Freelancer: Platform/DevOps engineering with focus on Kubernetes platform operations (on-premise & cloud), Infrastructure as Code (Terraform/Ansible), and CI/CD a

Freiberufler / Selbstst�ndiger

Remote-Arbeit

Verf�gbar ab: 10.02.2026

Verf�gbar zu: 100%

davon vor Ort: 100%

Top-Skills

Kubernetes

Ansible

AWS

Terraform

Docker

Helm

GitLab

Jenkins

Linux

Prometheus

Grafana

Google Cloud

OpenShift

Python

Shell-Script

CI/CD

Infrastructure as code

Elastic Search

Sprachen

English

Russian

German

Einsatzorte

L�nder

Deutschland, �sterreich

Remote-Arbeit

m�glich

Projekte

1 year 2 months

2024-12 - now

Developing machine learning models

Freelance Data Scientist

Rolle

Freelance Data Scientist

Projektinhalte

Developing machine learning models to analyze user behavior and detect anomalies in digital systems
Automating data pipelines using Python, Git, and CI/CD principles to improve system reliability
Applying data-driven insights to support security monitoring and operational decision-making
Collaborating with international teams in English; maintaining technical documentation

Kunde

Branch Track

Einsatzort

Remote

4 months

2025-10 - 2026-01

On-Premise Infrastructure Migration & Email Platform Modernization

Freelance Platform Engineer Terraform Ansible Linux (Debian/Rocky) ...

Rolle

Freelance Platform Engineer

Projektinhalte

Migrated entire company infrastructure from cloud providers to self-hosted Hetzner servers
Designed and deployed secure email platform: Postfix + Dovecot + OpenLDAP + Rspamd (DKIM/DMARC)
Implemented IT asset management system (GLPI) with PostgreSQL backend
Automated server provisioning using Terraform (Hetzner Cloud) + Ansible playbooks
Containerized legacy services with Docker for simplified maintenance
Hardened Debian 13 and Rocky Linux 9 systems (SELinux, firewalld, fail2ban)
Configured backup strategy and monitoring (Prometheus/Grafana)

Produkte

Hetzner Cloud Debian 13 Rocky Linux 9 GLPI Postfix Dovecot OpenLDAP Rspamd Docker

Kenntnisse

Terraform Ansible Linux (Debian/Rocky) Postfix Dovecot OpenLDAP Docker Bash Prometheus Grafana PKI/TLS

Kunde

Cplugin GmbH (IT services / SaaS)

Einsatzort

Remote (Germany)

3 months

2023-02 - 2023-04

Cloud Infrastructure Automation for German Clients

Cloud Engineer Terraform Ansible AWS ...

Rolle

Cloud Engineer

Projektinhalte

Worked on a highly distributed cloud platform integrating retail, taxi, and in-flight services across international airports�and airlines
Enabled seamless passenger experience: users could browse, select, and purchase goods via interactive seatback or taxi cabin displays, with delivery coordinated upon arrival
Managed multi-tenant infrastructure on AWS, supporting a large number of vendors and service providers through�isolated environments
Automated provisioning and configuration using Terraform and Ansible, ensuring consistency and security across environments
Maintained CI/CD pipelines in GitLab, closely collaborating with development teams to deploy and scale containerized�applications
Integrated with ServiceNow ITSM for change and incident management, aligning with enterprise-grade operational�processes

Produkte

AWS (VPC EC2 EKS IAM) GCP Terraform Cloud

Kenntnisse

Terraform Ansible AWS GCP Linux Git CI/CD

Kunde

OMNEVO GmbH

Einsatzort

Wiesbaden, Germany (on-site + remote)

3 years 1 month

2020-02 - 2023-02

Kubernetes Platform for Enterprise SRE Team

DevOps Engineer, SRE Kubernetis Kubernetes Terraform Ansible ...

