Avi Langburd
Cloud & Security Architect · Multi-Cloud DevOps Expert · Kubernetes, IaC & GitOps Enthusiast · DevSecOps Practitioner
Summary and Expertise
Highly skilled and experienced Cloud & Security Architect with a comprehensive understanding of the application lifecycle, multi-cloud technologies, operating systems, virtualization, networking, and security.
Proven track record of designing, planning, implementing, and managing efficient DevOps, DevSecOps, and cloud operations and processes.
With over a decade of industry experience, I bring a wealth of knowledge to drive innovative solutions.
A self-motivated, creative problem solver, adept at quickly troubleshooting and resolving complex issues.
Technical knowledge and skills
- Cloud Solution Architect for Microsoft Azure, Amazon Web Services, and Google Cloud Platform (GCP)
- CI/CD: Git, Docker, Helm, Kubernetes, Argo CD, Jenkins, GitLab CI, GitHub Actions, Artifactory
- Configuration management and IaC: extensive experience with Ansible, Terraform/Terragrunt, and CDKTF
- Web/Proxy servers and load balancers: Nginx, Apache, HAProxy, Microsoft IIS, F5
- Monitoring/Logging/APM: Prometheus, ELK Stack, Grafana, Zabbix, Logentries, New Relic, Xpolog
- Databases: MS SQL, MySQL, MongoDB, Hadoop, Elasticsearch, InfluxDB
- Messaging/Cache/Queues: Apache Kafka, RabbitMQ, Redis
- Linux: extensive experience in administration of various OS flavors (CentOS, Ubuntu, etc.)
- Windows Servers: broad knowledge in AD, GPO, DNS, DHCP and Windows internals
- Virtualization: KVM-based (oVirt/Proxmox), VMware vSphere, Microsoft Hyper-V
- Networking: LAN/WAN/VLAN/WLAN architectures, various VPN implementations, Cloudflare
- Programming/script languages: Python, Bash, PowerShell
Work Experience
2024 – Now
Axonius – Senior Cloud Infrastructure Engineer
- Architected and operated Axonius’s Cloudflare zero-trust edge as code — provisioning Access policies, Gateway egress controls, WARP private-hostname blueprints, and DNS across production, management, and dev tenants via Terraform.
- Designed and ran the company’s Terraform Enterprise platform — managing workspaces through a TypeScript CDKTF application, enforcing change governance with Sentinel policy-as-code, and self-hosting the TFE application on dedicated EKS clusters across isolated dev, prod, and sandbox environments — GitOps-synced via Argo CD, autoscaled, and secrets-integrated for high availability.
- Built multi-cloud identity governance at scale — AWS SSO permission sets, customer-managed IAM policies, and least-privilege cross-account access alongside Azure Entra ID roles, RBAC groups, and landing-zone management groups and subscriptions for engineering, data, and security teams.
- Automated a private container-image supply chain on ECR — managing repository provisioning, image lifecycle, and migration tooling across the registry.
- Delivered data-platform infrastructure for the Datalake — EKS clusters, Airflow namespaces, and tiered S3 bucket access powering data-engineering and Bedrock RAG pipelines.
- Maintained a shared Terraform module library underpinning the IaC estate, raising code consistency and quality with SDLC standards.
- Served as a core reviewer for the infrastructure platform — vetting ~600 pull requests across the Terraform infrastructure, modules, policy, and tooling repositories to uphold change-quality and governance standards.
2024 – 2024
Mend.io – Senior DevSecOps Engineer
- Ensuring security measures are in place for all company processes, including organizational, developmental, and infrastructure aspects.
- Refactoring multi-cloud infrastructure (AWS and Azure) using Infrastructure as Code best practices.
- Designing and implementing CI/CD pipelines for several products using GitHub Actions reusable workflows.
2023 – 2024
BigPanda – Senior DevOps Engineer via Tikal
- Migrating AWS serverless workloads from ClickOps to Infrastructure as Code using Terraform.
- Creating the CI/CD processes for AWS serverless applications using TravisCI, Crossplane, Argo Workflows, and Argo CD.
- Working with globally distributed R&D teams.
2019 – 2024
Tikal Knowledge (Israel’s leading hands-on tech consultancy — expert consultants who embed with client R&D teams) – Senior DevOps Engineer
- Embedded as a senior DevOps consultant with client companies — most notably long-term engagements at Cyren and BigPanda (detailed below).
- Beyond core placements, contributed to dozens of customer-facing projects — DevOps-oriented PoC/PoV engagements proving out cloud, CI/CD, and IaC solutions.
