Anatoliy Buchkevych

Key Skills

• AWS (EC2, S3, RDS, VPC, IAM, Lambda, CloudFront, Route53, ELB, Auto Scaling, Cost Management)
• Security & Compliance: Wazuh SIEM, Cloudflare (WAF, DDoS, DNS), IAM, Incident Response
• Incident Investigation: RCA, log forensics (Wazuh, CloudTrail, VPC Flow Logs), post-mortems
• Monitoring: Zabbix, Prometheus, Grafana, CloudWatch, Graylog2
• Cost Management: Reserved Instances, Spot Fleets, Budgets, Cost Anomaly Detection
• High-Load: 10K+ TPS systems, JMeter/k6, Redis/Memcached, horizontal scaling
• Automation: Terraform, Ansible, Jenkins
• Containers: Docker, Docker Compose
• Scripting: Bash, Go (custom integrations)

Professional Experience

Mticket (2022–Present) — DevSecOps Engineer

• Deployed Wazuh SIEM for 50+ servers with custom rules and integrations.
• Led incident responses, including DDoS mitigation via Cloudflare WAF + rate limiting.
• Optimized AWS for 15K concurrent users using EC2 Spot Fleet and CloudFront caching.
• Reduced AWS costs by 25% using Reserved Instances and Savings Plans.
• Investigated data exfiltration using IAM logs and enforced stricter access controls.

Zezman (2016–2022) — DevOps Engineer

• Dockerized legacy apps, moved to AWS with 60% cost savings.
• Automated CI/CD with Jenkins and rollback support.
• Restored data from S3 after DB corruption; implemented backup validation.

Cloudflare Expertise

• WAF rules to block OWASP Top threats, credential stuffing, SQLi, XSS.
• Handled 500 Gbps DDoS attack with zero downtime using Cloudflare.
• Advanced caching rules reduced CDN costs by 82%, optimized dynamic content with Workers.
• Geo-routing, failover, Waiting Room for 48K+ queued users.

Additional Info

• Worked on international projects incl. Paris Olympics 2024.
• Led DevSecOps teams in public sector for secure infrastructure.
• Proactive in cost-efficient cloud design and incident prevention.

Contact

Email: [email protected]

Phone: +34 692 073 799

Website: devops.cam