Hi.

Intro

I'm a software developer and devops engineer with a habit of tinkering, learning, and fixing what I break along the way. You name it, I've done it - as long as it has to do with technology. I've written blazing-fast websites (see: this one), built horizontally-scalable API servers, designed entire content platforms, orchestrated global deployments, maintained both cloud and physical presences across all three of the major PaaS services, managed my own physical servers, written embedded code, designed circuit boards for my projects, and even spent a short time developing my own custom chips. Also, I'm HAM radio licensed, a certified diver, and a rock climber. If you want to see some of what I've done, check out a sampling of my work.

If I could sum myself up in a single concept, it would be that I am a jack of all trades. While a master of none, that places me better than a master of one. I pride myself in my ability to solve a problem at any crossroads, rather than having a depth of knowledge in a single subject. I work on the whole problem, and not just the section that applies to a small facet of my knowledge. If it weren't for that, I would not be in the place I am now. I try to rise up to any task I'm given, rather than staying in my box, as comfy as it may be.

Work

Designed, architected, and implemented reserved cloud offering

• Created a repeatable automation pipeline for deploying multi-million dollar deployments, enabling the sales engineering team to bring a new cluster online within hours, not days
• Wrote Terraform modules to reduce workload for repeatable tasks
• Built continuous delivery pipeline using Terraform Cloud
• Directly resulted in tens of millions of dollars in revenue after product launch

Improved virtual machine orchestration platform and architected its future revisions

• Drove major changes to internal VM orchestration platform to handle multiple regions with multiple cloud service providers in the same codebase
• Designed abstraction layers and interfaces involved in rewrite to allow multiple underlying implementations to accomplish the same business goals
• Enabled support team by creating an easily searched audit log, allowing data gathering on historical trends and identify failing hardware
• Orchestration software manages 500+ hypervisors, with thousands of virtual machines

Manage Cyber Security best practices & implementation

• Implement BeyondCorp style authentication and authorization platform
• Implement disaster recovery plans and ensure business continuity in the event of a ransomeware attack
• Create and maintain security rules to restrict access to production systems

Design & Manage AWS infrastructure

• Automate deployment of new database clusters
• Deploy autoscaled 32-node cluster, including automated provisioning & data retrieval per-node
• Handle sharding of >4TB of mortgage analytics data to be distributed to and queried by worker nodes
• Maintain Amazon Web Services account, including ensuring proper development vs production account split
• Design & implement new infrastructure and database architecture to allow querying of terabytes of financial data

Develop/maintain analytics platform

• Completed 3-week turnaround time for a financial report analysis software, including infrastructure, backend services, and integration with a frontend UI
• Maintain industry-leading analytics execution times of approx. 1.2 seconds for ~1M rows of financial data, including retrieval from government agency storage
• Utilize Redis message queues to orchestrate the half-dozen separate services for the report generation software
• Develop clustered analytics work distribution algorithm & communication protocol from scratch
• Work with Python & JavaScript's SocketIO libraries to facilitate easy communication between master, workers, and browser clients

Senior Developer

• Built live-replay functionality from scratch, allowing users to view their past actions in real-time with up to fifteen datapoints stored per second
• Wrote 10+ individual data APIs to access network statistics, flight data, weather, airport configuration, and procedures
• Designed an OAuth-based single-sign-on application from scratch for use across the network’s services
• Implemented additional services as needed in Python, deploying to Kubernetes

Systems Administrator

• Hired to redesign and rebuild from scratch the website running the New York division of a simulation network
• Promoted from Senior Developer to manage all infrastructure on a global network presence, including web, application, and software PoPs
• Three thousand users signed up for product pre-release in less than 6 months, averaging ~50 registrations per day
• Configured and promoted use of container-based workloads through Kubernetes, including fully automated source-to-production deployments
• Managed connection with FAA servers, receiving ~100GB/day of real-world flight data
• Architected & implemented CDN-backed product download server, allowing unlimited bandwidth available to any client through an authenticated and authorized connection
• Managed Google Cloud Platform presence, with approx. 50 servers not including containerized applications
• Conducted screenings and interviews of prospective new hires

• Designd & maintaind integration between core platform and partner banks to manage health savings accounts (HSAs)
• Rewrote cryptography and API libraries as needed to assist with external platform integration
• Worked with CTO on internal processes to ensure compatibility with outside platforms
• Occasionally assisted with additional projects, such as analytics tracking, cloud identity access management, and online presence review
• Deployed & maintain Kubernetes cluster to serve website content
• Created Continuous Integration & Continuous Delivery cluster & pipelines
• Developed internal processes to maintain production vs beta vs alpha environments

• Taught programming for middle and high school students
• Taught through camp, as well as at the year-long program Coditum
• Group sizes of 2 - 5 students
• Basic through advanced courses
• Promoted to Technology Director to manage the camp's technology assets
• Managed wireless & wired network to be used by campers & teachers
• Assisted in managing online AWS resources, including building gameservers for students
• Built remote desktop solution for students to access from home during global pandemic
• Object Oriented Programming concepts & implementation
• Networking
• Java
• Python

• Designed from scratch a cloud and local hardware and software infrastructure to support ongoing software development
• Managed additional infrastructure on Amazon Web Services & Google Cloud Platform
• oVirt, Xen, and ESXi Hypervisors
• Supermicro & Dell servers
• Windows Active Directory
• CentOS, Debian, Alpine, and CoreOS Linux, FreeBSD
• Apache & Nginx Server/HAProxy LB
• RAID Configuration/Management
• Cisco Enterprise Networking
• PubSub Messaging Platform
• BIND/PowerDNS
• MySQL/Mongo
• SSL/PKI Design/Development/Implementation
• Git Project Management
• IPMI & iDRAC Remote Managers
• Django & Flask Python Webservers
• pfSense Router
• Kubernetes

• Built hardware and networking infrastructure for family software development projects
• Developed all server side processes, designed, implemented, and built databases
• Managing software infrastructure on Amazon Web Services
• SES
• SNS
• Lambda
• EB
• ELB
• EBS
• EC2
• RDS
• S3
• CloudFront
• Route53
• VPC
• Code Commit/Build/Deploy/Pipeline
• CloudWatch
• IAM
• WorkMail

Projects

Keyless TLS Terminator

Inspired by Cloudflare Keyless SSL, it allows offloading of certificate proofs to remote processes, servers, or hardware. It allows TLS termination and proxying, without the need for the certificate's private key to be accessible to the proxy. KTT is split into a proxy, a "nokeyserver,"" and libraries, designed so anyone can build on top of it, or use it unmodified to heighten their app's security posture.

Isoscribe

Free online blogging platform designed to be used by anybody. With no more configuration than a name and a description, anybody can have a blog, for free, forever. Bring your own domain name, custom theming, and a fully-functional comments platform, you can grow your community, your way.

Indra

Horizontally-scalable, robust, easy to use oAuth server, designed for enterprise-class workloads with the most minimal footprint possible. Blockchain-based audit logging, fully customizable styles, and unbelievable speed, it currently powers the primary authentication system for more than ten thousand users.

Talkback

Simple and robust contact-me dropin designed for static-only websites. In fact, this website uses the same dropin available to all users.

Certs

AWS Certified Solutions Architect - Associate

Contact

• LinkedIn
• GitLab
• GitHub

Elements

i = 0;

while (!deck.isInOrder()) {
    print 'Iteration ' + i;
    deck.shuffle();
    i++;
}

print 'It took ' + i + ' iterations to sort the deck.';