Thomas E. Michaud
[email protected]
https://github.com/tmichaud/resume
15+ years' experience in Software Development
Current Areas of Study: Kubernetes, Docker, Terraform, DevOps, Go, Ansible, Java
Skills Summary:
- Programming Languages: Go, Java, Python, SQL, Perl, Bash Shell
- Operating Systems: OpenShift, Unix, Linux, Windows
- Relational Databases: PostgreSQL, MySQL, MongoDB, Oracle, Sybase
- CI/CD Servers: GitLab, Harness, Jenkins, Bamboo
- Orchestration/Provisioning Tools: Terraform, Cloudformation, Ansible
- Source Code Control: Git, SVN, CVS, ClearCase, SourceSafe, Vault, PVCS
- Other: HTML, CSS, XML, JUnit, Mockito, CURL, Postman
Certifications:
- Associate Cloud Engineer (Google) Expires 05/17/2028
- Okta Certified Professional Expires 04/13/2027
- AWS Certified Practitioner Expires 05/20/2026
- HashiCorp Certified: Terraform Associate Expires 11/18/2025
Steampunk, Principle DevSecOps Engineer 08/2024-Present
On contract for FEMA
Development Environment: Google Cloud Platform, GitLab, Harness, OpenShift (Kubernetes), Helm, ArgoCD,
NexusRM, Jenkins, MySQL, PostgreSQL, MongoDB, HashiCorp Vault
Brought in as a Senior DevOps engineer, Thomas quickly learned the Google Cloud Platform and OpenShift environment. He was assigned as a DevOps Liaison for the Phoenix application development team. He learned their particular applications and was fundamental in assisting the team in configuration changes and increasing their release velocity.
Notably:
- Updated Application Harness pipelines to utilize the External Secrets Operator to allow for credentials to be stored in HashiCorp Vault.
- Reviewed, updated, and standardized his development team's OpenShift configuration files while rewriting them from Kustomize to Helm Templates. This allowed for greater readability, easier configuration and the freeing of unneeded resources. This was also an required step in the move from releasing via Jenkins to via Harness.
- Lead and updated the Jenkins release process. This release process involved running all customizations required and updating the applications on load night, debugging any issues that may occur and releasing the environment to the testing teams and getting approval to release the environment to the customers.
- Addressed several security concerns including:
- Changes to ensure GitLab branches were tied to an appropriate Jira ticket
- Updating pipelines to invoke DAST scans (Invicti) during builds
- Investigating and addressing MySQL security audit concerns
Steampunk, Senior DevOps Engineer → Technical Lead → Principle DevSecOps Engineer 08/2021-01/2024
On contract for USPTO
Development Environment: AWS (Hybrid), GitLab, Jenkins, SonarQube, Nexus RM, Nexus IQ
Originally brought in as a Senior DevOps Engineer, Thomas was quickly promoted to lead of the Platform team. This small team (2-4 individuals) was responsible for installation, upgrades and maintenance of the Commercial-off-the-Shelf (COTS) applications used by the customer. These applications included:
- GitLab (both for git repository and CI/CD via GitLab Runners)
- (CloudBees) Jenkins and Jenkins Community Edition
- SonarQube (for Static Code Analysis)
- Sonatype Nexus IQ (for Dependency Analysis, Static Code Analysis and SBOM creation)
- Sonatype Nexus Repository Manager (for jars, npms, and docker images)
This team proposed, created, and executed an upgrade cadence for these applications. They wrote Terraform and Ansible scripts to automate installation processes to provide Infrastructure as Code (IaC) traceability and blue/green deployments. This allowed the team to significantly decrease the amount of time needed to upgrade applications.
The team also supported a move from CloudBees Jenkins (on premises) to Jenkins Community Edition running in containers using AWS Fargate. This saved the client significant amounts on licensing fees and on a reduced on-premises server footprint.
The Platform team also proposed and outlined migration plans to move Nexus IQ and Nexus RM from the on premises data center to AWS.
Thomas was promoted to Technical Lead, assisting both the Platform team and the Pipeline team. The Pipeline team was a small team of 2-4 developers that were responsible for the development, advocacy and maintenance of the pipeline tools used by all development teams of the client. Specifically, this team was responsible for researching, evaluating, and developing pipelines to compile, analyze and deploy development teams code in both GitLab and Jenkins. Furthermore, they provided Proof-of-Concepts and supported pipelines to other applications such as LoadRunner, Fortify, and WebInspect.
In 2023, Thomas was promoted to Principle DevSecOps Engineer.
Imagine Believe Realize, LLC. Identity Engineer 06/2020-08/2021
On contract for the US Navy
Okta Certified Professional
Development Environment: AWS, Java, Okta, Ping, Docker, OAuth2, OIDC, SAML
Developed identity and authorization solutions in a variety of environments.
