main.tf — devops_engineer.aleksandr_zychkov
// Initializing infrastructure engineer profile...
resource "engineer" "zychkov" {
name = "Aleksandr Zychkov"
role = "DevOps Tech Lead"
cloud = "AWS / GCP"
gitops = true
}
name = "Aleksandr Zychkov"
role = "DevOps Tech Lead"
cloud = "AWS / GCP"
gitops = true
}
Aleksandr Zychkov
DevOps Tech Lead
Building and operating cloud-native infrastructure at scale.
From support engineer to tech lead — across bare-metal, cloud, and blockchain.
Infrastructure at every layer.
From support engineer to tech lead — across bare-metal, cloud, and blockchain.
Infrastructure at every layer.
stack //
Kubernetes
AWS
GCP
Vault
GitOps
Terraform
Bare-metal
industries //
FinTech
Banking
Blockchain
DLP
Cybersecurity
1# k8s/engineer.yaml — demor777/platform
2
3apiVersion: platform/v1
4kind: Engineer
5metadata:
6 name: aleksandr-zychkov
7 namespace: production
8spec:
9 role: DevOps Tech Lead
10 location: Spain 🇪🇸
11 experience: "19+ years"
12 industries: [FinTech, Blockchain, Banking, Security]
13 clusters:
14 - provider: AWS # eu-west-1
15 - provider: GCP # europe-west1
16 - provider: bare-metal # hetzner
17 - provider: bare-metal # servers.com
18 gitops:
19 engine: [FluxCD, Argo CD]
20 drift_detection: true
21 iac:
22 tools: [Terraform, Terragrunt, Ansible]
23 security:
24 secrets: Vault
25 mesh: Istio
26 policies: zero-trust
27 observability:
28 metrics: Prometheus
29 tracing: OpenTelemetry
30 dashboards: Grafana
31 status: ONLINE ✓
// 01
about.yaml
➜ ~ cat profile.yaml
name: Aleksandr Zychkov
alias: demor777
role: DevOps Tech Lead
location: Asturias, Spain 🇪🇸
focus:
- Platform Engineering
- Zero-trust Security
- GitOps / IaC
status: ONLINE ●
➜ ~ _
➜ ~ cat mission.txt
I build reliable, secure, and scalable
infrastructure for high-load systems.
At 01tech I lead DevOps for multi-cluster
Kubernetes (EKS, GKE, bare-metal) with
GitOps (FluxCD, Argo CD), Vault secrets,
and full observability via Prometheus.
Remote from Asturias, Spain.
Open to global opportunities.
➜ ~ _
0
years experience
0
cloud providers
∞
kubectl apply -f
0
static credentials
// 02
stack.json
stack.json
{
"cloud": [
"AWS",
"GCP",
"Yandex Cloud",
"Azure",
"Hetzner",
"DigitalOcean",
"Servers.com"
],
"kubernetes": [ "EKS", "GKE", "Bare-metal", "Karpenter", "Cilium", "Istio", "Nginx Ingress" ],
"gitops": [ "FluxCD", "Argo CD", "HelmFile", "Helmwave", "drift detection", "multi-cluster" ],
"iac": [ "Terraform", "Terragrunt", "Ansible", "Packer" ],
"cicd": [ "GitLab CI", "Jenkins", "GitHub Actions", "Docker" ],
"observability": [ "Prometheus", "Grafana", "OpenTelemetry", "VictoriaMetrics", "Loki", "ELK Stack", "Fluentd", "Alertmanager", "Zabbix" ],
"security": [ "HashiCorp Vault", "Keycloak", "Kyverno", "OPA / Gatekeeper", "Falco", "mTLS / Istio", "RBAC", "VPN" ],
"databases": [ "PostgreSQL", "MySQL", "Redis", "Microsoft SQL" ],
"messaging": [ "Kafka", "RabbitMQ" ],
"languages": [ "Python", "Bash", "HCL", "PowerShell", "YAML" ],
"blockchain": [ "validator nodes", "full nodes", "node monitoring", "performance tuning" ]
}
"kubernetes": [ "EKS", "GKE", "Bare-metal", "Karpenter", "Cilium", "Istio", "Nginx Ingress" ],
"gitops": [ "FluxCD", "Argo CD", "HelmFile", "Helmwave", "drift detection", "multi-cluster" ],
"iac": [ "Terraform", "Terragrunt", "Ansible", "Packer" ],
"cicd": [ "GitLab CI", "Jenkins", "GitHub Actions", "Docker" ],
"observability": [ "Prometheus", "Grafana", "OpenTelemetry", "VictoriaMetrics", "Loki", "ELK Stack", "Fluentd", "Alertmanager", "Zabbix" ],
"security": [ "HashiCorp Vault", "Keycloak", "Kyverno", "OPA / Gatekeeper", "Falco", "mTLS / Istio", "RBAC", "VPN" ],
"databases": [ "PostgreSQL", "MySQL", "Redis", "Microsoft SQL" ],
"messaging": [ "Kafka", "RabbitMQ" ],
"languages": [ "Python", "Bash", "HCL", "PowerShell", "YAML" ],
"blockchain": [ "validator nodes", "full nodes", "node monitoring", "performance tuning" ]
// 03
$ git log --stat --oneline
DevOps Tech Lead
Develop and implement CI/CD strategies, ensuring code quality and applying Infrastructure as Code (IaC) principles
