Hans Knecht

Hans Knecht - Email:-| Github: https://github.com/knechtionscoding | Website: www.hans-knecht.com |Blog: https-| Linkedin: https://www.linkedin.com/in/knechtions Experience Principal Site Reliability Engineer - Mission Lane LLC 2020 - 2021 - Wrote primitive kubernetes operators to manage namespaces, fluentd, etc Architected and Built EFK platform for centralized Logging managing some 25,000 logs/s Provided best practices around incident management Incident Commander for variety of Sev levels Wrote helm chart for generic mission lane service Senior DevOps Engineer/Tech Lead - Capital One Financial 2018 - 2020 - Wrote and Managed CICD Pipelines for ~75 applications built in Node and Java Managed as tech lead a team of SRE engineers Shortened the feedback loop between Security, Infrastructure, Business Teams, and the Developers to allow for faster and more Agile development. Transformed infrastructure from manual creation to IaaC to allow for immutable and automated deployments. Wrote Python for automation, including no downtime rehydrations, shared and easy CLI management of ECS Services, Hashicorp Vault Interactions, and terraform automation Re-architected the infrastructure into a multi-tenant ECS cluster driving operating efficiency from ~3% to more than 70% leading to a net operating cost drop of 90% Created effective and manageable alerting and monitoring for the team. Published multiple technical articles on Capital One Tech (https://medium.com/capital-one-tech) Wrote Docker best practices and maintained CapitalOne wide Docker Images Managed CDNs, SQL and NoSQL Databases, Redis, and ELK. DOS - AWS/DevOps Consultant 2018 - Present | Provide valuable cloud consulting to companies small and large covering Cloud and Application Security, Cloud Architecture, and DevOps best practices. - - Architected and Automated backup and DR solutions covering EFS, EC2, and RDS in AWS Managed Client expectations Created automated security scanning for ITAR, PCI, HIPAA, and NIST compliant companies using Prowler, Cloud Custodian, AWS Config, and AWS Guard Duty in both gov-cloud and commercial accounts. Helped remediate security issues discovered in audits, and provide improvements to allow governance at scale in the future. Wrote and deployed CICD Pipelines for companies using Jenkins, CircleCI, Travis and GitLab. Pipelines included standard CICD pipelines, but also improved security scanning of container images, OSS scanning, dependency management, etc. - Defined and improve procedures and policies to stay compliant while improving ship speed for applications. DevOps/Network Administrator - Kinsale Insurance 2017 – 2018 Team lead on a DevOps/Network team supporting Developers and Operations. - Introduced and developed a Centralized Logging system using the ELK stack Developed CICD Pipeline, SOX Compliant, using Bamboo and Jenkins, to deliver and update applications automatically. Introduced Automated Security to allow for faster feedback and increase security Using Ansible, Python, and OpenNebula delivered an auditable IaC and IAAS system. Developing scalable container solutions for tomcat applications. Migrated code base from SVN to Gitlab to allow for faster and more integrated pipelines Created POC Private cloud on OpenNebula and Ceph Systems and Security Engineer at Digital Harbor Inc. 2015 – 2017 Team Lead of 3 for Systems and Security - Built and architected HA Server clusters using Proxmox VE and migrated from baremetal to a virtualized environment Built and Maintained XEN, VMWare, and RHEL Hypervisors for testing and lab environments Built and architected a backup and restore system, with SLAs, tiers and ensured 4 9’s of uptime Built and maintained cross site AD infrastructure Lead migration from on-premises to a Hybrid AWS-On-Premises environment Managed site to site VPNs to AWS and offices around the world. Architected and supported the VPC and account setup in AWS Managed IaC for ec2 servers and their applications. Used Ansible to automated deployment of applications and IaC (Ansible) Built and Coded Status Pages and Dashboards for services, outages, and workflows using. Configured DLP for HIPAA, PII, and PIA on firewalls, endpoints and exchange servers. Configured and Managed Zabbix, Trend Micro, ShadowProtect, CarbonBlack, Jira, Tomcat, and Confluence Level 3 Support at CSS Corp 2014 - 2015 - Provided general troubleshooting and helpdesk support - Provided AD and Exchange Administration and support - Provided Network Monitoring and troubleshooting - Created automation PowerShell scripts for the offboarding process and simple databases for reporting tools - Managed Linux Server uptime and windows server uptime Small Business Systems Administrator 2013 – 2014 - Supported Remote employees on troubleshooting hardware and software Managed internal network, firewalls, and PCs Managed shared storage Language English (Fluent/Native) Swedish (Fluent/Native) Certifications AWS - Solutions Architect - Associate | AWS - SysOps Administrator - Associate | Comptia - Project+ | Comptia Security+ | Comptia - Network+ | Comptia - A+