Ernestas Lukoševičius,维尔纽斯开发者,维尔纽斯县,立陶宛
Ernestas is available for hire
Hire Ernestas

Ernestas Lukoševičius

Verified Expert  in Engineering

DevOps Systems Developer

Location
维尔纽斯,维尔纽斯县,立陶宛
Toptal Member Since
March 12, 2020

Ernestas is a skilled site reliability engineer with an extensive background in Kubernetes, Linux, high availability, cloud computing, and automation. He is experienced in scaling and provisioning systems with thousands of requests per second and 0% downtime. Ernestas曾为Hostmaker等公司开发关键系统, Tesla, Cisco, banks, social networks, and media streaming sites, 他还为开源项目做出贡献.

SecurityLinux Server Administration基础设施即代码(IaC)HAProxyAWS DevOpsCloudCloud InfrastructureDebianLinuxUbuntuBashAmazon Web Services (AWS)GitLabAutomationMongoDBSite Reliability EngineeringXen HypervisorServer InfrastructureAWS IAMKVM VirtualizationNomadLinodeApplication Deployment

Portfolio

Information Builders
亚马逊网络服务(AWS)、AWS Lambda、Packer、Helmfile、Helm、Spring、Java...
GGBB
Nomad, GitHub, Git, Python, SQL, Go,服务器基础设施,监控...
Aciety
亚马逊网络服务(AWS), GitHub, Debian打包,Azure虚拟机...

Experience

亚马逊网络服务(AWS)——8年基础设施即代码(IaC) - 6年MySQL - 6 yearsTerraform - 5 yearsKubernetes - 3 yearsAWS Lambda - 2 yearsGitHub - 1 year

Availability

Part-time

Preferred Environment

Amazon Web Services (AWS), Azure, CircleCI, GitHub, Jenkins, Docker, Linux, Terraform, Kubernetes

The most amazing...

...improvement I've delivered was a reduced database snapshot restore time from four hours to less than ten minutes which made test deployment per PR a reality.

Work Experience

DevOps Engineer

2020 - PRESENT
Information Builders
  • 在Azure上改造并部署了一个企业SaaS解决方案. 与多个团队沟通,弥合差距,完成工作.
  • Oversaw architecture of a new product built and deployed on Kubernetes and AWS.
  • 在Node中实现了小的代码更改.js和Java (Spring)来帮助在AWS和Kubernetes中运行.
Technologies: 亚马逊网络服务(AWS)、AWS Lambda、Packer、Helmfile、Helm、Spring、Java, Node.js, ELK (Elastic Stack), Prometheus, Jenkins, Kubernetes Operations (kOps), Azure Kubernetes服务(AKS), Azure, Kubernetes, Docker, Terraform

System Administrator

2014 - PRESENT
GGBB
  • 站点基础设施的扩展和改进, which got up to 4,000后端请求/秒使用Xen, HAproxy, and Nginx load balancing, Varnish caching, and other technologies.
  • Upgraded and redeployed the entire infrastructure with Ansible and standardized all machines on Ubuntu. 最终迁移到Docker Swarm上的Vanilla Docker部署.
  • 提高了DRBD、keepalive和Haproxy的高可用性.
  • 将MongoDB扩展为超过9个节点的复制分片集群.
  • 使用Zabbix, Munin, Monit和自定义Bash/Python脚本进行监控.
  • Created logging infrastructure using Filebeat, Logstash, and Kibana (ELK stack).
  • Performed disaster recovery. Assisted in a 1 TB+ MongoDB data recovery operation from raw disk dumps using Go while seeking through the disk image and looking for JPEGs containing BSONs.
  • 在本地部署上将多个应用程序迁移到Nomad.
Technologies: Nomad, GitHub, Git, Python, SQL, Go,服务器基础设施,监控, 基础设施即代码(IaC), 灾难恢复咨询, Web App Deployment, Software Architecture, GitLab CI/CD, Continuous Integration (CI), Serverless Architecture, Makefile, Docker Compose, KVM, Percona, Varnish, Zabbix, Docker Swarm, Terraform, Continuous Deployment, Redis, Automation, GitLab, Bash, Ubuntu, Linux, Debian, Keepalived, DRBD, PHP, MongoDB, NGINX, HAProxy, MySQL, Docker, Xen, Ansible

