Senior Software Engineer, currently dedicated to the Cloud Native Security space.
Experience
Cast AI
Sofia, Bulgaria (Remote)
Senior Software Engineer
March 2024 - Present
At Cast AI I am working on the Security product, part of the Cast Automation Platform.
Features of the Security producy include:
- Attack Paths: graph-based detection of attack vectors exposed and waiting to be exploited
- Image Scanning: scanning container images, providing information about vulnerable container images and possible remediation
- Compliance: rule-based checks for violation of industry-defined compliance standards and best practices
Responsibilities
- write clean and maintainable code, do code reviews, onboard new team members
- communicate with internal and external stakeholders (PM, UX, customers)
- communicate with other teams regarding work on shared components
- write technical documents (Engineering Analysis, write-ups, RFCs, customer-facing product documentation)
- present the work of our team in company-wide meetings and demos
- participate in the hiring process - interview people for my team, work on defining interview process, questions and assignments
- participate and lead the Dev Wars Guild - a think thank of senior engineers from all teams that discuss company-wide technical problems and their solutions
- all of that work was done in a remote team spread across Europe
Tech
Go, gRPC, eBPF, Kubernetes, Helm, PostgreSQL, Terraform, GCP PubSub
VMware Carbon Black
Sofia, Bulgaria (remote team)
Senior Member of Technical Staff
January 2022 - February 2024
Member of Technical Staff
June 2020 - January 2022
At VMware I worked on the Carbon Black Cloud Container Security product, which provides end-to-end Kubernetes Security (supply-chain to runtime).
During my time there I worked on all 3 parts of the Container Security Portfolio:
- Hardening: detecting misconfigurations in Kubernetes resources and enforcing policies for them
- Image Scanning: scanning container images, integrated with Hardening, ability to block images from being deploy depending on the number of vulnerabilities
- Runtime: runtime monitoring and protection, detecting anomalies in network activity during the runtime lifecycle of the app
Responsibilities
- write clean and maintainable code, do code reviews, onboard new team members
- communicate with internal and external stakeholders (PM, UX, QA, customers)
- communicate with other teams regarding work on shared components
- write technical documents (RFCs/JEDIs/TASAs, Engineering Analysis, customer-facing product documentation)
- present the work of our team on BU-wide meetings and demos, and also external events
- participate in the hiring process - interview people for my and other teams, helped grow the BU in Sofia from 4 to >100 people
- participate in Talent Boost - VMware Academy for students
- all of that work was done in a remote team across Bulgaria, Israel, India and USA
Tech
Go, gRPC, Kubernetes, Helm, MongoDB, Terraform, Kafka
Docker Inc./ Mirantis Inc.
Sofia, Bulgaria (remote team)
Software Engineer
August 2019 - June 2020
At Docker I worked on a few products, part of the Docker Enterprise (Docker EE) stack. In November 2019 that part of the company was acquired by Mirantis and I was included in the acquisition. Due to the dynamic nature of the events that were happening during my time there I switched a few teams and worked on a few different products while in the company:
- SaaS multi-cluster management product - part of Docker EE stack. Scrapped after the acquisition.
- Integrating Istio Ingress into UCP (Universal Control Plane) - Kubernetes/Swarm distro, part of Docker EE
- Launchpad - CLI tool for installing Docker EE products
Responsibilities
- write clean and maintainable code, do code reviews, onboard new team members
- communicate with internal and external stakeholders (PM, UX, QA)
- write technical documents (RFCs/JEDIs/TASAs, Engineering Analysis, customer-facing product documentation)
- present the work of our team in company-wide meetings and demos
Tech
Go, gRPC, Docker, Kubernetes, PostgreSQL
Paysafe
Sofia, Bulgaria
Software Engineer
May 2018 - August 2019
At Paysafe I worked on integrating crypto-currency trading into the company's two digital wallets - Skrill and Neteller.
Responsibilities
- write clean and maintainable code, do code reviews, onboard new team members
- do full-stack work - both back-end and front-end
- communicate with internal and external stakeholders (PM, UX, Legal, Compliance, Accounting)
- participate in the hiring process - interview people for my team, helped grow the team from 4 to 20 people
- present the work of our team in company-wide meetings and demos
Tech
Java SE/EE, Spring (Boot) - Netflix Stack, SQL, Angular 2+
SAP Labs Bulgaria
Sofia, Bulgaria
Software Engineering Intern
June 2017 - December 2017
At my first actual job in IT I worked on the provisioning framework of SAP Cloud Platform.
