×
Ales Loncar

Ales Loncar

Senior Cloud & DevOps Engineer | Automation Specialist

Munich, Bayern, DE
Slovenian, English, German

Background


About

About

Accomplished freelance Cloud and DevOps Engineer with 20+ years of experience delivering production-grade, cloud-native, containerized, and automated solutions. Specializes in infrastructure as code, CI/CD pipelines, platform engineering, and DevSecOps practices to streamline deployment, enhance security, and improve developer experience. Combines a software engineering mindset with deep DevOps expertise to architect and implement scalable, secure, and resilient platforms. Passionate about automation, continuous improvement, and mentoring teams in modern engineering practices.

Work Experience

Work Experience

  • Senior DevOps Consultant (Freelance), European Union Agency (via IBM)

    Apr, 2024 - Mar, 20251 year

    Serving as freelance Senior DevOps Consultant on-site for IBM at a European Union Agency, operating in a highly secure, air-gapped environment managing classified systems. Lead automation and DevOps initiatives for a large-scale OpenShift platform (>400 nodes), driving deployment efficiency, GitOps adoption, and operational automation using Ansible, Python, and Bash while ensuring compliance with security requirements.

    • Spearheaded automation of release and deployment workflows in a private cloud environment hosting 400+ OpenShift nodes, significantly improving deployment speed and reliability.

    • Migrated existing playbooks, roles, and templates from Ansible Tower to Ansible Automation Platform (AAP), ensuring full compliance with fully-qualified collection names (FQCN) and preparing custom Execution Environments (EE) for containerized automation.

    • Implemented GitOps Agent for AAP Controller Configuration as Code, enabling automated synchronization (CRUD) of Ansible Controller objects based on repository-stored configuration definitions using GitHub webhooks.

    • Designed and automated complex multi-step operational workflows including environment cleanup, Helix cluster component re-creation, Kafka topic management, and OpenShift object lifecycle management across ~100 environments.

    • Achieved a reduction of multi-day manual operations to under a few hours through automation improvements spanning multiple AAP clusters and OpenShift environments.

    • Integrated Ansible Automation Platform with Thycotic (Delinea) Secret Server via lookup plugin to enhance secure credential management in automated processes.

    • Managed deployment tasks, platform troubleshooting, and Istio network configurations while adhering to stringent EU PSC security and compliance standards.

    • Collaborated with infrastructure and application teams to refine deployment procedures, develop naming conventions, and continuously improve automation coverage in an air-gapped, classified environment.

  • Senior Back End Developer (Freelance)The Marcom Engine

    Jan, 2023 - Jan, 20241 year

    Served as a freelance Senior Back End Developer at The Marcom Engine, leading the design, development, and maintenance of scalable backend services using Node.js, Python, and microservices architecture. Delivered a greenfield backend platform from inception, while championing software quality improvements, testing best practices, and secure coding standards across multiple projects. Collaborated with DevOps teams and stakeholders to enhance CI/CD pipelines, documentation, and code review processes.

    • Architected and implemented a greenfield backend application using Node.js and Python, delivering a scalable, maintainable solution tailored to business needs.

    • Ensured high performance, availability, and security by designing robust REST APIs, integrating security best practices, and enforcing API standards.

    • Advocated and implemented a testing strategy that increased code coverage across all projects to over 80% within 3 months, aligning with quality benchmarks.

    • Led initiatives to remove sensitive data from Git repositories, cleaning commit history and preventing credential leaks using BFG Repo-Cleaner and git filter-repo.

    • Established and enforced code review guidelines and best practices to standardize code quality, improve maintainability, and foster knowledge sharing.

    • Collaborated with DevOps teams to enhance CI/CD pipelines using Jenkins, SonarQube, and Nexus, ensuring continuous quality monitoring and streamlined deployments.

    • Integrated third-party services and APIs, collaborating with partners to ensure seamless backend system integration.

    • Created and maintained comprehensive technical documentation to support ongoing maintenance, troubleshooting, and developer onboarding.

    • Mentored junior developers through code reviews, pair programming, and technical guidance, fostering skill growth and engineering excellence.

    • Drove developer environment improvements, providing workstation setup guides and recommendations for tooling, security, and development best practices.

    • Actively contributed to internal knowledge bases, including Confluence documentation for developer processes, code standards, and testing practices.

  • Cloud Engineer (Freelance)Graylog

    Oct, 2021 - Dec, 20221 year 3 months

    Served as freelance Cloud Engineer at Graylog, contributing to the transformation of Graylog into a scalable cloud-native platform. Worked within the international Cloud Engineering team to design, automate, secure, and optimize infrastructure and operations across AWS, Kubernetes, and distributed systems. Led DevOps automation, monitoring solutions, and infrastructure hardening to support reliable, secure, and efficient service delivery.

