Arthur Duarte, Developer in Curitiba - State of Paraná, Brazil
Arthur is available for hire
Hire Arthur

Arthur Duarte

Verified Expert  in Engineering

Cloud Architect and Developer

Location
Curitiba - State of Paraná, Brazil
Toptal Member Since
February 1, 2023

Arthur is an AWS Professional Certified Cloud Architect who has worked on global projects, positively impacting the lives of millions of users through cloud migrations to high availability and disaster recovery solutions. He has also implemented CI/CD pipelines to ensure the continuous delivery of high-quality solutions. Arthur maximizes scalability and efficiency for an excellent user experience, applying his advanced knowledge of cloud management tools like Terraform and CloudFormation.

AWS DevOpsCloudCloud ArchitectureDevOps EngineerCloud EngineeringCloud InfrastructureSecurityComputer ScienceSSLDNSMigrationAmazon RDSWeb ScalabilityScalabilitySystem AdministrationShell ScriptAmazon SQSWebSphereAWS Load BalancerConfluenceAutomationOCIAWS IAM

Portfolio

Stern Pinball, Inc
DevOps, AWS DevOps, Amazon Web Services (AWS), Python, Cloud Native...
International Computing Centre
AWS Cloud Architecture, Terraform, AWS CloudFormation, Enterprise Architecture...
Amplify Group Inc
Mail Servers, DNS, SMTP, Server Migration, Migration, IMAP, GoDaddy...

Experience

AWS Cloud Architecture - 13 yearsAmazon Web Services (AWS) - 13 yearsEnterprise Architecture - 13 yearsAWS Cloud Development - 5 yearsAWS CloudFormation - 3 yearsTerraform - 3 yearsAWS Transit Gateway - 3 yearsAWS Lambda - 3 years

Availability

Full-time

Preferred Environment

Amazon Web Services (AWS), Terraform, AWS CloudFormation, Infrastructure as Code (IaC), AWS Cloud Development Kit (CDK), AWS DevOps

The most amazing...

...thing I've designed is the first AWS RDS Aurora cluster-managed unplanned failover, which auto-changes the write node to another region without downtime.

Work Experience

DevOps Engineer

2023 - PRESENT
Stern Pinball, Inc
  • Orchestrated the successful implementation of AWS landing zone in conjunction with AWS SSO, driving enhanced resource management, robust AWS account isolation, and streamlined user access management across systems.
  • Spearheaded the implementation of network security measures, including AWS Client VPN, to enforce secure remote access to critical resources and the widespread adoption of Session Manager for all instances to eliminate direct SSH access.
  • Leveraged Terraform for Infrastructure as Code (IaC) implementation, skillfully importing the existing infrastructure into the codebase, enabling seamless integration and deployment without the need for destructive rebuilds.
  • Provided expert consultation, leveraging in-depth AWS knowledge and FinOps expertise to guide stakeholders in making informed decisions regarding optimal resource selection and cost reduction strategies on the AWS platform.
  • Reduced the monthly bill by more than $6,000 by implementing FinOps together with architect techniques, enabling investment in more infrastructure to speed the company software deliveries.
Technologies: DevOps, AWS DevOps, Amazon Web Services (AWS), Python, Cloud Native, CI/CD Pipelines, Docker, AWS IAM, AWS ELB, Git, Automation, DNS, MySQL, Redis, Amazon DynamoDB, Infrastructure as Code (IaC), Continuous Delivery (CD), GitOps, Networking, Network Architecture, TCP/IP, Web Scalability, Scalability, Infrastructure, FinOps, Terraform, VPN, English, AWS Lambda, AWS Transit Gateway, Amazon API Gateway, Enterprise Architecture, Infrastructure Monitoring, Amazon CloudWatch, Amazon EC2, Amazon Route 53, AWS ALB, Amazon Virtual Private Cloud (VPC), Linux, NGINX, Site Reliability Engineering (SRE), AWS CLI, Cloud Architecture, Backup & Recovery, Confluence, Jira, GitHub, DevOps Engineer, Architecture, Solution Architecture, ECS, Containerization, Security, Computer Networking, System Administration, GitHub Actions, Bash, Cloud Engineering, Cloud, Continuous Integration (CI), Redis Cache, DevSecOps, Load Balancers, IaaS, SSL, Amazon S3 (AWS S3), PostgreSQL, IP Networks, Cloud Gateway, Monitoring, Transport Layer Security (TLS), IT Security, Single Sign-on (SSO), Database Security, Provisioning Tools, Server Migration, Migration, AWS Glue, Logging, Linux Administration, Scripting Languages, AWS CloudTrail, CloudOps

Senior Cloud Specialist

2023 - PRESENT
International Computing Centre
  • Conducted a thorough analysis of internal AWS projects, uncovering opportunities for improved security, performance, and cost reduction through data-informed insights.
  • Spearheaded the complete, secure documentation for implementing AWS Session Manager, following best practices in security and infrastructure-as-code to meet UN security standards for consistent, secure implementation.
  • Pioneered the development of a proof of concept for innovative AWS technologies, conducting tests to evaluate their viability and potential for project implementation, driving improvements for future designs.
  • Oversaw the AIDA cloud architecture on AWS, ensuring compliance and validating the technical roadmap. Successfully launched phase 2, providing scalable and efficient solutions that elevate AIDA's ability to offer actionable insights in global development.
Technologies: AWS Cloud Architecture, Terraform, AWS CloudFormation, Enterprise Architecture, Cost Reduction & Optimization, CI/CD Pipelines, Cloud Infrastructure, Amazon Web Services (AWS), Windows Subsystem for Linux (WSL), English, Cloud Security, AWS CLI, Cloud Architecture, Jira, Disaster Recovery Plans (DRP), Architecture, Solution Architecture, AWS Certified Solution Architect, Security, Computer Networking, Automation, AWS IAM, Cloud Native, Infrastructure as Code (IaC), Kubernetes, Cloud Engineering, Cloud, Continuous Integration (CI), Continuous Delivery (CD), Microsoft 365, AWS CodeBuild, DevSecOps, Microservices, TCP/IP, Cybersecurity, Web Scalability, Scalability, Infrastructure, FinOps, AWS Lambda, AWS Transit Gateway, Amazon API Gateway, AWS DevOps, DevOps, Amazon EC2, Amazon Route 53, AWS ALB, Amazon Virtual Private Cloud (VPC), Linux, Confluence, DevOps Engineer, GitLab, Containers, Containerization, Firewalls, Orchestration, Bash, Networking, Load Balancers, IaaS, SSL, Amazon S3 (AWS S3), HIPAA Compliance, Bitbucket, IP Networks, Business Continuity & Disaster Recovery (BCDR), Microservices Architecture, Transport Layer Security (TLS), Single Sign-on (SSO), Provisioning Tools, CloudOps

