Anton Sankov

Senior Software Engineer, currently dedicated to the Cloud Native Security space.

asankov96@gmail.com
asankov
+359 892 456 130
Sofia, Bulgaria

Experience

Cast AI

Sofia, Bulgaria (Remote)
Senior Software Engineer
March 2024 - Present

At Cast AI I am working on the Security product, part of the Cast Automation Platform. Features of the Security producy include:
  • Attack Paths: graph-based detection of attack vectors exposed and waiting to be exploited
  • Image Scanning: scanning container images, providing information about vulnerable container images and possible remediation
  • Compliance: rule-based checks for violation of industry-defined compliance standards and best practices

Responsibilities

  • write clean and maintainable code, do code reviews, onboard new team members
  • communicate with internal and external stakeholders (PM, UX, customers)
  • communicate with other teams regarding work on shared components
  • write technical documents (Engineering Analysis, write-ups, RFCs, customer-facing product documentation)
  • present the work of our team in company-wide meetings and demos
  • participate in the hiring process - interview people for my team, work on defining interview process, questions and assignments
  • participate and lead the Dev Wars Guild - a think thank of senior engineers from all teams that discuss company-wide technical problems and their solutions
  • all of that work was done in a remote team spread across Europe

Tech

Go, gRPC, eBPF, Kubernetes, Helm, PostgreSQL, Terraform, GCP PubSub

VMware Carbon Black

Sofia, Bulgaria (remote team)
Senior Member of Technical Staff
January 2022 - February 2024
Member of Technical Staff
June 2020 - January 2022

At VMware I worked on the Carbon Black Cloud Container Security product, which provides end-to-end Kubernetes Security (supply-chain to runtime). During my time there I worked on all 3 parts of the Container Security Portfolio:
  • Hardening: detecting misconfigurations in Kubernetes resources and enforcing policies for them
  • Image Scanning: scanning container images, integrated with Hardening, ability to block images from being deploy depending on the number of vulnerabilities
  • Runtime: runtime monitoring and protection, detecting anomalies in network activity during the runtime lifecycle of the app

Responsibilities

  • write clean and maintainable code, do code reviews, onboard new team members
  • communicate with internal and external stakeholders (PM, UX, QA, customers)
  • communicate with other teams regarding work on shared components
  • write technical documents (RFCs/JEDIs/TASAs, Engineering Analysis, customer-facing product documentation)
  • present the work of our team on BU-wide meetings and demos, and also external events
  • participate in the hiring process - interview people for my and other teams, helped grow the BU in Sofia from 4 to >100 people
  • participate in Talent Boost - VMware Academy for students
  • all of that work was done in a remote team across Bulgaria, Israel, India and USA

Tech

Go, gRPC, Kubernetes, Helm, MongoDB, Terraform, Kafka

Docker Inc./ Mirantis Inc.

Sofia, Bulgaria (remote team)
Software Engineer
August 2019 - June 2020

At Docker I worked on a few products, part of the Docker Enterprise (Docker EE) stack. In November 2019 that part of the company was acquired by Mirantis and I was included in the acquisition. Due to the dynamic nature of the events that were happening during my time there I switched a few teams and worked on a few different products while in the company:

  • SaaS multi-cluster management product - part of Docker EE stack. Scrapped after the acquisition.
  • Integrating Istio Ingress into UCP (Universal Control Plane) - Kubernetes/Swarm distro, part of Docker EE
  • Launchpad - CLI tool for installing Docker EE products

Responsibilities

  • write clean and maintainable code, do code reviews, onboard new team members
  • communicate with internal and external stakeholders (PM, UX, QA)
  • write technical documents (RFCs/JEDIs/TASAs, Engineering Analysis, customer-facing product documentation)
  • present the work of our team in company-wide meetings and demos

Tech

Go, gRPC, Docker, Kubernetes, PostgreSQL

Paysafe

Sofia, Bulgaria
Software Engineer
May 2018 - August 2019

At Paysafe I worked on integrating crypto-currency trading into the company's two digital wallets - Skrill and Neteller.

Responsibilities

  • write clean and maintainable code, do code reviews, onboard new team members
  • do full-stack work - both back-end and front-end
  • communicate with internal and external stakeholders (PM, UX, Legal, Compliance, Accounting)
  • participate in the hiring process - interview people for my team, helped grow the team from 4 to 20 people
  • present the work of our team in company-wide meetings and demos

Tech

Java SE/EE, Spring (Boot) - Netflix Stack, SQL, Angular 2+

SAP Labs Bulgaria

Sofia, Bulgaria
Software Engineering Intern
June 2017 - December 2017

At my first actual job in IT I worked on the provisioning framework of SAP Cloud Platform.