    • Architected and implemented infrastructure-as-code solutions using Terraform and Ansible to provision and manage AWS cloud resources, ensuring repeatability, scalability, and compliance.

    • Engineered Ansible automation for OpenSearch (Amazon Elasticsearch) snapshot management, shard replication monitoring, and critical data protection workflows.

    • Developed monitoring and alerting solutions using Prometheus and Grafana, including monitoring Elasticsearch/OpenSearch metrics and automating detection of critical configuration issues.

    • Led remediation efforts for security vulnerabilities, including log4j2 remote code execution (RCE) mitigation and verification of exploit exposure.

    • Upgraded MongoDB (Percona fork) replica set cluster from version 3.6 to 4.4 using a custom Ansible playbook enabling staged, in-place upgrades with zero downtime.

    • Enhanced CI/CD automation by implementing GitHub Actions workflows to orchestrate Ansible deployments, replacing Docker-based Ansible with a Poetry-managed execution environment.

    • Contributed to the migration of Graylog Cloud infrastructure from AWS EC2 to Kubernetes-based deployments using Argo Workflows, improving scalability and deployment consistency.

    • Implemented, configured, and deployed an existing Okta Terraform module to automate provisioning of Okta OAuth applications, user groups, API users, and initial admin users, enabling identity integration with Graylog instances.

    • Streamlined access controls and secured monitoring infrastructure through reverse proxy configuration, ELB/ALB hardening, and improved token management using GitHub Apps credentials.

    • Reduced operational overhead by deprecating legacy Jenkins and APT repositories, transitioning to direct deb package distribution via AWS S3 and GitHub assets.

    • Created automation to garbage-collect empty indexes in unused index sets, reducing storage costs and improving index management efficiency.

    • Implemented alert deduplication and custom alerting logic in Alertmanager to reduce noise and prioritize actionable incidents.

    • Produced documentation of designs, implemented solutions, and provided technical mentorship and peer reviews within the engineering team.

  • Java Architect (Freelance)Publicis Sapient

    Nov, 2020 - Sep, 202110 months

    Served as freelance Java Architect on the DPDHL Freight Solutions (FS) project via Publicis Sapient, contributing to the client's digital transformation by modernizing backend systems, improving software delivery pipelines, and strengthening observability. Collaborated with cross-functional teams to architect, implement, and optimize cloud-native microservices running on Azure Kubernetes Service (AKS), integrating security, monitoring, and data management best practices.

    • Designed and implemented microservices architecture on Azure Kubernetes Service (AKS), leveraging Spring Boot and cloud-native patterns to ensure scalability and resilience.

    • Refined and optimized existing Spring Boot microservices using domain-driven design (DDD), hexagonal architecture, asynchronous processing, application events, and aspect-oriented programming.

    • Integrated distributed tracing with Spring Cloud Sleuth to propagate Correlation IDs across services for improved traceability.

    • Enhanced API security by implementing JWT-based authentication and transitioning from static JWT configuration to Auth0 integration; later explored migration to Azure Active Directory (AAD).

    • Developed and deployed a shared Maven library for Auth0 audience validation, improving authentication consistency across services.

    • Improved CI/CD pipelines in Azure DevOps to streamline build, test, and deployment workflows for microservices and shared libraries.

    • Automated API documentation with Swagger 2 via SpringFox, enabling up-to-date and consistent API specs.

    • Implemented Splunk logging for backend services, enhanced log appender configurations, and collaborated with infrastructure teams to align log analytics for production monitoring.

    • Created a watchdog process to collect API health metrics and automatically trigger Splunk alerts for proactive issue detection.

    • Architected and implemented automated Cosmos DB backup pipelines using Azure Data Factory, ensuring data retention compliance and disaster recovery readiness.

    • Documented software architecture and API designs using standardized documentation practices to facilitate knowledge sharing and onboarding.

  • Senior DevOps Engineer (Freelance)Publicis Sapient

    Nov, 2019 - Jun, 20207 months

    Served as Senior DevOps Engineer on the DPDHL Logistics Platform project, working in a hybrid cloud environment spanning a private datacenter (Prague) and Microsoft Azure. Focused on streamlining infrastructure and development processes through automation, containerization, and Infrastructure as Code (IaC). Collaborated with development and infrastructure teams to enhance CI/CD pipelines, deploy containerized applications, and implement scalable, maintainable infrastructure solutions.

