About the Author
John Ian Medilo is a Senior DevOps Engineer and SRE Architect with 15+ years of experience scaling infrastructure from physical data centers to multi-cloud platforms serving millions of users.
John Ian Medilo
Senior DevOps Engineer | SRE Architect | Lean Six Sigma Black Belt
15+ years building infrastructure, automating everything, and helping engineering teams ship faster with fewer incidents. From data center power and cooling to sub-millisecond trading systems to multi-cloud Kubernetes platforms.
Professional Summary
I've spent the last 15 years at the intersection of infrastructure, automation, and software delivery โ starting from racking servers in data centers and progressing to designing multi-cloud platforms that serve millions of users. My career spans high-frequency trading systems at NYSE Technologies, content delivery platforms at Samsung Research, and modern cloud-native architectures across multiple organizations.
The consistent thread: automate everything, measure obsessively, and build platforms that make teams self-sufficient. I specialize in reducing operational toil through infrastructure-as-code, implementing security as a first-class citizen in CI/CD pipelines, and designing observability systems that catch problems before users notice them.
Currently focused on platform engineering, FinOps optimization, and building internal developer platforms that reduce "time to first commit" from weeks to hours. My Lean Six Sigma Black Belt training means I approach every problem with a data-driven, process-improvement mindset โ measuring baselines, implementing changes, and validating results.
Certifications
| Certification | Year | Description |
|---|---|---|
| SOC 2 Type I/II Compliance Certification | 2021โ2022 | Led SOC 2 audit preparation, control implementation, and evidence collection across 200+ controls |
| ISO/IEC 27001 Certification | 2008โ2009 | Implemented ISMS framework, risk assessment methodology, and continuous improvement processes |
| Lean Six Sigma Black Belt | 2021 | Advanced DMAIC methodology, statistical process control, and root cause analysis for operational excellence |
| Applied DevOps: Kubernetes | 2024 | BCIT-certified advanced Kubernetes administration including cluster hardening, networking, and GitOps |
Experience Highlights
Samsung Research
Led the migration of 50+ microservices from legacy infrastructure to AWS EKS, implementing zero-hardcoded-secrets policies with HashiCorp Vault, and building automated provisioning pipelines that reduced developer onboarding from 4 days to 2 hours.
- Migrated 50+ microservices to Kubernetes with zero production incidents
- Implemented zero-hardcoded-secrets policy using HashiCorp Vault + external-secrets operator
- Built self-service repository provisioning reducing developer onboarding by 70%
- Designed and deployed multi-region disaster recovery with RPO < 15 minutes
- Reduced infrastructure costs by 35% through right-sizing and spot instance adoption
Mark Anthony Group
Drove Datadog automation initiative with Terraform, implemented FinOps tagging strategy across 15 AWS accounts, and deployed Policy-as-Code (OPA) for Kubernetes admission control โ achieving 100% resource tagging compliance and 25% cloud cost reduction.
- Automated Datadog monitor/dashboard provisioning with Terraform modules
- Implemented FinOps tagging strategy achieving 100% resource coverage
- Deployed OPA Gatekeeper for Kubernetes policy enforcement
- Built cost allocation dashboards enabling per-team chargeback
Data Center Infrastructure (Early Career)
Built data centers from the ground up โ power distribution (PDU, UPS, generator), cooling (CRAC, hot/cold aisle containment), structured cabling (CAT6, fiber), and rack/stack of compute, storage, and network equipment. This foundational experience provides deep understanding of the full infrastructure stack that informs cloud architecture decisions today.
High-Frequency Trading Infrastructure (NYSE Technologies)
Designed and operated sub-millisecond latency trading infrastructure, including kernel-bypass networking (DPDK), FPGA-accelerated market data feeds, and co-located trading servers. Learned the discipline of performance measurement, capacity planning, and fault tolerance under extreme constraints.
Technical Proficiencies
| Category | Tools & Technologies |
|---|---|
| Cloud Platforms | AWS (Expert), Azure, GCP, DigitalOcean |
| Container Orchestration | Kubernetes (EKS, AKS, GKE), ECS Fargate, Docker Swarm |
| Infrastructure as Code | Terraform (Advanced), Pulumi, AWS CloudFormation, Ansible |
| CI/CD | GitHub Actions, GitLab CI, Jenkins, ArgoCD, Flux |
| Programming | Python, Bash, Go, TypeScript, PowerShell |
| Observability | Datadog, Prometheus, Grafana, ELK Stack, PagerDuty |
| Security | HashiCorp Vault, OPA, Trivy, SonarQube, AWS IAM, WAF |
| Networking | VPC design, Load balancers, Service mesh (Istio, Linkerd) |
| Data | PostgreSQL, Redis, MongoDB, Kafka, S3/MinIO |
| Methodologies | SRE, DevOps, GitOps, FinOps, Lean Six Sigma, Agile |
Contact
| Channel | Link/Address |
|---|---|
| GitHub | github.com/j1-medilo06 |
| Portfolio | kuyaops.com |
| linkedin.com/in/johnianmedilo | |
| j1.medilo06@gmail.com |
How to Navigate This Wiki
This wiki contains 30+ pages across 8 sections covering the full spectrum of modern platform engineering, DevOps practices, and infrastructure automation.
| Section | Topics Covered | Sample Pages |
|---|---|---|
| GitHub Projects | Detailed walkthroughs of open-source projects with architecture diagrams, code, and deployment guides | AI PDF Search, PokerLab, BeatDApp, Terraform Datadog |
| Automation | Production Python scripts, GitHub API automation, and platform engineering patterns | Python GitHub Automation, Self-Service Platform |
| Infrastructure | Terraform modules, AWS architecture patterns, Kubernetes deployment guides | EKS Cluster Setup, VPC Design Patterns, Multi-Region DR |
| CI/CD | GitHub Actions workflows, security scanning, deployment strategies | Pipeline Templates, Security Gates, Blue-Green Deployments |
| Observability | Datadog, Prometheus, Grafana โ dashboards, alerts, SLOs | Golden Signals, Error Budgets, On-Call Runbooks |
| Security | Vault, OPA, secret management, compliance automation | Zero-Trust Architecture, SOC 2 Controls, Container Security |
| FinOps | Cost optimization, tagging strategies, chargeback models | AWS Cost Optimization, Resource Right-Sizing, Tag Governance |
| Getting Started | Author background, contributing guidelines, wiki usage | About, How to Contribute |
Feedback and Contributions
This wiki is a living document. I welcome feedback, corrections, and suggestions for new content. If you find an error, want to request a topic, or have a question about any of the implementations shown here:
- Open an issue on the GitHub repository with the label
wiki-feedback - Submit a pull request with proposed changes (all content is version-controlled)
- Reach out via email at j1.medilo06@gmail.com
- Connect on LinkedIn for professional inquiries
References
| Resource | Link |
|---|---|
| GitHub | github.com/j1-medilo06 |
| Portfolio | kuyaops.com |
| linkedin.com/in/johnianmedilo | |
| j1.medilo06@gmail.com |