Responsibilities

  • started the internship with a month of learning and building my own project
  • after that, I joined the team and worked full-time on the team's priorities
  • write clean and maintainable code, do code reviews (but mostly be on the receiving side of the code reviews)
  • do full-stack work - both back-end and front-end
  • learn how to work in a team

Tech

Java EE, SAP Cloud Platform, SAP UI5

Open Source work

Kiwi TCMS

Sofia, Bulgaria (working remotely)
Core Team Member
November 2017 - Present

Got involved in the project to gain more experience in the software development world.

Responsibilities

  • write clean and maintainable code, do code reviews, onboard new team members
  • make and execute a plan to refactor ~2000 pylint warnings
  • work on refactoring older pages to modern JS code with latest version of Patternfly
  • work and lead the Telemetry initiative
  • man the project booth at conferences, and speak to potential customers and contributors

Tech

Python, Django, JavaScript, jQuery, Patternfly

90DaysOfDevOps (Second Edition)

GitHub
Contributor
January 2023

Contributed 14 articles for the 90DaysOfDevOps initiative.

Responsibilities

Tech

DevOps, DevSecOps

Public talks

Go Meetup Vilnius

November 2024
Vilnius, Lithuania πŸ‡±πŸ‡Ή
The Inner Workings of Go Generics
Talk that goes deep into how generics work in the Go programming language. Starting from the history of the feature and why it took 12 years to be implemented, going into how exactly it works, why it was designed this way and what are the trade-offs of this and the other proposed implementations.

VMware SaaS Meetup Community Summit

September 2023
Sofia, Bulgaria πŸ‡§πŸ‡¬
VMware SaaS Meetup Community Summit (with Martin Georgiev, Yavor Boychev, Alexander Dimitrov, Alexander Bonev)
In this meetup, we recapped the previous VMware SaaS Tech Meetups, including the one about Cloud Native Security. We expanded on the topics, and had a free-form discussion with the audience about SaaS teams, organizations and security.

MooseCon 2023 (Internal VMware event)

September 2023
Sofia, Bulgaria πŸ‡§πŸ‡¬
Cloud Native Security - From Development to Runtime (with Martin Georgiev)
MooseCon is an internal VMware Security Conference.
This sessions is a comprehensive overview of how to ensure the security of Cloud Native infrastructure at every stage of the container lifecycle. Covering the complete application lifecycle, starting with the Development stage, including topics such as selecting the rightbase image, managing package dependencies, and implementing secure coding practices. Finishing with the Distribute and Deploy phases of the lifecycle, and the Runtime aspects of Cloud Native Security.

RADIO@EMEA 2023 (Internal VMware event)

September 2023
Sofia, Bulgaria πŸ‡§πŸ‡¬
Cloud Native Security - From Development to Runtime (with Martin Georgiev)
RADIO@EMEA is the EMEA edition of RADIO - the biggest internal annual VMware Conference for Innovation.
This sessions is a comprehensive overview of how to ensure the security of Cloud Native infrastructure at every stage of the container lifecycle. Covering the complete application lifecycle, starting with the Development stage, including topics such as selecting the rightbase image, managing package dependencies, and implementing secure coding practices. Finishing with the Distribute and Deploy phases of the lifecycle, and the Runtime aspects of Cloud Native Security.

Intro to Containers at Vocational High School for Audio, Video, and Telecommunications "A.S.Popovβ€œ

June 2023
Sofia, Bulgaria πŸ‡§πŸ‡¬
Intro to Containers
I was invited to a local high-school to give a lecture on Containers to the students from the Computer Science classes. The presentation was tailored to their programming experience (C# and .NET) and gave them basic overview of what containers are, how and why to use them.

VMware Bulgaria Tech Meetups

May 2023
Sofia, Bulgaria πŸ‡§πŸ‡¬
Cloud Native Security - From Development to Runtime (with Martin Georgiev)
Comprehensive overview of how to ensure the security of Cloud Native infrastructure at every stage of the container lifecycle. Covering the complete application lifecycle, starting with the Development stage, including topics such as selecting the rightbase image, managing package dependencies, and implementing secure coding practices. Finishing with the Distribute and Deploy phases of the lifecycle, and the Runtime aspects of Cloud Native Security.

