Resume

In this resume, only experience in the IT field is taken into account.

I have more than 13 years of programming experience, including 9 in web development. I specialize in Full Stack development of modern, feature-rich websites. I am engaged in design, development, administration of databases, web servers, VPC, S3, ensuring cybersecurity, and develop software for DevSecOps and other areas. I like to create architecture from scratch and bring projects to an ideal state.

Education

Polytechnic College of Bryansk State Technical University

Major: Software Engineering

Period of study: 2007-2011

Work experience

Freelance

Positions:

• — Full Stack Developer.
• — Architect, developer and administrator of databases, web servers, VPC, S3.
• — DevSecOps.
• — Cybersecurity Specialist.

Responsibilities:

• — Creating online stores, news and content sites, supporting, changing and adding functionality.
• — Design, development, administration of databases, web servers, VPC, S3.
• — Creating automated website backup systems in S3.
• — Ensuring cybersecurity and DevSecOps.

Working period:

From 2017 to the present.

CRYSTAL

CRYSTAL is an open source social network currently under development.

More about the project.

Positions:

Management: Founder, CEO, CTO.

Software Engineering: Architect, Full Stack developer, UI/UX Designer.

Infrastructure: Architect, developer and administrator of database, web server, VPC.

DevSecOps, Cybersecurity Specialist.

Responsibilities:

— Development, promotion, and design of the project.

— Design and development of frontend and backend architecture (from UI/UX to API).

— Design, development and administration of database, web server, VPC.

— Ensuring cybersecurity of the website, VPC, S3.

— Creating and managing backups S3 (SSE-KMS).

Working period:

From 2023 to the present.

Architecture: SPA, RESTful API, FSD.

Technologies:

LARS:

• Language: Rust
• Frontend: Leptos
• Backend: Actix Web
• Database: ScyllaDB

MERN:

• Language: JS
• Frontend: React, Redux, TanStack Query
• Backend: Express.js
• Database: MongoDB

General:

• Languages: Python, PHP (DevSecOps)
• Infrastructure: Nginx
• Layout: Flexbox, Grid

LLC "MTK ICEBERG"

Location: Moscow

Positions:

— Full Stack developer.

— Web server and database administrator.

Responsibilities:

— Company website support, changing and adding functionality.

— Working with a web server, database (MySQL), SSL certificates.

— Creating and managing backups S3 (SSE-KMS).

Working period:

From 2021 to the present.

CMS: Joomla

Technologies: PHP, JS, MySQL, Flexbox, Grid, Nginx.

Specialization

My main specialization: Full Stack development in various tech stacks and CMS.

Examples of my code across various tech stacks and CMS.

Results of technical tests and audits of websites, created by me.

Full Stack Development & System Architecture

Langs: Rust, JS, PHP, Python

Databases: ScyllaDB, MongoDB, MySQL

Environment & Tools: Linux, Git, GitHub, Docker, AI

• Full Stack Engineering: Deep understanding of Client-side and Server-side interaction. Architectural design from scratch, selecting optimal technology stacks tailored for performance and security requirements.
• Systems Thinking: An engineering-driven approach to development, combining clean code practices with deep server infrastructure tuning and full deployment process automation.
• Microservices & Containerization: Designing and deploying scalable web applications using Docker Compose. Expertise in decoupling monoliths into isolated services, configuring internal networks, and orchestrating seamless interaction within a unified ecosystem.
• AI: Integration of LLMs into the workflow to accelerate development. Deployment of local AI infrastructure (Ollama, Open WebUI) for secure code analysis, test generation, and architectural design of complex systems.
• LARS (Leptos, Actix Web, Rust, ScyllaDB): High-performance web application development with a focus on speed and safety. Experience in building scalable systems using SSR, hydration, and distributed databases for Big Data tasks.
• MERN (MongoDB, Express.js, React, Node.js): Design and implementation of full-stack web applications. Building dynamic interfaces, implementing RESTful APIs, and optimizing unstructured data management in MongoDB.
  Key Experiences at MERN and LARS: development of the CRYSTAL social network.
• WordPress: Development of fully custom themes and plugins, with deep performance and security optimization.
• Electron.js: Creation of cross-platform desktop applications. Ability to integrate Electron with high-performance databases (ScyllaDB | MongoDB) to build local data management tools.

Frontend

JS, TS, React, Next.js (SSR/SEO), Redux, i18n

Architecture: SPA, FSD.

Communication protocols:

TCP/IP, HTTP/2, HTTP/3, WebSocket.

Data transfer tools:

Fetch API, Axios, TanStack Query, SWR, AJAX.

Session & storage mechanisms:

HTTP cookie, localStorage.

Low-level synchronization and shared memory:

SharedArrayBuffer, Atomics, TypedArrays.

Layout: Flexbox, Grid, Bootstrap, SASS, SCSS.

