Open to new opportunities

Architecting scalable cloud platforms & developer workflows.

I am a Platform-minded DevOps Engineer who builds infrastructure that teams can actually use without filing a ticket. Deep expertise in AWS, Terraform, and Kubernetes to build repeatable, highly available systems.

Get in Touch View Projects

Core Stack

AWS (EKS/ECS) Terraform Kubernetes GitLab CI/CD
Yury Kuvaev - DevOps Engineer
yury@aws-production:~
~

AWS Certified

Solutions Architect – Associate

AWS Certified

SysOps Administrator – Associate

CKAD

Certified Kubernetes Application Developer

HashiCorp Certified

Terraform Associate (003)

Engineering for Business Impact

Focusing on measurable outcomes: lowering costs, eliminating toil, and protecting production uptime.

75%

IaC Coverage Increase

Brought undocumented Lambda fleet under strict Terraform management, enabling repeatable CI/CD deployments.

~$720

Monthly Cloud Savings

Architected S3 lifecycle policies and automated EBS snapshot cleanup via Python, instantly reducing waste.

Zero-Downtime

Production Upgrades

Executed seamless Kafka cluster broker replacements and traffic migrations without impacting downstream consumers.

20%

Faster Deployments

Optimized GitLab CI pipelines via tuned build steps, parallelism, and layer caching to increase deployment frequency.

Technical Arsenal

The production-grade tooling I use to architect, automate, and observe modern cloud environments.

Cloud Ecosystem

  • AWS Core (VPC, IAM, S3, Route53)
  • Compute (ECS, EKS, Lambda, ALB/ASG)
  • Databases (RDS Multi-AZ, Aurora)
  • Azure (VMs, VNets)

IaC & CI/CD

  • Terraform, Terragrunt, Atlantis
  • GitLab CI, GitHub Actions
  • CloudFormation & Ansible
  • Pre-commit hooks & GitOps workflows

Containers & Observability

  • Kubernetes (EKS), Docker, Helm
  • Prometheus & Grafana
  • CloudWatch & Elasticsearch
  • Kafka, PostgreSQL, MySQL
Languages Python, Bash, Go
AI Automation GitHub Copilot, ChatGPT
OS Platform Linux Administration

Featured Architecture

Real-world examples of solutions built for scale and reliability.

Greenfield AWS Architecture & ECS Migration

Terraform / AWS ECS

The Challenge: Legacy infrastructure running on Elastic Beanstalk was poorly documented, unscalable, and incurred unnecessary database costs.

The Solution: Architected a greenfield AWS environment entirely from scratch using Terraform (VPC, ALB/ASG, RDS Multi-AZ). Rewrote the legacy Go service using AI-assisted tooling (Copilot), containerized it, and built out end-to-end GitLab CI pipelines for deployment to Amazon ECS.

The Impact: Delivered a fully codified, repeatable stack. Unblocked product teams from infrastructure dependencies and permanently eliminated the dedicated Beanstalk database costs.

AWS ECS Terraform GitLab CI Go

Zero-Touch Operations & IaC Governance

IaC / Automation

The Challenge: High environment drift between production and non-prod, coupled with excessive manual toil for the ops team regarding resource management and compliance.

The Solution: Led organizational adoption of Terraform. Migrated manually created Lambda functions to IaC and enforced strict S3 governance. Engineered a suite of Python-based Lambda automation tools for routine operations (tag compliance, stale resource cleanup).

The Impact: Eradicated environment drift across ad-tech workloads. Python automations successfully removed 150+ stale EBS snapshots saving $300/mo, and drastically reduced weekly manual operational toil.

Python Terraform AWS Lambda Cloud Governance

Professional Experience

DevOps Engineer

10/2023 — Present

DigiCert | Remote, US

  • Built and owned the Terraform management repo for Lambda - modular structure, environment-split configs, GitLab CI integration - bringing the fleet from 0% to 75% IaC coverage across prod and non-prod.
  • Architected a greenfield AWS environment from scratch in Terraform (VPC, ALB/ASG, RDS Multi-AZ, monitoring), delivering fully codified infrastructure.
  • Migrated a legacy Beanstalk application to ECS; rewrote the Go service with AI-assisted tooling (GitHub Copilot), rebuilt the GitLab CI pipeline, and decommissioned the app's dedicated DB, eliminating ongoing costs.
  • Built ECS services end-to-end with product teams (task definitions, CI/CD, secrets, Kafka integration), unblocking developers from infrastructure dependencies.
  • Led a zero-downtime Kafka cluster upgrade in production, orchestrating broker replacement and traffic migration with no service interruption.
  • Architected an S3 lifecycle strategy, tiering aging logs to Glacier/Deep Archive, cutting storage growth ~40% and saving ~$420/mo.
  • Automated EBS snapshot cleanup via Python Lambda, removing 150+ stale snapshots, saving ~$300/mo with built-in dry-run validation.

DevOps Engineer

10/2020 — 08/2023

Ampersand | Brooklyn, NY

  • Designed a highly available 3-tier system architecture on AWS, optimized for scalability and disaster recovery across ad-tech workloads.
  • Led Terraform adoption across the org, migrating Lambda functions to IaC, eliminating environment drift, and enforcing S3 governance.
  • Automated routine AWS operations with Python tooling (tagging compliance, resource cleanup), drastically reducing weekly manual toil for the ops team.
  • Improved GitLab CI pipelines by tuning build steps and layer caching, cutting pipeline runtime and increasing deployment frequency ~20%.
  • Managed Kubernetes environments and partnered with developers on prod troubleshooting, documenting runbooks to reduce repeat incidents.
  • Drove migration from Terragrunt to native Terraform modules, refactoring environment configurations and CI/CD pipelines.
  • Led production incident response, including alert triage, fast rollbacks, and post-mortems.

Cloud Engineer

11/2018 — 09/2020

MediaMath | Brooklyn, NY

  • Managed multi-VPC networking across environments, implementing IAM cross-account automation and least-privilege patterns.
  • Optimized Route 53 traffic routing between regions, improving site performance ~25% and enhancing failover reliability.
  • Defined infrastructure with CloudFormation and configured servers with Ansible for repeatable deployments.
  • Automated secret delivery to AWS Secrets Manager via Bash, eliminating manual handling and credential exposure risk.
  • Provisioned Azure VMs and virtual networks for cross-cloud cost-comparison against AWS.

Bachelor of Public Administration

Financial University, Moscow • 2013 — 2017

Ready to scale your infrastructure?

Whether you need to migrate to Kubernetes, implement robust Terraform automation, or just build reliable CI/CD pipelines—I can help your engineering team move faster and safer.

kuvaevdevops@gmail.com LinkedIn GitHub
917-815-2871 Miami, FL / Remote