GREGORY E. BAILEY

AWS (Lambda, CDK, CloudFormation, ECS/Fargate, DynamoDB, S3, IAM, Security Hub), Python, Git/GitHub, CI/CD, Docker, Kubernetes, OpenStack, PostgreSQL, REST APIs

Lead engineer for cloud security governance and infrastructure automation initiatives supporting hundreds of AWS accounts across the organization. Architected and delivered StackSafeguard, an internal platform that automates AWS account provisioning, enforces IAM permissions boundaries, and deploys security policies via CloudFormation Guard hooks. Designed and implemented CirrusScan, an automated security scanning platform integrating vulnerability assessments, configuration audits, and compliance checks across all cloud environments. Built and deployed malware detection infrastructure scanning hosting platform backups. Contributed to enterprise standards development including cloud readiness reviews, security best practices, and infrastructure-as-code patterns. Earlier work included development of a hosting platform built on OpenStack, CI/CD automation, and big data collection systems deployed across hosting infrastructure. Published technical blog posts, presented at internal tech conferences, mentored team members, and participated in the Principal Engineering Community.

Red Hat Enterprise Linux, CentOS, VMware ESXi, VMware vSphere, OpenSSL, Python, Perl, RPM, anaconda, Perforce, ClearCase SCM, subversion, SIP, iptables, wireshark, SNMP, BIND, Postfix, Apache HTTPD, RRDTool, PostgreSQL

Served as technical lead for Mitel's Unified Communicator Advanced product (version 4.1); responsibilities included coordinating development activities across multiple sites, release management, and configuration of the source code management system. Designed and produced a VMware OVF-based appliance using VMware Studio for distribution to end customers. Enhanced Mitel's custom Linux platform (CentOS based) with web-based support for SSL certificate signing request generation and import of third-party signed certificates. Modified the CentOS anaconda installer to enable installations from a USB flash drive. Supervised and mentored junior developers. Provided Linux-related expertise to multiple development and product testing areas in areas such as DNS management, web site administration, e-mail services, automated installations and upgrades, and performance monitoring.

Installed and administered several Linux servers to perform e-mail (client and web-based), web, directory (OpenLDAP), and network monitoring tasks. Maintained and secured Cisco routers with current versions of IOS and appropriate access lists. Installed iptables firewall and VPN configuration for traveling employees. Configured IMAP, POP3, SMTP, and LDAP protocols to support SSL connections for greater security. Created custom RPM packages of web server software to automate software maintenance. Conducted technical training for company e-mail system. Applied security patches and functional updates to all systems as necessary. Scheduled and planned available computing resources to ensure high availability of web applications. Collected and processed network traffic using custom scripts and RRDTool. Installed, configured, and secured a separate wireless network for employees. Monitored company firewall for policy violations and aberrant network traffic.

Installed and administered several Linux-based web servers. Created custom RPM packages of locally written libraries and application server software to automate software maintenance. Applied security patches and functional updates to all systems as necessary. Integrated new functionality to support needs of web development team. Scheduled and planned available computing resources to ensure high availability of web applications. Assisted network management with the collection, processing, and display of network and call traffic using MRTG and RRDTool. Assisted network engineering group with the installation and configuration of common internet protocols such as DNS, Sendmail, USENET, etc. and the required firewall settings to support them. Ported several voice codecs from Win32 API to Linux. Ported ITU recommendation G.729A voice coder from C to Java. Assisted with investigation of SIP-based phones, gateways, and software. Created custom networking software to measure VoIP metrics such as latency, jitter, etc. and store for graphing, alerts, and analysis.

Deployed a Linux-based firewall, DNS, and Java application server for large-format printing company. Provided recommendations for network security policy. Assisted customer with defining end user requirements for automated job status and tracking system, and assisted in its implementation.

Ported and enhanced existing billing software from proprietary system to custom Oracle solution. Interfaced new billing system data with existing Oracle databases, and provided tools to access the billing data by quality assurance department. Designed, implemented, and maintained telecommunications taxing system with custom billing solution. Processed and formatted monthly billing information for printing services; processed and formatted invoice information for online web-based presentation.

Designed, implemented, and maintained scheduling package, control software, and 3GL source code to interface a third party UNIX-based procurement package with a mainframe-based warehousing package using C, embedded SQL, and shell scripts. Developed and maintained source code control system for developers, as well as release control (build) scripts for the PVCS Version Manager maintainers. Designed, implemented, and maintained a purchase order printing package for both text based and PostScript output. Designed, implemented, and maintained a middleware API using IBM's MQSeries product.