Close this

Dmytro Kobka

Product Management
North Carolina, United States

Skills

DevOps

About

DMYTROKOBKA's skills align with Consultants and Specialists (Information and Communication Technology). DMYTROKOBKA also has skills associated with Programmers (Information and Communication Technology). DMYTROKOBKA has 6 years of work experience.
View more

Work Experience

Cloud Engineer

Egencia
July 2018 - December 2020
  • Implemented Terraform to provision, update, and maintain AWS resources such as EC2, VPC, RDS, Lambda functions, EBS, S3 buckets, DynamoDB, Route 53, IAM roles and policies, etc. on Amazon Web Services (AWS) Developed Terraform modules to simplify creation of resources across different accounts and regions using dynamic variables. Implemented the usage of Spot instances in the dev environment, which led to 15% savings on the company's AWS monthly bill. Configured CloudWatch alarms with SNS and Lambda function, integrated them into Slack for monitoring and alerting Created Cronjob to snapshot RDS database instances in specified intervals, using CloudWatch event and Lambda function exported them to the S3 bucket Configured IAM roles following the least privilege principle on AWS Organizations for SSO (Single Sign ON) within the team, ensuring the protection of sensitive information. Configured DNS records in Amazon Route53 to route traffic to various AWS resources including Load Balancers, EC2 instances, and S3 buckets.

Devops Engineer

GitHub Actions for AWS
January 2021 - Present
  • Established CI/CD pipelines with GitHub Actions for AWS infrastructure to automate deployments on merge by integrating the best practices for maintaining, provisioning, and configuring the cloud resources across multiple environments. Developed Dockerfiles for Python and NodeJS applications, enabled automated build, push, and deployment to various environments through GitHub Actions multi-branch CI/CD pipeline triggered by code changes in the repository. Built AWS EKS cluster via Terraform modules, deployed Network Load Balancers with Ingress NGINX, to deploy, manage, and orchestrate containerized applications. Configured Horizontal Pod Autoscaler and Cluster Autoscaler to scale based on custom metrics to ensure high availability of Kubernetes environment, which allowed proactive scaling and decreased CPU and memory throttling. Implemented the least privilege principle access to the AWS EKS cluster for both, human and machine, identities. Achieved it by exposing the permission sets via the service accounts by setting up an identity provider and IAM federated roles, which then mapped to corresponding Service Accounts. Designed secure procedures for secrets management utilized in the Kubernetes environment by synchronizing AWS Secrets Manager with Kubernetes, which centralized and standardized overall secret management and enhanced security. Prepared Readme documentation which standardized operation procedures, and enhanced knowledge-sharing.

Education

Jinan University

Kyiv International University

Bachelor of International Economic Relations
January 2009 - January 2013