Josh Lim Email & Phone Number

Fairfax, VA, US

• Lead DevSecOps, Network, Cloud, Security, Infrastructure, and Systems Engineer
• Led Migrations to different cloud providers and processor architectures (x86 and ARM)
• Architect hosted development environment complete with automated scripts, resourcemonitor triggers, failover strategies, cloud storage lifecycle policies, infrastructure backup/restore policies, DevSecOps pipeline.
• Work closely with software, db, and test engineering teams to encrypt and optimizeapplication integrations and operations
• Lead SSO/Authentication changes and guidance with PKI and TLS termination across various environments
• Implement configuration policies, HA cluster scaling, network device iRules, trafficmanagement policies, and application supporting devices

Fairfax, VA, US

• Created and presented Indrasoft’s DevSecOps pipeline solution powered by Maven, Jenkins, AWS (S3,CodeDeploy, EC2), and various Powershell and Bash scripts powering all Indrasoft’s Java/Spring/Tomcat applications in.
• Created DSF Dev Resource Offhours plan and yaml script to automate server powermanagement and volume auto deletion to reduce Development Cloud Provider bill over 100%
• Resolved thousands of inherited/backlogged Production data transfererrors i.e. resolving multilayer errors from 400/500 series codes, proxy window socket andconnection errors, improper memory management (resulting in.
• Implemented Dev environment image based backup and recovery plan, versioning andfailover for blob storage, compliant RTO/RPO, yarn local dev
• Reverse Engineered and documented several key processes including missing andincomplete procedures for encrypted JDBC ODBC and Wallets that caused several outages
• Integrated third party gov entities through SDN with MLS architecture by configuringtraffic managers, firewall policies, lb, certificate truststores, andsession tokens.

Nashua, NH, US

• Created workflow w/ Cloudwatch, KMS, S3, DynamoDB, Python Lambda, CLI, CF, and NGA APIs to automate user and GovCloud Account creation and management.
• Created MFA SSO, NPE (w/ SSL cert), and IDAM processes for USAF, transitioned production enclave through phased approach, and optimized centralized tracking of PKI identities (server and person). This links all cloud.
• Designed & deployed IAM update pipeline linking 30 cloud accounts, and discerning permissions based on account ID at the policy level to keep procedures and names uniform across documents
• Automated cross account bucket creation that integrates with automated cloud environment setup integrating with a DevSecOps pipeline that leverages AWS one way transfer device.
• Created multiple solutions for on prem network NPE automated access to cloud resources from a container i.e. kubernetes w/ STIGed images + networks
• Automated fault tolerant one way transfer pipeline to S and TS using Diode, Cloudwatch polling, SQS and SNS for scalability, multiple scenario S3 bucket strategy, Lambda functions, and authored Theory of Ops

Fairfax, VA, US

• Same DOD client as prior position, changed contractor company. left due to sudden need to move end of Apr2019)
• Initiate SIEM (centralized logging solution) alerting mechanism for Linux and Windows servers to report audit failure events through ElastAlert and the ELK stack (Elastic Search, Logstash, Kibana).
• Propose a recurring backup script and tiered storage lifecycle solution to manage AWS backups that will directly save the contract hundreds of thousands of dollars in backup storage fees a year.
• Monitor cluster health for nodes driving automation (Ansible, Kafka, HDFS, etc.)

Falls Church, Virginia, US

• Built F5 based platform and DevSecOps pipeline. Used OpenShift to pull source code into artifacts or containerized apps, f5 for SSO (single sign on), Jenkins and Ansible for CI/CD, and several tools for compliance with.
• Created security solution for unwanted access attempts by automating alerts for key ENIs through Cloudwatch, SSM Agents, and persistent routes to AWS metadata endpoints.
• Established configuration management by setting up and debugging various Devops tools (i.e. Atlassian Crowd, Bitbucket, Jira, Nexus, Artifactory, Openshift, etc.) as services (systemctl) and writing Ansible playbooks.
• Developed CI Jenkins files to create pipeline builds that utilize Groovy step modules, shell scripts, and Web APIs for DevOpsand security/vulnerability tools. The pipelines fed source code and scanned code (SAST).
• Debugged heavily through Jenkins console output by SSH/RDP into the server posing the issue.
• Administered Linux and Windows servers by manipulating registries, firewalls, volumes and filesystems

