Professional in Google Cloud & Kubernetes | Honorary Lecturer
- Verfügbarkeit einsehen
- 1 Referenz
- 150€/Stunde
- Brandenburg
- Nähe des Wohnortes
- de | en
- 11.12.2025
- Contract ready
Kurzvorstellung
Auszug Referenzen (1)
"Absolutes Ausnahmetalent – technisch wie auch konzeptionell top. Klare Empfehlung für alle, die professionelle Unterstützung benötigen."
8/2024 – 7/2025
Tätigkeitsbeschreibung
- DevOps-Transformation von OnPremise-Applikationen in die Azure Cloud mittels IaC (Terraform), Helm Charts, GitOps (ArgoCD) und Manifesten
- Arbeit mit Linux Server Distributionen
- Provisionierung Wartung von AKS (Kubernetes) Clustern
- Volle Provisionierung von Grafana Manifesten (Dashboards, Alerts, usw) mittels IaC und Helm Charts
- Berater bei Architekturentscheidungen bzgl. Azure Komponenten und Kubernetes
- Handeln als Azure-Architekt und verantwortlich für die Implementierung
- Verwendete Azure Cloud Komponenten: Azure Application Gateway, AKS (Kubernetes), Azure Storage Accounts (Container), Azure Firewall, Web Application Firewall (WAF), Azure KeyVault, and Bastionhost
- Erstellung einer Hub-And-Spoke VNET Architektur
- Postgres-Migration von OnPremise-Umgebungen in die Azure Cloud mittels Active-Standby Prinzipien (Crunchy Operator)
- Implementierung von Cloud Logging durch Datenerfassung, die in einen Cloud-Speicher gestreamt werden, und Scrapen dieser Daten über Fluentbit und Visualisierung über OpenSearch (+ Operator)
Cloud Spezialist, Database Manager, Kubernetes, Microsoft Azure
Geschäftsdaten
Qualifikationen
Projekt‐ & Berufserfahrung
10/2025 – 2/2026
Tätigkeitsbeschreibung
- Cloud Computing Fundamentals & Architecture: Expertise in core cloud concepts, including the three main Service Models (IaaS, PaaS, SaaS) and diverse Deployment Models (Public, Private, Hybrid, Multi-cloud).
- Modern Application Deployment Strategies (GCP Focus): Instruction on the GCP Application Hosting Spectrum, covering Virtual Machines, Containers (Kubernetes and Cloud Run), Platform as a Service (App Engine), and Serverless Computing (Functions as a Service - FaaS).
- Data Management & Big Data Analytics: Comprehensive coverage of Cloud Storage options (Object, Block, File) and Database solutions, including Relational (Cloud SQL), NoSQL (Firestore, BigTable, Memorystore), and serverless enterprise data warehousing (BigQuery).
- DevOps and Infrastructure Automation: Skills in DevOps principles, including Continuous Integration (CI), Continuous Delivery (CD), Infrastructure as Code (IaC) using tools like Terraform, and implementing effective Monitoring and Logging for system observability.
- Emerging Technologies & Responsible Cloud Use: Focus on crucial topics like Cloud and IoT Security, Identity and Access Management (IAM), data privacy, and the ethical considerations of cloud and massive data collection.
Aus- / Weiterbildung, Datenmodelierung, Datenarchitekt, Netzwerk-Sicherheit, Netzwerkadministrator, Google Cloud, Netzwerkarchitektur
9/2025 – 12/2025
Tätigkeitsbeschreibung
- Optimized CI/CD Performance using Nx: Implemented and configured Nx caching within the Jenkins pipeline to eliminate redundant build and test tasks, resulting in a quantifiable decrease in deployment time and significant cost savings.
- Engineered Partial Deployment on Kubernetes: Designed and scripted sophisticated logic using TypeScript to enable partial, granular deployments targeting Kubernetes clusters, drastically reducing application downtime and deployment risk.
- Modernized Jenkins Pipeline: Refactored the end-to-end CI/CD process (Jenkins) for multiple applications, leveraging modern pipeline-as-code practices and tool integration (TypeScript, Nx, Kubernetes) to ensure a fast, scalable, and maintainable software delivery lifecycle.
Continuous Delivery, Continuous Integration, Softwareentwickler, Jenkins, Typescript, Kubernetes
2/2025 – offen
Tätigkeitsbeschreibung
- Cloud Foundation & Governance: Architected and deployed a Google Cloud Platform (GCP) organizational foundation using Terraform, establishing a robust, modularized structure for network topology and project hierarchy that strictly enforced Dev/Prod environment segregation and resource governance.