Design, create, and maintain GitOps workflows in multi-cluster Kubernetes environments with automated deployments and configuration drift detection
Implement comprehensive security measures across all environments, collaborating with the security team to review and apply best practices
Develop and maintain a secrets management system integrated with Kubernetes, avoiding storage of passwords and sensitive data in code
Manage a DevOps team, conduct technical reviews, implement best practices, and provide 24/7 support for critical infrastructure
Plan and execute infrastructure migrations and upgrades with minimal downtime
Automate build, testing, and deployment processes to increase delivery speed and reliability
Design and maintain enterprise monitoring and observability stacks (Prometheus, Grafana, custom alerting rules) for infrastructure and applications
Develop scripts to automate operational tasks
Mentor and train team members at all levels, fostering skill development, knowledge sharing, and professional growth
Troubleshoot and resolve technical issues in production and non-production environments
Provide deployment and incident response support, including off-hours coverage
Analyze existing processes and standards, proposing improvements to enhance performance and efficiency
Manage infrastructure for blockchain systems, including deployment, monitoring, upgrades, and performance tuning of validator and full nodes
k8s/gitops/multi-cluster.yaml|18
vault/secrets-management.tf|12
monitoring/prometheus-stack.yaml|9
blockchain/validator-nodes.yaml|8
ci/pipeline-automation.yaml|6
5 files changed, 53 insertions(+), 2 deletions(-)
Senior DevOps Engineer
Delivery support from receipt to implementation in the industrial environment (configuration management, deployment, troubleshooting)
Development and support of the CI/CD process for the developed products
Development of pipelines that provide continuous, secure delivery of changes to the industrial environment without downtime in user service
Creation and development of integrations between key systems that manage changes and communicate with users — Gitlab, Jira, Keycloak as part of the CI/CD processes
Setting up highly available and highly loaded systems; ensuring the smooth operation of infrastructure and services
Creating and optimizing Helm charts to simplify and automate the deployment, configuration, and management of applications in Kubernetes, while adhering to best practices for security and scalability
Developing Ansible roles to automate configuration, management, and deployment tasks, ensuring increased efficiency and consistency across different environments
Designing and maintaining Terraform modules for efficient Infrastructure as Code (IaC) management, ensuring standardization and automation of resource deployment in cloud environments
Configuring and managing monitoring and logging using the Elastic Stack (ELK), Loki for log aggregation, Prometheus, and Grafana for performance and reliability monitoring of systems
helm/charts/app-deployment.yaml|14
ansible/roles/base-config.yml|10
terraform/modules/yc-cluster.tf|8
monitoring/elk-loki-stack.yaml|7
ci/gitlab-pipelines.yaml|5
5 files changed, 44 insertions(+), 2 deletions(-)
Lead System Administrator / DevOps
Experience deploying and administering CI/CD platforms, automating delivery processes (Gitlab-CI, Jenkins, Ansible)
Experience with Docker (dockerfile, docker build, docker-compose) and orchestration of Kubernetes applications (GKE, EKS, DOKS)
Ensure uninterrupted and stable work of the company distributed IT infrastructure
Infrastructure code design (Terraform, Ansible)
Design and implementation of security policies for employees of different departments
Active interaction with development, testing and support teams
Management of a team of 4 system administrators: setting and decomposition of tasks, monitoring of implementation, motivation; recruiting employees
