Brian Charles Hill
228 Diamond Street
San Francisco, CA 94114-2450
+1 415-577-3279
bchill@bch.net
LinkedIn: https://www.linkedin.com/in/brianchill


CURRENT/PREVIOUS CLIENTS:

sjultra, Inc., San Jose, CA - 2022/08 to present
  • manager: Iben Rodriguez, +1 408-218-8957, iben@sjultra.com
  • I centralized system management of several RHEL/CentOS/Ubuntu hosts using salt in multiple geographic regions across the U.S and Europe. This can be scaled to 1000s of hosts whether they are virtual, hardware or cloud-based hosts.
  • The configuratoin files for an increasing number of services have been and are being converted to templates, including those for Postfix, OpenSSH, yum/dnf, rsync server, user profiles, sudoers, chrony, firewalld, rsyslog, nginx, cron, datadog, dns client service, and salt itself. User and group management is also centralized with salt.
  • OS/Application focus: Ubuntu/RHEL Linux, Nginx, OpenSSL, letsencrypt, SSL Certificates, certbot, unison, Salt Project (formerly Saltstack)
  • Automating of SSL certificate generation with Letsencrypt using certbot
  • Providing routine consultation to other team members related to various SSL certificate issues
ThiveOn, Inc., Soquel, CA - 2021/03 to 2023/03
  • manager: Anthony Schaller, +1 510-541-5480, tony@schaller.net
  • OS/Application focus: Debian Linux, Nginx, Gitlab, NodeJS, Strapi, Gatsby, Express, NextJs, MySQL, rsyslog, rdiff-backup
  • The existing, informal application deployment process was redesigned to make it possible to scale quickly to add new applications, environments and servers. This included unifying the directory structure for all applications, separating of read and write role users for security, using rsyslog to feed file logs to journald, and using diff-based backups at deployment time for easy reversion to older deployments.
  • All existing application deployment processes (Strapi, Gatsby, Express), most of which were manual, were migrated to gitlab and this unified structure, and a new application was added (NextJS).
  • Development and staging envorinments were added to the production (the only existing environment), bring the total number of application servers quickly from 2 to 7.
  • Extensive multi-way failover was designed and configured between all application servers across all applications using CloudFlare and Nginx. This makes deployments seemless and limits potentional downtime to a few seconds.
WinView, Inc., Redwood City, CA - 2019/04 to 2022/07
  • manager: Eric Vaugn, +1 650-533-4179, eric@winview.tv
  • manager: Alan Pavlish, +1 310-666-1253, alan@winview.tv
  • Deployed centralized system management services for over 15 RHEL/CentOS 7 hosts into Amazon EC2 (cloud services), using Synto (CFEngine, rsync, perl, ksh and m4)
  • Integrated configuration for NTP, OpenSSH, Apache, Nginx, Sendmail, BIND, MySQL, Postgres, OpenLDAP, OSSEC, iptables, login shell environment, OS patches & updates (yum & mrepo), nagios, rdiff-backup, and kickstart
  • Migrated gaming application suite from a hosted service to on-premises using the above infrastructure
  • Extensive appliation troubleshooting and code changes in Python and PHP (CakePHP).
FastModel Technologies (FastModel Holdings, Inc)., Chicago, IL - 2017/06 to present
  • manager: Randy Waters, +1 510-541-5480, randy@fastmodeltechnologies.com
  • Deployed centralized system management services for over 10 RHEL/CentOS 7 hosts into Amazon EC2 (cloud services) using Synto (CFEngine, rsync, perl, ksh and m4)
  • Planned and assisted in the execution of a project consolidate needless multiple VPCs into one
  • Deployed VPN using OpenVPN to reduce exposure of many services, especially AWS RDS to public IP access
  • Migrated Atlassian all Jira and Confluence assets from Atlassian-hosted to on-premises servers for improved flexibility, lower cost and integration with on-presmises LDAP (OpenLDAP)
  • Improved security by switching users to individual credentials managed via LDAP vs ssh role keys shared amongst a large number of present and ultimately former company associates
  • Integrated configuration for NTP, OpenSSH, Apache, NGINX, Sendmail, BIND, MySQL, OpenLDAP, iptables, jira, confluence, OpenVPN, login shell environment, jenkins, OSSEC, JetBrains Upsource, OS patches & updates (yum & mrepo), nagios, rdiff-backup, and kickstart
BCH Technical Services, LLC, Novato, CA - 1991/6 to present
  • Deploy centralized system management services and provide on-going maintenance
  • Security analysis, performance tuning & monitoring
  • Expert troubleshooting and special projects support
  • Clients with a wide variety of needs
Mobile Gaming Technologies, Inc., Oakland, CA - 2013/03 to 2020-06
  • manager: Mike Reaves, +1 415-939-9619, mreaves@mondobox.com
  • manager: Ed Brennan, +1 408-768-5327, ebrennan@cashbet.com
  • Deployed centralized system management services for over 50 RHEL/CentOS 7 hosts into Amazon EC2 (cloud services), followed by 16 more hardware CentOS/RHEL 6 hosts into a colocation facility Synto (CFEngine, rsync, perl, ksh and m4)
  • Integrated Amazon EC2 factors into Synto to handle seemless centralized system management across traditional colocation-based hardware and cloud computing virtual hosts
  • Integrated configuration for NTP, OpenSSH, Apache, Nginx, Sendmail, BIND, MySQL, OpenLDAP, iptables, login shell environment, OS patches & updates (yum & mrepo), nagios, rdiff-backup, and kickstart & jumpstart
One Kings Lane, Inc. (now Bed, Bath and Beyond), San Francisco, CA - 2010/12 to 2020-06
  • manager: Justin Hill, +1 415-246-2356, justin@onekingslane.com
  • Deployed centralized system management services for over 30 RHEL/CentOS 5 hosts into Amazon EC2 (cloud services), followed by 40 more hardware CentOS/RHEL 5 hosts into a colocation facility and and office-based machine room using Synto (CFEngine, rsync, perl, ksh and m4).
  • Integrated Amazon EC2 factors into Synto to handle seemless centralized system management across traditional colocation-based hardware and cloud computing virtual hosts.
  • Integrated configuration for NTP, OpenSSH, Apache, Sendmail, BIND, MySQL, OpenLDAP, iptables, jira, login shell environment, OS patches & updates (yum & mrepo), nagios, rdiff-backup, and kickstart & jumpstart.
  • Integration testing of RHEL/CentOS 6 with use of newer mainline kernels in progress.

