Results-driven NetDevOps & Infrastructure Engineer with extensive expertise in network automation, security, and large-scale hybrid environments. Experience in CI/CD, observability, and hybrid cloud environments, integrating networking and security into DevOps workflows. Proficient in Ansible, AWX, Terraform, Python, and Git, leveraging Kubernetes and OpenStack for scalable, secure, and automated infrastructure. Passionate about cross-team collaboration, operational efficiency, and driving innovation through automation.
* Infrastructure & DevOps Management: * Designed and maintained CI/CD pipelines and Terraform, ensuring streamlined deployment workflows. * Built a scalable serverless SaaS platform leveraging AWS Lambda, automated provisioning, and event-driven microservices. * Application Development & Deployment: * Developed and deployed backend services using Python, RESTful APIs, and MongoDB, optimizing data handling and storage efficiency. * Managed frontend deployment workflows using React, JavaScript, and Vercel to ensure smooth user experiences. * Security & Compliance: * Integrated SSL/TLS security management via Certbot to ensure encrypted data transfers and application security. * Facilitated GDPR compliance by implementing secure login mechanisms and data encryption to protect user privacy and sensitive information.
* Infrastructure Automation & Configuration Management: * Develop and maintain Zero Touch Provisioning (ZTP) workflows for automated infrastructure deployment and configuration. * Manage and maintain production Nginx load balancers and secure traffic management within a containerized Kubernetes and OpenStack environment. * Manage hybrid network infrastructure with EVPN/VXLAN networking, using Ansible and Dockerized AWX alongside Terraform/Terragrunt for automated network provisioning and configuration. * Maintain IPAM as a Source of Truth (SoT), leveraging a PostgreSQL-backed system within a containerized Kubernetes and OpenStack environment to drive network automation and ensure consistency across infrastructure, including firewalls, load balancers, and Linux-based systems. * Extend automation with Python frameworks, supporting use cases such as MIB translation for network visibility, API-driven customer whitelisting, and automated security policy updates to enhance compliance. * Security & Compliance: * Collaborate with development and security teams to design, provision, and secure infrastructure for new applications, applying Zero Trust principles and enforcing RBAC across automation tools, version control, and infrastructure policies. * Collaborate with CyberSec teams to continuously onboard logs, refine threat detection processes, and enhance security visibility within centralized security platforms, ensuring ongoing security improvements and compliance. * Enforce secure access control through automated secrets management, tokenized credentials, and ISO27001-compliant security policies. * Monitoring & Observability: * Deploy and manage monitoring and telemetry solutions within a containerized Kubernetes and Docker environment, collecting metrics via gRPC, Telegraf, FluxDB, and Grafana. * Enhance high availability and system resilience by continuously refining automated health checks and performance monitoring for proactive issue detection. * Documentation Automation, DocOps & mentoring: * Automate data collection from multiple sources (API integrations, monitoring tools, infrastructure systems) and visualize insights in Confluence. * Mentored and educated all new colleagues to integrate and support and educat all colleagues in the IaC and automation environment.
* Co-ownership of high bandwidth capacity mpls based network with ingestion of satellite channel reception at teleport sites. * Manage infrastructure for custom developed high demand transcoding solutions for 24/7 channel distribution, both in B2C and B2B customer cases. * Facilitate hybrid on-premise and AWS cloud based solution for cost efficient and scalable production environment. * Utilize mixed proprietary hardware and open source solutions when needed to facilitate network. * Designed and implemented large scaled globally deployable IaC based infrastructure with ansible, python and docker. * PEaaS - Creator of a "Production Environment As A Service" which facilitated high capacity, low latency, cost efficient, high security integrity and remote access needs for transcoding and processing Hollywood Intellectual Properties for resale.
* Ownership of Itivity global LAN/WAN/WLAN/VOIP/Security network with banking/finance customer hosting and stock market multicast connectivity in all continents.
* Participated in a multi-tenant data center environment as network specialist for advanced setup and specialized customer requirements. Major customer projects * Karolinska Institutet: Acted infrastructure manager and network/security specialist. * MTG: Delivered datacenter implementation of dynamic routing architecture plan. * National Museum: Implemented wireless network system organization wide.
SATS Sports Club
Network/Security Administrator
2010 - 2012
* Ownership of SATS international Network Infrastructure * Led the design and deployment of SATS' Cisco-based network & VoIP infrastructure, supporting international expansion.
Lidl Sweden
Network Administrator
2008 - 2008
* Ownership of network infrastructure across 150+ sites, including HQ, data centers, and warehouses, ensuring secure VoIP and Cisco networking.
