← Back to list
senior
Registration: 11.01.2023

Alexey Podsadnik

Specialization: Devops Engineer
Enthusiastic DevSecOps engineer with 7+ years of industrial experience in top financial & fintech companies eager to contribute to team success through hard work, attention to detail and excellent organisational skills.
Python go Linux macOS Windows Git Jenkins TeamCity Docker Kubernetes Ansible Grafana
Enthusiastic DevSecOps engineer with 7+ years of industrial experience in top financial & fintech companies eager to contribute to team success through hard work, attention to detail and excellent organisational skills.
Python go Linux macOS Windows Git Jenkins TeamCity Docker Kubernetes Ansible Grafana

Portfolio

Tinkoff Bank

International fintech company. Developing, maintaining and automating security tools for configuration management and secure software development with shift left security and everything as code approach. - Implementing security tools (SAST, DAST, IAST, SCA, IaC security, fuzzing, secret detection) into CI/CD pipelines (Gitlab CI, Jenkins, TeamCity). - Contributing to the vulnerability management platform development and providing its maintenance. - Implementing and maintaining of dependency management processes and tools (SCA). - Developing a security scanners wrapper on Go to make it easier for developers use it for security testing. - Implementation of SSDLC frameworks (BSIMM). - Open-source projects security scoring & usage restricting. - Providing Kubernetes clusters hardening. - Implementing security tools in Kubernetes clusters (RASP). - Enforcing custom policies on Kubernetes objects using OPA. - Building secure base images for the development teams. - Setting up the collection of metrics and logs from security tools (ELK, Prometheus, Victoria Metrics).

Tinkoff Bank

- Building dashboards and setting up alerting (Grafana). - Securing cloud infrastructure (AWS, GCP + Terraform) - Participating in infrastructure architecture and services development. - Workshops for development teams. - Building secure workflows with sensitive data. - Building a secure data warehouse/data lake. - Design and implement a service to search for sensitive data in logs and databases. - Building data sanitation processes, data flow inventory - Implementing and maintaining sensitive data discovery tools in web applications. - Raising data security awareness among analysts and data scientists.

Otkritie Bank

International financial corporation. - Providing maintenance and adjusting Internet access control systems. - Participating in projects for creating comprehensive technical solutions to secure network perimeter, cloud infrastructure (AWS, YaC), virtualisation systems (OpenStack, VMware). - Security tools provisioning (Ansible, Puppet). - Personal consultations and engagements with companies team members for knowledge sharing.

Skills

Python
Go
Linux
MacOS
Windows
Git
Gitlab CI
Jenkins
TeamCity
Github Actions
Docker
ContainerD
Kubernetes
Ansible
Puppet
HashiCorp Terraform
Helm
Kustomize
Grafana

Work experience

DevSecOps Engineer
since 04.2019 - Till the present day |Tinkoff Bank
Gitlab CI, Jenkins, TeamCity, SCA, Grafana, BSIMM, CI/CD, Kubernetes, AWS, GCP, Terraform
International fintech company. Developing, maintaining and automating security tools for configuration management and secure software development with shift left security and everything as code approach. - Implementing security tools (SAST, DAST, IAST, SCA, IaC security, fuzzing, secret detection) into CI/CD pipelines (Gitlab CI, Jenkins, TeamCity). - Contributing to the vulnerability management platform development and providing its maintenance. - Implementing and maintaining of dependency management processes and tools (SCA). - Developing a security scanners wrapper on Go to make it easier for developers use it for security testing. - Implementation of SSDLC frameworks (BSIMM). - Open-source projects security scoring & usage restricting. - Providing Kubernetes clusters hardening. - Implementing security tools in Kubernetes clusters (RASP). - Enforcing custom policies on Kubernetes objects using OPA. - Building secure base images for the development teams. - Setting up the collection of metrics and logs from security tools (ELK, Prometheus, Victoria Metrics). - Building dashboards and setting up alerting (Grafana). - Securing cloud infrastructure (AWS, GCP + Terraform) - Participating in infrastructure architecture and services development. - Workshops for development teams. - Building secure workflows with sensitive data. - Building a secure data warehouse/data lake. - Design and implement a service to search for sensitive data in logs and databases. - Building data sanitation processes, data flow inventory. - Implementing and maintaining sensitive data discovery tools in web applications. - Raising data security awareness among analysts and data scientists.
Cybersecurity Engineer
03.2015 - 11.2019 |Otkritie Bank
Ansible, Puppet, OpenStack, VMware, AWS, YaC
International financial corporation. - Providing maintenance and adjusting Internet access control systems. - Participating in projects for creating comprehensive technical solutions to secure network perimeter, cloud infrastructure (AWS, YaC), virtualisation systems (OpenStack, VMware). - Security tools provisioning (Ansible, Puppet). - Personal consultations and engagements with companies team members for knowledge sharing.

Educational background

Specialist's Degree in Cybersecurity
2009 - 2014
Russian State University for the Humanities

Languages

EnglishIntermediateRussianNative
PythongoLinuxmacOSWindowsGitJenkinsTeamCityDockerKubernetesAnsibleGrafana