Engineer

2024 - 2024
Amplify Group Inc
  • Migrated the users' accounts from Microsoft 365 to Google Workspace. This included all the mail accounts, emails, and calendars.
  • Performed the DNS migration from Microsoft 365 back to GoDaddy and organized the DNS management. Also, I set up the entries to make the migration switch to Google Workspace without downtime.
  • Migrated 50 GB of data from OneDrive to Google Drive.
Technologies: Mail Servers, DNS, SMTP, Server Migration, Migration, IMAP, GoDaddy, DNS Servers, Microsoft OneDrive, OneDrive, OneDrive API, Email, Google Workspace, Outlook, Microsoft Outlook, Networking, Networks, Architecture, Gmail, CloudOps

DevOps Engineer

2024 - 2024
AmVentureX Inc. (DBA BioCoach)
  • Orchestrated the implementation of a complete AWS landing zone, ensuring a robust and secure cloud environment tailored for HIPAA compliance in the production account.
  • Adhered to HIPAA guidelines meticulously, integrating these standards into the AWS infrastructure to prepare it for compliance auditing.
  • Demonstrated a comprehensive understanding of the specific healthcare data protection and privacy needs within the cloud infrastructure.
  • Showcased strong capability in strategic planning and execution within the AWS ecosystem.
Technologies: Amazon Web Services (AWS), HIPAA Compliance, Amazon EC2, Amazon S3 (AWS S3), AWS CloudTrail, CloudOps

DevOps Engineer

2023 - 2024
FormulaRx Inc
  • Orchestrated the implementation of a complete AWS landing zone, ensuring a robust and secure cloud environment tailored for HIPAA compliance in the production account.
  • Adhered to HIPAA guidelines meticulously, integrating these standards into the AWS infrastructure to prepare it for compliance auditing.
  • Demonstrated a comprehensive understanding of the specific healthcare data protection and privacy needs within the cloud infrastructure.
  • Showcased strong capability in strategic planning and execution within the AWS ecosystem.
Technologies: Amazon Web Services (AWS), Amazon EC2, Amazon S3 (AWS S3), AWS IAM, HIPAA Compliance, AWS CloudTrail, CloudOps

AWS DevOps | Communication Market

2023 - 2023
Ttdrs Intermediacao e Agenciamento de Negocios de Entretenimento LTDA
  • Conducted damage analysis on AWS following a security breach and resource abuse incident. This involved dealing with attacks across all AWS regions, necessitating the development of automated scripts to remove resources deployed by the attacker.
  • Performed a detailed investigation into the incident's timeline and entry points by analyzing CloudTrail logs. This analysis enabled me to pinpoint the attack's method and timing accurately.
  • Played a key role in the project to enhance AWS account security, ensuring that the upcoming application launch adheres to AWS's best practices. This experience has significantly strengthened my cloud security and resource management skills.
Technologies: DevOps, Amazon Web Services (AWS), AWS DevOps, Cloud Security, Amazon EC2, SSL, Node.js, AWS CLI, Docker, Kubernetes, Python, React, Amazon Lightsail, IT Security

AWS Cloud Architect

2023 - 2023
Blue Saturn
  • Spearheaded the implementation of AWS landing zone, seamlessly integrated with AWS SSO, to enhance resource management capabilities, institute stringent AWS account isolation protocols, and devise a comprehensive user access control framework.
  • Conceived and articulated sophisticated architectural designs for the solution, incorporating intricate data flows and an underlying infrastructure composed exclusively of serverless resources within the AWS ecosystem.
  • Engineered an agile CI/CD pipeline utilizing GitHub Actions and the Serverless Framework. This integration streamlined the code deployment process, enhanced productivity, and ensured rapid, reliable, and consistent delivery of features and updates.
Technologies: Amazon Web Services (AWS), Serverless Framework, AWS Amplify, AWS CloudFormation, Python, Web Scalability, Scalability, Infrastructure, English, AWS DevOps, Enterprise Architecture, DevOps, Amazon Route 53, AWS ALB, Amazon Virtual Private Cloud (VPC), Linux, Site Reliability Engineering (SRE), Content Delivery Networks (CDN), Cloud Architecture, GitHub, DevOps Engineer, Architecture, Solution Architecture, ECS, Containers, Containerization, Security, Computer Networking, System Administration, Git, AWS IAM, Cloud Native, Orchestration, GitHub Actions, Bash, Cloud Engineering, Cloud, Continuous Integration (CI), Networking, Load Balancers, IaaS, SSL, Amazon S3 (AWS S3), IP Networks, Microservices Architecture, Single Sign-on (SSO), Provisioning Tools, CloudOps

AWS DevOps Engineer

2023 - 2023
Premier Lacrosse League, Inc.
  • Orchestrated the implementation of the AWS landing zone, synergized with AWS single sign-on (SSO), to bolster resource management capabilities, ensuring stringent isolation of AWS accounts and crafting a refined user access management schema.
  • Engineered a robust infrastructure overhaul and orchestrated strategic upgrades. Calibrated to accommodate traffic surges and ensure ultra-high availability during peak periods preceding gaming seasons.
  • Functioned as a subject matter expert in the AWS ecosystem, providing incisive consultation on resource selection and cost optimization strategies, leveraging FinOps principles to drive operational efficiency and cost-effectiveness.
Technologies: AWS DevOps, Kubernetes, AWS Lambda, Amazon Web Services (AWS), Continuous Delivery (CD), GitOps, Networking, Network Architecture, Microservices, TCP/IP, Web Scalability, Scalability, Infrastructure, FinOps, Amazon RDS, English, Enterprise Architecture, Infrastructure Monitoring, DevOps, Amazon CloudWatch, Amazon EC2, Amazon Route 53, AWS ALB, Amazon Virtual Private Cloud (VPC), Linux, Site Reliability Engineering (SRE), AWS CLI, Cloud Architecture, GitHub, DevOps Engineer, Architecture, Solution Architecture, Containers, Containerization, Security, Computer Networking, System Administration, Git, AWS IAM, Cloud Native, AWS ELB, Orchestration, Amazon EKS, GitHub Actions, Bash, Cloud Engineering, Cloud, Continuous Integration (CI), DevSecOps, Load Balancers, IaaS, SSL, Amazon S3 (AWS S3), PostgreSQL, IP Networks, Monitoring, Microservices Architecture, IT Security, Single Sign-on (SSO), Database Security, Provisioning Tools, Server Migration, Migration, Amazon Aurora, Logging, Linux Administration, AWS CloudTrail, CloudOps

