Donovan Ellison

Cloud Security Engineer

Location
Portland, OR, USA
Email
Website
https://dvaneson.com
LinkedIn
Donovan Ellison
GitHub
dvaneson

Experience

present

Cloud Security Engineer
Apree Health

Highlights

  • As the inaugural Cloud Security Engineer, led security initiatives throughout a year-and-a-half long data center migration to GCP.
  • Enforced CIS standards with Policy-as-Code for hundreds of GCP projects, ensuring compliance with encryption key usage and preventing misconfigurations such as publicly accessible GCS buckets.
  • Spearheaded an initiative to optimize Terraform pipelines, slashing wait times due to handoffs from 2 hours to just 30 minutes, resulting in significant time savings for both approvers and requesters.
  • Successfully implemented egress filtering for URLs in PHI environments, a pivotal step in achieving HITRUST certification. Orchestrated the deployment of DiscrimiNAT across 6 VPCs, effectively filtering traffic in 27 environments with over 900 unique FQDNs.
  • Developed a Python Flask application empowering developers to create temporary egress firewall rules in lower environments, circumventing the 24-hour SLA for FQDN additions. This innovation saved thousands of engineering hours, allowing uninterrupted development and testing.
  • Revived and optimized scrum practices within the security team, taking a leadership role in restarting meetings and configuring Jira boards.
  • Introduced sprint planning, backlog grooming, and retrospective sessions, resulting in an outstanding 77% reduction in Lead Time for ticket completion, from an average of 61.3 days to just 13.8 days after 3 months.

Site Reliability Engineer
Zapproved

Highlights

  • Designed and implemented an AWS solution for managing SSH keys on TeamCity agents across multiple AWS accounts.
  • Analyzed and resolved an Elasticsearch cluster issue that caused day long logging outages, sometimes multiple times a week.
  • Spearheaded the refactoring of the Kubernetes solution.
  • Developed a roadmap for Kubernetes improvements by evaluating different tools, researching best practices, creating proof of concepts, and meeting with key stakeholders.

Projects

Functional Programming for Systems Software

Highlights

  • Published an assessment of Habit, an experimental functional language for low-level programming.
  • Compared Habit with C by implementing a page table in both languages.
  • Used x86 Assembly to enable IA-32 paging and setup system calls.

Education

Bachelor of Science in
Computer Science, University Honors
Portland State University
GPA:

Skills

Technologies
Level:
Keywords:
  • Ansible
  • AWS
  • GCP
  • Docker
  • Kubernetes
  • Terraform
  • Python
Certifications
Level:
Keywords:
  • Certified Kubernetes Administrator (CKA)
  • GIAC Cloud Security Automation Certification (GCSA)