Scripting (Bash, PowerShell); administration of Windows- and Linux-instances (Ubuntu, Nginx, IIS, AD, GPO, DNS, Exchange)
Working with Docker containers (building Docker containers and packages for Windows and Linux)
Implementation of system monitoring tools (Prometheus, Zabbix, Grafana); resource management in Azure and ESXi on-premises systems
→ Full migration of the company main data-center to the other region (AWS, Azure, VMware)
→ Design and implementation of virtual workplaces (VDI); Company Training center organization
→ Design and implementation of different infrastructures for software testing and development departments (VMware vSphere / GCP, AWS, Azure, Yandex Cloud / Docker / Linux)
infra/datacenter-migration.tf|22
k8s/gke-eks-clusters.yaml|15
monitoring/zabbix-prometheus.yaml|10
ci/jenkins-gitlab-ci.yaml|8
security/ad-policies.yaml|6
5 files changed, 61 insertions(+), 3 deletions(-)
Senior System Administrator
Company infrastructure management (network hardware, more than 60 physical servers Supermicro, HP, Dell and others)
Management and settings of Linux and Windows servers
Local networks design
Design and implementation of the access control system
Company IT infrastructure monitoring
Design and building of the company VPN network
Providing of the company fail-safe services 24/7
infra/physical-servers.yaml|12
network/vpn-access-control.yaml|7
2 files changed, 19 insertions(+)
Senior Technical Support Engineer
Management of the technical support department
Providing close interaction of technical support and software testing and development departments
Monitoring of the each stage of the task and deadlines
Technical Support Engineer / Desktop Support Engineer
Client technical support
Software installation for the company clients
Client's problem solving
// 04
deployments/
kubectl get deployments --all-namespaces -o wide
ns: platform
k8s-gitops
Running
Kubernetes Platform & GitOps
Multi-cluster Kubernetes on EKS and bare-metal across multiple regions.
GitOps via Terraform + FluxCD — zero static credentials in CI/CD:
IRSA, KMS, Vault Webhook. Istio Ambient Mesh with sidecar-less mTLS between all services.
ns: fintech
iac-platform
Running
Infrastructure as Code — FinTech
Full cloud automation across 6+ environments (dev/test/uat/prod/drp/office).
Terraform modules for K8s, Kafka, ELK, MinIO, PostgreSQL.
HA Keycloak with LDAP/AD, zero-downtime rolling updates.
GitOps for 150+ Helm releases via Helmwave.
ns: blockchain
validator-nodes
Running
Blockchain Infrastructure (Production)
Production nodes across five blockchain networks:
TRON, TON, Solana, Bitcoin, Ethereum.
Memory optimization with TCMalloc for TRON,
24/7 monitoring and alerting, high availability.
ns: infrastructure
datacenter
Running
Data Centers & Virtualization
Built enterprise infrastructure from scratch — two server rooms
with cooling, cabling, and UPS design. VMware vSphere managing
150+ physical servers. Full DC migration to cloud (AWS/Azure/VMware)
with zero downtime on critical services.
ns: observability
monitoring-stack
Running
Full Observability Stack
Prometheus + Grafana + VictoriaMetrics across multi-cluster K8s.
Centralized logging with 20+ ILM policies via Elasticsearch/OpenSearch.
OpenTelemetry distributed tracing, custom exporters for Kafka and Elasticsearch.
ns: reliability
disaster-recovery
Running
Disaster Recovery at Scale
Full DR contour in a separate availability zone for a regulated FinTech platform.
Complete duplication of Kubernetes clusters, Kafka, ELK, Keycloak, Zookeeper.
Terraform-automated failover — zero manual steps in the recovery chain.
// 05
$ ./contact.sh
contact.json
available for opportunities
{
"name": "Aleksandr Zychkov",
"email": "loading…",
"linkedin": "aleksandr-zychkov",
"telegram": "@demor777",
"site": "demor777.dev",
"location": "Asturias, Spain",
"remote": true
}
ssh_config
$ ssh [email protected]
Connecting to demor777.dev...
Welcome, recruiter 👋
I'm open to:
→ DevOps Tech Lead
→ Platform Engineering
→ Remote (EU timezone)
Get in touch:
✉ loading…
$ _