Hire the Best LDAP Specialists
in Ukraine

Security engineer with 10+ years of experience securing cloud-native, fintech, and AI/ML environments. Specialized in secure architecture design, SSDLC enablement, and DevSecOps automation. Proven success embedding security into developer workflows, leading secure design reviews, and building scalable AI/ML defense architectures. Drives adoption of security guardrails aligned with SOC 2, ISO 27001, PCI DSS, and GDPR. Passionate about trustworthy AI, data security, and engineering culture transformation. Core Security Competencies: • Secure Architecture & Threat Modeling • SSDLC Implementation & Governance • Cloud Security (AWS, GCP, Azure) • DevSecOps & CI/CD Security Automation • AI/ML Security & Adversarial Defense • IAM / RBAC / Zero Trust • Vulnerability Management & Security Automation • Compliance: SOC 2, ISO 27001, PCI DSS, GDPR • Security Audit/ Penetration testing

Building data systems that don't just work—they perform at scale. With over 15 years of experience, I bridge the gap between complex data engineering and business-critical insights. Whether you are dealing with 200k+ RPS high-load environments or building a Modern Data Lakehouse from scratch, I architect solutions that are cost-effective and future-proof. What I bring to your project: - High-Scale/High-Load Expertise: Proven track record in building real-time pipelines (Flink, Spark, Kafka) that handle massive throughput with sub-second latency. - Modern Lakehouse Architecture: Specialist in implementing Delta, Hudi, and Iceberg to provide ACID transactions on top of scalable cloud storage. - Performance OLAP: Deep expertise in ultra-fast query layers using StarRocks, ClickHouse, and SingleStore to slash BI dashboard wait times. - Enterprise Governance: Deploying OpenMetadata and dbt to ensure your data is clean, documented, and ready for LLM/AI applications. 🛠️ Tech Stack & Ecosystems - Processing & Streaming: Apache Flink, Spark, Kafka (Streams/Connect), NiFi, Polars. - Lakehouse & Storage: Hudi, Iceberg, Delta Lake, Databricks, Apache Hadoop. - High-Performance DBs: StarRocks, ClickHouse, Vertica, SingleStore, Oracle. - Cloud & Orchestration: AWS, GCP, Azure, Kubernetes (K8s), Airflow, Prefect. - Analytics Engineering: dbt, BigQuery, CRM/Ads Integration, Medallion Architecture. Why work with me? I don't just "install" tools. I design systems that optimize for Compute Cost (FinOps) and Data Reliability. If your current infrastructure is lagging or your cloud bills are spiraling, I can audit your stack and implement a high-performance alternative. Ready to scale? Let’s talk about your data architecture.

Hi! I'm a Cybersecurity Engineer with hands-on experience in vulnerability assessments, cloud security reviews, and compliance evidence gathering. My main responcibility is to make clients understand and improve their security posture. I work across the full assessment lifecycle: scanning exposed services, reviewing configurations, validating findings, and delivering clear, actionable remediation reports that your clients can actually use. I'm comfortable operating under NDA and have supported multiple audit during my experience in fintech sector, so I understand the discipline and documentation standards that consulting engagements demand. What I can do: - Conduct vulnerability assessments using Burpsuite Scanner, OpenVAS, Nmap, Acunetix from scoping through validated findings - Review exposed services, firewall configurations, and network infrastructure for security gaps - Perform Microsoft 365 security reviews - Azure security posture analysis aligned with CIS benchmarks and Microsoft Secure Score - Gather and structure technical evidence for compliance projects (PCI DSS, ISO 27001) - Produce detailed, structured remediation reports tailored to any environments Relevant experience: - Conducted web penetration tests using OpenVAS, Burp Suite, OWASP ZAP, and Metasploit - Provided technical evidence and documentation support for internal audits and certifications - Performed risk assessments and security hardening for infrastructure and information systems - Wrote security policies, remediation playbooks, and technical process documentation Understanding of frameworks & certificates: PCI DSS ISO 27001 CIS Benchmarks Tech stack: OS : Linux (Red Hat, Ubuntu), Windows (desktop & server), macOS VM : VMware, VBox SIEM : ELK/Wazuh, ArcSight, Splunk Cloud : Azure, Entra ID, Defender Network : Fortinet IPS&Firewall, Check Point Firewall, F5 WAF Anti-DDoS : Radware, Arbor EDR : Elastic Agent, Trellix PAM : CyberArk NDR : Vectra Vulnerability Detection : Nmap, Metasploit, Burp Suite + Scanner, OWASP ZAP, OpenVAS, Harvester, Sublister, Maltego

