Naomi Persephone Amethyst
Summary
just a girl in tech.
who values simplicity,
but isn't afraid of complexity,
building reliable systems
for people and things.
Skills
- Cloud Platforms: AWS, GCP
- Container Ecosystem: Kubernetes (kops, k3s, bare-metal), Helm, Docker (and OCI), containerd (and CRI-O), Calico (and Flannel, kube-router), Istio (and MetalLB)
- IaC: Terraform, Crossplane
- Operating Systems: Linux (Debian/Ubuntu, RHEL-derivatives, Gentoo), Solaris (OpenIndiana), FreeBSD
- Networking: TCP/IP, DNS, BGP (and OSPF), Firewalls, Load Balancers, Packet Analysis
- Programming: Java, C++, Go, Ruby, JS, PHP, Python
- Security: PKI, Cryptography, IAM, Vulnerability Scanning (and Remediation), Best Practices
- Compliance: FedRAMP, HIPAA, SOC2
- Monitoring: Datadog, Prometheus, Splunk, ELK, Pagerduty
- Storage: Ceph, Bacula, Minio, S3
- Datastores: Postgres, MariaDB (and MySQL), Cassandra, Redis, OpenSearch, etcd, ZooKeeper, RabbitMQ
- CI/CD: CircleCI, Argo, Concourse
Work History
atkO, Inc.
atkO is an identity management platform connecting people and technology.
Site Reliability Architect
2023-03 – Current
- Designed and implemented FedRAMP High-compliant atkO Workflows
- Mentorship across the org
- Manage inter-team relations and dependencies
Principal Site Reliability Engineer
2019-11 – 2023-03
- Onboarded atkO Workflows infrastructure during Azuqua acquisition
- Built the atkO Workflows SRE team from the ground up
- Team Lead for atkO Workflows SRE
- Architected and implemented atkO Workflows infrastructure
- Designed and implemented HIPAA-compliant atkO Workflows
Staff Site Reliability Engineer
2016-06 – 2019-11
- Designed and implemented HIPAA-compliant cells
- Designed and implemented FedRAMP-compliant cells
- Innovated on atkO's ingress
- atkO's Networking Subject Matter Expert
Senior Site Reliability Engineer
2015-01 – 2016-06
- Designed atkO's PKI system
- Migrated atkO's customer encryption to use AWS KMS
- Designed and authored production tool execution platform
- Migrated atkO from EC2 Classic to VPC
- Architected and built the atkO Internal Network spanning both VPCs and Regions
DevOps Engineer
2013-04 – 2015-01
- Designed and authored a CMDB built on top of Cassandra
- Redesigned atkO's Chef Cookbooks
- Architected atkO's Taxonomy
- Designed and authored a unified CLI for infrastructure management
- Collaborated to design and migrate atkO to a cell-based architecture
LaunchRock, Inc.
LaunchRock is a product that allows you to set up "launching soon" pages using a WYSIWYG page creator.
Full-stack Engineer
2012-08 – 2013-04
- Architected and implemented LaunchRock's AWS infrastructure
- Automated releases/continuous-deployment
- Architected and authored the frontend site builder
Giftiki, Inc.
Giftiki was working on a new social commerce platform and collaborative gifting engine. LaunchRock acquired the whole team and discontinued the Giftiki product.
Full-stack Engineer
2011-04 – 2012-08
- Set up and maintained Giftiki's AWS infrastructure
- Implemented auto-scaling for a service-oriented architecture
- Automated releases/continuous-deployment
- Implemented GitOps
- Architected and authored large swaths of both backend and frontend code
Technology Services Group, UIUC
TSG was the IT department supporting the University of Illinois at Urbana-Champaign's Department of Computer Science. TSG was responsible for the facilities, classroom technology, network, and research labs of the Siebel Center for Computer Science at UIUC.
Student Administrator
2009-11 – 2011-09
- Managed the Illinois Cloud Computing Testbed, a couple hundred machines running Hadoop
- Designed and implemented a web-based remote power management interface
- Designed and implemented a web-based electronic lock management interface for the building security system
- Supported the migration from the Illinois Ph directory to LDAP
Personal Projects
Home Lab
My home lab is where I experiment with new technologies and develop new hobbies.
