Francisco Rene Yair Hernandez Ortiz
DevOps Engineer
Eindhoven
Summary
Grounded and solution-oriented Computer Scientist with 10+ years of experience with a wide variety of professional experiences. Adept at motivating self and others. Passionate about data security and programming.
Overview
16
16
years of professional experience
9
9
Certifications
2
2
Languages
Work History
DevOps Engineer
NXP semiconductors
12.2021 - Current
- Designed and delivered end‑to‑end automation solutions for the HPC environment, improving workflow efficiency and reducing manual effort.
- Developed, containerized, and deployed services on‑premises and in the cloud using GitLab CI/CD pipelines, Docker and OpenShift orchestration.
- Guided cross‑functional teams through micro‑service migration strategies, resulting in faster deployment cycles and greater scalability.
- Automated repetitive tasks with Python scripts, seamlessly integrating them into Ansible and SaltStack playbooks for reliable configuration management.
- Authored reusable Salt modules to standardize provisioning and enforce compliance across the HPC fleet.
- Built Python‑based utilities for automated provisioning and lifecycle management of cloud resources (AWS, GCP, Azure).
- Created Go applications and tooling to monitor, configure, and maintain IBM Spectrum LSF clusters, enhancing system visibility and uptime.
- Implemented Infrastructure‑as‑Code (IaC) using Terraform and Pulumi, enabling reproducible, version‑controlled environments.
- Provided Tier‑2 support for IBM LSF, troubleshooting complex issues on Red Hat Enterprise Linux and ensuring continuous job scheduling reliability.
- Enforced security best practices throughout the HPC stack—hardening nodes, managing secrets, and conducting regular vulnerability assessments to keep the environment secure and compliant.
Security Engineer II
Brightcove
11.2020 - 12.2021
- Designed and implemented new security‑focused services in Python to meet organizational risk‑mitigation objectives.
- Automated deployment pipelines with Jenkins and Spinnaker, delivering containerized services to Kubernetes clusters.
- Leveraged a suite of AWS services (e.g., IAM, GuardDuty, Security Hub) to remediate and prevent security incidents across cloud workloads.
- Managed and integrated multiple network‑traffic analysis tools (e.g., IDS/IPS, flow collectors) to monitor and protect enterprise communications.
- Conducted comprehensive vulnerability assessments of internal applications and infrastructure, producing actionable remediation reports.
- Coordinated and oversaw external penetration testing engagements, defining scope, tracking findings, and ensuring timely closure of critical issues.
- Acted as first responder for security alerts and incidents, performing triage, root‑cause analysis, and post‑mortem documentation.
- Developed automation scripts to embed security checks—such as SonarQube static code analysis and Lacework cloud security posture monitoring—directly into the GitHub CI/CD workflow.
- Performed pre‑production security reviews of new applications, evaluating architecture, threat models, and compliance requirements before release.
DevOps Engineer
NXP Semiconductors
06.2017 - 11.2020
- Manage and improve LSF (Load Sharing Facility).
- Develop new services for HPC (High Performance Computing) using python or bash to satisfy the company needs.
- Design and deploy new automation tools as Saltstack, Docker and Ansible.
- Release improvements to the current services combining tools for developing -> testing -> deployment as gitlab.
- Develop automation playbooks and states using Ansible and Saltstack respectively.
Senior Network Security Advisor
TCS (Tata Consultancy Services)
01.2017 - 06.2017
- Configure firewall rules.
- Identify network issues related with firewall.
Cloud Support Engineer
HPE
06.2016 - 12.2016
- Cloud infrastructure support.
- Identify issues with the Ansible code for creating cloud environments.
- Debug errors when creating/extending/removing cloud instances with Operation Orchestration.
Security Operations Engineer
WIDELAN SOLUTIONS
01.2015 - 01.2016
- Manage the security operations team of 6 people.
- Principal contact with the vendor to solve complex issues.
- Pre- sales tasks to bring customers.
Security Operations Engineer
WIDELAN SOLUTIONS
01.2011 - 01.2015
- Configure and deploy security solutions as IDS/IPS, proxies, anti-malware solutions, anti-SPAM, data loss prevention and virtual patching software.
- Do penetration testings to multiple services in companies.
- Secure services of customers using Trend Micro technologies.
- Manage Linux servers.
- Creating virtual environments with VMware.
Network administrator
CUCEA (University)
01.2010 - 01.2011
- Configure switches and routers.
- Identifying network issues.
- Detect and mitigate network security problems.
Education
Bachelor - Computer Information Systems
CUCEA (University of Guadalajara)
Skills
Pentesting
Ansible / Saltstack
Unix/Linux
Python
Networking
Docker
Certification
CompTIA Security + certification.
Interests
I am a very active person always looking to improve myself, I normally study multiple things besides what is needed in my job, I love computer systems and I am all about a technology, I really enjoy looking for new challenges and thinking about solutions to a problem from different approaches, I am a little perfectionist with my work and that has helped me to be recognized multiple times in the companies that I have worked for, I am looking forward to meet new people and work with them
Timeline
DevOps Engineer
NXP semiconductors
12.2021 - Current
Security Engineer II
Brightcove
11.2020 - 12.2021
DevOps Engineer
NXP Semiconductors
06.2017 - 11.2020
Senior Network Security Advisor
TCS (Tata Consultancy Services)
01.2017 - 06.2017
Cloud Support Engineer
HPE
06.2016 - 12.2016
Security Operations Engineer
WIDELAN SOLUTIONS
01.2015 - 01.2016
Security Operations Engineer
WIDELAN SOLUTIONS
01.2011 - 01.2015
Network administrator
CUCEA (University)
01.2010 - 01.2011
Bachelor - Computer Information Systems
CUCEA (University of Guadalajara)