System Administrator

2012 - PRESENT
Aciety
  • Automated deployment using Capistrano, Docker (with Docker Compose), and GitHub Actions.
  • Managed AWS EC2 and Azure virtual instances as well as other virtual machines with various LEMP stacks.
  • 协助开发应用程序架构. 将开发环境迁移到Docker Compose(支持Nginx), PHP, MySQL, and RabbitMQ stack).
  • Managed Postfix, Dovecot, Apache SpamAssassin , 以及用于多个客户机的OpenDKIM邮件基础设施.
Technologies: 亚马逊网络服务(AWS), GitHub, Debian打包,Azure虚拟机, Ansible, MySQL, Git, Python, SQL, WordPress, Server Infrastructure, Monitoring, 基础设施即代码(IaC), 灾难恢复咨询, Web App Deployment, Software Architecture, Continuous Integration (CI), Makefile, Docker Compose, Jenkins Pipeline, Percona, Varnish, Jenkins, AWS IAM, Terraform, Continuous Deployment, Redis, Automation, Bash, Ubuntu, Linux, Debian, Capistrano, Zabbix, Node.. js, MongoDB, NGINX, PHP, Docker, Azure

Site Reliability Engineer

2018 - 2020
Hostmaker
  • Migrated Node.从Elastic Beanstalk和ECS到Kubernetes的js和Ruby应用程序. Streamlined the whole migration to a Kubernetes process with presentations for developers and one-on-one training.
  • Bootstrapped multiple Kubernetes clusters with services like AWS IAM Authenticator, cert-manager, KIAM, and metrics-server, to name a few.
  • 通过减少每个应用程序对IAM角色的访问来提高安全性, IAM groups for developers, KubeSec用于在Git中存储秘密, CloudTrail, VPCs, and WAFs.
  • Reduced the time required to set up a testing environment from hours to ten minutes using Kubernetes. S3和AWS Service Operator上预建的数据库快照.
  • 将部署管道从传统CI迁移到CircleCI和Docker Hub.
  • Moved the React static front-end applications to S3 + Amazon CloudFront + Web Application Firewall (WAF), 以及Terraform的后端基础设施.
  • 使用Terraform和CircleCI管理基础设施. 为单独的应用程序编写Terraform模块.
  • Experimented and implemented various developer experience improvements such as wrapper scripts for connecting to databases, 用于生成基于AWS 2fa的凭据的helper脚本, 和自动合并批准的pr与GitHub行动.
技术:亚马逊网络服务(AWS), GitHub, Ansible, MySQL, Git, Amazon ElastiCache, Amazon Aurora, Python, SQL, Node.js, Server Infrastructure, Monitoring, 基础设施即代码(IaC), 灾难恢复咨询, Web App Deployment, Software Architecture, Kubernetes Operations (kOps), NGINX, Continuous Integration (CI), CircleCI, Serverless Architecture, Makefile, Docker Compose, Percona, ELK (Elastic Stack), Amazon EKS, AWS IAM, AWS Lambda, Continuous Deployment, Redis, Automation, Bash, Ubuntu, Linux, Debian, Terraform, Docker, Kubernetes

Site Reliability Engineer

2017 - 2019
Make IT All Work
  • 将多个环境扩展到AWS和Kubernetes. 将基础设施转移到Terraform,将应用程序转移到Helm Charts. Used both EKS and kops, AWS Service Operator, KIAM, cert-manager, and Fluentd.
  • 使用Docker自动化遗留部署, Ansible, Terraf, and Packer as well as new ones with Terraform and Kubernetes/Helm on Jenkins.
  • Assisted in developing architectures for sites handling tens of thousands of concurrent sessions with minimum available resources. Reduced AWS costs by 70%.
  • 使用Datadog、Monit和NewRelic设置基础设施监控.
  • 将Varnish和Apache基础设施迁移到Amazon CloudFront和Nginx.
技术:亚马逊网络服务(AWS), GitHub, PHP, Apache2, Ansible, MySQL, Git, Amazon ElastiCache, Amazon Aurora, Rackspace, Python, SQL, Server Infrastructure, Monitoring, 基础设施即代码(IaC), 灾难恢复咨询, Web App Deployment, HAProxy, Software Architecture, Kubernetes Operations (kOps), NGINX, Continuous Integration (CI), Makefile, Docker Compose, ELK (Elastic Stack), Varnish, Jenkins Job DSL, Amazon EKS, Linode, Jenkins, AWS IAM, AWS Lambda, Continuous Deployment, Redis, Automation, Bash, Ubuntu, Linux, Debian, Docker, Terraform, Kubernetes

