpc Network, Load Balancing)
• IaC: Terraform/Terragrunt, Ansible
• Programming Languages: Python
• Monitoring: Prometheus, Grafana
• Logging: ELK, loki
• Containerization: Docker, Kubernetes, Helm, Crossplane, Kyverno, Rancher, ArgoCD/Workflows, Kaniko, Karpenter
• CI/CD: Gitlab-CI, Github actions
• Scripting: bash

DevOps Engineer

Folium, LLC is company that helps clients to create cutting-edge Cloud-based services.

Project: Charter Telecommunications (American mass media company with 26+ million customers). Migrating Charter’s BigData infrastructure from on-prem to AWS.

Accomplishments:

• Migrated 500+ Hive and Spark jobs from on-prem Hadoop to AWS EMR
• Optimized the execution time of Hive and Spark jobs by 20+%
• Reduced the cost of using AWS EMR by implementing Spot Instances
• Implemented CI/CD pipeline for deploying resources to AWS by Gitlab-Ci.
• Described the entire infrastructure as code by Terraform
• Mentored 3+ junior engineers

Technologies:

• OS: Linux (Ubuntu)
• Clouds: AWS EMR (Hive, Spark, Tez), Batch, Athena, Glue, S3, Lambda, StepFunctions
• IaC: Terraform
• Programming Languages: Python
• Containerization: Docker
• CI/CD: Gitlab-CI
• Scripting: bash

SRE | DevOps Engineer

Accomplishments:

• Created 50+ CI/CD jobs and pipelines
• Migrated 5+ backend services to AWS
• Implemented dynamic instructions for QA and Deploy teams in Confluence
• Reduced manual testing in some key services by 50%
• Improved monitoring and testing "1-sec bar" feature in charts

Technologies:

• OS: Linux (Ubuntu, Debian)
• Clouds: AWS (VPC, IAM, EC2, S3, SQS, Route53, SDK)
• IaC: Terraform, Ansible
• Virtualization: KVM
• DB: PostgreSQL
• Containerization: Docker
• CI/CD: Jenkins, Gitlab-CI
• Monitoring: Zabbix
• Web Servers: Nginx
• Programming Languages: Python (asyncio, aiohttp, numpy, flask, socketIO, boto3, multiprocessing)
• Scripting: bash
• VCS: git
• YAML, JSON

Co-founder & Software Engineer

Accomplishments:

• 100+ companies have used our desktop software version in Russia.
• 20+ clients have used our web search crawler.
• Created the team of 5+ software engineers

Technologies:

• OS: Linux (Ubuntu)
• Clouds: AWS (VPC, IAM, EC2, S3)
• CI/CD: Jenkins
• Web Servers: Apache
• Scripting: bash
• Web Development: HTML, CSS, PHP, JavaScript
• DB: MySql
• VCS: git
• UX/UI Design
• Software Development

DevOps Engineer

Belan is company that helps clients to create reliable systems in on-prem and Cloud.

Accomplishments:

• Migrated 20+ customers infrastructure to AWS
• Implemented 10+ CI/CD pipelines
• Mentored junior engineers

Technologies:

• OS: Linux (Ubuntu, Debian)
• Clouds: AWS (VPC, IAM, EC2, S3, Route53)
• CI/CD: Jenkins
• SCM: Ansible
• Containerization: Docker
• VCS: git
• Scripting: bash, python