- Secure Network Architecture: Designed and implemented a Hub-and-Spoke network topology within GCP, leveraging Shared VPCs, private DNS zones, NAT Gateways, and next-generation firewalls for granular network isolation and enhanced perimeter security.
- Hybrid Connectivity: Established secure and highly available hybrid cloud connectivity by provisioning Cloud VPN tunnels to seamlessly and securely integrate on-premise infrastructure with the GCP environment, ensuring protected data flow.
- Container Platform Engineering: Engineered a production-grade developer platform on a private Google Kubernetes Engine (GKE) cluster, incorporating a comprehensive, secure Software Supply Chain to significantly accelerate development and deployment cycles.
- Integrated a comprehensive DevSecOps suite into the GKE platform, incorporating ArgoCD for GitOps and Keycloak for centralized IAM, alongside a robust security toolkit (Falco, Kyverno, Trivy, SonarQube) to enforce security policies, code quality, and vulnerability scanning throughout the entire CI/CD pipeline.
- CI/CD Automation: Automated the entire platform setup and application deployment workflow utilizing GitHub Actions, promoting developer self-service, accelerated deployment velocity, and adherence to established best practices.
- Cloud-Native Database Strategy: Implemented a resilient, highly available database layer by provisioning PostgreSQL clusters using the CloudNativePG operator on GKE, ensuring data integrity and optimizing for high uptime and performance.
- Disaster Recovery & Business Continuity: Established and validated automated disaster recovery (DR) protocols for critical databases, securing backups to Google Cloud Storage and conducting regular restore validations to guarantee business continuity.
- Workspace Administration & Security (As a Google Workspace Administrator): Directed the end-to-end setup and ongoing administration of the secure Google Workspace environment, aligning service configurations with organizational policy and stringent security requirements.
- IAM & Compliance: Structured and managed a comprehensive Identity and Access Management (IAM) framework using Organizational Units (OUs), enforced granular security policies (e.g., 2-Step Verification), and configured Data Loss Prevention (DLP) rules and Google Vault for compliance and eDiscovery.
Enterprise Architect, Google Cloud, Kubernetes, Network Architect
8/2024 – 7/2025
Tätigkeitsbeschreibung
- DevOps-Transformation von OnPremise-Applikationen in die Azure Cloud mittels IaC (Terraform), Helm Charts, GitOps (ArgoCD) und Manifesten
- Arbeit mit Linux Server Distributionen
- Provisionierung Wartung von AKS (Kubernetes) Clustern
- Volle Provisionierung von Grafana Manifesten (Dashboards, Alerts, usw) mittels IaC und Helm Charts
- Berater bei Architekturentscheidungen bzgl. Azure Komponenten und Kubernetes
- Handeln als Azure-Architekt und verantwortlich für die Implementierung
- Verwendete Azure Cloud Komponenten: Azure Application Gateway, AKS (Kubernetes), Azure Storage Accounts (Container), Azure Firewall, Web Application Firewall (WAF), Azure KeyVault, and Bastionhost
- Erstellung einer Hub-And-Spoke VNET Architektur
- Postgres-Migration von OnPremise-Umgebungen in die Azure Cloud mittels Active-Standby Prinzipien (Crunchy Operator)
- Implementierung von Cloud Logging durch Datenerfassung, die in einen Cloud-Speicher gestreamt werden, und Scrapen dieser Daten über Fluentbit und Visualisierung über OpenSearch (+ Operator)
Cloud Spezialist, Database Manager, Kubernetes, Microsoft Azure
11/2022 – 7/2024
Tätigkeitsbeschreibung
- Management, further development, optimization and maintenance of Kubernetes clusters with over 1200 applications (Rancher), improving deployment efficiency by 30% and reducing downtime by 15%
- DevOps transformation from on-premise applications to Kubernetes using IaC, Helm Charts, GitOps and manifests
- Working with Linux server distributions
- Automated integration and deployment with GitLab CI/CD (.NetCore, Java, Golang, NodeJS), using jobs such as builds, tests, vulnerability scans, integration tests, deployment and notifications
- Introduction of GitOps using ArgoCD and Gitlab runners
- Integration of logging, tracing and monitoring using Grafana, Prometheus, Grafana Mimir, Jaeger, Opentelemetry, Opensearch, InfluxDB, and Sentry
- Integration of endpoints with Prometheus metrics in applications (.NetCore, Java, Golang, NodeJS), as well as sidecar tracing using OpenTelemetry Operator
- Full provisioning of Grafana manifests (dashboards, alerts, etc.) using IaC and Helm Charts
- Introduction of a decoupled IAM system using Keycloak (Operator) and OAuth2-Proxy
- Education and training of developers and system administrators in Kubernetes, observability and SRE approaches
- Consultant for architecture decisions regarding microservices in Kubernetes and tools, as well as databases
- Introduction of DevSecOps in CI/CD pipelines and Kubernetes - with tools such as HashiCorp Vault, Kyverno and Trivy
- Evaluation of the Confluent Kafka Operator in Kubernetes
