Korviakov Andrey

Coins.ph is on a mission to create an open financial system by providing everyone easy access to Web3 and digital assets.

• Developed and maintained cloud infrastructures to meet reliability and scalability demands
• Proposed, performed, and supported the transition from KIAM to IRSA on the EKS cluster for a large majority of the applications
• Designed and built a High Availability setup with proactive monitoring for the partner’s VPN solution
• Performed a bunch of majority updates of numerous EKS clusters as well as all their dependencies
• Developed from scratch terraform code for user management and integrations of numerous applications with OKTA
• Performed smooth migration of the overlay network in EKS on eBPF
• Proposed a bunch of improvements to the internal utilities and CI which as a result significantly reduced their execution time

A unique platform for operations with investments and personal finance, using algorithms of artificial intelligence.

• Developed architecture, designed and implemented infrastructure, as well as supporting of the project
• Created zero trust encrypted mesh network over multiple clusters
• Proposed and implemented remote distributed storage for sensitive data
• Developed proactive load balancer for remote distributed storages (OpenResty, Lua)
• Created modern CI/CD for more 20+ microservices (Golang, Python, NodeJS, PHP: Laravel, Symfony)
• Modeled the structure for Multi-tiered applications, orchestrated the processes to deploy each tier
• Integrated logs collection and its storing in S3 and Loki for quick access as well
• Built a fault-tolerant and scalable monitoring system based on VictoriaMetrics cluster
• Implemented DevSecOps practices and tools: Vault, Security scanning, Image signing, Network policies, etc.
• Configured and covered Blockchain nodes with monitoring (Ethereum, Bitcoin, Celo)
• Designed and developed a system as code based on terraform and Google Workspace with SSO functionality to manage users’ rights
• Improved the public terraform provider for external service, eliminated bugs and built a CI to build it

An internet media company serving over 1 billion geo-targeted ad impressions per month.

• Developed architecture, designed and implemented infrastructure, as well as support of the project (~30k rps)
• Took the project through several technological steps: Chef + Capistrano + Consul, docker-compose + Bamboo + Consul, Kubernetes + Gitlab CI/CD
• Deployed Clickhouse cluster to Kubernetes with replication, sharding, monitoring and backups with my own Helm chart (~11Tb)
• Deployed Tarantool vshard cluster to Kubernetes with a Helm chart written by me (~30k rps)
• Designed CI/CD pipelines from scratch for a bunch of microservices (Golang, NodeJS, PHP: Laravel, Symfony)
• Developed and implemented smart distributed rate limiter for NGINX Ingress controller which gives the ability to divide precisely the global RPS limit per sub-stream and to change ratios according to conditions updated every minute (Lua)
• Experienced in analyzing and resolving compilation and deployment errors related to code development, branching, merging and building of source code
• End-to-end integration of Vault across all services for sensitive data storage
• Implemented CentOS installation using kick start and further hardening via Ansible
• Deployed and managed Kubernetes cluster on more than 30 bare-metal servers

The first decentralized blockchain backed web browser.

• Deployed a cluster of Blockchain nodes for the project (NBX Coin)
• Migrated services to modern and fault-tolerant hybrid infrastructure using IaC (Terraform, Terragrunt, Terratest, Packer)
• Created convenient CI/CD for a bunch of diverse microservices
• Integrated logs collection and its storing in S3 and Loki for quick access as well
• Built a fault-tolerant and scalable monitoring system based on VictoriaMetrics cluster
• Implemented DevSecOps practices and tools: Vault, Security scanning, Network policies, etc.
• Developed CI/CD for LinuxKit to deploy microservices as immutable VM’s into Hetzner Cloud, AWS & Vultr

Research. Innovation. Development.

• Installed and configured self-hosted Atlassian Stack: Jira, Confluence, BitBucket, Bamboo, Crowd. With further migration to Jira, Confluence, Keycloak and Gitlab with SSO
• Designed and build project for a diskless mining farm from scratch (160+ rigs):
  • Implemented network booting for rigs with only two masters
  • Built the ability of quick switching between versions of OS and Drivers for graphic cards
  • Designed and developed backend for rig registration and configuring (Tarantool, Lua)
  • Developed metrics exporter for graphic cards to work with Prometheus (Golang)
  • Designed and developed KVM device in purpose of remote control motherboards (my own design)
  • Developed KVM status broker from MQTT to Tarantool made into the form of in-app (Lua)
  • Developed KVM control service with REST API and MQTT support (Golang)
  • Upgraded KVM control system by built POC based on ESP8266: OTA, resistance to power failure, work in pairs of five devices with five independed lines. Significantly reduced KVM polling time from 450ms to 9,5ms
  • Configured automatic redundancy with fail-over using 3 independent internet channels (Mikrotik)
• Developed an application that monitors Ingress resources in a Kubernetes cluster, aggregates information about all domains, and provides metrics with their expiry information to Prometheus: domain-harvester (Golang)
• Designed and configured CDN using low cost servers which is able to maintain up to 5Gbps bandwidth
• Developed an app for Android TV stick which shows the necessary graphs and is controlled through the API (Java)
• Designed and developed DNS cluster based on PowerDNS (Lua, Redis as a backend) which served more than 2к rps/instance
• Developed API service for event processing from Jira, Bitbucket, Webhooks with extraction of necessary information and sending formatted notifications (PHP, Jira, Bitbucket)
• Developed Capistrano module to provide information about release to Graphite (Ruby)
• Developed distributed endpoint for an app metrics based on queues (OpenResty, Lua)
• Developed metrics broker from queue to MongoDB (Golang) metrics-bridge
• Written Chef recipes for a plenty of services with automatic components monitoring when adding a project role to an instance

A place where sellers show the products they offer and customers find what they are looking for.

• Directly involved in choosing, ordering and configuring servers, network equipment, IBM System Storages
• Created geo-aware Proxmox clusters (15+ bare-metal servers)
• Developed automation for bootstrapping new instances from OpenVZ template in 1-click: Chef, Deploy code, autosetup MySQL as RO replica, run web server, make tests and register it with a LB
• Configuration and troubleshooting Bonding/ACL/VLAN/NAT/MultiWAN on Cisco devices
• Build automation tools to deploy underlying project infrastructure from source code to obtain the best performance settings: Apache + mod_perl, Nginx, MySQL
• Setup HA Load Balancers with caching on bare-metal servers (CARP/VRRP, Nginx)
• Troubleshooting office IT infrastructure issues
• Configuration and support of analog and digital PBX for the office (HW, Asterisk)
• Migrated all services from FreeBSD to Linux (CentOS) servers
• Implemented monitoring system with autodiscovery (Munin)
• One of the locations is still in operation to the present day without disruptions!

Custom-made furniture by Mr.Doors is a unique interior solutions for home and office.

• Consultation and technical support for customers
• Troubleshooting and solving computer hardware and software problems

Provide Internet broadband access services.

• Consultation and technical support for customers

Provide Internet broadband access services.

• Consultation and technical support for customers
• Local network cabling from scratch and troubleshooting
• Selected, purchased and set up asymmetric Internet access over satellite
• Configured and maintained FreeBSD servers which were built for entertainment purposes (FTP, IRC, forums) and the Internet gateway as well