AWS Cloud Architect

2022 - 2023
Maestria Law
  • Created the AWS landing zone using AWS Control Tower and migrated workloads from the main account to the production account.
  • Built an ETL pipeline on AWS using various resources such as DynamoDB, Glue, Athena, EC2, Lambda, SNS, SQS, EKS, and ECS. The project focused on costs, so available resources were used to achieve the objective while controlling costs.
  • Implemented an architecture focused on the use of internal communication via VPC endpoints. This also included a Milvus cluster running on EKS that was completely private.
Technologies: AWS Cloud Architecture, Infrastructure as Code (IaC), Docker, Orchestration, Amazon EKS, GitHub Actions, Kubernetes, Bash, AWS Fargate, Amazon Simple Queue Service (SQS), Cloud Engineering, Cloud, Continuous Integration (CI), Continuous Delivery (CD), Amazon Elastic Container Service (Amazon ECS), Networking, Network Architecture, Microservices, TCP/IP, Web Scalability, Scalability, Infrastructure, FinOps, Amazon RDS, AWS Lambda, AWS DevOps, Enterprise Architecture, DevOps, Amazon EC2, Amazon Route 53, AWS ALB, Amazon Virtual Private Cloud (VPC), Linux, Site Reliability Engineering (SRE), AWS CLI, Cloud Architecture, GitHub, DevOps Engineer, Architecture, Solution Architecture, ECS, Containers, Containerization, Security, Computer Networking, Git, Amazon DynamoDB, AWS IAM, Cloud Native, Redis Cache, Redis, DevSecOps, Load Balancers, IaaS, SSL, Amazon S3 (AWS S3), PostgreSQL, IP Networks, API Gateways, Monitoring, Microservices Architecture, Transport Layer Security (TLS), IT Security, Single Sign-on (SSO), Database Security, Provisioning Tools, Server Migration, Migration, Amazon EventBridge, Amazon Aurora, AWS Glue, Logging, Linux Administration, Scripting Languages, AWS CloudTrail, CloudOps

AWS Cloud Architect

2022 - 2022
F45 Training Incorporated
  • Created the AWS infrastructure architectures and CI/CD pipelines with AWS DevTools, coordinating with a team of engineers and developers, with a delivery deadline of fewer than two weeks.
  • Designed an architecture for a CI/CD pipeline using AWS DevTools and Terraform, with manual approval gates for production and the possibility of automatic gates in the testing phase.
  • Created CI/CD pipelines for both application and infrastructure, possibly combining them to have a single pipeline for the entire application and its needs. This pipeline also built the test environment from scratch whenever necessary, saving costs.
Technologies: Cloud Architecture, AWS Cloud Architecture, Infrastructure as Code (IaC), AWS Fargate, Amazon Simple Queue Service (SQS), Cloud, Continuous Delivery (CD), Amazon Elastic Container Service (Amazon ECS), Networking, Microservices, TCP/IP, Cybersecurity, Web Scalability, Scalability, Infrastructure, FinOps, Terraform, Amazon RDS, English, AWS DevOps, Enterprise Architecture, DevOps, Amazon CloudWatch, Amazon EC2, AWS ALB, Amazon Virtual Private Cloud (VPC), Content Delivery Networks (CDN), GitHub, DevOps Engineer, Architecture, Solution Architecture, Containers, Containerization, Firewalls, Security, Computer Networking, Amazon DynamoDB, Cloud Native, Bash, Cloud Engineering, DevSecOps, Load Balancers, IaaS, SSL, Amazon S3 (AWS S3), PostgreSQL, IP Networks, Cloud Gateway, Monitoring, Microservices Architecture, IT Security, Single Sign-on (SSO), Provisioning Tools, Amazon Aurora, Logging, AWS CloudTrail

AWS and Terraform Consultant

2022 - 2022
Curva
  • Designed and implemented an efficient architecture for WebSphere servers using the Red Hat Linux operating system with Terraform. This solution ensured high performance and stability for the WebSphere platform.
  • Performed in-depth cost analyses for infrastructure projects on AWS, ensuring that implemented solutions were cost-effective and within budget. These analyses provided a solid basis for financial decisions and project budget management.
  • Conducted careful reviews of solution designs to ensure they were optimally implemented on AWS. The analyses included assessing business needs, identifying optimization opportunities, and defining recommendations for implementing the solution.
Technologies: AWS Cloud Architecture, Terraform, Enterprise Architecture, Startups, Cost Reduction & Optimization, Cloud Infrastructure, Amazon Web Services (AWS), Amazon EC2, Cloud Architecture, Architecture, AWS Certified Solution Architect, Automation, Infrastructure as Code (IaC), Cloud, TCP/IP, Web Scalability, Infrastructure, AWS DevOps, DevOps, Amazon Virtual Private Cloud (VPC), DevOps Engineer, Solution Architecture, Security, Computer Networking, Cloud Native, Bash, Cloud Engineering, Networking, Load Balancers, IaaS, SSL, Amazon S3 (AWS S3), IT Security