=> Let's Connect Hello, I'm Dima, a seasoned CyberSecurity Specialist and Turnkey Infrastructure Expert specializing in BigData solutions and data analysis, utilizing a DevOps approach. => Expertise Overview With a robust passion for constructing SOC, SOAR, and SIEM solutions, my primary focus lies in developing data ingestion, enrichment, and analysis pipelines, ensuring they are highly available and fault-tolerant. My expertise extends to building central logging and real-time processing platforms from the ground up, optimizing them for performance, security, and reliability across multiple environments, whether in the cloud or on-premise. => Value Proposition My commitment is to deliver solutions that not only centralize security and threat intelligence but also facilitate enhanced control over data, ultimately contributing to infrastructure cost savings. => Technological Summary CyberSecurity:------- > Wazuh, Suricata, pfSense BigData:--------------- > Kafka, ElasticSearch, OpenSearch Data Processing:----- > FluentD, Vector.dev, Apache NiFi Infra as Code:--------- > Terraform, cdktf, cdk8s Virtualization:--------- > Proxmox, VMware Containerization:----- > Kubernetes Clouds:---------------- > AWS, Hetzner, DigitalOcean, Linode Automation:----------- > Jenkins, GitHub Actions Monitoring:----------- > Zabbix, Grafana, Kibana, Prometheus, Thanos Mail:--------------------> MailCow SMTP/IMAP, Postfix VPN:------------------- > OpenVPN Server Programming:-------- > Bash, Python, TypeScript Operating Systems:- > CentOS, RHEL, Rocky Linux, Ubuntu, Debian => Personal Attributes • Leadership: Leading by example with a team-first approach • End-to-End Execution: Proficient from POC to Enterprise-level implementation • Resilience: Demonstrating high thoroughness and endurance • Adaptability: A quick, can-do architect and experienced troubleshooter • Optimization: Adept in process and performance optimization • Documentation: Skilled technical documentation writer • Vision: A visionary in technological implementation and solution provision