Infrastructure
2019-03 – Current
- Designed and built a 6-node Kubernetes cluster built on k3s on physical machines
- Racked and stacked physical hardware
- Implemented a fault-tolerant Ceph cluster with 198 drives and 670TiB of raw storage
- Implemented Bacula to perform backups to LTO-6 tapes
- Implemented a home network with BGP and 40gbit/s backbone supporting more than 150 client devices
- Implemented Wi-Fi with Ubiquiti's UniFi products
Fabrication
2019-12 – Current
- Designed and built a 3D printer farm
- Diagnosed and resolved issues with 3D printers, in some cases disassembling, replacing failing parts, and rebuilding
- Automated 3D printer jobs to best utilize printer farm
Electronics
2021-07 – Current
- Designed and built an electronics lab
- Diagnosed and repaired electronics at the component level, including laptop and small-form-factor mainboards
- Built kits and my own projects on breadboards
Studio
2017-06 – Current
- Built home recording studio
- Repaired a Mackie TT24 mixing console
- Recorded and mastered both music and speech
- Supplied equipment and stage operations for music festivals
- Served as MC (and hosted karaoke) for music festivals
Tableflippers Anonymous
Tableflippers Anonymous is a video game community.
Infrastructure
2019-03 – Current
- Designed and built a 20-node Kubernetes cluster from scratch on physical machines
- Racked and stacked physical hardware
- Applied for and received ASN 53546
- Purchased IP space 144.86.176.0/23
- Managed BGP peering
- Implemented PXE to boot diskless images on cluster
- Migrated existing workloads from Legion's infrastructure
Runetide
2018-12 – 2021-02
- Architected and designed a mutable voxel-based, open-world MMORPG
- Implemented large parts of the backend microservices
- Currently deprioritized in favor of other projects
v1x1
2016-10 – 2019-02
- Architected and implemented v1x1, a chatbot for Twitch and Discord channels
- Built using Java, Dropwizard, Redis, Cassandra, and Zookeeper with a service-oriented, no-single-point-of-failure architecture
- Authored WebAssembly VM from scratch in Java to enable customization of the bot
- Built a web interface using Angular 2
- Implemented Argo for CI/CD
Legion
Legion is a video game community originally focused on a Minecraft server network that has expanded over time to host other games such as TF2 and Factorio.
Infrastructure
2012-05 – 2019-03
- Designed and built Legion's infrastructure on dedicated servers purchased from CoreNetworks
- Implemented ZFS snapshotting on top of OpenSolaris and OpenIndiana
- Migrated infrastructure to OVH
- Implemented GlusterFS
- Migrated to CephFS
- Implemented backups to AWS S3 and Glacier
- Implemented configuration management
- Mitigated DDoS attacks
Software
2012-03 – 2019-05
- Designed and implemented several dozen plugins to the Minecraft server, Bukkit
- Made modifications to the Minecraft server, requiring reverse engineering
- Implemented multi-server coordination and communication
- Implemented robust user authorization system
- Designed and implemented mini-games
- Found and patched security vulnerabilities in the Minecraft server
Community
2012-03 – Current
- Managed and moderated the Minecraft server's chat
- Dealt with spam, bots, and attacks
- Detected, prevented, and disincentivized cheating by developing tooling, procedures, and policy
- Organized and hosted community events and contests
Wikimedia Foundation
Wikimedia Foundation is the parent organization behind Wikipedia, Wiktionary, and a number of other wiki projects.
Software / ClueBot
2007-07 – Current
- Wrote early portions of the English Wikipedia Account Creation Interface
- Designed and built ClueBot, a very successful heuristics-based anti-vandalism bot for Wikipedia
- Designed and built ClueBot III, a discussion archival bot used by over 12,000 discussion pages on Wikipedia
- Co-created ClueBot NG, Wikipedia's most successful anti-vandalism bot using machine learning and neural networks
- Submitted patches to MediaWiki for bugs and features
Administrator
2007-07 – Current
- Reviewed and approved automated tooling on Wikipedia as a member of the Bot Approvals Group
- Participated in the rewrite of Wikipedia's Bot Policy
- Scanned and evaluated reports of open proxies and other abusive clients as a clerk of the Open Proxy Noticeboard
- Participated in the creation of the Rollbacker user group
- Authored and maintained Edit Filter rules to prevent bad-faith edits to Wikipedia
ClueNet
ClueNet was an IRC-based community of tech and open-source enthusiasts.
Co-founder
2005 – 2011
- Implemented Kerberos and LDAP for user authentication and authorization
- Architected and operated a fully-featured mail server using Courier, Maildrop, and SpamAssassin
- Operated an IRC network with various services and bots
- Designed and authored custom IRC services suite
- Managed and moderated the IRC chat rooms
- Dealt with spam, bots, and attacks
- Mediated disagreements between members
Winbots
Winbots was an IRC network run on home equipment.
Founder
2001 – 2005
- Implemented a mail server using QMail, SpamAssassin, and ClamAV
- Operated an IRC network with various services and bots
- Managed and moderated the IRC chat rooms
- Dealt with spam, bots, and attacks