Falls Church, Virginia, US

• Presented a Cross Account Federation solution to IA's leadership (NetSec) that consolidates Navy IWC’s various AWS GovCloud consoles, centralizes identity management, and was implemented across the entire organization.
• Provisioned secure architecture with Reverse proxies, Bastion hosts, NAT Gateways, Private Subnets, Elastic Load Balancers, and Security Groups using CloudFormation and debugging by tracing the stack.
• Developed Python Lambda functions for tag based EC2 cluster management, recurring backups that created and cleaned up snapshots, and SNS notifications of system and security alerts.

Camp H. M. Smith, HI, US

• Working with program and system teams, I managed IC projects using AGILEmethodology and:
• Increased productivity by implementing boolean search algorithms and metatag queries to parse reports from various agency database integrations.
• Compiled collective data to investigate threats, evaluate trends, and briefsteering committees.
• Scripted scheduled server audits, queried and ETLed metadata for ISRdata, managed RBAC through AD, integrated analyst software with GREtunnel based ISR feed, consulted on cloud based install of COTS andGOTS products.

Camp H. M. Smith, HI, US

Camp H. M. Smith, HI, US

Duties of branch lead, compliance, metrics, brief salient territory reports, integrate and aggregate collection across agencies, improve boolean algorithms and data analysis.

San Diego, California, US

• Coordinated tasks w/ part-time consultants. Created core application: ETL programs integrated with budgeting, consumer behavior analytics, and customer retention (surveys and promotions e.g. surveymonkey, pike13.
• Developed reusable and chron automated functions that OAuth from sFTP’s or multiple Web APIs, store data on AWS S3, ETL that data, and then Bulk Upsert or chunk write to Microsoft Azure SQL Server and AWS Redshift Data.
• Assisted revenue stream by creating a sophisticated application for a new client from Requirement Analysis to Operations and Maintenance with Monitoring Tools (Heroku plugins).
• Increased client satisfaction by quickly debugging through SCM and deploying optimizations via microservices.
• Allowed for cheap maintenance by documenting code, QA testing, and participating in SCRUM standups.

Berlin, DE

• Built and provisioned several applications (web & mobile) for local business inquiries:Tinker (Mobile Application for Fashion Consulting)
• Built a React Native front-end & Ruby on Rails back-end that employs MVC & REST
• Created Components & functions that render user photos, comments, likes, and a navigation bar
• Designed Screens that import NPM libraries to utilize the phone’s camera/gallery
• Authenticated users via sending State variables through AJAX calls, creating JSON Web Tokens, and storing user information in a PostgreSQL database
• Optimized Redis memory usage by converting photos into Base64 objects then uploading to AWS S3Steve’s Coffee (Web/Mobile Invoicing Application)

Berlin, DE

• DBC Overflow (Web Application similar to Stack Overflow)
• Built a Flexbox front-end & Ruby on Sinatra back-end that employs MVC & REST
• Transformed HTML & CSS elements with AJAX, JavaScript key-binding, & jQuery (e.g. a comment button into a text input box) to improve speed and keep many views single page
• Authenticated users via RegEx & BCrypt, and stored sessions via Rack Middleware
• Created Polymorphic Associations & Has Many Relationships through Active Record
• Featured algorithms that score votes and sort by ‘Best Answer, Most Recent, and Most Votes’Tweeter (Web Application similar to Twitter)

Arlington, Virginia, US

• Working with program and system teams, I managed IC projects using AGILE methodology and:
• Increased productivity by implementing boolean search algorithms and meta tag queries to parse reports from various agency database integrations.
• Compiled collective data to investigate threats, evaluate trends, and brief steering committees.
• Scripted scheduled server audits, queried and ETLed metadata for ISR data, managed RBAC through AD, integrated analyst software with GRE tunnel based ISR feed, consulted on cloud based install of COTS and GOTS.

La Jolla, CA, US

• Provide technical support, training and documentation, and on call maintenance for neuroscience applications that handle data analysis
• Credited at: http://winkielmanlab.ucsd.edu/people

Bachelor'S Degree

Associate Of Science - As, Military Intelligence, Command Control And Information Operations

Dlpt Level 2, Linguistics

Web Development