    • Designed and implemented CI/CD pipelines using Jenkins running within OpenShift clusters, improving deployment speed and consistency across hybrid cloud infrastructure.

    • Developed Infrastructure as Code solutions with Ansible and Terraform to provision and manage infrastructure across Azure and private datacenter environments.

    • Customized Ansible automation to operate within restricted environments lacking privilege escalation, ensuring compliance with security and operational constraints.

    • Engineered a custom Ansible Runner to support OpenShift’s arbitrarily assigned user IDs at runtime, enabling seamless execution of automation tasks inside containers.

    • Built custom Jenkins container images and deployed them within OpenShift to support pipeline flexibility and tooling standardization.

    • Shared expertise through internal knowledge-sharing sessions, pair programming, and slide-based tech talks to uplift team DevOps maturity and skills.

    • Advocated for a DevOps culture emphasizing collaboration, continuous improvement, and automation to bridge gaps between development and operations.

  • Infrastructure Engineer / DevOps ConsultantAccenture (via Catenate GmbH)

    Sep, 2018 - Oct, 20191 year 1 month

    Provided infrastructure engineering and DevOps consulting services to Accenture as an external contractor through Catenate GmbH, focusing on modernizing and optimizing the BMW OpenShift Container Platform Clusters (v3.6, 3.9, 3.11). Delivered improvements in application migration, CI/CD pipelines, and monitoring solutions to enhance throughput, stability, and scalability.

    • Led the migration of applications from traditional server infrastructure to containerized environments on OpenShift Container Platform.

    • Designed and implemented CI/CD pipelines and integrated tools such as Jenkins, SonarQube, and Fitnesse to automate testing, building, and deployment processes within OpenShift clusters.

    • Engineered a complete monitoring stack using Prometheus, Pushgateway, and Alert Manager to enhance observability across multiple OpenShift clusters.

    • Managed application and persistent volume migrations between OpenShift versions 3.6, 3.9, and 3.11, ensuring minimal downtime and data integrity.

    • Deployed immutable infrastructure within BMW OpenStack Cloud using Terraform and Ansible to provision and configure Windows Server instances.

    • Developed Helm charts and Ansible playbooks to automate deployment and configuration of Jenkins servers and Windows-based build agents within Kubernetes and OpenStack environments.

    • Built a custom Go-based CLI tool to automate OpenID Connect authentication, streamlining access to Kubernetes clusters for developers.

  • Senior Software Engineer / Software Development LeadCatenate GmbH

    Jul, 2018 - Oct, 20191 year 3 months

    Served as a senior software engineer and team lead at Catenate GmbH, managing software development initiatives and technical leadership for client projects including Allianz (TUIGBM) and contracting assignments such as Accenture. Mentored team members, led technical discussions, and focused on non-functional requirements including maintainability, scalability, and reliability.

    • Led the software development team for TUIGBM, a data integration platform for Allianz, enabling customer service teams to access TUI travel contract details from multiple backend data streams.

    • Developed backend systems using Java, Spring Boot, Quartz, and Easy Batch to process and centralize insurance policy data from disparate sources.

    • Created a Vagrant-based local development environment to improve developer productivity and streamline testing prior to deployment.

    • Configured CI/CD pipelines with Jenkins to automate the build and delivery of software artifacts to client environments.

    • Provided technical mentorship, conducted code reviews, and facilitated pair programming to upskill junior developers and promote engineering best practices.

    • Delivered internal tech talks covering topics such as cloud computing, containerization, container orchestration, DevOps principles, Vagrant, and OpenShift.

    • Collaborated with client technical leads to align development priorities, remove blockers, and ensure project deliverables met technical and business requirements.

  • Software Engineer, CAD/CAMEtkon GmbH / Straumann

    Feb, 2016 - Jun, 20182 years 4 months

    Contributed as a core member of the CAD/CAM software development team at Straumann Group, a global leader in dental prosthetics and implant solutions. Led modernization initiatives to integrate contemporary software development practices, DevOps tooling, and automation into legacy systems supporting dental prosthetics manufacturing and 3D data processing workflows. Collaborated with cross-functional teams to develop internal tools, REST APIs, and scalable infrastructure solutions using containerization and orchestration technologies.

    • Introduced and integrated modern development practices including TDD (PHPUnit), automated acceptance testing (Selenium), dependency injection, and Composer/Packagist into legacy PHP systems.

    • Refactored legacy PHP codebase to adopt Symfony components and Doctrine DBAL, replacing deprecated PEAR packages and improving maintainability and performance.

    • Designed and implemented RESTful APIs using Mojolicious (Perl) and Flask (Python), documented with Swagger (OpenAPI) for integration with CNC machines and internal systems.