Usage - Next.js, for creating frontend, taking into account SEO optimization.

Building correct semantic markup.

Adaptive and valid layout according to W3C standards.

Ability to create layout - Pixel Perfect.

Creating JS/CSS animations with and without frameworks.

Working with Figma.

ESLint, Prettier, code testing, testing in BrowserStack.

Optimizing website speed, working with PageSpeed ​​Insights.

Working with bundlers: Webpack, Vite.

Website tests - shedov.top:

• PageSpeed Insights
• Validator.w3.org

Backend

Rust, Node.js, PHP

Backend development with emphasis on high performance, energy efficiency, and optimal resource utilization (CPU, memory, I/O).

Architecture: RESTful API, FSD.

Communication protocols:

TCP/IP, HTTP/2, HTTP/3, WebSocket.

Data transfer tool: AJAX.

Session & storage mechanism: HTTP cookie.

-----

Rust

Frameworks: Actix Web, Axum.

Multithreading: std::thread, Mutex, Arc, channels.

Async Runtime: Tokio.

Process Manager: systemd.

Auth & Security: jsonwebtoken, Argon2, bcrypt.

Crypto: ring, openssl.

WebSocket: Actix Web, Axum, tokio-tungstenite.

Serialization: Serde.

Images: image.

Databases: MongoDB driver.

/Rust

-----

Node.js

Framework: Express.js.

Multithreading: worker_threads, SharedArrayBuffer, Atomics, Int32Array.

Process Manager: PM2.

Auth & Security: jsonwebtoken, Argon2, bcrypt.

Crypto: crypto.

WebSocket: ws.

Images: Sharp.

Databases: MongoDB driver, Mongoose.

/Node.js

-----

Databases:

MongoDB

Driver: Rust, Node.js.

Mongoose.

Knowledge of queries and commands, working through the console and in MongoDB Compass.

MySQL: Knowledge of queries and commands, working through the console and in phpMyAdmin.

Manual and automatic API testing with Postman.

Security:

Session security:

Using secure HTTP cookies with the flags: Secure, HttpOnly, SameSite:Strict.

CSRF protection at the cookie policy level and server token validation.

Access control:

Role-based access control.

Validation of JWT and Cookie when accessing secure APIs.

CORS: control over origin domains, methods, and request headers.

Limiting API access by HTTP methods, routes and headings.

HTTP security headers:

X-XSS-Protection, X-Content-Type-Options, Strict-Transport-Security, Content-Security-Policy, Referrer-Policy, Permissions-Policy, X-Frame-Options.

WordPress

Multisite, WooCommerce, The SEO Framework, i18n, JS, React, AJAX, PHP, MySQL

Creating fully custom WordPress themes, without using Elementor or plugins.

Creating stores on WooCommerce.

Expanding functionality, creating a registration/authentication form, callback, etc., with or without plugins.

Creating plugins.

Optimizing website speed.

Website creation and setting taking into account cybersecurity and SEO optimization.

Creating and managing backups S3 (SSE-KMS).

Custom Theme for the shedov.top website.

Databases

ScyllaDB, MongoDB, MySQL

Design, creation and optimization for high-load systems.

Design of scalable systems for storing and processing Big Data.

Management and administration, including cluster configuration and ensuring fault tolerance.

Ensuring cybersecurity.

Creating and managing backups S3 (SSE-KMS).

AI

Cloud: Gemini

Local:
— Model: Gemma
— Frontend: Open WebUI, Chatbox
— Backend: Ollama
— All-in-one: LM Studio

Leveraging AI to accelerate development, improve code quality, analyze bugs, and generate tests and documentation.
Deploying local models to ensure data privacy and enable offline workflow.

DevSecOps

Python, Rust, JS, PHP

Linux, Git, GitHub

Docker (Compose, Network Isolation), CI/CD Security

• Containerization & Infrastructure Management: Designing and implementing microservices architectures based on Docker Compose. End-to-end automation of web application stack deployment, ensuring seamless integration of database, backend, and frontend layers.
• Infrastructure as Code: Declarative description of the entire project infrastructure via Docker Compose, enabling instant environment replication and one-command deployment of identical system copies on new VPC servers.
• Automated Service Lifecycle: Implementing Certbot for automated SSL certificate renewal and configuring Nginx for dynamic configuration reloads without service interruption (Zero Downtime).
• Infrastructure Automation & Monitoring: Development and implementation of an automated cloud infrastructure state monitoring system. Implemented auto-recovery logic for virtual machines upon downtime detection using the Cloud.ru SVC Public API.
• Example of VM monitoring and auto-start system in VPC:
  GitHub Repository
  Telegram Live Report
• Backup & Disaster Recovery: Development and implementation of automated backup solutions for web applications with secure off-site storage in S3.
• Example of an Automated Website Backup System in S3:
  Telegram Live Report

Security:

• Network Micro-segmentation: Designing and implementing isolated network architectures using Docker Networks. Segmenting infrastructure into logical layers to minimize attack vectors and enforce Zero Trust concepts at the container level.
• Database Hardening & Isolation: Ensuring database invisibility from external networks and the frontend layer. Configuring restricted internal networks for databases to eliminate unauthorized inbound and outbound traffic.