- Deploy and maintain Strimzi Kafka Operator, Strimzi Kafka Clusters, Kafka-Rest-Proxy, Kafka Bridge, KSQL, AKHQ, Schema-Registry, and Kafka Connect
- Setting up K3s clusters in VPN
- Working with 5 teams according to agile principles; leading retrospectives and other agile ceremonies
- Introduction of integration tests with K6 Grafana
- Implementation of a notification system with Angular, NestJs, GraphQL, Postgres, VerneMQ and Golang
- Web development with Angular and NestJs
- Postgres cluster provisioning via CloudnativePG
- Provisioning and maintenance of MinIO to backup and restore postgres clusters
- Implement an API-Gateway via NgINX Fabric, OAuthProxy2 and Emissary Ingress
Access Management, Advanced Message Queuing Protocol, Angular, Continuous Integration, Docker, Golang, Graphql, Kubernetes, Postgresql
8/2022 – 10/2022
Tätigkeitsbeschreibung
- Management, optimization and maintenance of Kubernetes clusters (Rancher)
- DevOps transformation from on-premise applications to Kubernetes using IaC, Helm Charts, GitOps and manifests
- Automated integration and deployment with GitLab CI/CD (.NetCore, Java), using jobs such as builds, tests, vulnerability scans and deployment
- Introduction of GitOps using ArgoCD and Gitlab runners
- Integration of logging, tracing and monitoring using Grafana, Prometheus,
Jaeger, Opensearch, Loki and InfluxDB
- Integration of endpoints with Prometheus metrics in applications (.NetCore, Java)
- Consultant for architectural decisions regarding microservices in Kubernetes and tools, as well as databases such as Postgres and MSSQL
- Web development with Angular, NestJs, GraphQL, and Postgres
ASP.NET, DevOps, Kubernetes, Postgresql, Server-Monitoring
2/2022 – 6/2022
Tätigkeitsbeschreibung
- Creation of an IT architecture overview for business use cases using a
microservice and domain-driven approach
- Working with AWS and creating EKS clusters (Kubernetes), Route53, S3 and
EC2 instances
- Management, optimization and maintenance of Kubernetes clusters (EKS)
- Management of VPCs and EC2 instances using Ansible and Terraform
- CI/CD pipelining with GitHub Actions, Helm Charts and ArgoCD (GitOps)
- Monitoring of applications and systems using Grafana, Prometheus and Influx Stack
- Creation and administration of Postgres databases
- Deployment of microservice applications in Kubernetes using ArgoCD
(GitOps), as well as the creation of its manifests with Helm Charts (IaC)
- Web development with Angular, NestJs, GraphQL, and Postgres
Amazon Web Services (AWS), Angular, Ansible, DevOps, Graphql, Node.Js, Postgresql, Software Architecture, Typescript
1/2022 – 2/2022
Tätigkeitsbeschreibung
- Working with Digital Ocean and creating Kubernetes clusters, droplets and
container registries
- Administration and management of Kubernetes clusters
- CI/CD pipelining with GitHub Actions, Helm Charts and ArgoCD (GitOps)
- Deployment of microservice applications in Kubernetes using ArgoCD
(GitOps), as well as the creation of its manifests with Helm Charts (IaC)
Monitoring of applications and systems using Grafana, Prometheus and Influx Stack
- Web development with Angular, NestJs, GraphQL, and Postgres
Graphql, Continuous Integration, Server-Monitoring, Angular, Kubernetes, Web Entwicklung
10/2021 – 12/2021
Tätigkeitsbeschreibung
- Introduction of CI/CD pipelines for Angular applications, coupled with Nx
- Deployment of applications from GitLab to AWS servers (Apache)
- Further development of Azure DevOps CI/CD pipelines
- Conceptual design and implementation of a Kong gateway in an existing
Azure Kubernetes Cluster (AKS)
- Architecture conception and presentation of Module Federation
- Web development with Angular, NestJs, GraphQL, and Postgres
Continuous Delivery, Continuous Integration, Router / Gateways, Citrix Systems, Microsoft Azure, Amazon Web Services (AWS), Angular, Kubernetes
Zertifikate
The Linux Foundation
Google Cloud
The Linux Foundation
The Linux Foundation
The Linux Foundation
The Linux Foundation
The Linux Foundation
The Linux Foundation
The Linux Foundation
The Linux Foundation
The Linux Foundation
The Linux Foundation
The Linux Foundation
The Linux Foundation
The Linux Foundation
The Linux Foundation
Ausbildung
Berlin
Über mich
Kernthemen und Kundennutzen:
Ich entwickle stabile, sichere und skalierbare Cloud-Native-Lösungen, die direkt zu besseren Geschäftsergebnissen führen, indem sie die Anwendungsbereitstellung beschleunigen und das Endbenutzererlebnis verbessern. Mein Fokus liegt auf der Bereitstellung von technischer Exzellenz und strategischer Partnerschaft in drei zentralen Wertbereichen:
- Beschleunigung der Innovation durch Modernisierung: Ich migriere monolithische On-Premise-Systeme zu skalierbaren, widerstandsfähigen Cloud-Native-Architekturen. Ich konzipiere und implementiere robuste Cloud-Grundlagen und moderne Entwicklerplattformen, die Best Practices von Anfang an durchsetzen. Dies versetzt Unternehmen in die Lage, ihre Softwareentwicklung zu beschleunigen und Innovationen schneller auf den Markt zu bringen.