Regulatory Compliance Lead & Quality Architect. Risk-based CSV validation kits and validation-by-design frameworks for inspection-ready, compliant systems. 📋 Focus on regulated environments (GAMP 5, GxP, CFR Part 11, EU Annex 11, ISO 13485): 🔹 Validation-aligned documentation across medical, pharma, biotech, and R&D labs. 🔹 Traceable workflow steps and sign-off design for QMS systems. 🔹 Privacy, data integrity (ALCOA+), DPIA/record-keeping, breach traceability, and audit trails aligned with hybrid cloud systems. 🧩 Validation & Quality Governance: 🔹 Development of Computerized System Validation (CSV) documentation packages for GxP-regulated SaaS and laboratory systems, covering Validation Plans, Test Protocols (IQ/OQ/PQ/DQ), Traceability Matrices, and Validation Summary Reports. 🔹 Creation and maintenance of Validation Master Plans (VMPs) defining validation scope, organizational roles, lifecycle strategy, and change-control governance across systems or sites. 🔹 Implementation of Quality Management Systems (QMS) aligned with ISO 9001, ISO 13485, and 21 CFR Part 11, including document control, CAPA, and audit readiness. 🔹 Application of Quality Risk Management (QRM) methodologies (per ISO 14971, GAMP 5) to evaluate and mitigate data integrity and system risks throughout validation and operation. 🔹 Integration of QRM within the QMS and CSV within the VMP, ensuring traceable, risk-based validation consistent with GxP and data-integrity principles. 🔹 Support for regulatory inspections and supplier audits, ensuring that validation evidence and QMS documentation demonstrate continuous control and compliance. 🧪 Pharma, MedTech & R&D Focus: 🔹 Regulatory compliance assessment and validation documentation aligned with FDA 21 CFR Part 11, EU Annex 11, GAMP 5, and GxP standards (GMP, GDP, GLP, GCP). URS/FS/DS, DQ/IQ/OQ/PQ, traceability, validation, protocols 🔹 Compliance & risk management for EHR, EMR, AI diagnostics, medical IoT, biotech software, and electronic lab systems (LIMS/LIS/ELN) 🔹 Structured documentation for regulated health platforms (FHIR, HL7), lab data integrity (ALCOA+), and audit trails 🔹 Traceable R&D workflows and design validation aligned with QMS and regulatory frameworks 🚀 What you get: 📌 Support SaaS, MedTech, and regulated industries in achieving compliance and regulatory readiness. 📌 Define, document, and optimize workflows for efficiency & compliance. 📌 Aligned tech teams, QA, and product with clear requirements and visualizations. 📌 Reduce technical debt and scope creep through structured documentation and clear boundaries between features, data, UI/UX, and integrations. 📌 Professional documentation you can show to investors, accelerator programs, or tech vendors to build trust. 📌 A long-term roadmapping stack that grows with your business. 📌 Define what MVP vs. later phase is so you avoid unnecessary development costs. 📌 Available for both hourly and fixed-price projects based on scope and complexity. 🌐 Industry Expertise: 🔷 Healthcare, MedTech & R&D IT – Compliance & risk management for EHR, EMR, AI diagnostics, medical IoT, biotech software, electronic lab systems (LIMS/LIS), and regulated digital health platforms (FHIR, HL7, GxP (GAMP, GMP, GDP, GCP, GLP), CFR Part 11, EU Annex 11, ICH Q9). and FDA 510(k) / 21 CFR Part 807 Subpart E. Validation, documentation, and risk management for regulated software and systems. 🔷 Enterprise IT & SaaS – Architecture & compliance for multi-tenant SaaS, ERP modernization, and cloud transformation. 🔷 Industrial Automation & Robotics – IT architecture for secure industrial systems, Operational Technology (OT) Security, and AI-powered robotics. 🔷 IT Governance – Ensuring IT compliance with risk-driven architecture strategies. 🔷 Digital Transformation & Cloud Strategy – Modernizing legacy IT systems, ERP migrations, and governance for large-scale cloud solutions. 🗸 Adherence to BABOK, DMBOK, SDLC, ISTBQ, INVEST/SMART, 12-factor, MACH, AWS, and GCP standards and best practices. 📚 Documentation & Business Analysis Services: - 📝 SRS/SRD/BRD/FRD/NFRD/BPR/TDD/SAD/SDD/RFI/RFQ preparation, - 📝 FHIR resource modeling, HL7 mapping, and interoperability documentation for EHR integrations - 🔄 BPMN process modeling, - 🔗API documentation, - 🔀 Process diagrams, ERDs, DFDs, UMLs, conceptual models, and data dictionaries, - 📌 Strategy analysis, - 🛠️ Requirements analysis and design definition, - 📈 Solution evaluation.

Installing an SSL certificate can be a daunting task even for experienced system administrators. Having worked in the SSL department of one of the major SSL and hosting provider for the past 9 years, I managed to acquire broad experience in dealing with security and SSL configuration on variety of platforms and servers. So if you need a hand with: - SSL installation, - getting rid of mixed content, - troubleshooting certificate chain issues, - setting up protocol and cypher suite configuration for PCI compliance, - CloudFlare SSL, - business validation for Organization Validation/Extended Validation (OV/EV) certificates, - etc. I will be glad to offer my services!