Responsibilities
- started the internship with a month of learning and building my own project
- after that, I joined the team and worked full-time on the team's priorities
- write clean and maintainable code, do code reviews (but mostly be on the receiving side of the code reviews)
- do full-stack work - both back-end and front-end
- learn how to work in a team
Tech
Java EE, SAP Cloud Platform, SAP UI5
Open Source work
Kiwi TCMS
Sofia, Bulgaria (working remotely)
Core Team Member
November 2017 - Present
Got involved in the project to gain more experience in the software development world.
Responsibilities
- write clean and maintainable code, do code reviews, onboard new team members
- make and execute a plan to refactor ~2000 pylint warnings
- work on refactoring older pages to modern JS code with latest version of Patternfly
- work and lead the Telemetry initiative
- man the project booth at conferences, and speak to potential customers and contributors
Tech
Python, Django, JavaScript, jQuery, Patternfly
90DaysOfDevOps (Second Edition)
GitHub
Contributor
January 2023
Public talks
Go Meetup Vilnius
November 2024
Vilnius, Lithuania π±πΉ
The Inner Workings of Go Generics
Talk that goes deep into how generics work in the Go programming language.
Starting from the history of the feature and why it took 12 years to be implemented, going into how exactly it works,
why it was designed this way and what are the trade-offs of this and the other proposed implementations.
VMware SaaS Meetup Community Summit
September 2023
Sofia, Bulgaria π§π¬
VMware SaaS Meetup Community Summit (with Martin Georgiev, Yavor Boychev, Alexander Dimitrov, Alexander Bonev)
In this meetup, we recapped the previous VMware SaaS Tech Meetups, including the one about Cloud Native Security.
We expanded on the topics, and had a free-form discussion with the audience about SaaS teams, organizations and security.
MooseCon 2023 (Internal VMware event)
September 2023
Sofia, Bulgaria π§π¬
Cloud Native Security - From Development to Runtime (with Martin Georgiev)
MooseCon is an internal VMware Security Conference.
This sessions is a comprehensive overview of how to ensure the security of Cloud Native infrastructure at every stage of the container lifecycle. Covering the complete application lifecycle, starting with the Development stage, including topics such as selecting the rightbase image, managing package dependencies, and implementing secure coding practices. Finishing with the Distribute and Deploy phases of the lifecycle, and the Runtime aspects of Cloud Native Security.
This sessions is a comprehensive overview of how to ensure the security of Cloud Native infrastructure at every stage of the container lifecycle. Covering the complete application lifecycle, starting with the Development stage, including topics such as selecting the rightbase image, managing package dependencies, and implementing secure coding practices. Finishing with the Distribute and Deploy phases of the lifecycle, and the Runtime aspects of Cloud Native Security.
RADIO@EMEA 2023 (Internal VMware event)
September 2023
Sofia, Bulgaria π§π¬
Cloud Native Security - From Development to Runtime (with Martin Georgiev)
RADIO@EMEA is the EMEA edition of RADIO - the biggest internal annual VMware Conference for Innovation.
This sessions is a comprehensive overview of how to ensure the security of Cloud Native infrastructure at every stage of the container lifecycle. Covering the complete application lifecycle, starting with the Development stage, including topics such as selecting the rightbase image, managing package dependencies, and implementing secure coding practices. Finishing with the Distribute and Deploy phases of the lifecycle, and the Runtime aspects of Cloud Native Security.
This sessions is a comprehensive overview of how to ensure the security of Cloud Native infrastructure at every stage of the container lifecycle. Covering the complete application lifecycle, starting with the Development stage, including topics such as selecting the rightbase image, managing package dependencies, and implementing secure coding practices. Finishing with the Distribute and Deploy phases of the lifecycle, and the Runtime aspects of Cloud Native Security.
Intro to Containers at Vocational High School for Audio, Video, and Telecommunications "A.S.Popovβ
June 2023
Sofia, Bulgaria π§π¬
Intro to Containers
I was invited to a local high-school to give a lecture on Containers to the students from the Computer Science classes.
The presentation was tailored to their programming experience (C# and .NET) and gave them basic overview of what containers are,
how and why to use them.