Cloud & Infrastructure

VPC

Linux, TCP/IP

Design, creation and managing VPCs.

IAM: Access management and secure resource isolation using service accounts and access keys.

Creating and configuring a VM.

Deploying websites on VPC.

Configuring VPC with cybersecurity in mind.

Creating and managing backups S3 (SSE-KMS).

S3

Amazon S3 API, AWS CLI, WORM, IAM, SSE-C, Bucket Versioning, Object Lock

• Development and implementation of solutions for automated backup of web applications.
• Disaster Recovery Plan: Management of data recovery processes to minimize downtime and ensure system integrity.
• Data Integrity Control: Implementation of a multi-level validation system for database dumps and file object verification to eliminate the risk of Data Corruption. Features local integrity auditing (CRC32) combined with S3-side verification (SHA-256, MD5/ETag, CRC32C).
• Data Streaming: Implemented streaming ingestion/egress mechanisms via Unix Pipes between S3 and target systems to optimize I/O performance and enhance data security during recovery.
• Data Privacy Compliance: Ensuring strict adherence to data protection laws and regulations. Technical implementation of security controls to meet GDPR (EU), HIPAA/SOC2 (USA), and local data protection regulations.

Security:

• IAM: Implementation of the PoLP/RBAC with role separation (admin, editor, etc.) and use of restricted service accounts.
• Immutable Storage (WORM): Configuration of Bucket Versioning and Object Lock (COMPLIANCE) to protect data against modification, malicious deletion, or ransomware attacks.
• SSE-KMS: Designing and implementing Data-at-Rest encryption schemes using Server-Side Encryption and KMS (Key Management Service). Developing key access auditing and monitoring systems.

Monitoring:

• Real-time Alerts: Integration of backup solutions with Telegram Bot API for status monitoring and rapid incident response.
• Example of an Automated Website Backup System in S3:
  Telegram Live Report

Web Servers

Linux, Nginx, TCP/IP

Creation, configuration and administration of web servers based on Nginx.

Installation and configuration SSL certificates.

Ensuring cybersecurity.

Creating and managing backups S3 (SSE-KMS).

SSL test on the website shedov.top:

• SSLlabs.com/SSLtest  A+

Cybersecurity & Infrastructure Hardening

IDS/IPS, WAF, IAM, VPC, Linux, Nginx, TCP/IP

Ensuring cybersecurity of VPC and web infrastructure.

Design and implementation of IDS/IPS and WAF solutions for protecting infrastructure and web applications.

Creating sites and configuring Nginx with cybersecurity in mind.

Configuring VPC with cybersecurity in mind.

Installing and configuring SSL certificates.

Vulnerability Management & Infrastructure Security:

Infrastructure security auditing and vulnerability assessment using Nmap, ZAP (Zed Attack Proxy), and OpenVAS.

Website Security Tests shedov.top:

• SSLlabs.com/SSLtest  A+
• Clickjacker.io  safe

SEO

Knowledge of methods and experience in website promotion.

Building Correct Semantic Markup.

Working with services: Google Analytics, Google Search Console, Yandex Webmaster, Yandex Metrica.

Testing the shedov.top website:

• PageSpeed Insights

Quality Assurance

TCP/IP, MongoDB, MySQL

Testing the user interface and website adaptability in different browsers.

Knowledge of testing methods and types.

Ability to create test plans, test cases and bug reports.

Working in Azure DevOps and Jira.

Manual and automated API testing with Postman.

Using in work - BrowserStack.

Example of my bug report on GitHub.

crates.io

Creating and publishing a crates.

Development of CLI tools and libraries.

Configuring Cargo.toml and workspace structure.

Versioning and release management.

Dependency optimization and build size reduction.

Setting up GitHub Actions/CI for automated publishing to crates.io.

Creating documentation.

npm

Creation and publishing of npm packages.

Development of CLI tools.

Configuring Provenance (Built and signed on GitHub Actions).

Versioning and release management.

Package structure optimization (dependency minimization).

Setting up GitHub Actions / CI for automated publishing package.

Working with npm link and local package development.

Creating documentation.

Other skills

Linux, Git, GitHub

Experience in creating extensive documentation for large websites, npm packages and crates.

In-depth knowledge of computer hardware: assembly, diagnostics, selection of compatible components, and system upgrades. Experienced in building workstations and server-grade systems tailored for specific tasks: high load, fault tolerance, and scalable data storage.

I use the code editor: Visual Studio Code.

I work in systems: Windows 11 Pro, Debian, Kali.