Rolle

DevOps Engineer, SRE Kubernetis

Projektinhalte

IT service management (Change managment, Incident managment, TOC service), IT asset management by ServiceNow�ITSM system
Infrastructure as Code
- Managing customers with 1000+ VMs EC2, Most of them deployed at AWS, other on ESXi On-Prem
- Managing infrastructure by Ansible and Terraform, run CI/CD pipeline on Jenkins, automation process using Bash
- Managing 7 Kubernetes clusters as part of the Kubernetes team, SRE role
Experience with creating Docker containers, images
Manage container using DockerCompose. Deploy and manage Kubernetes cluster on Bare Metal, virtual and cloud platforms AWS, GCP, YandexCloud. Like Vanilla and OpenShift one.
Virtualization. VmWare ESXi managed VM of infrastructure. Deploy OpenShift on KVM Baremetal
Monitoring. Configure Prometheus, Grafana to monitor cluster and application
Logging. Deploy and configure EFK to collect logging from Kubernetes cluster

Produkte

Kubernetes OpenShift 4.x AWS EC2/EKS KVM Ceph

Kenntnisse

Kubernetes Terraform Ansible AWS Linux (Rocky) Prometheus Grafana Helm GitLab CI Bash Python

Kunde

ICL Group (industrial manufacturing)

Einsatzort

Kazan, Russia (remote)

8 years

2012-03 - 2020-02

Ensure corporation-wide network operations

Team Leader Network Engineer

Rolle

Team Leader Network Engineer

Projektinhalte

Ensure corporation-wide network operations as well as coordination and control of major incidents to be handled in the team
Ensure 24/7 monitoring of all network management systems as well as the deployed core components
Maintain and continuously improve network stability
Ensure SLA/OLA compliant restoration of complex network connections and system components
Process and interface definition as well as independent design and further development of operational processes
Mapping of a management escalation level within the division as well as controlling and ensuring prioritized incident handling

Kunde

Geropharm

Einsatzort

Saint-Petersburg, Russia

1 year 4 months

2010-12 - 2012-03

Research and analysis of Russian crypto providers

Specialist in complex information security�

Rolle

Specialist in complex information security�

Projektinhalte

Creating two-factor authentication system on the basis of electronic keys ruToken, eToken, to ensure the proper level�of security
Creating cloud infrastructure
Managing of electronic documentation of the project

Kunde

Comtel LLT

Einsatzort

Saint-Petersburg, Russia

3 years

2008-01 - 2010-12

Implementation of information protection means in the organization

Specialist in complex information security�

Rolle

Specialist in complex information security�

Projektinhalte

Implementation of information protection means in the organization to ensure the proper level of security
Development of contracts for services in the field of information protection
Preparation and realization of decisions on observance of requirements of state standards of the Russian Federation�in the field of information protection
Carrying out certification of informatization objects for information security requirements
Development of organizational and administrative documentation to ensure information security
Analysis of information protection efficiency at the informatization object

Kunde

SPB FGUP ZashitaInfoTrans

Einsatzort

Saint-Petersburg, Russia

1 year 1 month

2007-01 - 2008-01

IT administration

Operation IT administrator

Rolle

Operation IT administrator

Projektinhalte

Kunde

Radio44 LLT

Einsatzort

Saint-Petersburg, Russia

Aus- und Weiterbildung

5 years 7 months

2021-02 - 2026-08

Professional Certification

OTUS Online Education, Moscow, Russia (remote)

Institution, Ort

OTUS Online Education, Moscow, Russia (remote)

Schwerpunkt

DevOps Practices, Kubernetes Orchestration, GitLab CI/CD Pipelines, Microservice Deployment Automation

5 years 6 months

2002-09 - 2008-02

Cyber IT Security

Diploma as a specialist in engineering, Security of�computer and information, Peter the Great St. Petersburg Polytechnic University, Saint Petersburg, Russia

Abschluss

Diploma as a specialist in engineering, Security of�computer and information

Institution, Ort

Peter the Great St. Petersburg Polytechnic University, Saint Petersburg, Russia

Schwerpunkt

Focus:

Information Security
Network Systems
Operating Systems
Distributed Systems
Cryptography

Kompetenzen

Top-Skills

Kubernetes Ansible AWS Terraform Docker Helm GitLab Jenkins Linux Prometheus Grafana Google Cloud OpenShift Python Shell-Script CI/CD Infrastructure as code Elastic Search

