Profile

Lucas Possamai

Lucas Possamai

Cloud / DevOps Engineer

Name:Lucas Possamai
Date of birth:April 19, 1990
Address:Auckland, New Zealand
sudo apt install coffee

Employment

2021 - present

Geo

Senior DevOps Engineer

I'm back at Geo, this time, as a Senior DevOps Engineer. I am responsible for the design, architecture, maintenance and deployment of secure and complex ISO/IEC 27001 and CIS compliant applications and infrastructure in AWS, using Terraform, Bitbucket CI/CD pipelines and Ansible.

I am also responsible for the reliability and scalability of the Cloud Databases that serve thousands of customers worldwide.

  • Deploying (ISO/IEC 27001, and CIS compliant) infrastructure on AWS with Terraform and Bitbucket CI/CD pipelines.
  • Security incident response (investigation and mitigation)
  • Large scale patching and information gathering with AWS Systems Manager
  • Documenting best practices for development and deployment relevant to the business
  • CloudFront and Lambda functions to increase security and scalability
  • AWS Shield, AWS CloudFront and AWS Global Accelerator for DDoS protection
2021 - 2021

RedShield

Senior Cloud PLatform Engineer

As a Cloud Platform Engineer at RedShield, I am responsible for the design, architecture, maintenance and deployment of secure and complex containerised PCI, ISO/IEC 27001, and CIS compliant applications and infrastructure in AWS, using Terraform, Gitlab CI/CD pipelines and Ansible.

  • Deploying (PCI, ISO/IEC 27001, and CIS compliant) infrastructure on AWS with Terraform and GitLab CI/CD pipelines.
  • Automation of on-premise infrastructure with Puppet and Gitlab CI/CD pipelines.
  • Security incident response (investigation and mitigation)
  • Large scale patching and information gathering with Puppet
  • Documenting best practices for development and deployment relevant to the business
  • AWS EKS architecture with helm deployments and Terraform
  • AWS WAF to Mitigate OWASP’s Top 10 Web Application Vulnerabilities
  • AWS Shield, AWS CloudFront and AWS Global Accelerator for DDoS protection
2018 - 2021

Trade Me

Senior Cloud Engineer

As a Cloud / DevOps Engineer at Trade Me, I am responsible for the design, architecture, maintenance and deployment of complex cloud environments in AWS and also in on-premise.

I have completed a migration project from on-premise to AWS with only 90 minutes of planned downtime of production systems with heavy load. This project was completed using Jenkins, Git, EC2, ELB, RDS (Oracle), DMS and other AWS services.

  • Deploying PCI-DSS and CIS compliant infrastructure on AWS using Ansible, Terraform and Cloudformation
  • Building automation for deploying AWS infrastructure
  • Development of Ansible modules, roles and playbooks for deployment
  • Implementing monitoring using New Relic for on-premise and cloud environments
  • Automating AMI builds, hardening and deployment via CI/CD pipelines
  • Troubleshooting issues with the JVM for different applications used in the infrastructure
  • Responsible for looking after the infrastructure used by development comprised of Jenkins, Git, Gitlab, Build Agents
  • Xen (vm stack) server management, migration, management
  • Security incident response (investigation and mitigation)
  • Datacenter server deployment
  • Large scale patching and information gathering using Puppet
  • Documenting best practices for development and deployment relevant to the business
  • Rolled out more robust, auto-scaling infrastructure using a Docker stack (ECS).
2015 - 2018

Geo

Senior AWS Cloud Engineer

Working together with an AWS Gold partner based in Sydney, we migrated the web, API, and Database tiers to AWS with only 90 minutes of scheduled outage. I was responsible for the design and architecture of the +4TB PostgreSQL Database for the production and UAT/testing environments, with a cluster of Master and Slaves, which had an average of 6 million processed transactions per month.

After a couple of months running Geo's infrastructure in AWS, the Infrastructure team decided to shrink the +4TB PostgreSQL Database by performing a migration of the Binary data *BLOBS* (pdf, pictures, .doc, etc) to AWS S3.

After the migration, the Database size dropped from +4TB to only 600GB, decreasing the infrastructure cost by 50%. This project was done in 3 months with NO outages and NO data loss.

  • AWS Cloud Formation
  • AWS Route53
  • AWS S3
  • AWS EC2
  • AWS Landing Zone
  • AWS ELB
  • AWS Auto Scaling Group
  • AWS SNS, SQS
  • AWS ElastiSearch
  • AWS RDS
2013 - 2015

Cia do Micro

System and Database Administrator

  • Maintenance and operational support for Cia do Micro' database servers infrastructure and supporting technology and where required Cia do Micro' web servers, application servers, proxy, load, etc.
  • Contribution and ownership of the core product database design and configuration, both current and target state.
  • Performance tuning and redundancy of production servers (web, app and database) to ensure high uptime and availability of services.
  • Collaborate with the Development team to analyse and discuss the quality of code and data queries to ensure that we are continually developing our team's skill sets.
  • Contribute to the speedy resolution of the infrastructure service related issues.
  • Troubleshoot issues and identify root causes, fixing issues as they arise.
  • Query tuning
  • Full database migrations and cut overs on multiple servers (hot-standby replication)
  • Production database (PostgreSQL) over 5TB, 24x7 with an average of + 9M transactions per day, supporting over 11,000 Requests per second.
  • Technologies include: PostgreSQL, CentOS Linux, Ubuntu Linux, PHP, Redis, Jira, New Relic, Bitbucket, Kibana, bamboo, Munin, etc.
  • Data cleanup.
  • Day to day support and administration.
  • Linux support
  • Network support
  • write/rewrite/optimize PL/pgSQL functions
  • various tasks scripting (bash)
  • managing backups, archives and various types of replication
  • database schema design
  • server and database sizing analysis and predictions
2007 - 2010

Prefeitura Municipal de Bento Gonçalves

System and Database Administrator

  • Maintenance and operational support for Prefeitura Municipal de Bento Gonçalves' database servers infrastructure and supporting technology and where required Prefeitura Municipal de Bento Gonçalves' web servers, application servers, proxy, load, etc.
  • Contribution and ownership of the core product database design and configuration, both current and target state.
  • Performance tuning and redundancy of production servers (web, app and database) to ensure high uptime and availability of services.
  • Collaborate with the Development team to analyse and discuss the quality of code and data queries to ensure that we are continually developing our team's skill sets.
  • Contribute to the speedy resolution of the infrastructure service related issues.
  • Troubleshoot issues and identify root causes, fixing issues as they arise.
  • Query tuning
  • Full database migrations and cut overs on multiple servers (hot-standby replication)
  • Production database (PostgreSQL) over 5TB, 24x7 with an average of + 9M transactions per day, supporting over 11,000 Requests per second.
  • Technologies include: PostgreSQL, CentOS Linux, Ubuntu Linux, PHP, Redis, Jira, New Relic, Bitbucket, Kibana, bamboo, Munin, etc.
  • Data cleanup.
  • Day to day support and administration.
  • Linux support
  • Network support
  • write/rewrite/optimize PL/pgSQL functions
  • various tasks scripting (bash)
  • managing backups, archives and various types of replication
  • database schema design
  • server and database sizing analysis and predictions