AWS Cloud Architect

2022 - 2022
Grange Insurance
  • Led a security and compliance improvement initiative aimed at reducing the number of vulnerabilities and compliance issues in over 100 Lambda functions, resulting in a significant improvement in system security.
  • Provided an automatic solution design for deploying baselines and resources across multiple AWS accounts using Terraform, enabled by a JSON or YAML configuration file.
  • Implemented the BeyondTrust Password Safe Cloud security solution to replace the previous on-premises version, enabling secure access to sensitive data and offering a more flexible and easily accessible solution.
  • Migrated 24 accounts—without service interruption—from one AWS Organizations service to another, which was already properly configured with Control Tower and SSO.
  • Created clear documentation on enforcing Lambda functions and identity and access management (IAM) policies—effectively adopted by the company's cloud center of excellence—providing a solid foundation to consistently and securely implement solutions.
Technologies: AWS Cloud Architecture, AWS Lambda, AWS DevOps, Python 3, Cost Reduction & Optimization, Python, Cloud Infrastructure, Amazon Web Services (AWS), English, Amazon EC2, Cloud Architecture, Confluence, Architecture, DevOps, Git, Automation, AWS IAM, Cloud Native, Bash, Cloud Engineering, Cloud, Continuous Delivery (CD), Microsoft 365, Cybersecurity, Web Scalability, Infrastructure, Terraform, Enterprise Architecture, DevOps Engineer, Solution Architecture, DevSecOps, Load Balancers, IaaS, SSL, Amazon S3 (AWS S3), IT Security, Provisioning Tools, Migration

AWS Cloud Architect

2022 - 2022
Booz Allen Hamilton
  • Performed the integration between AWS and Slack, using ChatBot for AWS resource notifications and Lambda for custom and application notifications. The integration made communication more efficient and convenient.
  • Designed, architected, and implemented Global Accelerator to increase the speed of changing regions and reduce the number of AWS resources, improving the connection to the internal network. This solution eliminated the need for a VPC DMZ.
  • Acted as a Well-Architected Framework reviewer for AWS implementations, both within companies and for customers, ensuring the quality and compliance of implemented solutions.
  • Used AWS CDK and Typescript to develop AWS resources and Jenkins to automate deployments.
  • Implemented the CDK's custom multi-region feature for deployment in two different regions, enabling data replication for disaster recovery.
Technologies: AWS Cloud Architecture, AWS CloudFormation, AWS Cloud Development, AWS Cloud Development Kit (CDK), AWS DevOps, Enterprise Architecture, Python 3, Infrastructure Monitoring, DevOps, Cost Reduction & Optimization, CI/CD Pipelines, Python, Cloud Infrastructure, Amazon Web Services (AWS), Windows Subsystem for Linux (WSL), English, Amazon CloudWatch, Amazon Route 53, AWS ALB, Cloud Security, Jenkins, Content Delivery Networks (CDN), DNS, AWS Auto Scaling, Cloud Architecture, Confluence, Jira, GitHub, Disaster Recovery Plans (DRP), DevOps Engineer, Architecture, Solution Architecture, Containers, Containerization, AWS Certified Solution Architect, Computer Networking, Git, Automation, AWS IAM, Cloud Native, AWS ELB, Infrastructure as Code (IaC), TypeScript, Orchestration, AWS Fargate, Cloud Engineering, Cloud, Continuous Integration (CI), Continuous Delivery (CD), GitOps, Microservices, TCP/IP, Cybersecurity, Web Scalability, Scalability, Infrastructure, Security, DevSecOps, Networking, Load Balancers, IaaS, SSL, Amazon S3 (AWS S3), IP Networks, Monitoring, Microservices Architecture, Transport Layer Security (TLS), IT Security, SDKs, Provisioning Tools, CloudOps

AWS Solutions Architect

2020 - 2022
Abastece Aí
  • Implemented the basic network infrastructure within and between AWS accounts using Terraform, ensuring a consistent and streamlined setup. This provided a solid foundation for future projects and ensured efficient resource utilization.
  • Created and implemented a network hub solution using AWS Transit Gateway—enabling routing between AWS accounts, other clouds such as GCP and Oracle, partners, and VMC on AWS—allowing the creation of an IAM-federated AWS Client VPN.
  • Adapted CloudWatch resource monitoring to all Terraform repositories, ensuring every resource creation and modification had its appropriate monitoring implemented on AWS.
  • Designed databases to be sources for a data lake created in GCP in a specific AWS account for data. Used Transit Gateway to reach AWS accounts, on-premise environments, and AWS DMS for granular data synchronization.
  • Devised and built—in less than 30 days—a disaster recovery architecture for the company's flagship digital wallet using best practices and an elasticsearch solution with cross-region replication using DynamoDB and Lambda functions.
  • Developed the first AWS RDS Aurora cluster managed unplanned failover. It allowed the implementation of the RDS Aurora cluster in a disaster recovery environment with an automatic change of the write node to another region, avoiding downtime.
  • Provided a hosting solution for the company's website utilizing limited on-premises DNS and AWS resources. Implemented a non-conventional solution using Global Accelerator, EC2, S3, and CloudFront.
  • Oversaw the migration of Brazil's oldest and most famous online loyalty program with over 20 million users. It involved moving many servers from on-premises to a multi-cloud solution. It was such a large project that AWS considered making it a case.
  • Produced an ephemeral development environment solution so different dev areas could have their own dev environment, which would be taken down and rebuilt when necessary. Used a CI/CD pipeline with AWS CodePipeline and Terraform workers.
  • Assisted in implementing a data lake on GCP where all data was collected from databases in different AWS accounts and placed into a data source also in AWS. This was a project partially sponsored by Google.
Technologies: AWS Cloud Architecture, Terraform, VMC Algorithms, VPN, Azure Active Directory, WebSphere, Red Hat OpenShift, AWS VPN, AWS Transit Gateway, Amazon API Gateway, AWS DevOps, Enterprise Architecture, Infrastructure Monitoring, DevOps, Cost Reduction & Optimization, CI/CD Pipelines, Cloud Infrastructure, Shell Scripting, Amazon Web Services (AWS), Windows Subsystem for Linux (WSL), AWS Cloud Development, Amazon CloudWatch, Amazon EC2, Amazon Route 53, AWS ALB, AWS Database Migration Service (DMS), NGINX, Cloud Security, Jenkins, Content Delivery Networks (CDN), DNS, AWS Auto Scaling, Cloud Architecture, Backup & Recovery, Jira, Disaster Recovery Plans (DRP), On-premise, VMware, F5 Networks, Architecture, Solution Architecture, ECS, Amazon Elastic Container Service (Amazon ECS), APIs, GitLab, Containers, Containerization, Firewalls, AWS Certified Solution Architect, Security, Computer Networking, Git, Automation, Amazon DynamoDB, AWS IAM, Cloud Native, AWS ELB, Infrastructure as Code (IaC), Orchestration, Bash, AWS Fargate, Amazon Simple Queue Service (SQS), Cloud Engineering, Cloud, Continuous Integration (CI), Continuous Delivery (CD), Microsoft 365, AWS CodeBuild, Cloud Migration, GitOps, Networking, Network Architecture, Microservices, TCP/IP, Cybersecurity, Web Scalability, Scalability, Infrastructure, Oracle Cloud Infrastructure (OCI), FinOps, Amazon RDS, AWS Lambda, Amazon Virtual Private Cloud (VPC), Linux, JavaScript, AWS CLI, DevOps Engineer, DevSecOps, ELK (Elastic Stack), Load Balancers, IaaS, SSL, Amazon S3 (AWS S3), Bitbucket, PostgreSQL, IP Networks, OpenVPN, Cloud Gateway, API Gateways, Monitoring, Business Continuity & Disaster Recovery (BCDR), Microservices Architecture, Transport Layer Security (TLS), IT Security, Single Sign-on (SSO), Database Security, Provisioning Tools, Server Migration, Migration, Amazon EventBridge, Amazon Aurora, Linux Administration, Scripting Languages, Oracle Cloud, AWS CloudTrail, Elasticsearch, AWS CodePipeline, CloudOps