Server Engineer

2014 - 2018
SameSystem
  • Bootstrapped Kubernetes clusters on bare-metal servers using methods like Kubeadm, and Matchbox/Terraform. 使用Helm和GitLab进行部署.
  • Used GlusterFS, Ceph, Pacemaker, Corosync, and Keepalived to deliver highly available services for developers and end-users.
  • Improved CI test performance four times by Dockerizing and offloading Jenkins Slaves to Amazon EC2 spot instances. 将Jenkins扩展到100多个节点和作业.
  • Performed MySQL tweaking, replication, monitoring, 自动多层备份与Xtrabackup, MyDumper, and LVM. Accelerated off-site MySQL back-up restoring times from six hours to 30 minutes using prebuilt snapshots and LZ4.
  • 使用Terraform和Puppet作为代码管理基础设施和配置. Wrote modules for Puppet, 改进了具有高可用性的主服务器架构, r10k, MCollective, ENC, with everything on Docker.
  • 用Go语言开发了一个聊天机器人应用程序, which helped developers analyze and trigger Jenkins pipelines replicating what now the GitHub Slack application does (send notifications to developers about PR comments, for example).
  • 部署主动监控使用:Zabbix, Munin, Monit, ELK和TICK.
  • Resolved obstacles in development, deployment, and scaling using Jenkins, GitLab, and Capistrano.
  • Scaled out and maintained the infrastructure from one server to tens of servers on multiple sites. Helped developers adapt.
  • Automated the development environment setup using Puppet, Docker, and Makefiles.
技术:亚马逊网络服务(AWS), GitHub, Debian Packaging, PHP, Ansible, MySQL, Git, Python, SQL, Go, Server Infrastructure, Monitoring, 基础设施即代码(IaC), 灾难恢复咨询, Web App Deployment, HAProxy, Software Architecture, GitLab CI/CD, NGINX, Continuous Integration (CI), Makefile, Docker Compose, Jenkins Pipeline, KVM, Puppet, Percona, ELK (Elastic Stack), Memcached, Zabbix, Capistrano, Jenkins Job DSL, Keepalived, Jenkins, AWS IAM, Terraform, Docker, Continuous Deployment, Redis, MongoDB, Automation, GitLab, Bash, Ubuntu, Linux, Debian, Kubernetes

DevOps Engineer

2015 - 2015
Domino Data Lab
  • Developed pipelines for deploying Java applications on AWS and on-premises using Docker, Salt, and Terraform.
  • 开发的应用程序在部署时不会丢失任何请求.
  • Assisted developers with root cause analysis on production systems for clients.
  • Containerized software and made appropriate patches for it to work on Docker at scale.
技术:亚马逊网络服务(AWS), GitHub, Apache2, Git, Python, SQL, Apache, Server Infrastructure, Monitoring, 基础设施即代码(IaC), 灾难恢复咨询, Web App Deployment, HAProxy, Software Architecture, NGINX, Continuous Integration (CI), SaltStack, Kubernetes, AWS IAM, Continuous Deployment, Redis, MongoDB, Automation, Bash, Ubuntu, Linux, Debian, Terraform, Docker

System Administrator

2006 - 2011
Freelance
  • Performed root cause analysis and fixed emergency problems such as the backing up of websites.
  • 维护办公室的物理服务器,操作系统为Linux和KVM.
  • Assisted in scaling one of the largest movie streaming sites in Lithuania to multiple locations for redundancy.
技术:亚马逊网络服务(AWS), GitHub, Debian Packaging, Apache2, Git, Amazon ElastiCache, Python, SQL, WordPress, Server Infrastructure, Monitoring, 基础设施即代码(IaC), 灾难恢复咨询, Web App Deployment, HAProxy, Software Architecture, GitLab CI/CD, Continuous Integration (CI), CircleCI, KVM, Jenkins, Kubernetes, AWS IAM, AWS Lambda, Terraform, Docker, Continuous Deployment, Redis, Automation, GitLab, Bash, Ubuntu, Linux, Debian, Varnish, MySQL, NGINX, Apache, PHP

Kubernetes基础设施和基础设施代码在几个客户端

我是唯一一个创建云基础设施的DevOps工程师. I bootstrapped Kubernetes on AWS using Kops and EKS for more than seven Kubernetes clusters. 我还创建和管理了一些AKS集群.

我用Terraform管理一切,并教开发人员使用Terraform. I invited project managers to take part in developing their application infrastructure. I moved Node.js, Java, Ruby on Rails, Go和PHP应用程序到Docker上.

