Vladimir Bogodist
Solution Architect / DevOps / DevSecOps
About
Vladimir has focused on security and automation since 2006. Both DevOps and security is close to his heart, as the initial knowledge comes from traditional data centers, but then moved to the cloud to be an active support for both developers and testers in the security department. With his solid knowledge of hardening and application security, it is natural to be involved as an Architect and design secure architecture, it can be everything from automatic vulnerability analysis of Docker images to curiosity and questioning how developers handle secrets and randomness in their code. Vladimir has extensive experience in testing, evaluating and implementing tools, support and methods to increase security. This also includes knowledge of automating security processes to ensure that security policies are complied with. He is used to being the link between development teams and other parts of the organization when it comes to communication about security. He is used to support teams to implement security policies and thereby also strengthen the security culture within the company. For Vladimir, in addition to operational security in production systems, DevSecOps is also about being an active support for developers and being able to give practical and proactive advice in the form of proof-of-concept to build security from the beginning, in all environments, including development environments. In the role of DevSecOps, Vladimir also takes on the role of an expert and the responsibility for monitoring the environment in order to be able to give good advice on cloud services and tools that can complement / replace parts of the existing architecture. This saves time during development as it prevents developers from inventing their own frameworks. Vladimir has experience in integrating security best practices into the development process. He is passionate about security and security-conscious development methodology. He has good knowledge of InfoSecurity and secure protocols, eg Kerberos, GPG, Yubikey, SSL, asymmetric crypto, RNG equipment. He has also built his own courses for DevOps, Terraform and working with clouds, he has an understanding of change work when it comes to automation. He has over 15 years of experience in automation, OS hardening, maintenance of vulnerability scanners e.g. OpenVAS, Nessus, AWS Inspector, OWASP, Security Incident Investigation, OS Hardening using CIS/DISA, Network Security using OpenBSD, OpenVPN. He has broad experience in programming such as Java, C, C++, Basic, Pascal as well as experience in scripting languages such as Bash, Python and Ruby. He has experience in pair programming. Vladimir has extensive experience with both Desktop and Server operating from Microsoft as well as Linux and solid experience with production systems based on Docker: Kubernetes, Docker Compose, Docker Swarm, AWS ECS, AWS EKS, AWS ECS on Fargate as well as knowledge of the technology OpenShift TCP/IP, basic routing, advanced routing, carp, trunk, vlan, traffic shaping, WAN routing, IPSec for hybrid clouds. Huge focus in work is ability to perform audit on customers solution, being able to perform reverse-engineering of the legacy systems, create a roadmap for actual problem solving and driving the roadmap strategy into customer oriented goals. Motivated people, innovation, new way of thinking. Intelligent solution with focus on automation robustness, scaling and architectural quality. Services offered: • Architectural audits and DevOps team lead — Review existing solution, use AWS 7R strategy for re-inventing the solution. Create a customer roadmap including educational materials. Support Developers, Testers, NOC and Operations on daily basis