SKILLS & SPECIALTIES:

Complete, Comprehensive UNIX System Administration
  • Extensive experience with SunOS 5 (Solaris 2), Linux (RedHat), HP-UX, Tru64 (Digitial Unix), and Ultrix, AIX, BSD, Irix, SCO
  • Considerable VMS, BSD and Dynix/ptx experience, and substantial Microsoft Windows & MacOS experience
  • Extensive interoperability work between UNIX and other operating systems
  • System administration - user management, file systems (Veritas Volume Manager, Sun Solstice Disk Suite), printing, software installation and licensing (FlexLM, Elm), backups (amanda, Veritas Netbackup, Veritas Backup EXEC, and Legato), security & performance
  • Design - complete strategies for heterogeneous, distributed, single-point of management using all bundled and free tools, including NIS, NIS+, NFS, USC rdist, m4, perl, automounter, xdm, syslogd, sendmail, amanda, identd, tcp wrappers and a suite of fully portable Korn Shell (ksh) scripts for configuring printing, log management and more.
  • Hardware configuration - installation and configuration of cards, peripherals (including printers, disks, cdroms, tape drives monitors, and more) and kernel rebuilds.
Network Services Management
  • DNS & sendmail specialist, plus NFS, NIS, NTP, INN, POP3, IMAP, SNMP, HTTP servers (Apache) and more - site-wide, highly tailored, heterogeneous setup, operation & troubleshooting.
  • Routing experience - router configuration, host routing using gated and mixed protocol networks.
  • Experience with Microsoft Windows NT/2000 system management.
Programming, Applications and other Specialties
  • Extensive C, Korn/C Shell, considerable Perl and HTML programming- experience w/, DCL, Fortran, and SQL.
  • Extensive data tape manipulation - ASCII, EBCDIC, ANSI-labeled tapes - "I can read any tape."
  • Instruction - beginning UNIX/VMS, intermediate UNIX in large class and one-on-one tutorials.
  • Experience with Microsoft and other desktop applications
Publications
  • Brian C. Hill, "Priv: Secure and Flexible Privileged Access Dissemination", Proceedings of the 10th Large Installation Site Administration Conference, pp 1-8, Chicago, IL, 1996.
  • Wrote complete documentation for C and oracle SQL assignments and taught lab section of Computer Science Dept. database course for 2 years.
  • Contributed sections on compilers & network tools to campus VMS documentation sold at bookstore.
International Work
  • Have permit to work in Germany.
  • Fluent Spanish and nearly fluent German.
  • Extensive travel experience in Europe and Central/South America.

EDUCATION:

B.S., Computer Science (Minor, Political Science), University of California, Davis - June, 1993

REFERENCES:

Additional client, employment and personal references available upon request.