使用Jenkins和CircleCI的CI管道

我简化了CI管道,使每个更改都自动化并被跟踪. 在SameSystem,我将构建时间从4小时缩短到15分钟. 部署时间从15分钟减少到不到2分钟. I wrote a chatbot/webhook handler in Go to help with automating mundane tasks (e.g., requesting reviews, 在现有工具可行之前批准pr, and triggering deploys).

I managed Jenkins pipelines with a mix of Bitbucket and GitHub organization plugins, declarative pipelines, and Job DSL. 在Kubernetes上使用Jenkins操作符部署和配置Jenkins. 大部分时间都花在了Maven、Ruby、PHP和Node管道上. 最后,我确保开发人员会参与CI.

AWS和Kubernetes基础设施的安全性

I assisted companies in passing multiple security audits before fundraising. I did that by both enforcing policies and training everyone to adjust to the new processes. 我确保适当的AWS安全实践得到执行, 例如传输中加密和静态加密, 将应用程序和开发人员权限减少到所需的最低限度, 并强制MFA和Cloudtrail日志.

将各种部署迁移到Terraform

Migrated CloudFormation deployments from AWS Managed Services which were using CloudFormation over Terraform. I managed the Terraform configuration with custom modules as well as Terragrunt. I migrated some Lambda deployments from CloudFormation and Serverless over to Terraform with Terragrunt.
AUGUST 2018 - AUGUST 2021

AWS认证解决方案架构师助理

AWS

JUNE 2017 - PRESENT

认证系统管理员(LFCS-1700-001297-0100)

Linux Foundation

Libraries/APIs

Jenkins作业DSL, Jenkins管道,节点.js, Terragrunt

Tools

Helm, Helmfile, Amazon Simple Queue Service (SQS), Amazon CloudFront CDN, Sentinel, Terraform, AWS IAM, Jenkins, CircleCI, GitLab CI/CD, GitLab, NGINX, GitHub, Amazon EKS, Puppet, Ansible, Amazon ElastiCache, ELK (Elastic Stack), Makefile, Docker Compose, Varnish, Zabbix, Capistrano, Git, Apache, Keepalived, Azure Kubernetes服务(AKS), Packer, AWS CloudTrail, AWS CloudFormation, Apache Maven, SaltStack, Docker Swarm

Languages

Bash, PHP, Java, Ruby, Groovy, Python, Go, SQL

Platforms

Amazon Web Services (AWS), Kubernetes, Docker, Debian, AWS Lambda, Linux, Ubuntu, Xen, KVM, Linode, Rackspace, Percona, Apache2, Azure, WordPress

Paradigms

DevOps, Continuous Delivery (CD), Continuous Development (CD), Automation, Continuous Deployment, Continuous Integration (CI), Serverless Architecture, Azure DevOps, Automated Testing, Lambda Architecture

Storage

Amazon S3 (AWS S3), Elasticsearch, On-premise, MongoDB, Redis, Amazon DynamoDB, Amazon Aurora, MySQL, Memcached, DRBD, Azure Active Directory

Frameworks

Spring, Serverless Framework

Other

Security, AWS DevOps, 站点可靠性工程(SRE), Linux Server Administration, AWS Storage Gateway, Cloud, Networks, IT Infrastructure, Implementation, IT Governance, Cloud Infrastructure, APIs, Architecture, Network Architecture, Kubernetes Operations (kOps), 基础设施即代码(IaC), Server Infrastructure, 灾难恢复咨询, Web App Deployment, HAProxy, Monitoring, Software Architecture, AWS认证DevOps工程师, Amazon Kinesis, Single Sign-on (SSO), Azure Virtual Machines, Debian Packaging, Prometheus, Nomad, Calico, Weave, Training, Audits, Security Audits, Identity & Access Management (IAM), Managed Services, Serverless, Lambda Functions, GDPR, Training & Training Content Development

Collaboration That Works

How to Work with Toptal

Toptal matches you directly with global industry experts from our network in hours—not weeks or months.

1

Share your needs

Discuss your requirements and refine your scope in a call with a Toptal domain expert.
2

Choose your talent

Get a short list of expertly matched talent within 24 hours to review, interview, and choose from.
3

开始你的无风险人才试验

与你选择的人才一起工作,试用最多两周. 只有当你决定雇佣他们时才付钱.

Top talent is in high demand.

Start hiring