Anton Galitsyn

Threat Analyzer is an analytics database with modular extensions that enhance its core functionality. Extensions allow users to upload, export, and analyze data, generating custom reports. Each Threat Analyzer instance supports many extensions, with each extension running as a separate application on a Kubernetes cluster alongside core services.

One of my key projects was “Box” an infrastructure component that acts as an extensions catalog. Box facilitates the full lifecycle management of extensions, including installation, upgrades, deletions, starts, and stops. It also provides state visualization, log viewing, and diagnostic tools to simplify extension management.

Key Responsibilities:

1. Project Planning: Defined project roadmaps for initiatives ranging from several months to a year, aligning goals with business priorities.
2. Feature Planning & Task Decomposition: Translated high-level requirements into actionable development tasks, ensuring smooth execution.
3. Code Reviews: Conducted thorough reviews to maintain code quality and ensure adherence to best practices.
4. Mentorship: Guided junior and mid-level developers, fostering skill growth and technical competence.
5. Development: Designed and implemented critical features for “Threat Analyzer: Box” leveraging Go, Kubernetes, and PostgreSQL.

Additional Contributions:

• Co-organizer and speaker in the in-house Go community.
  • Talks Delivered: Presented “How to Create a Go App from Scratch,” covering recommended practices, libraries, and pitfalls when starting a web backend project.

Neon is a serverless open-source alternative to AWS Aurora PostgreSQL, designed for highly scalable database management.

I contributed to the development of Neon’s control plane (“Console”), which manages DB clusters with advanced capabilities for users and administrators.

My key responsibilities included:

• Designing and implementing APIs and CLIs to streamline cluster provisioning and management.
• Developing an admin panel with monitoring, troubleshooting, and configuration tools.
• Building a cluster scheduler that optimized resource allocation across the infrastructure.
• Implementing metrics and telemetry systems to enhance observability and performance monitoring.

Impact:

• Improved system usability for administrators and end-users, reducing setup and configuration time.
• Enhanced cluster scheduling efficiency.

This role required close collaboration with cross-functional teams to deliver a robust, serverless DB solution in a fast-paced startup environment.

Seller Center is a platform enabling sellers to manage products, logistics, and performance analytics. I contributed to building and optimizing backends for critical features in a Kubernetes-based microservices architecture.

Key Responsibilities:

• Designed and developed scalable HTTP and gRPC APIs using gRPC-Gateway, enabling seamless communication between services.
• Built Kafka producers and consumers for event-driven features.
• Optimized PostgreSQL queries for bulk inserts, updates, and analytics.
• Implemented caching solutions with Redis and in-memory strategies.
• Developed distributed locking mechanisms using etcd to ensure system consistency in a high-concurrency environment.
• Integrated S3 for efficient data storage.

Internal Contributions:

• Participate in creation of an internal Go template project. The template accelerated development and ensured consistency for new services.

Impact:

• Improved backend service reliability and scalability, enabling [specific outcome, e.g., seamless operations during peak traffic events].
• Enhanced developer productivity by introducing reusable templates and optimizing workflows.

This role required deep collaboration with cross-functional teams to deliver high-performance solutions in a fast-paced environment.

PT Threat Analyzer is a platform for aggregating and analyzing knowledge about existing and potential cybersecurity threats, helping organizations detect and respond to indicators of compromise.

Key Responsibilities:

• Designed and implemented core subsystems, including:

  • Authentication System: Enhanced security and scalability for multi-tenant environments.
  • Artifact Analyzer Gateway: Streamlined data processing pipelines for threat analysis.
  • Storage System: Developed a robust, scalable backend for storing threat data, optimizing queries for high-performance analytics.
  • API Layer: Built RESTful and gRPC APIs to support seamless integration with other tools.
  • Data Migration Framework: Enabled smooth transitions between database versions and schema updates.

• Created and maintained CI/CD pipelines and installation tools, automating deployments and reducing manual setup time.

• Acted as a cross-functional contributor until an infrastructure engineer was hired, handling deployment automation and configuration management with Ansible and Docker.

Impact:

• Improved system reliability and reduced deployment errors.
• Delivered scalable solutions for processing and storing millions of threat indicators, empowering customers with actionable insights.

This role demanded a strong focus on architectural design, system performance, and collaboration with security researchers to align technical solutions with customer needs.

Senior engineer of Market-data service for invest platform. This service uses streaming architecture, one part of it should fetch data from different exchanges, parse it and send to Kafka, then aggregators depuplicate messages and and store in unified format in storage, then all data is accessible using REST API. Also I did CI/CD, deploy, monitoring, logging parts.

Gravitational Gravity is an open-source platform for packaging and running cloud-native applications in restricted, on-premise environments using Kubernetes.

Key Responsibilities:

• Developed and maintained Kubernetes-native applications packaged with the Gravity package manager, including:

  • Pithos: A distributed object storage service based on Cassandra.
  • Stolon: A cloud-native PostgreSQL manager for high-availability configurations.
  • Logging App: A centralized logging solution for Kubernetes clusters.

• Contributed to platform-wide enhancements, such as:

  • Integrating Kubernetes APIs to optimize application deployment and resource management.
  • Automating infrastructure provisioning with Terraform for seamless application scaling.
  • Implementing monitoring and alerting solutions using Prometheus and Grafana to improve system observability.

Open-Source Contributions:

• Contributed to Helm, improving templating features to support more flexible application deployments.

Impact:

• Delivered production-ready applications that streamlined the deployment of cloud-native solutions in secure, isolated environments.
• Enhanced the platform’s usability and reliability by optimizing deployment pipelines and monitoring capabilities.

This role required working closely with cross-functional teams and contributing to the open-source community, demonstrating a strong focus on collaboration and innovation.

At first year I worked on integration of openstack as a private cloud solution for whole company. I maintained several custom plugins and “ready to go” templates for openstack orchestration (heat), also I actively worked on compute (nova), DNS (designate) and openstack deployment (openstack-ansible). Also I did tech support for developers, consulting on how to use openstack.

Then I was involved into building internal PaaS, I worked with Docker, CoreOS, Deis, Kubernetes, etc.

This is 10 y.o. project with SOA architecture, old core was in C++, new in Java, cores communicates using CORBA. I worked on extension - dispatcher component: service written in PHP (Symfony 2 and Doctrine) with multiple integration points: REST, CLI, RPC. Main goal was infrastructure management, upgrade and health monitoring. So, some part of my tasks still has some PHP for REST APIs, but second part was development for linux using bash and python.

I was involved in building webistes as a fullstack developer. Released several TV-channels websites, restaurants, cultural & educational media website, corporate website.