Cloud Operations Engineer
November 2021 - Present
As a Cloud Operations Engineer on the special projects team, I've worked with GitLab runners and CICD pipelines to support the build and deployment processes. In particular, I've configured ECR proxy on an EKS cluster to allow CICD pipelines to pull docker images from a private ECR repository without login credentials for streamlined and secure deployment.
To streamline CICD deployments for faster execution and allow easier troubleshooting, I've created a custom docker image that has deployment tools preinstalled to elminate time spent in downloading software per execution, reduce network usage, and amount of logs produced to allow errors to easily surface for corrective action.
Using Terraform, I've automated creation of WAFs for AWS Application Load Balancers that protect applications and web services deployed in EKS cluster allowing improved consistency, tracking code changes over time, and the ability to easily recover from failures.
To enable applications in EKS to gain access to AWS resources and services, I've configured Kube2IAM to allow application pods to link with IAM roles that grant permissions tailored for the application.