VMware Bulgaria Tech Meetups
May 2023
Sofia, Bulgaria π§π¬
Cloud Native Security - From Development to Runtime (with Martin Georgiev)
Comprehensive overview of how to ensure the security of Cloud Native infrastructure at every stage of the container lifecycle.
Covering the complete application lifecycle, starting with the Development stage, including topics such as selecting the rightbase image, managing package dependencies, and implementing secure coding practices.
Finishing with the Distribute and Deploy phases of the lifecycle, and the Runtime aspects of Cloud Native Security.
BSides Sofia 2023
March 2023
Sofia, Bulgaria π§π¬
Workshop: How to automate Application Security the DevSecOps way (with Svetlomir Balevski)
This workshop shows the audience what DevSecOps is, by doing a practical overview of the steps in a DevSecOps CI/CD Pipeline.
It goes through the different stages of the Pipeline, showing different steps in the process of building a secure application.
It shows things like SAST, SCA, Container image scanning, IAST, and DAST.
The workshop includes implementing a CI/CD pipeline that runs this checks for a certain application.
VMware Explore 2022
November 2022
Barcelona, Spain πͺπΈ
Panel: Day in The Life of a Cross Functional Security War Room
A War Room simulation where different security people are investigating a hacker attack against their company using VMware products.
My role was the SOC engineer who is using Carbon Black Container Security to investigate the attack on the company's Kubernetes workloads.
KubeHuddle 2022
October 2022
Edinburgh, Scotland π΄σ §σ ’σ ³σ £σ ΄σ Ώ
Securing Kubernetes with Open Policy Agent
This talk explains why admission control in Kubernetes clusters is important, and what bad things can happen due to workload misconfiguration.
Then it guides the audience on how to implement proper admission control using two open-source projects - Open Policy Agent and Gatekeeper.
OSCAL 2022
June 2022
Tirana, Albania π¦π±
Securing Kubernetes with Open Policy Agent
This talk explains why admission control in Kubernetes clusters is important, and what bad things can happen due to workload misconfiguration.
Then it guides the audience on how to implement proper admission control using two open-source projects - Open Policy Agent and Gatekeeper.
Workshop: Go 101 (with Boris Stoyanov)
Workshop for people that want to learn Go. No prior experience in the language is required, but experience with another programming language is.
The workshop is three-hours long, it starts with defining a functions, variables, etc. and ends with writing complex structs and attaching some sort of behavior to them.
VMware RADIO 2022
May 2022
San Francisco, USA πΊπΈ
Panel: Building High-Performance Applications with Go
VMware RADIO is the biggest internal annual VMware Conference for Innovation.
I was part of a panel discussion about different ways to use the Go programming language to build high-performance web (and not only) applications.
I was part of a panel discussion about different ways to use the Go programming language to build high-performance web (and not only) applications.
BSides Sofia 2022
April 2022
Sofia, Bulgaria π§π¬
Securing Kubernetes with Open Policy Agent
This talk explains why admission control in Kubernetes clusters is important, and what bad things can happen due to workload misconfiguration.
Then it guides the audience on how to implement proper admission control using two open-source projects - Open Policy Agent and Gatekeeper.
ISTA 2021
November 2021
Virtual π
Kubernetes Extensibility: Next Phases of Kubernetes
This talk showcases Kubernetes Extensibility constructs like Operators, CRDs, validating webhooks, etc. and shows how they can be leveraged to use Kubernetes as a development platform.
HackConf 2021
October 2021
Virtual π
Workshop: Go 101 (with Boris Stoyanov)
Workshop for people that want to learn Go. No prior experience in the language is required, but experience with another programming language is.
The workshop is three-hours long, it starts with defining a functions, variables, etc. and ends with writing complex structs and attaching some sort of behavior to them.
DevConf.CZ 2020
January 2020
Brno, Czech Republic π¨πΏ
Building The Twelve-Factor App
This talks explains The Twelve-Factor App methodology and why it is still relevant today in the world of Kubernetes, containers and microservices.
OpenExpo Europe 2019
June 2019
Madrid, Spain πͺπΈ
Building The Twelve-Factor App
This talks explains The Twelve-Factor App methodology and why it is still relevant today in the world of Kubernetes, containers and microservices.
HackConf 2019
October 2019
Sofia, Bulgaria π§π¬
Learn Python & Selenium the fast way (with Alexandar Todorov)
A three-hour workshop that goes over the basics of Python in the first part and then shows how to use Selenium with Python in the second part.