Here are some of the things I can help with. If they sound like solves for your project’s problems, I’m also available to consult through Ordinary Experts, a team of DevOps specialists. Fill out the form and I’ll reach out to schedule a time for us to review.
If you need something that’s not on this list, I can likely still help. Feel free to write in any needs that aren’t already listed.
Things I Can Help With
Training
Building a team but not sure how to set them up? Have a team of experienced operators who are new to DevOps? I can help:
- Bootstrap distributed teams for remote work
- Set up a repo structure
- Write templates and documentation for the development process
- Train engineers on how to do good code reviews in the pull request process
- Train engineers on version control (e.g. git) good practices
- Train engineers on DevOps languages (e.g. Python) and frameworks (e.g. terraform)
Part-Time DevOps
Need a DevOps engineer but not for long enough to hire full time? Stuck on a tricky problem and need someone who’s both temporary but seasoned in the field to help you past it? Buried in technical debt and need someone to help out just long enough for you to get ahead? I can help. I’ll onboard to your team and contribute directly to your repos.
This works best when your team is closely involved and actively contributing to the code with me. That makes it a lot easier for them to take over as I phase out. I may be the top contributor for a while, but I shouldn’t be the sole contributor.
Reference Implementations
Want your team to own the automation but want to make sure they’re using good practices? I can build them a reference.
We’ll work together to identify a component to automate, then I’ll automate it. I’ll keep your team in the loop while I work so they can see the process. When I’m done, I’ll deliver the code along with documentation. Your team can use that component as a reference to follow in their own work. I’ll stay onboard for a while after delivery to review their code and answer questions.
CI/CD Pipeline Development
Trying to figure out which tools to use in all the endless options? Waiting too long for your pipelines? Has “Failed” become a normal state? I can help.
Here are some of the CI/CD tools I’ve used on past projects:
- AWS CodeDeploy
- AWS CodePipeline
- Azure DevOps Pipelines
- CircleCI
- Jenkins
- Maven
Audit Remediations and Security Hardening
Buried in a list of remediations for a security audit? Trying to go beyond just what your auditors require because you’re worried about breaches? I can help.
Here are some of the security tasks I’ve handled in past projects:
- Removing
*permissions from AWS IAM policies. - Removing
0.0.0.0rules from firewalls. - Patching more frequently.
- Upgrading dependency chains.
- Removing uses of root and administrator accounts.
- Logging user access.
- Removing private keys and passwords from code repos.
- Limiting SSL/TLS versions and ciphers accepted by web servers and load balancers.
- Hardening HTTP servers (nginx, apache, etc.).
- Hardening application servers (uWSGI, gunicorn, etc.).
- Limiting who can run deployments.
Upgrades
Getting warnings that Python 2 scripts are out of support? Slogging through errors upgrading to terraform 0.12? Stuck trying to get your services migrated to systemd in a RHEL8 migration? I can help.
Here are some tools I’ve upgraded on past projects:
- Amazon Linux
- Bash/sh
- Chef
- CloudFormation
- Python
- Red Hat Enterprise Linux (RHEL)
- Terraform
- Ubuntu Server
- Windows Server
Discovery and Documentation
Inherit an infrastructure that has undocumented components and a bunch of hand-deployed resources? Lose that one staffer who knew where everything was? I can come on board and help discover how your existing systems work and get them documented for the future.
This is a white-glove service, not a robotic one. I don’t use automated tools to detect your setup by watching network traffic (or similar). Sometimes an automated tool can do the discovery you need, sometimes you need a human. I handle the cases that need a human.