Thomas Wiener
5x AWS Certified | bio
Certifications
03/2025 - present
Elia Group | IAM Operations Lead
// Operations Lead for Identity and Access Management (Keycloak)
// Operations Lead for Secrets Management (Vault)
// Setup and Operation of Monitoring: Prometheus, Grafana, Loki, Promtail
// CA Management for mTLS communication between components
// Automating workflows for deployments
// kubernetes, terraform, terragrunt, gitlab-ci, keycloak, vault, argocd
03/2023 - present
Gartenhaus GmbH | AWS Cloud, Systems Engineer, Devops, Developer
// Responsible for new multi Account AWS Cloud Architecture
// AWS IAM Identity Center configuration with MFA
// Least Privilege Principle (Users and Roles)
// Network Segmentation throughout Nonprod and Prod and within
// Entra ID SAML integration with AWS Identity Center SSO
// Entry ID OAuth integration with OAuth Proxy2
// Github Workflow integration with AWS IAM OIDC
// EKS ServiceAccount integration with AWS IAM OIDC
// Usage of AWS Service Control Policies to restrict IAM permissions
// Setup platform for Shopware E-Commerce in container environment
// Automation for DevOps Processes
// Monitoring/Alerting Metric/Log Enhancements
// Consulting and Support for existing legacy Linux Infrastructure
// Kubernetes: EKS Setup for multiple Workloads
// Containerization: Docker, Github Packages, AWS ECR
// Orchestration: Ansible, Terraform
// Automation: Github Workflows, Bitbucket Pipelines, Jenkins
// DB: Mysql (Cluster), PostgreSQL, DocumentDB, MongoDB, Redis, Elasticsearch
// Security: SSH, SSL Certificates (Lets Encrypt, AWS ACM)
// Webserver: Apache, Nginx
// HA: HAProxy, Heartbeat/Pacemaker
// Languages: Python, Java, Bash (Shell), PHP
// Monitoring: Prometheus, Grafana, Loki, Promtail
// Cloud: AWS, Hetzner Cloud
// OS: Linux (Ubuntu, Debian, CentOS, Alpine)
01/2024 - 09/2024
Digistore24 GmbH | Developer
// Maintaining legacy shop application
// Payment Server Provider Integration
// PHP Unit- and E2E Testing
// Languages: PHP, Python, TypeScript
12/2023 - 06/2024
etribes | AWS Cloud Solution Architect
// Setup AWS Resources for Workloads
// Support for DevOps Processes
// Support for Deployment Processes in Jenkins
// Consulting and Support for existing Infrastructure
// Monitoring/Alerting Metric/Log Enhancements
// AWS, Terraform, Helm
07/2022 - 01/2023
bebold GmbH | AWS Cloud Solution Architect
// AWS Training for Developer Teams
// GitLab Runner Automation for Terraform Projects
// Setup HA and resilient Thales CipherTrust Cluster
// Implementing Security Best Practices
// Operational concept creation
// AWS, Terraform
03/2022 - 01/2023
etribes | AWS Cloud Solution Architect
// Cloud Architect for Commercetools project running on EKS
// Guidance, enabling and supporting Teams during Service Implementation
// Devops Processes and Debugging Support
// AWS, Terraform, Kubernetes
01/2022 - 06/2022
Ladenzeile | AWS Cloud Solution Architect
// Migration of OnSite data center to AWS
// Consulting, enabling and supporting Teams during Service Transition
// HashiCorp Vault Setup in EKS
// Vault integration for EKS Secrets
// Setup of tooling to support Teams during Development
// Centralised topic creation/Dashboard/IAM Authentication for AWS Managed Kafka
// AWS Training for Teams
// Data Storages, K8s Networking & Troubleshooting, AWS Secrets Handling
// Kubernetes: EKS Setup for multiple Workloads
// Containerization: Docker, Github Packages, AWS ECR
// Automation: CircleCI
// DB: Mysql (Cluster), PostgreSQL, MongoDB, Redis, Elasticsearch
// Security: SSH, SSL Certificates (AWS ACM)
// Webserver: Apache, Nginx
// Languages: Python, Java, Bash (Shell), PHP
// Monitoring: Prometheus, Grafana, Loki, Promtail
// Cloud: AWS
// OS: Linux (Ubuntu, Debian, CentOS, Alpine)
04/2020 - 12/2021
lynqtech | AWS Cloud and DevOps Engineer
// Consolidate and enhance existing AWS Architecture
// Optimize DevOps processes