AWS Consultant

2020 - 2020
Same No More
  • Assisted with EC2 server maintenance and implementation of security measures for the AWS account and resources, making the application run on a more robust yet cost-effective infrastructure architecture.
  • Made improvements to the application with the development team for better performance. I implemented New Relic for application tracing, which was not previously available.
  • Performed FinOps work to identify excessive spending with Cloud providers and helped reduce resources during the pandemic to run the application with the minimum necessary, as the client wouldn't be providing their services during that time.
Technologies: AWS Cloud Architecture, Cost Reduction & Optimization, Cloud Infrastructure, Amazon Web Services (AWS), Startups, Amazon EC2, Amazon Route 53, NGINX, Site Reliability Engineering (SRE), DNS, AWS Auto Scaling, Cloud Architecture, DevOps Engineer, Computer Networking, Automation, Cloud Native, AWS ELB, Bash, Cloud Engineering, Cloud, eCommerce, Microsoft 365, Cloud Migration, Cloudflare, WordPress, TCP/IP, Web Scalability, Scalability, Infrastructure, FinOps, AWS DevOps, Enterprise Architecture, DevOps, Amazon Virtual Private Cloud (VPC), JavaScript, Content Delivery Networks (CDN), Solution Architecture, Load Balancers, IaaS, SSL, Amazon S3 (AWS S3), Monitoring, IT Security, Server Migration, Migration, Digital Commerce, Linux Administration, CloudOps

AWS Consultant

2020 - 2020
Lexnautas
  • Designed a feature using AWS resources that displayed a "standby" screen outside business hours. This reduced AWS cloud infrastructure costs by over 60% using Route 53 Health Checks and S3.
  • Migrated a complete infrastructure hosted on a private cloud to AWS in under a month. This lift-and-shift migration was modified with a high-standard VPC design.
  • Assisted the client in making cloud cost decisions and analyzing the assumption of server costs provisioned by another company. This resulted in further cost reduction, and the client didn't have to retain infrastructure above their needs.
Technologies: Docker, Amazon EC2, Amazon Route 53, AWS ALB, AWS Database Migration Service (DMS), Amazon CloudWatch, AWS Cloud Architecture, Amazon Virtual Private Cloud (VPC), FinOps, DevOps, AWS DevOps, Cost Reduction & Optimization, Cloud Infrastructure, Shell Scripting, Amazon Web Services (AWS), AWS Cloud Development, Startups, NGINX, Site Reliability Engineering (SRE), DNS, AWS Auto Scaling, Cloud Architecture, DevOps Engineer, Containers, Containerization, Computer Networking, Automation, AWS ELB, Bash, Cloud Engineering, Cloud, Continuous Delivery (CD), Cloud Migration, Cloudflare, WordPress, Microservices, TCP/IP, Web Scalability, Scalability, Infrastructure, Amazon RDS, Enterprise Architecture, Solution Architecture, Cloud Native, Networking, Load Balancers, IaaS, SSL, Amazon S3 (AWS S3), IP Networks, Monitoring, Microservices Architecture, SQL, IT Security, Server Migration, Migration, Amazon Aurora, Linux Administration, CloudOps

Systems Integration Developer

2019 - 2020
Duoshiro
  • Created a system that allowed for the migration of eCommerces from the XTech to Nuvemshop. This migrated all products, categories, sales, customers, and history, enabling clients to keep their activities due to the closure of the old platform.
  • Developed an integration between a custom ERP system that used SOAP to integrate with the REST-based Nuvemshop platform. This integration allowed the client to publish over 600 products on their new eCommerce.
  • Built the first multi-store project on the Nuvemshop platform, enabling quick franchise setup with API integration of products and categories from the main store. This got featured on the Nuvemshop platform.
Technologies: PHP 7, PHP, Linux, NGINX, Cloud Infrastructure, Shell Scripting, MySQL, Amazon Web Services (AWS), Infrastructure Monitoring, Amazon EC2, Amazon Route 53, HTML, CSS, Site Reliability Engineering (SRE), DNS, AWS Auto Scaling, APIs, Computer Networking, Git, Automation, Bash, Cloud, eCommerce, Cloudflare, WordPress, TCP/IP, JavaScript, Twig, SSL, Bitbucket, Videos, DigitalOcean, SQL, Mail Servers, Migration, Digital Commerce, Logging, Linux Administration, Scripting Languages