Produkte / Standards / Erfahrungen / Methoden

Profile:

Platform/DevOps Engineer with 6+ years of hands-on experience building and operating on-premise Kubernetes platforms on bare metal and�VM infrastructure
Deep Linux expertise (Rocky Linux, Debian) with proven ability to troubleshoot distributed systems end-to-end ? from�kernel-level issues to application-layer observability
Specialized in maintaining highly available Kubernetes clusters alongside core data�services (Elasticsearch, Kafka patterns) using Terraform, Ansible, and Helm
Passionate about methodical debugging of complex stacks and�reducing operational toil through automation
Seeking to contribute to RISK IDENT's fraud prevention mission by ensuring platform reliability�for FRIDA and DEVICE IDENT

DevOps & Infrastructure Automation:

Infrastructure as Code (IaC): Terraform (modular design, remote state management via�S3/Backend, AWS/GCP providers), Packer + QEMU (custom VM image pipelines with cloud-init,�pre-installed ROCm stack, AMDGPU drivers)
Configuration Management: Ansible (role-based architecture, idempotent playbooks for Rocky�Linux 9/10 and Debian 13, integration with Jinja2 templating and dynamic inventories)
CI/CD & Build Pipelines: Automated image building, versioned artifact generation,�parameterized builds for heterogeneous environments

Cloud & Virtualization:

Multi-cloud provisioning (AWS, GCP)
Local VM orchestration with QEMU/KVM
Secure, reproducible base images hardened for deployment

Observability & Operations:

Systemd service management
Logging pipelines (Fluentd/Elasticsearch)
Monitoring stack (Prometheus + Grafana)

Security & Identity:

Custom PKI infrastructure (OpenSSL, CA automation via Ansible)
mTLS with Traefik
FIDO2/YubiKey integration for secure auth workflows

Containerization & Orchestration:

Docker (multi-stage builds, image optimization)
Kubernetes (deployment manifests, Helm charts)

Tooling:

Git workflows (branching strategies, signed commits)

Systems & Networking:

Deep understanding of Linux internals (systemd, SELinux in permissive/enforcing modes, user/group management, file permissions)
Secure system hardening (minimal base images, SSH key-only access, sudo without password for automation users)
IPv6 and overlay networking (experience with Yggdrasil mesh networking, custom VPN research)
Network diagnostics and troubleshooting (firewalld, ss, tcpdump, yggdrasilctl)

Email & Identity Infrastructure:

Full-stack mail server deployment: Postfix + Dovecot + OpenLDAP + Rspamd (DKIM/DMARC/SPF, Redisbacked filtering)
LDAP directory design and management (ou=users,dc=cplugin,dc=com)
Debugging email delivery issues (recipient restrictions, virtual mailbox mapping, UID/GID alignment)

Hardware & Edge Environments:

Experience building and maintaining infrastructure on legacy macOS hardware (2011 iMac, Thunderbolt 2 docks)
Cross-platform toolchains (macOS Ventura ? Linux VMs via QEMU/Packer)
NFC/Bluetooth integration research for authentication and device interaction

AI & Emerging Tech:

Local LLM inference on AMD GPUs (ROCm stack, Ryzen CPU offload)
Prompt engineering for operational tasks (log analysis, config generation, diagnostics)
Interest in self-hosted AI workflows and model optimization

Languages & Tools:

Proficient in English (technical documentation, collaboration); German B1 (working knowledge for daily life/administration in Germany)
Comfortable in both CLI-first and GUI-assisted environments (e.g., LDAP admin tools on Debian 13)
Version control hygiene: signed commits, structured repositories, semantic branching

Professional Context:

Freelance DevOps engineer with end-to-end ownership of infrastructure projects
Strong focus on reproducibility, documentation, and security-by-default principles
Experience navigating regulatory and administrative constraints (e.g., residency, compliance-aware deployments)

Programmiersprachen

Python

Shell scripting

Einsatzorte

L�nder

Deutschland, �sterreich

Remote-Arbeit

m�glich

Projekte

1 year 2 months

2024-12 - now

Developing machine learning models

Freelance Data Scientist

Rolle

Freelance Data Scientist

Projektinhalte

Developing machine learning models to analyze user behavior and detect anomalies in digital systems
Automating data pipelines using Python, Git, and CI/CD principles to improve system reliability
Applying data-driven insights to support security monitoring and operational decision-making
Collaborating with international teams in English; maintaining technical documentation

Kunde

Branch Track

Einsatzort

Remote

4 months

2025-10 - 2026-01

On-Premise Infrastructure Migration & Email Platform Modernization

Freelance Platform Engineer Terraform Ansible Linux (Debian/Rocky) ...