// Kubernetes: EKS Setup
// Containerization: Docker, AWS ECR
// Orchestration: Ansible, Chef, Terraform
// Automation: Drone
// DB: Mysql, PostgreSQL, Redis
// Security: SSH, SSL Lets Encrypt, AWS ACM
// Webserver: Apache, Nginx
// Languages: Python, Java, Bash (Shell), Go
// Cloud: AWS
// OS: Linux (Ubuntu, Debian, CentOS, Alpine)
07/2019 - 04/2020
etribes | Azure Cloud Engineer/DevOps/PHP Developer
// Responsible for setup of cloud resources for a Spryker Shop System on Azure Cloud
// Setup of CI/CD processes for full automation of testing and deployment processes
// Spryker Module Developer
// Azure, Terraform, Packer, Ansible, Kubernetes, CI/CD, spryker
07/2019 - 04/2020
Solvemate | GCP Cloud Engineer
// Responsible for migration of current application stack to GCP
// Migration System Stack to Google Cloud Platform (python, redis, mongodb)
// GCP, Terraform, Packer
01/2018 - 06/2019
PlanetSport | AWS Cloud Engineer
// Building backend tools to support e-commence tasks
// Product/Price/Stock to channel distribution
// Middleware development (symfony)
// Responsible for system architecture
// Amazon AWS Cloud Migration, Terraform, Packer
// DevOps, kubernetes, Docker and CI/CD
// Languages: PHP, Bash
01/2016 - 12/2017
vaola.de | CTO
// Responsible for all technical aspects of an E-Commerce company
// Magento Shop Development
// Middleware Development (SOA) with symfony 3/4 • WarehouseProcesses
// Responsible for system architecture
// OS: Linux Debian
// Orchestration: Chef
// Automation: Jenkins
// DB: Mysql (Cluster), Redis
// Security: SSH, SSL Certificates (Lets Encrypt)
// Webserver/HA: Apache, Nginx, HAProxy, Heartbeat/Pacemaker
// Languages: Python, Java, Bash (Shell), PHP
// Monitoring: Elastisearch, Logstash, Kibana
// Cloud: Hetzner
03/2015 - 12/2015
vaola.de | Software Engineer
// Amazon MWS API for listing and updating products and order processes
// AmazonMWSIntegration
// symfony2
// AWS Integration
// CI-CD with Jenkins
09/2014 - 04/2015
Rocket Internet | Software Engineer
// Technically responsible for Asian and Europe platform of Clickbus
// Symfony3 development
// Bus services provider integration
// Payment service provider integration
05/2014 - 08/2014
bringmeister | Interim CTO
// Automating and strengthening development processes
// Introducing tests and test coverage in CI
// Magento Shop development
// Introducing jenkins build server
// Automatic Tests and Deployment processes
09/2013 - 04/2014
parku | Lead Developer (Permanent)
// Responsible for setting up development processes
// Refactored general backend systems
// Payment provider integration
// Defining and implementing development processes (gitflow)
// Introducing Jenkins as CI Tool
// Development of a REST API with sophisticated Security Layer
// Development of a Java Socket Listener for parku Sesam Technology
// Integration of payment providers
// symfony2
02/2011 - 08/2013
// Process, recruiting, budget and management responsibility.
// Development of multiple e-commerce shops
// Integration in legacy IT systems
// Creating modules for order processing and Payment Integration
// Introducing Scrum as development process
// SEO Tool for Backlink Administration, Crawler for Backlink Check (symfony2)
// symfony2, cakephp, magento, zend
05/2009 - 01/2011
CIMT AG | SAP BW Analyst (Permanent)
// Analysing SAP systems, modeling data warehouse structure
// Creating a prototype business cockpit with web 2.0 technologies
// Developed the SAP BW structure
// Technical documentation of used layer structure
// Implemented a business cockpit displaying relevant KPIs
// Presented progress and result to committee and internal staff.
// SAP BW
Education
01/2009 - 12/2010 M.Sc. Business Computing, University of Applied Science Berlin (HTW)
01/2005 - 12/2008 B.Sc. Business Computing, University of Applied Science Berlin (HTW)
Languages
German (Native)
English (Proficient)
Spanish (Beginner)
