Background#

I’m a Senior Platform/SRE/DevOps Engineer with hands-on experience running Kubernetes, CI/CD, and cloud infrastructure in production. I spent 4.5 years at Globoplay, one of Latin America’s largest streaming platforms, working on infrastructure supporting high-traffic, high-availability workloads. I now work independently, partnering remotely with engineering teams across the US and other markets on platform and infrastructure work.

My core stack is Kubernetes, Docker, Terraform, Python, Bash, and CI/CD (GitLab CI, GitHub Actions) — tools I use daily and trust under pressure. I work regularly with Argo CD, HashiCorp Vault, and AWS KMS for GitOps and secrets management, and I’m building depth in Helm, Dynatrace, Backstage, and data layers like MongoDB and Redis. I’m also actively learning Istio and Go, and I don’t pretend otherwise — I’d rather be clear about what’s production-tested versus what’s still developing.

What drives me professionally is the operational side of platform engineering: making Kubernetes clusters and CI/CD pipelines reliable enough that teams stop thinking about them. Lately that means going deeper into bare metal Kubernetes, Kubernetes security, and FinOps — the practical cost and security tradeoffs that don’t get enough attention once a platform is past its first deploy.

What I can help with#

  • Kubernetes cluster design & operations — production clusters, including bare metal Kubernetes (no managed cloud control plane)
  • CI/CD pipeline engineering — GitLab CI and GitHub Actions, from first pipeline to multi-environment promotion flows
  • Infrastructure as Code — Terraform-driven provisioning across cloud and bare metal
  • GitOps & continuous delivery — Argo CD-based deployment workflows
  • Secrets & key management — HashiCorp Vault and AWS KMS, integrated into application and pipeline workflows
  • Internal developer platforms — reducing the operational burden product teams carry to ship and run their own services
  • Observability — Grafana-based monitoring and alerting tied to actual failure modes, not just dashboards
  • FinOps — identifying and addressing infrastructure cost inefficiencies as part of platform work, not as an afterthought

Certifications & education#

  • CKAD (Certified Kubernetes Application Developer) — in progress, targeting October 2026
  • CKA (Certified Kubernetes Administrator) — planned for 2027
  • CKS (Certified Kubernetes Security Specialist) — planned for 2027
  • Postgraduate Specialization in Distributed Software Architecture — PUC Minas, in progress

Outside of work#

I read and write about platform engineering, SRE practices, and the tradeoffs involved in running Kubernetes — including on bare metal — in production, mostly the things that don’t make it into the official docs.