    • Established GitLab CI pipelines with custom GitLab Runners for automated building, testing, and deployment of REST services, enhancing code quality and release speed.

    • Deployed an internal Docker registry via GitLab to streamline container image management and accelerate development workflows.

    • Orchestrated infrastructure provisioning using Ansible to automate CI/CD environments on Debian and CoreOS servers, supporting both development and production environments.

    • Led the transition toward containerization with Docker and initiated the deployment of Kubernetes clusters (staging and production) to improve scalability and reliability.

    • Implemented front-end build automation using Grunt for CSS and JavaScript minification, concatenation, and bundling to optimize client-side performance.

    • Delivered internal technical workshops on PHP best practices, automated testing, ACL implementations, and modern DevOps workflows to upskill development team members.

    • Acted as a mentor and knowledge leader within the team, fostering adoption of new tools, processes, and engineering standards.

  • Senior DeveloperTravian Games GmbH

    Mar, 2013 - Jan, 20162 years 10 months

    Senior Software Developer with proven expertise in developing tools and communication layers for large-scale online games, contributing to the success of Travian 5. Spearheaded migration from Gitorious to Stash, improving version control processes. Enhanced development workflows through automation and mentoring. Delivered new features and optimized existing systems within an Agile environment, consistently achieving high-quality code standards.

    • Developed and maintained critical tools for Travian 5, improving game integration with third-party services and streamlining manual processes.

    • Led successful migration of the development team from Gitorious to Stash, increasing repository management efficiency and adoption by 100%.

    • Performed code reviews to maintain high code quality and ensure adherence to best practices.

    • Mentored junior developers through pair programming and technical training, fostering a culture of knowledge sharing and continuous improvement.

    • Actively implemented process improvements, shortening sprint delivery times by 10% through optimized workflows.

    • Built and refactored scalable backend functionality in PHP, Zend Framework, and Node.js, ensuring system stability for a global user base.

    • Collaborated in Agile ceremonies, providing accurate sprint estimations and contributing to continuous team improvement.

    • Implemented and maintained CI/CD pipelines using Bamboo, automating deployment processes and reducing release times by 20%.

  • Senior DeveloperCentral European Media Enterprises Ltd.

    Jan, 2011 - Feb, 20132 years 1 month

    Contributed to the development, integration, and deployment of digital media platforms including Voyo, a leading video-on-demand service, and the CME Common Content Platform. Collaborated with cross-functional central and local teams to deliver new features across web, mobile, and Smart TV environments.

    • Developed and maintained Voyo, a multi-model video-on-demand platform supporting TVOD, AVOD, SVOD, EST, PPV, and live streaming.

    • Implemented the CME Common Content Platform using Zend Framework to standardize content management across regions.

    • Created RESTful and JSON-RPC APIs enabling integration with mobile apps, Smart TVs, and set-top boxes.

    • Built Android applications for phones, tablets, and set-top boxes supporting video playback and content delivery.

    • Developed custom modules for Wowza Media Server to support streaming workflows.

    • Integrated Google Widevine DRM into video transcoding pipelines to ensure secure content delivery.

  • Web DeveloperAV studio d.o.o.

    Sep, 2000 - Nov, 20088 years 2 months

    Developed custom web applications and maintained AV SiteKit, a proprietary content management system, delivering tailored solutions for diverse clients. Supported network and system administration for internal infrastructure.

    • Developed dynamic web applications using ASP, MSSQL, JavaScript, XHTML, and CSS within the AV SiteKit CMS platform.

    • Maintained and enhanced the AV SiteKit CMS to support client-specific functionality and integrations.

    • Provided network and systems administration to ensure platform reliability and security.

Projects Experience

Projects Experience

  • #WhatWeValue Campaign Infrastructure for Deutsche Telekom

    Apr, 2022 - Jun, 20223 months

    Provided infrastructure engineering and DevOps support for Deutsche Telekom's #WhatWeValue campaign, delivering secure, scalable infrastructure and deployment pipelines on Deutsche Telekom Cloud (Azure-based) to operate a managed Kubernetes application.

    • Designed and provisioned development, testing, and production environments on Deutsche Telekom Cloud (Azure-based) to support the high-visibility #WhatWeValue campaign.

    • Implemented secure deployment of the application in a managed Kubernetes cluster, including configuring nginx-ingress-controller and PKI validation for TLS/SSL certificates.

    • Developed CI/CD pipelines in Azure DevOps to automate build, test, and publish processes, ensuring streamlined and reliable deployment workflows.

    • Integrated security best practices throughout the infrastructure setup and deployment process, aligning with enterprise security compliance requirements.