AWS Consultant

2019 - 2019
CarroAluguel
  • Performed server migration from private cloud to AWS Brazil region, improving network infrastructure and application performance while achieving a 50% cost reduction.
  • Assisted in upgrading web servers from Apache to Nginx, resulting in a 33% performance gain for the application.
  • Implemented a local email server for all employees using AWS integration, daily backups saved in S3 buckets, reducing email infrastructure costs while maintaining secure operation and data backup.
Technologies: AWS Cloud Architecture, Cost Reduction & Optimization, Cloud Infrastructure, Shell Scripting, MySQL, Amazon Web Services (AWS), AWS Cloud Development, Startups, Infrastructure Monitoring, Amazon EC2, Amazon Route 53, AWS ALB, NGINX, HTML, Site Reliability Engineering (SRE), DNS, AWS Auto Scaling, Cloud Architecture, On-premise, DevOps Engineer, Architecture, Firewalls, Computer Networking, Automation, AWS IAM, AWS ELB, Bash, Cloud Engineering, Cloud, Continuous Delivery (CD), Microsoft 365, Cloud Migration, Networking, Network Architecture, Cloudflare, TCP/IP, AWS Elastic Beanstalk, Web Scalability, Scalability, Infrastructure, FinOps, Amazon RDS, AWS DevOps, Enterprise Architecture, DevOps, Linux, JavaScript, Solution Architecture, Security, System Administration, Cloud Native, Load Balancers, IaaS, SSL, Amazon S3 (AWS S3), IP Networks, Monitoring, .NET, Transport Layer Security (TLS), IT Security, Mail Servers, SMTP, Server Migration, Migration, Linux Administration, Scripting Languages, CloudOps

AWS Infrastructure and Monitoring Specialist

2019 - 2019
Agrotopus
  • Collaborated with the IoT team to develop a tractor monitoring system with a PHP-based management dashboard powered by Zabbix. Utilized EC2 and RDS on AWS for server management, leading to a 50% improvement in daily support actions.
  • Developed a weather API monitoring system using Zabbix, with alerts displayed on office TVs through Chromecast and Raspberry Pi streaming. This resulted in proactive action and prevented downtime in the team's proactive reaction.
  • Prevented potential losses during a new product launch by conducting a thorough software team analysis, leading to the identification and resolution of a crashing issue with over 10 user logins.
Technologies: Amazon Web Services (AWS), NGINX, Zabbix, Amazon CloudWatch, PHP, Cost Reduction & Optimization, Cloud Infrastructure, Shell Scripting, AWS Cloud Architecture, Startups, Infrastructure Monitoring, Amazon EC2, Amazon Route 53, Site Reliability Engineering (SRE), AWS Auto Scaling, Kubernetes, Computer Networking, Automation, AWS ELB, Bash, Cloud Engineering, Cloud, Continuous Delivery (CD), eCommerce, Microsoft 365, Networking, Network Architecture, TCP/IP, Web Scalability, Scalability, Infrastructure, AWS DevOps, Enterprise Architecture, DevOps, Amazon Virtual Private Cloud (VPC), DevOps Engineer, Solution Architecture, Security, AWS IAM, Load Balancers, IaaS, SSL, Amazon S3 (AWS S3), IP Networks, Cloud Gateway, Data Feeds, SIM Cards, Monitoring, SQL, Mail Servers, Server Migration, Migration, Digital Commerce, Linux Administration, Scripting Languages, CloudOps

eCommerce and Web Developer

2015 - 2019
Duoshiro
  • Implemented custom functionality for clients with virtual stores on the Nuvemshop platform, from simple custom fields in product screens to complex systems for generating custom products with over 200 images each.
  • Created virtual stores on different platforms, including Nuvemshop, XTech, WordPress WooCommerce, Magento, Loja, and Integrada.
  • Brought the company to be among the top 10 partners of the Nuvemshop platform, competing with big market players. When Nuvemshop clients needed complex feature development, we were called.
  • Developed the first digital product delivery system for the Nuvemshop platform, consisting of two systems, one managing digital products and the other for delivery using Amazon SES for email delivery and integrated with the platform via REST API.
Technologies: PHP 7, REST, JavaScript, HTML, CSS, Twig, Shell Scripting, MySQL, Amazon Web Services (AWS), AWS Cloud Architecture, Amazon EC2, Amazon Route 53, PHP, NGINX, Site Reliability Engineering (SRE), DNS, APIs, Git, Automation, Bash, eCommerce, Cloudflare, WordPress, TCP/IP, Scalability, SSL, Bitbucket, SQL, Mail Servers, SMTP, Digital Commerce, Scripting Languages

IT Infrastructure and Security Manager

2014 - 2015
MalaPronta
  • Eliminated local testing environment by creating a comprehensive AWS-based one. Cost reduction is achieved through auto-start and stop routines. This accelerated delivery by the QA team and faster availability of new customer functionalities.
  • Developed a dedicated server for cron jobs to alleviate the overloading of application servers. Resulting in reduced downtime and a dedicated server for running specific tasks with monitoring.
  • Implemented Zabbix monitoring for autoscaling instances and added New Relic for complete visibility of the application, enabling a proactive instead of a reactive approach for the team.
  • Assisted with the PCI-DSS certification process by focusing on network compliance to meet necessary standards.
Technologies: AWS Cloud Architecture, Cost Reduction & Optimization, Cloud Infrastructure, Shell Scripting, Amazon Web Services (AWS), Startups, Amazon EC2, Amazon Route 53, AWS ALB, NGINX, HTML, Windows Server, Jenkins, Content Delivery Networks (CDN), DNS, AWS Auto Scaling, Cloud Architecture, Confluence, Jira, On-premise, Security, Computer Networking, Automation, AWS ELB, Bash, Cloud Engineering, Cloud, Microsoft 365, Cloud Migration, Networking, Network Architecture, TCP/IP, Web Scalability, Scalability, Infrastructure, FinOps, Amazon RDS, ITIL V3 Foundation Certified, AWS DevOps, Enterprise Architecture, DevOps, Amazon Virtual Private Cloud (VPC), Linux, Zabbix, DevOps Engineer, Solution Architecture, Cloud Native, Load Balancers, IaaS, SSL, Amazon S3 (AWS S3), IP Networks, Monitoring, Microservices Architecture, Transport Layer Security (TLS), IT Security, Mail Servers, SMTP, Server Migration, Migration, Amazon EventBridge, Logging, Linux Administration, Scripting Languages, Apache Tomcat

