Profile

  • Projects 48
  • Rating -
  • Rating 2 894
Register

If you have an account, log in

Indicators

  • Last project: 1 year back
  • Bids in the last two weeks: 1
  • Collaboration with clients: 40
  • Last visit: 10 hours 58 minutes ago

CV

I help businesses build, protect and stabilize production infrastructure for web applications, APIs, high-traffic platforms and business-critical services.

My main focus is DevOps, DDoS defense, traffic incident response, Cloudflare/WAF, origin protection, Kubernetes, Linux infrastructure, observability, reverse proxy infrastructure and self-hosted edge protection.

I work at the intersection of DevOps, infrastructure engineering, traffic security and high-load troubleshooting. For me, infrastructure is not just servers, deployments and CI/CD. It is a complete survival system for a service under load, under attack, under bot traffic, under misconfiguration or during a sudden growth of real traffic.

When a website, API or online platform becomes slow, unstable or unavailable, the real cause of the problem is not always obvious. It can be a DDoS attack, bot/scanner traffic, Tor/VPN/proxy traffic, fake traffic, a normal traffic spike, an exposed origin, weak caching, a bottleneck in Nginx/Apache/Tomcat/reverse proxy, application worker exhaustion, upstream overload, database pressure, issues with RDS/PostgreSQL/ClickHouse/MySQL, a lack of file descriptors, TCP connection exhaustion or missing monitoring/alerting.

I help technical teams and business owners understand what is actually happening, separate attack traffic from infrastructure bottlenecks and build a practical plan for stabilization, protection and further system improvement.

My DevOps experience includes working with Linux, Docker, Kubernetes, Amazon EKS, Amazon ECS, AWS Elastic Beanstalk, AWS CloudFormation, Terraform, Ansible, AWX, Nginx, Apache, Tomcat, Git, Bash, CI/CD, monitoring, logging, alerting, cloud infrastructure, databases, cache, queues, reverse proxies, VPN/IPSec and production troubleshooting.

I have practical experience with AWS services and cloud-native infrastructure: Amazon EKS, Amazon ECS, AWS Elastic Beanstalk, Amazon RDS, Amazon ElastiCache, Amazon SQS, CloudFormation, as well as building infrastructure using IaC approaches: Terraform, CloudFormation, Ansible and AWX.

In data and backend-load work, I work with PostgreSQL, PostGIS, MySQL, ClickHouse, Amazon RDS, ElastiCache, SQL, as well as BI and analytics tools such as Apache Superset and Metabase. This allows me to look at incidents not only from the server or network side, but also from the database side, heavy SQL queries, analytics workloads, caching and architectural bottlenecks.

A separate part of my experience is observability and incident visibility. I work with Grafana, OpenTelemetry, Datadog, logs, metrics, alerting, post-incident reports and traffic profiling. My goal is to make sure the team does not guess what happened, but sees the real picture: which IPs, ASNs, countries, URLs, User-Agents, request patterns, upstream services, database queries or infrastructure limits caused the problem.

In the field of traffic security, I work with DDoS mitigation, Cloudflare, WAF rules, rate limiting, bot traffic analysis, Tor/VPN/proxy traffic analysis, anonymous traffic profiling, origin protection, edge filtering, connection control, failover and upstream protection.

I also research XDP/eBPF defensive filtering, high-performance packet filtering concepts and develop my own Rust-based high-performance reverse proxy as part of a self-hosted edge protection layer. Its purpose is traffic filtering, origin protection, rate limiting, observability, connection control and experiments with DDoS/bot-traffic mitigation.

My security experience includes penetration testing, controlled exploit analysis, defensive research, traffic abuse investigation and understanding how attack traffic affects real infrastructure. I do not see security as something separate from DevOps — for me, it is part of production stability.

I also have experience with team management, Jira, Jira Service Desk, Scrum, training and technical communication with teams. This allows me not only to find the technical root cause of an incident, but also to explain it clearly to the business, development team, DevOps team or management.

What I do:

• DevOps infrastructure engineering
• Production infrastructure troubleshooting
• DDoS and bot-traffic investigation
• Traffic incident response
• Cloudflare/WAF configuration
• Origin protection and self-hosted edge protection
• Kubernetes, Docker and Linux infrastructure
• AWS infrastructure: EKS, ECS, Elastic Beanstalk, RDS, ElastiCache, SQS
• Infrastructure as Code: CloudFormation, Terraform, Ansible, AWX
• Reverse proxy infrastructure: Nginx, Apache, Tomcat
• Observability: Grafana, OpenTelemetry, Datadog, logs, metrics and alerts
• Database and backend pressure analysis: PostgreSQL, PostGIS, MySQL, ClickHouse, RDS
• BI and analytics platforms: Apache Superset, Metabase
• Rate limiting, connection control, failover and upstream protection
• Tor/VPN/proxy traffic analysis and anonymous traffic profiling
• XDP/eBPF defensive filtering labs
• Rust-based reverse proxy development
• VPN/IPSec infrastructure
• Incident reports and infrastructure hardening
• Team management, Jira, Jira Service Desk, Scrum and technical training

Typical problems I help solve:

• A website or API goes down during traffic spikes
• Cloudflare is enabled, but the origin is still overloaded or directly exposed
• Bots, scanners, Tor/VPN/proxy traffic or fake traffic hit expensive backend endpoints
• The team does not know whether it was DDoS, bots, infrastructure failure or a database bottleneck
• Nginx, Apache, Tomcat or a reverse proxy becomes a bottleneck under load
• Application workers are exhausted faster than the team can detect it
• PostgreSQL, MySQL, ClickHouse or RDS receives excessive pressure
• There is no proper monitoring, alerting or post-incident report
• Infrastructure limits: file descriptors, TCP connections, CPU, RAM, network queues or upstream overload
• The current infrastructure is not ready for hostile, abnormal or high-volume traffic
• The business wants more control through a self-hosted edge layer instead of relying only on external protection providers

My goal is simple: to help businesses move from infrastructure and traffic chaos to clear visibility, controlled incident response, a practical mitigation plan and stronger edge/origin protection.

If your website, API or infrastructure is unstable under load, attack or abnormal traffic, I can help you understand what exactly happened, find the real root cause and prepare the system for the next traffic incident.

Tags

mongodb ubuntu Mikrotik web developer golang Nestjs React / Redux TK / Next.js

Skills and abilities

Administration

Services