Rolle

Freelance Platform Engineer

Projektinhalte

Migrated entire company infrastructure from cloud providers to self-hosted Hetzner servers
Designed and deployed secure email platform: Postfix + Dovecot + OpenLDAP + Rspamd (DKIM/DMARC)
Implemented IT asset management system (GLPI) with PostgreSQL backend
Automated server provisioning using Terraform (Hetzner Cloud) + Ansible playbooks
Containerized legacy services with Docker for simplified maintenance
Hardened Debian 13 and Rocky Linux 9 systems (SELinux, firewalld, fail2ban)
Configured backup strategy and monitoring (Prometheus/Grafana)

Produkte

Hetzner Cloud Debian 13 Rocky Linux 9 GLPI Postfix Dovecot OpenLDAP Rspamd Docker

Kenntnisse

Terraform Ansible Linux (Debian/Rocky) Postfix Dovecot OpenLDAP Docker Bash Prometheus Grafana PKI/TLS

Kunde

Cplugin GmbH (IT services / SaaS)

Einsatzort

Remote (Germany)

3 months

2023-02 - 2023-04

Cloud Infrastructure Automation for German Clients

Cloud Engineer Terraform Ansible AWS ...

Rolle

Cloud Engineer

Projektinhalte

Worked on a highly distributed cloud platform integrating retail, taxi, and in-flight services across international airports�and airlines
Enabled seamless passenger experience: users could browse, select, and purchase goods via interactive seatback or taxi cabin displays, with delivery coordinated upon arrival
Managed multi-tenant infrastructure on AWS, supporting a large number of vendors and service providers through�isolated environments
Automated provisioning and configuration using Terraform and Ansible, ensuring consistency and security across environments
Maintained CI/CD pipelines in GitLab, closely collaborating with development teams to deploy and scale containerized�applications
Integrated with ServiceNow ITSM for change and incident management, aligning with enterprise-grade operational�processes

Produkte

AWS (VPC EC2 EKS IAM) GCP Terraform Cloud

Kenntnisse

Terraform Ansible AWS GCP Linux Git CI/CD

Kunde

OMNEVO GmbH

Einsatzort

Wiesbaden, Germany (on-site + remote)

3 years 1 month

2020-02 - 2023-02

Kubernetes Platform for Enterprise SRE Team

DevOps Engineer, SRE Kubernetis Kubernetes Terraform Ansible ...

Rolle

DevOps Engineer, SRE Kubernetis

Projektinhalte

IT service management (Change managment, Incident managment, TOC service), IT asset management by ServiceNow�ITSM system
Infrastructure as Code
- Managing customers with 1000+ VMs EC2, Most of them deployed at AWS, other on ESXi On-Prem
- Managing infrastructure by Ansible and Terraform, run CI/CD pipeline on Jenkins, automation process using Bash
- Managing 7 Kubernetes clusters as part of the Kubernetes team, SRE role
Experience with creating Docker containers, images
Manage container using DockerCompose. Deploy and manage Kubernetes cluster on Bare Metal, virtual and cloud platforms AWS, GCP, YandexCloud. Like Vanilla and OpenShift one.
Virtualization. VmWare ESXi managed VM of infrastructure. Deploy OpenShift on KVM Baremetal
Monitoring. Configure Prometheus, Grafana to monitor cluster and application
Logging. Deploy and configure EFK to collect logging from Kubernetes cluster

Produkte

Kubernetes OpenShift 4.x AWS EC2/EKS KVM Ceph

Kenntnisse

Kubernetes Terraform Ansible AWS Linux (Rocky) Prometheus Grafana Helm GitLab CI Bash Python