IT Analyst

2014 - 2014
Verti Tecnologia
  • Assisted in the PCI-DSS certification process by providing the auditor with software, hardware, and physical facility information to ensure comprehensive compliance.
  • Led the re-cabling and datacenter reconstruction process to align with best practices for PCI-DSS certification and maintain compliance during renewal.
  • Designed a comprehensive security camera and video recording system, including a reliable backup solution, enhancing daily protection for employees.
Technologies: Linux, Shell Scripting, Startups, Infrastructure Monitoring, Site Reliability Engineering (SRE), On-premise, Computer Networking, System Administration, Networking, Network Architecture, TCP/IP, Infrastructure, DevOps, DevOps Engineer, SSL, CCTV, Video Surveillance, CloudOps

Chief System Administrator

2010 - 2013
Kii Corporation
  • Leveraged Zabbix's auto-recovery feature to handle first-level support and reduced 60% of the system admin workload, freeing up time for more projects.
  • Developed a data portal for the investment team using Drupal as a base, enabling them to analyze app performance and identify potential investment opportunities. This resulted in a significant increase in the company's portfolio.
  • Assisted the web app development team in fixing CSS front-end issues, which hindered their ability to find someone capable. With my Zabbix-controlled sysadmin tasks under control, I could lend a hand and contribute to the company's efforts on this.
  • Detected potential hacking threats in company servers in China and acted quickly to remediate them, increasing security and avoiding costly fines.
Technologies: Amazon Web Services (AWS), Linux, Cost Reduction & Optimization, Cloud Infrastructure, Shell Scripting, MySQL, English, Startups, Infrastructure Monitoring, Amazon EC2, HTML, CSS, Site Reliability Engineering (SRE), DNS, AWS Auto Scaling, Confluence, Jira, DevOps Engineer, Computer Networking, System Administration, Automation, AWS IAM, AWS ELB, Bash, Cloud Engineering, Cloud, Continuous Delivery (CD), Cloud Migration, OVH, CentOS, AWS Elastic Beanstalk, Scalability, Infrastructure, AWS DevOps, Enterprise Architecture, DevOps, Zabbix, Beanstalk, Security, Cloud Native, IaaS, SSL, Amazon S3 (AWS S3), IP Networks, Monitoring, SQL, IT Security, SMTP, Server Migration, Migration, Linux Administration, Scripting Languages, Apache Tomcat, CloudOps

Knowledge Analyst 1 | Support

2010 - 2011
Oracle
  • Led technical implementation and maintenance of Sun Microsystems' official courses, delivered by multiple external providers.
  • Improved customer support experience by creating email templates aligned with the company brand and colors, making a strong visual impression on clients.
  • Enabled digital features for Oracle's global online courses, serving thousands of learners worldwide.
Technologies: Linux, Shell Scripting, English, HTML, CSS, System Administration, Automation, Bash, Infrastructure, SSL, Scripting Languages

Linux System Administrator and Web Programmer

2010 - 2010
Servo Software
  • Implemented a centralized authentication solution using an LDAP server and Atlassian Crowd for Jira and Confluence, resulting in increased security for servers and systems and a centralized user management location.
  • Implemented secure server maintenance and updates on AWS EC2, including security patches, new server deployments, and backup routines.
  • Implemented version control systems like Subversion, Mercurial, and Git to improve the development process for various teams in the company.
Technologies: Linux, Cost Reduction & Optimization, Cloud Infrastructure, Shell Scripting, Amazon Web Services (AWS), English, Startups, Infrastructure Monitoring, Amazon EC2, HTML, CSS, Site Reliability Engineering (SRE), DNS, Confluence, Jira, DevOps Engineer, Computer Networking, System Administration, Bash, Cloud Engineering, Cloud, CentOS, Infrastructure, Amazon RDS, AWS DevOps, Enterprise Architecture, DevOps, Security, Cloud Native, Load Balancers, IaaS, SSL, Amazon S3 (AWS S3), IP Networks, Monitoring, SQL, Linux Administration, Scripting Languages, Apache Tomcat, CloudOps

Application Support Administrator

2007 - 2010
Sun Microsystems
  • Collaborated with team to develop a tool streamlining course file preparation, reducing prep time from 30 min to two min, significantly improving the team's productivity and efficiency.
  • Implemented and prepared official Java and Solaris courses for all company providers, including the partner area. Achieved five exceptional work awards.
  • Optimized course set-up time by 70% using browser automation bots, streamlining the course set-up process for providers.
Technologies: Linux, Shell Scripting, Solaris, HTML, Confluence, Jira, System Administration, Bash, English, JavaScript, SSL, Scripting Languages, Apache Tomcat

Design of the First AWS RDS Aurora Cluster Managed Unplanned Failover

As a cloud architect, I implemented a unique failover solution for the RDS Aurora cluster to meet the high availability and disaster recovery requirements of a Brazilian digital wallet processing millions of transactions per week. My solution—known as the "managed unplanned failover"—is designed to automatically switch the write node to another region in seconds in case of failure, ensuring continuous database availability. This solution's effectiveness caught AWS Brazil's attention, resulting in a post on the AWS official blog and an opportunity to present it at the AWS Summit 2022.

Cloud-based Game Streaming

This project aimed to create a low-latency, high-performance cloud gaming solution using AWS EC2 instances to overcome the limitations of unavailable cloud gaming services in Brazil.

Technologies used:
AWS EC2
NVIDIA T4 GPU
Windows Server
Steam Gaming Platform

Project description:
In the early days of cloud-based game streaming, such services were unavailable in Brazil, and VPN solutions provided unplayable latencies. AWS EC2 instances equipped with Windows Server and NVIDIA T4 GPUs were leveraged to tackle this challenge.

The project was implemented in the São Paulo AWS region, which yielded a sub-3ms latency, ensuring a smooth gaming experience. Utilizing the high computational power of the NVIDIA T4 GPUs, the system could process and stream video flawlessly, enabling seamless gameplay of Steam games in real-time.

Outcome:
Successfully demonstrated that cloud-based gaming can be viable in regions where traditional cloud gaming services are unavailable, providing an optimized gaming experience with minimal latency and high-quality video processing.