    • Collaborated closely with project stakeholders to deliver infrastructure ready for production within tight campaign timelines.

  • Filmido.com

    May, 2021 - Present

    An online platform connecting clients with top-tier wedding photographers and videographers at affordable prices.

    • Designed and led the end-to-end architecture for a scalable, containerized microservices platform deployed on Scaleway cloud.

    • Implemented Infrastructure as Code (IaC) using Terraform, Ansible, and Packer to automate environment provisioning across development, staging, and production.

    • Built a CI/CD pipeline in CircleCI automating build, linting, testing, security scanning (Snyk), containerization, and deployment, reducing manual deployment effort by 80%.

    • Configured Traefik as a reverse proxy and load balancer with automatic SSL certificate management via ACME DNS challenge using Cloudflare.

    • Integrated Sentry to automate application monitoring and error reporting, enabling faster identification and resolution of production issues.

Skills

Skills

  • Cloud

    AWS

    Azure

    Google Cloud

    OpenStack

    VMware Private Cloud

  • Programming Languages

    Bash

    Python

    Java

    Go

    Node.js

    PHP

    Perl

    C#

    JavaScript

  • Messaging & Event Streaming

    Kafka

    Webhooks

  • Containers & Orchestration

    Docker

    Kubernetes

    OpenShift

    Helm

    Istio Service Mesh

    ArgoCD

    Argo Workflows

    Red Hat Advanced Cluster Management

  • Monitoring & Security

    Prometheus

    Grafana

    ELK Stack

    SonarQube

    Ansible Vault

    Nagios

    PKI Validation

    Splunk

  • IaC & Automation

    Terraform

    Ansible

    Ansible Automation Platform (AAP)

    Packer

    Vagrant

  • CI/CD Tools

    Jenkins

    GitLab CI

    Bamboo

    GitHub Actions

    CircleCI

    Azure DevOps

  • Database

    MySQL

    PostgreSQL

    MSSQL

    Redis

    MongoDB

  • Repositories & Package Managers

    Git

    Nexus

    JFrog Artifactory

  • Collaboration & Project Management

    Jira

    Confluence

    Slack

    Trello

    Agile methodologies

  • Soft Skills

    Communication

    Client Engagement

    Agile & Remote Collaboration

    Mentorship

    Team Leadership

    Problem Solving

    Requirements Analysis

    Strategic Thinking

    Adaptability

    Continuous Learning

Education

Education

  • , Software Engineering, Faculty of Computer and Information Science

    Oct, 1994 - Jul, 1999

  • , High school diploma, Gimnazija Murska Sobota

    Sep, 1990 - Jun, 1994

Certificates

Certificates

Awards

Awards

  • Top 4–10 Finalist, Izzivamo Ideje Competition , Si.mobil

    Awarded on: Sep 01, 2010

    Recognized as a top 4–10 finalist in the national innovation competition 'Izzivamo Ideje' organized by Si.mobil, for developing the Android application 'KjeSeRoka,' designed to connect users with live music events.

Volunteer Work

Volunteer Work

  • Developer / Administrator / Editor, RockOnNet

    Jan, 2001 - Jan, 2016

    Founded and led RockOnNet, an online music magazine that became a hub for emerging photographers and writers to share music reviews and commentary. Managed full-stack development, site administration, and editorial operations for over a decade. Migrated the platform from a custom CMS to WordPress to improve content management and scalability. Developed a REST API to integrate content with the Android app 'KjeSeRoka,' which ranked 4th–10th in the Si.mobil Izzivamo ideje competition. Although the site is no longer active, archived content is preserved via the Wayback Machine.

    • Developed and maintained a custom CMS using PHP, JavaScript, and MySQL to manage articles, media, and user contributions.

    • Successfully migrated the platform from a custom-built CMS to WordPress, enhancing usability, content workflows, and scalability.

    • Created a REST API to feed real-time content to the Android app 'KjeSeRoka,' contributing to the app's recognition as a top 4–10 finalist in the Si.mobil Izzivamo ideje competition.

    • Administered Linux-based web servers (Apache), ensuring uptime, security, and performance optimization.

    • Oversaw editorial processes, coordinating a volunteer team of writers and photographers to publish regular music-related content.

    • Built and nurtured an online community platform for music enthusiasts, fostering user engagement and content sharing.

    • Managed website redesigns and platform upgrades to enhance user experience and content accessibility.

Interests

Interests

  • Reading

    Epic FantasyScience FictionFantasy
  • Photography

    AnalogConcertBlack & White
  • Cooking | Baking

    HomemadeMade With LoveSourdough