BSides Sofia 2023

March 2023
Sofia, Bulgaria πŸ‡§πŸ‡¬
Workshop: How to automate Application Security the DevSecOps way (with Svetlomir Balevski)
This workshop shows the audience what DevSecOps is, by doing a practical overview of the steps in a DevSecOps CI/CD Pipeline. It goes through the different stages of the Pipeline, showing different steps in the process of building a secure application. It shows things like SAST, SCA, Container image scanning, IAST, and DAST. The workshop includes implementing a CI/CD pipeline that runs this checks for a certain application.

VMware Explore 2022

November 2022
Barcelona, Spain πŸ‡ͺπŸ‡Έ
Panel: Day in The Life of a Cross Functional Security War Room
A War Room simulation where different security people are investigating a hacker attack against their company using VMware products. My role was the SOC engineer who is using Carbon Black Container Security to investigate the attack on the company's Kubernetes workloads.

KubeHuddle 2022

October 2022
Edinburgh, Scotland 🏴󠁧󠁒󠁳󠁣󠁴󠁿
Securing Kubernetes with Open Policy Agent
This talk explains why admission control in Kubernetes clusters is important, and what bad things can happen due to workload misconfiguration. Then it guides the audience on how to implement proper admission control using two open-source projects - Open Policy Agent and Gatekeeper.

OSCAL 2022

June 2022
Tirana, Albania πŸ‡¦πŸ‡±
Securing Kubernetes with Open Policy Agent
This talk explains why admission control in Kubernetes clusters is important, and what bad things can happen due to workload misconfiguration. Then it guides the audience on how to implement proper admission control using two open-source projects - Open Policy Agent and Gatekeeper.
Workshop: Go 101 (with Boris Stoyanov)
Workshop for people that want to learn Go. No prior experience in the language is required, but experience with another programming language is. The workshop is three-hours long, it starts with defining a functions, variables, etc. and ends with writing complex structs and attaching some sort of behavior to them.

VMware RADIO 2022

May 2022
San Francisco, USA πŸ‡ΊπŸ‡Έ
Panel: Building High-Performance Applications with Go
VMware RADIO is the biggest internal annual VMware Conference for Innovation.
I was part of a panel discussion about different ways to use the Go programming language to build high-performance web (and not only) applications.

BSides Sofia 2022

April 2022
Sofia, Bulgaria πŸ‡§πŸ‡¬
Securing Kubernetes with Open Policy Agent
This talk explains why admission control in Kubernetes clusters is important, and what bad things can happen due to workload misconfiguration. Then it guides the audience on how to implement proper admission control using two open-source projects - Open Policy Agent and Gatekeeper.

ISTA 2021

November 2021
Virtual 🌎
Kubernetes Extensibility: Next Phases of Kubernetes
This talk showcases Kubernetes Extensibility constructs like Operators, CRDs, validating webhooks, etc. and shows how they can be leveraged to use Kubernetes as a development platform.

HackConf 2021

October 2021
Virtual 🌎
Workshop: Go 101 (with Boris Stoyanov)
Workshop for people that want to learn Go. No prior experience in the language is required, but experience with another programming language is. The workshop is three-hours long, it starts with defining a functions, variables, etc. and ends with writing complex structs and attaching some sort of behavior to them.

DevConf.CZ 2020

January 2020
Brno, Czech Republic πŸ‡¨πŸ‡Ώ
Building The Twelve-Factor App
This talks explains The Twelve-Factor App methodology and why it is still relevant today in the world of Kubernetes, containers and microservices.

OpenExpo Europe 2019

June 2019
Madrid, Spain πŸ‡ͺπŸ‡Έ
Building The Twelve-Factor App
This talks explains The Twelve-Factor App methodology and why it is still relevant today in the world of Kubernetes, containers and microservices.

HackConf 2019

October 2019
Sofia, Bulgaria πŸ‡§πŸ‡¬
Learn Python & Selenium the fast way (with Alexandar Todorov)
A three-hour workshop that goes over the basics of Python in the first part and then shows how to use Selenium with Python in the second part.

HackConf 2017

October 2017
Sofia, Bulgaria πŸ‡§πŸ‡¬
Learn Python & Selenium the fast way (with Alexandar Todorov)
A six-hour workshop that goes over the basics of Python in the first part and then shows how to use Selenium with Python in the second part.