Cryptocurrency Mining Experimentation on AWS

To assess the financial viability and technical performance of using AWS EC2 instances for cryptocurrency mining during the peak of mining activities.

Technologies Used:
• AWS EC2
• NVIDIA T4 GPU
• CUDA
• SPOT instances

Project Description:
During the hype of cryptocurrency mining, this project aimed to evaluate the profitability and technical feasibility of mining using AWS resources. A small farm of EC2 instances equipped with NVIDIA T4 GPUs was set up for this purpose. CUDA was employed to optimize the mining processes. To maximize cost-efficiency, all instances operated in SPOT mode.

Outcome:
The project concluded that, despite using SPOT instances for cost reduction, the expenses of running the instances outweighed the gains from mining. However, the project provided valuable insights into the capabilities of CUDA for such resource-intensive tasks.

Languages

Python 3, PHP 7, PHP, JavaScript, HTML, CSS, Python, TypeScript, Bash, SQL

Frameworks

Twig, Serverless Framework, .NET

Libraries/APIs

AWS Amplify, Node.js, React, OneDrive, OneDrive API

Tools

Terraform, AWS CloudFormation, VPN, AWS Cloud Development Kit (CDK), Amazon CloudWatch, Amazon Virtual Private Cloud (VPC), NGINX, Zabbix, Jenkins, Beanstalk, AWS CLI, Confluence, Jira, GitHub, VMware, Amazon Elastic Container Service (Amazon ECS), GitLab, Git, AWS IAM, AWS ELB, Amazon EKS, AWS Fargate, Amazon Simple Queue Service (SQS), AWS CodeBuild, ELK (Elastic Stack), Bitbucket, OpenVPN, Provisioning Tools, AWS Glue, Logging, AWS CloudTrail, Apache Tomcat, CloudOps, Microsoft Outlook

Paradigms

DevOps, REST, Automation, Continuous Integration (CI), Continuous Delivery (CD), DevSecOps, Microservices, HIPAA Compliance, Microservices Architecture, Serverless Architecture

Platforms

Amazon Web Services (AWS), Solaris, AWS Lambda, WebSphere, Red Hat OpenShift, Docker, Amazon EC2, AWS ALB, Linux, Windows Server, Kubernetes, Cloud Native, CentOS, WordPress, AWS Elastic Beanstalk, Oracle Cloud Infrastructure (OCI), Amazon Lightsail, DigitalOcean, Cloud Gateway, OCI Vault, Google Cloud Platform (GCP)

Storage

Azure Active Directory, MySQL, On-premise, Amazon DynamoDB, Redis Cache, Redis, OVH, Amazon S3 (AWS S3), PostgreSQL, Database Security, Amazon Aurora, Oracle Cloud, Elasticsearch

Industry Expertise

Cybersecurity

Other

Infrastructure as Code (IaC), Windows Subsystem for Linux (WSL), AWS Certified Solution Architect, English, ITIL V3 Foundation Certified, AWS Cloud Architecture, AWS Cloud Development, Amazon RDS, AWS VPN, AWS Transit Gateway, Amazon API Gateway, Enterprise Architecture, AWS DevOps, Startups, Infrastructure Monitoring, Amazon Route 53, AWS Database Migration Service (DMS), FinOps, Cost Reduction & Optimization, CI/CD Pipelines, Cloud Infrastructure, Shell Scripting, Site Reliability Engineering (SRE), Cloud Security, Content Delivery Networks (CDN), DNS, AWS Auto Scaling, Cloud Architecture, Backup & Recovery, Disaster Recovery Plans (DRP), F5 Networks, DevOps Engineer, Architecture, Solution Architecture, ECS, APIs, Containers, Containerization, Firewalls, Security, Computer Networking, System Administration, Orchestration, VMC Algorithms, GitHub Actions, Computer Science, Computer Engineering, Cloud Engineering, Cloud, eCommerce, Microsoft 365, Cloud Migration, GitOps, Networking, Network Architecture, GPU Computing, Cloudflare, TCP/IP, Web Scalability, Scalability, Infrastructure, Load Balancers, IaaS, SSL, IP Networks, CCTV, Video Surveillance, Videos, API Gateways, Data Feeds, SIM Cards, Monitoring, Business Continuity & Disaster Recovery (BCDR), Transport Layer Security (TLS), IT Security, Single Sign-on (SSO), Mail Servers, SDKs, SMTP, Server Migration, Migration, Digital Commerce, Amazon EventBridge, Linux Administration, Serverless, Scripting Languages, AWS CodePipeline, IMAP, GoDaddy, DNS Servers, Microsoft OneDrive, Email, Google Workspace, Outlook, Networks, Gmail

2023 - 2023

Bachelor's Degree in Computer Engineering

Universidade Descomplica - Curitiba, Parana, Brazil

2012 - 2012

Bachelor's Degree in Computer Science

Universidade Paulista (UNIP) - Santos, Sao Paulo, Brazil

NOVEMBER 2023 - NOVEMBER 2025

FOCP: FinOps Certified Practitioner

The Linux Foundation

OCTOBER 2022 - OCTOBER 2024

Oracle Cloud Infrastructure 2022 Certified Foundations Associate

Oracle University

OCTOBER 2022 - PRESENT

EF SET Certificate – C2 Proficient

EF Standard English Test

JANUARY 2022 - JANUARY 2024

HashiCorp Certified: Terraform Associate

HashiCorp

MAY 2021 - MAY 2024

AWS Certified Solutions Architect – Professional

Amazon Web Services

MARCH 2019 - PRESENT

Sun Certified Solaris Associate

Sun Microsystems

JULY 2011 - PRESENT

ITIL V3 Certification

EXIN

MAY 2007 - PRESENT

Certificate of Competency in English (ECCE)

University of Michigan

Collaboration That Works

How to Work with Toptal

Toptal matches you directly with global industry experts from our network in hours—not weeks or months.

1

Share your needs

Discuss your requirements and refine your scope in a call with a Toptal domain expert.
2

Choose your talent

Get a short list of expertly matched talent within 24 hours to review, interview, and choose from.
3

Start your risk-free talent trial

Work with your chosen talent on a trial basis for up to two weeks. Pay only if you decide to hire them.

Top talent is in high demand.

Start hiring