Kunde

ICL Group (industrial manufacturing)

Einsatzort

Kazan, Russia (remote)

8 years

2012-03 - 2020-02

Ensure corporation-wide network operations

Team Leader Network Engineer

Rolle

Team Leader Network Engineer

Projektinhalte

Ensure corporation-wide network operations as well as coordination and control of major incidents to be handled in the team
Ensure 24/7 monitoring of all network management systems as well as the deployed core components
Maintain and continuously improve network stability
Ensure SLA/OLA compliant restoration of complex network connections and system components
Process and interface definition as well as independent design and further development of operational processes
Mapping of a management escalation level within the division as well as controlling and ensuring prioritized incident handling

Kunde

Geropharm

Einsatzort

Saint-Petersburg, Russia

1 year 4 months

2010-12 - 2012-03

Research and analysis of Russian crypto providers

Specialist in complex information security�

Rolle

Specialist in complex information security�

Projektinhalte

Creating two-factor authentication system on the basis of electronic keys ruToken, eToken, to ensure the proper level�of security
Creating cloud infrastructure
Managing of electronic documentation of the project

Kunde

Comtel LLT

Einsatzort

Saint-Petersburg, Russia

3 years

2008-01 - 2010-12

Implementation of information protection means in the organization

Specialist in complex information security�

Rolle

Specialist in complex information security�

Projektinhalte

Implementation of information protection means in the organization to ensure the proper level of security
Development of contracts for services in the field of information protection
Preparation and realization of decisions on observance of requirements of state standards of the Russian Federation�in the field of information protection
Carrying out certification of informatization objects for information security requirements
Development of organizational and administrative documentation to ensure information security
Analysis of information protection efficiency at the informatization object

Kunde

SPB FGUP ZashitaInfoTrans

Einsatzort

Saint-Petersburg, Russia

1 year 1 month

2007-01 - 2008-01

IT administration

Operation IT administrator

Rolle

Operation IT administrator

Projektinhalte

Kunde

Radio44 LLT

Einsatzort

Saint-Petersburg, Russia

Aus- und Weiterbildung

5 years 7 months

2021-02 - 2026-08

Professional Certification

OTUS Online Education, Moscow, Russia (remote)

Institution, Ort

OTUS Online Education, Moscow, Russia (remote)

Schwerpunkt

DevOps Practices, Kubernetes Orchestration, GitLab CI/CD Pipelines, Microservice Deployment Automation

5 years 6 months

2002-09 - 2008-02

Cyber IT Security

Diploma as a specialist in engineering, Security of�computer and information, Peter the Great St. Petersburg Polytechnic University, Saint Petersburg, Russia

Abschluss

Diploma as a specialist in engineering, Security of�computer and information

Institution, Ort

Peter the Great St. Petersburg Polytechnic University, Saint Petersburg, Russia

Schwerpunkt

Focus:

Information Security
Network Systems
Operating Systems
Distributed Systems
Cryptography

Kompetenzen

Top-Skills

Kubernetes Ansible AWS Terraform Docker Helm GitLab Jenkins Linux Prometheus Grafana Google Cloud OpenShift Python Shell-Script CI/CD Infrastructure as code Elastic Search

Produkte / Standards / Erfahrungen / Methoden

Profile:

Platform/DevOps Engineer with 6+ years of hands-on experience building and operating on-premise Kubernetes platforms on bare metal and�VM infrastructure
Deep Linux expertise (Rocky Linux, Debian) with proven ability to troubleshoot distributed systems end-to-end ? from�kernel-level issues to application-layer observability
Specialized in maintaining highly available Kubernetes clusters alongside core data�services (Elasticsearch, Kafka patterns) using Terraform, Ansible, and Helm
Passionate about methodical debugging of complex stacks and�reducing operational toil through automation
Seeking to contribute to RISK IDENT's fraud prevention mission by ensuring platform reliability�for FRIDA and DEVICE IDENT

DevOps & Infrastructure Automation:

Infrastructure as Code (IaC): Terraform (modular design, remote state management via�S3/Backend, AWS/GCP providers), Packer + QEMU (custom VM image pipelines with cloud-init,�pre-installed ROCm stack, AMDGPU drivers)
Configuration Management: Ansible (role-based architecture, idempotent playbooks for Rocky�Linux 9/10 and Debian 13, integration with Jinja2 templating and dynamic inventories)
CI/CD & Build Pipelines: Automated image building, versioned artifact generation,�parameterized builds for heterogeneous environments

Cloud & Virtualization:

Multi-cloud provisioning (AWS, GCP)
Local VM orchestration with QEMU/KVM
Secure, reproducible base images hardened for deployment

Observability & Operations:

Systemd service management
Logging pipelines (Fluentd/Elasticsearch)
Monitoring stack (Prometheus + Grafana)

Security & Identity:

Custom PKI infrastructure (OpenSSL, CA automation via Ansible)
mTLS with Traefik
FIDO2/YubiKey integration for secure auth workflows

Containerization & Orchestration:

Docker (multi-stage builds, image optimization)
Kubernetes (deployment manifests, Helm charts)

Tooling:

Git workflows (branching strategies, signed commits)

Systems & Networking:

Deep understanding of Linux internals (systemd, SELinux in permissive/enforcing modes, user/group management, file permissions)
Secure system hardening (minimal base images, SSH key-only access, sudo without password for automation users)
IPv6 and overlay networking (experience with Yggdrasil mesh networking, custom VPN research)
Network diagnostics and troubleshooting (firewalld, ss, tcpdump, yggdrasilctl)

Email & Identity Infrastructure:

Full-stack mail server deployment: Postfix + Dovecot + OpenLDAP + Rspamd (DKIM/DMARC/SPF, Redisbacked filtering)
LDAP directory design and management (ou=users,dc=cplugin,dc=com)
Debugging email delivery issues (recipient restrictions, virtual mailbox mapping, UID/GID alignment)

Hardware & Edge Environments:

Experience building and maintaining infrastructure on legacy macOS hardware (2011 iMac, Thunderbolt 2 docks)
Cross-platform toolchains (macOS Ventura ? Linux VMs via QEMU/Packer)
NFC/Bluetooth integration research for authentication and device interaction

AI & Emerging Tech:

Local LLM inference on AMD GPUs (ROCm stack, Ryzen CPU offload)
Prompt engineering for operational tasks (log analysis, config generation, diagnostics)
Interest in self-hosted AI workflows and model optimization

Languages & Tools:

Proficient in English (technical documentation, collaboration); German B1 (working knowledge for daily life/administration in Germany)
Comfortable in both CLI-first and GUI-assisted environments (e.g., LDAP admin tools on Debian 13)
Version control hygiene: signed commits, structured repositories, semantic branching

Professional Context:

Freelance DevOps engineer with end-to-end ownership of infrastructure projects
Strong focus on reproducibility, documentation, and security-by-default principles
Experience navigating regulatory and administrative constraints (e.g., residency, compliance-aware deployments)

Programmiersprachen

Python

Shell scripting

Vertrauen Sie auf Randstad

Im Bereich Freelancing

Im Bereich Arbeitnehmer�berlassung / Personalvermittlung

Fragen?

Rufen Sie uns an +49 89 500316-300 oder schreiben Sie uns:

Name E-Mail-Adresse Ihre Frage

Telefonnummer Unternehmen

Ich habe die Datenschutzbestimmungen gelesen und bin damit einverstanden.

Einsatzorte

Projekte

Aus- und Weiterbildung

Kompetenzen

Top-Skills

Produkte / Standards / Erfahrungen / Methoden

Programmiersprachen

Einsatzorte

Projekte

Aus- und Weiterbildung

Kompetenzen

Top-Skills

Produkte / Standards / Erfahrungen / Methoden

Programmiersprachen

Vertrauen Sie auf Randstad

Fragen?

Rufen Sie uns an +49 89 500316-300 oder schreiben Sie uns:

Das Freelancer-Portal

Direktester geht's nicht! Ganz einfach Freelancer finden und direkt Kontakt aufnehmen.