- Gewährleistung von Sicherheit und Compliance durch Design: Ich integriere "Security by Design"-Prinzipien in die gesamte Cloud-Infrastruktur. Dies umfasst die Etablierung umfassender Identity- and Access-Management-Frameworks, die Implementierung rigoroser Sicherheitsrichtlinien und die Gewährleistung der Einhaltung strenger Industriestandards und regulatorischer Anforderungen, wie z. B. C5-Compliance.
- Steigerung der Effizienz durch strategische Automatisierung: Ich steigere die Effizienz von Entwicklungsteams durch die Einrichtung vollständig automatisierter, auditierbarer und sicherer Workflows für Anwendungs- und Infrastrukturbereitstellungen. Durch die Reduzierung der IaC-Komplexität und die Minimierung manueller Fehler verbessere ich das DevOps-Erlebnis erheblich und reduziere die durchschnittliche Wiederherstellungszeit (MTTR).
Ich fungiere als wichtiger Berater und Mentor, der die Lücke zwischen der Plattformarchitektur und den Entwicklungsteams schließt, um eine Kultur der kontinuierlichen Verbesserung zu fördern und Teams zu befähigen, ihre Dienste mit größerer Autonomie zu betreiben.
Weitere Kenntnisse
- GCP: Cloud Digital Leader Certification
- GCP: Associate Cloud Engineer Certification
- GCP: Associate Google Workspace Administrator Certification
- GCP: Professional Cloud Developer Certification
- GCP: Professional Cloud DevOps Engineer Certification
- GCP: Professional Cloud Architect Certification
- GCP: Generative AI Leader Certification
- GCP: Professional Cloud Security Engineer Certification
- GCP: Professional Cloud Network Engineer Certification
**Certificates Kubernetes**
- KCNA Kubernetes and Cloud Native Associate
- CKAD Certified Kubernetes Application Developer
- CKA Certified Kubernetes Administrator
- KCSA: Kubernetes and Cloud Native Security Associate
- CKS: Certified Kubernetes Security Specialist
- Kubestronaut
- CGOA: Certified GitOps Associate
- LFCA: Linux Foundation Certified IT Associate
- CAPA: Certified Argo Project Associate
- OTCA: OpenTelemetry Certified Associate
- PCA: Prometheus Certified Associate
- CCA: Cilium Certified Associate
- KCA: Kyverno Certified Associate
- CBA: Certified Backstage Associate
- CNPA: Certified Cloud Native Platform Engineering Associate
**Trainings**
- LFS169: Introduction to GitOps
- LFS256: DevOps and Workflow Management with Argo
- LFS101: Introduction to Linux
- LFS162: Introduction to DevOps and Site Reliability Engineering
- LFS151: Introduction to Cloud Infrastructure Technologies
- LFD102: A Beginner's Guide to Open Source Software Development
- LFS158: Introduction to Kubernetes
- LFS148: Getting Started with OpenTelemetry
- LFS146: Introduction to Cilium
- LFS142: Introduction to Backstage - Developer Portals Made Easy
- LFS144: Introduction to Istio
- LFS183: Introduction to Zero Trust
Persönliche Daten
- Deutsch (Muttersprache)
- Englisch (Fließend)
- Europäische Union
Kontaktdaten
Nur registrierte PREMIUM-Mitglieder von freelance.de können Kontaktdaten einsehen.
Jetzt Mitglied werden