- Consulted startups across all stages of company growth, from early-stage greenfield infrastructure to scaling production environments.
2019 – 2023
Cyren – Senior Production (DevOps) Engineer via Tikal
- Leading the technological migration of the whole company’s infra from on-premises to AWS.
- Architecting secured, isolated environments based on a multi-account model and using Infrastructure as Code (IaC).
- Designing and building hybrid (public & private - AWS, Azure & oVirt) cloud environments.
- Building GitOps CI/CD processes (GitLab CI & Argo CD) for both infrastructure and data pipelines.
- Managing dozens of highly available Kubernetes / Kafka / Elasticsearch / Hadoop clusters.
- Working closely with the Data Warehouse R&D team.
2020 – 2021
Fibonatix – DevOps Tech Lead
- Designed and built a hybrid cloud infrastructure (AWS and Azure) from scratch using an IaC approach.
- Aligned the networking, application, and infrastructure code into PCI DSS compliance.
- Configured the full cycle CI/CD process, using GitLab, Jenkins, and Kubernetes.
2019 – 2019
Upstream Security – DevOps Engineer via Tikal
Part-time job, supporting the company’s Cloud infrastructure and CI/CD. Worked with Terraform, Ansible, Artifactory, Jenkins, Docker, Kubernetes, AWS.
2016 – 2019
CodeOasis – IT and DevOps Tech Lead
- Managed high-traffic infrastructure systems of dozens of customers on AWS and Azure clouds (Wix.com, Gett.com, Fibonatix), on-premise (Altshuler-Shaham, Discount Bank, Super-Pharm), and hybrid (Electra, Eldan) production environments, including responsibility for hundreds of Linux and Windows servers with SLA 24/7/364.
- Provided full cycle architectural solutions for complex infrastructure requirements involving large-scale and enterprise-grade systems ready for rapid growth.
- Supported development processes with continuous integration and continuous delivery, led the DevOps culture in the company. Unified development, testing, and production environments using Docker containerization on all stages of the product’s life cycle.
- Optimized infrastructure costs by implementing IaC practice and using auto-scalable systems.
2014 – 2017
Fixico (startup) – Senior System Administrator & IT Ops Lead
- Managed and maintained mission-critical servers in production, pre-production, testing, and development environments, hosted on-premise (VMware) and on multiple clouds.
- Installed, administered, and maintained the company’s internal IT infrastructure – AD, source control system, collaboration suite, email, etc.
- Led a zero-downtime migration of production infrastructure from AWS to IBM SoftLayer Cloud.
- Led the design, implementation, and maintenance of a separate infrastructure for the white-labeling of the company’s main product for one of the company’s customers – Bezeq International.
2012 – 2014
Harel Computers and Information Systems – System Administrator
- Managed a 100+ servers in a distributed environment, including responsibility for the core infrastructure – AD DC, DNS, DHCP, Exchange.
- Managed projects, implemented server virtualization, and migrated legacy systems.
- Set up, configured, and maintained system IP telephony (VoIP) with the company’s customers. The position included maintaining and troubleshooting the servers, networks, and workstations on client’s sites and providing end-users support on-call and on-site.
2007 – 2012
KSP Computers (the biggest retail store network in Israel) – Head of the service lab
Managed the team, serviced clients, assembled, repaired, and maintained PC hardware, offered solutions to the staff in complicated cases.
2003 – 2007
RedX Hosting Solutions – System Engineer, member of IT staff
Installed servers and networks, assembled PCs, installed OS and applications, identified and fixed technical problems, serviced the company’s clients in the laboratory and on the client’s sites. Provided end-user support.
2001 – 2003
Home Electric – PC technician at the computer service lab
Assembled PCs, troubleshooted, and performed technical maintenance of the company’s computers.
Certifications, Education & Courses
2019 Blockchain Academy, 1st course at Microsoft & Blockchain Israel
2018 Architecting on Amazon Web Services at John Bryce College, Tel-Aviv
2017 Implementing Microsoft Azure Infrastructure Solutions at John Bryce College, Tel-Aviv
2012-2013 Microsoft Certified Solutions Associate (MCSA) Windows Server 2012
Microsoft Certified IT Professional (MCITP) Windows Server 2008 at College of Management, Rishon-LeZion
2005 PC Technician Course at Newman College, Tel-Aviv
1994-1999 Master’s Degree in Finance and Banking at Central Ukrainian National Technical University, Ukraine
Languages
- English – full professional proficiency
- Hebrew – full professional proficiency
- Russian – native
- Ukrainian – fluent
Recommendations would be provided on request.