Notable items:
- Implemented and configured SAML and OIDC authentication protocols with Okta to provide Single-Sign-On capabilities for applications, enhanced security and increasing scalability of applications.
- Configured and managed Okta applications, users, and security policies ensuring seamless integration and adherence to industry best practices in identity and access management.
- Investigated Ping Federate using AWS, Docker, Ping DevOps.
Imagine Believe Realize, LLC. DevOps Engineer 11/2019-06/2020
On contract for the US Navy
Development Environment: AWS, Liferay, Java, Ansible, Nexus, Git, Bamboo, BitBucket, Jira
Specialized in the development of pipelines to automate the building and delivery of software to QA and Production.
Notable items:
- Developed a notification program using Lambda, Python, SQS, and SNS. This allowed proactive detection of configuration changes that resulted in reduced impact to the users.
- Configured and maintained Bamboo, Bitbucket and Jira applications to ensure seamless integration of the CI/CD pipelines from issue tracking to code management to production deployment.
Lockheed Martin, DevOps (Contractor) 10/2018-11/2019
Development Environment: Ansible, OpenShift, Jenkins, VMWare, Satellite, Nexus, Docker
Worked on a program-enhancing team to explore the shift from legacy Windows applications to a Linux-OpenShift containerized approach.
Notable items:
- Setting up Jenkins pipelines in OpenShift for Development teams to ensure testing and automating delivery
- Developing Ansible scripts to configure both Linux and Windows boxes in both command-line Ansible and Ansible Tower
Employment Gap -- Sabbatical 03/2018-10/2018
Sabbatical with Family
Accesso, Architecture Team Senior Developer 03/2016-03/2018
Development Environment: Java, MySQL, RESTful WS, DevOps, AWS, Jenkins, Docker
Creating DevOps solutions for the development teams including Continuous Integration, Continuous Deployment and Continuous Delivery.
Notable items:
- Migrated all Git repositories from locally hosted Gerrit to GitHub via Python and Bash scripts.
- Managed, standardized and maintained the build scripts for 75+ GitHub repositories
- Developed both Nightly and Continuous Integration scripts with GitHub protected branches with status checks. This included working with both development and management in standardizing our software control processes.
- Developed a release script that processed 75+ repos: automatically detecting, cutting, building, testing and deploying to QA. Development stack: Python, Bash, SSH and Jenkins
- Installed and configured a MySQL database on a RAM drive. This reduced automated testing speed by a factor of 600%.
- Migrated production jobs from individual configuration files to a centralized configuration database to simplify configuration.
- Created an AWS prototype solution of current application
- Researched new technologies including Tyk, Docker and OpenShift.
Accesso, Team Lead -- Payments 12/2014-03/2016
Development Environment: Java, MySQL, C#, XML, Sockets
Implemented new payment processing solutions while maintaining and monitoring the single back-end e-commerce solution for web, kiosk and mobile platforms Point-of-Sale platforms. These new features and interfaces had to be within PCI compliance and standards. This system processes over \$1 billion (USD) in revenue every year.
Notable items:
- Led an initial team of 3 developers (eventually increased to 6). Deployed 6 new payment interfaces on time and within budget. Responsible for mentoring, design, and review of code.
- Developed code to process additional payment processors (Ogone and Acculynk). This allowed us to process additional card types including China Union Pay and JCB. Developed in Java, MySQL, XML.
- Developed code for new Point-of-Sale system to process payment processors including Shift4 and Verifone (UK and US) while interfacing with new vendors. Developed in Java, C#, MySQL.
- Design Patterns -- recommended and implemented several design patterns including Factory, Dependency Injection and Chain-of-Responsibility to inject specific payment processor mechanisms into our Point-of-Sale system safely and easily -- reducing development time.
Accesso, Senior Developer 03/2013-12/2014
Development Environment: Java, MySQL, C#, XML, Sockets
Implemented new features to the back-end ticketing framework and providing mentoring to developers.
Notable Points:
- Evaluated and recommended simplified load techniques -- such as automation, data migration and configuration management.
- Evaluated, recommended and implemented Unit Testing via JUnit testing framework and Continuous Integration Server (Jenkins). Evaluated and recommended Mockito and PowerMock.
- Recommended and implemented switching to Git source code control (in 2013).
Accesso, Developer 10/2011-03/2013
Development Environment: Java, MySQL, XML, Sockets
Implemented new features to the back-end ticketing framework.
IBM, Programmer Analyst 10/2010-10/2011
Traveling Consultant
Development Environment: Java, Ant, Sybase, Netezza, Weblogic, Tibco BusinessWorks
Developed solutions for various clients from deploying Java Servlet Programs on WebLogic to developing custom
functions in Netezza.
Education:
- Masters of Science, Engineering Management, University of Central Florida, Orlando, Florida
- Bachelors of Science, Computer Science, University of Central Florida, Orlando, Florida