Alexander Klein

Google Cloud Engineer/Architect

Alexander Klein
Eltmann, Germany

Experience

Apr 2024 - Sep 2025
1 year 6 months

GCP DevSecOps Engineer

Leading global luxury goods company

  • Extended a global large-scale project to improve the multi-tenant GCP data platform using FAST framework concepts, leveraging Terraform, Terraform Enterprise, and GitLab.
  • Collaborated closely with security and governance teams to architect and implement secure and compliant GCP environments, focusing on VPC Service Controls, KMS, organizational structure, and guardrails to support the isolation of corporate entities.
  • Enhanced the security posture of the enterprise GCP platform by implementing robust security measures, including GCP organization policies, deny policies, and VPC Service Controls to safeguard against potential exfiltration risks.
  • Implemented controls based on CSA Cloud Controls Matrix (CCM v4) to secure the GCP cloud environment.
  • Automated key components of the GitLab CI/CD pipeline by integrating OpenID Connect (OIDC) for workload identity federation, necessary for a large migration from GitHub.
  • Implemented a YAML-based project factory to facilitate easy, secure, and governed provisioning of tenant projects, increasing speed, scalability, and usability while minimizing operational burden.
  • Developed a dynamic approach for policy attachment to tenants using a YAML-based custom IAM template approach.
  • Evaluated and implemented Google PAM (Privileged Access Manager) in a proof of concept for organization-wide just-in-time access.
  • Set up CyberArk SCA and CEM tooling to ensure secure cloud access and provide visibility into the cloud environment.
  • Handled GCP incidents, ensuring prompt resolution and operational stability.
  • Authored and maintained extensive documentation within an Agile environment, utilizing Jira and Confluence for project tracking and knowledge management.
  • Utilized HashiCorp Sentinel as a policy-as-code tool to shift-left cloud security by enforcing policies before infrastructure provisioning.
  • Used Prisma Cloud to continuously monitor and secure GCP resources, ensuring compliance and risk mitigation across the organization.
  • Developed a custom Org Policy Factory to standardize and automate custom governance across projects, ensuring enforcement of non-trivial organizational controls.
  • Architected and built a cloud-agnostic credential lifecycle management platform with Python and GitLab to automate the secure handling of static credentials, improving governance, compliance, and audit readiness.
  • Delivered an executive-level presentation on VPC Service Controls to C-level stakeholders, driving strategic awareness and alignment on cloud security posture.
  • Led resolution of P1 incidents with high production impact, restoring services under critical time constraints.
  • Architected and deployed a central monitoring and alerting solution using Cloud Monitoring and PromQL, providing real-time visibility into system health and proactive incident detection.
  • Designed and developed a Python-based broker for self-service integration with an internal developer platform, streamlining onboarding and reducing manual effort.
  • Implemented a templating approach for VPC Service Controls, enabling repeatable, secure, and consistent deployment patterns across tenants and environments.
Oct 2023 - Present
2 years 4 months

Google Cloud Authorized Trainer

Mid-sized to enterprise companies

  • Delivered official Google trainings on Google Cloud core fundamentals, encompassing key concepts, services, and architecture, tailored for diverse audience profiles from beginners to advanced practitioners.
  • Provided mentorship and guidance to trainees, facilitating a deep understanding of Landing Zones for GCP and AWS, GCP service utilization, and cloud architecture principles.
  • Trained varying delegate groups on security and networking concepts in GCP, leading with fundamentals and narrowing into deep-dives and best practices on GCP Cloud Security, Migration, and Modernization.
  • Conducted assessments and feedback evaluations post-training to measure learning outcomes and continuously improve the training methodology.
  • Trained companies to leverage the impact of Generative AI & Gemini in their business.
  • Provided trainings on application development with LLMs and Generative AI, with Kubernetes, Docker, DevOps, GitOps, LangChain, and VertexAI.
  • Delivered CI/CD pipelines trainings (GitLab CI/CD, GitHub Actions, Azure DevOps) and Git.
Oct 2023 - Apr 2024
7 months

GCP Architect / Engineer

German telco company

  • Led the design, engineering, and implementation of a robust, scalable, and secure Google Cloud Platform landing zone to serve as a production-grade platform for workloads.
  • Collaborated with stakeholders to gather requirements and refine the architectural blueprint, ensuring business continuity.
  • Conducted knowledge-sharing sessions and workshops to train and onboard other team members and end-users.
  • Built a secure, cloud-native, and scalable platform to host a tier 1 business-critical application, ensuring high availability, scalability, cost savings, and automation; used services like Cloud Run, Cloud SQL, Cloud Armor, and Cloud Load Balancing.
  • Evaluated and integrated key GCP services to form a cohesive, secure, high-performance platform that addresses unique customer requirements.
  • Leveraged Terraform to define and manage the entire infrastructure-as-code, ensuring reproducibility, scalability, auditability, and maintainability.
  • Set up and optimized GitLab CI/CD pipelines for seamless integration, deployment, and continuous improvement of the platform.
  • Served as an infrastructure-as-code, automation, and GCP evangelist, facilitating an everything-as-code mindset, codifying infrastructure and policy enforcement.
  • Integrated cloud-native services such as Cloud Run, GKE, and Cloud SQL to modernize and transition business-critical customer applications to the cloud, enhancing scalability and performance.
  • Utilized Open Policy Agent as the policy-as-code tool, ensuring compliance for the GCP infrastructure and adherence to organizational guidelines.
  • Set up essential networking services to achieve hybrid connectivity via GCP HA VPN.
  • Authored extensive platform documentation, providing clear guidelines on architecture, configurations, and best practices.
May 2023 - Sep 2023
5 months

Cloud Architect / DevOps Engineer

German governmental organization

  • Architected and developed an AWS landing zone and corresponding services using Terraform, GitLab CI/CD, Kubernetes, and ArgoCD.
  • Developed sophisticated self-service deployment architectures with AWS Service Catalog, Lambda, EC2, and S3 to ensure quick velocity of developers while maintaining predefined compliance standards.
  • Implemented a hybrid connectivity architecture using Transit Gateway, VPC, and VPN.
  • Automated AWS infrastructure deployments via CI/CD pipelines including networking components for hybrid connectivity.
  • Provided customer advisory on security, reliability, automation, and cost optimization.
  • Set up enterprise-level self-hosted Jira and Confluence using Terraform and AWS.
Jan 2022 - May 2022
5 months

Senior Cloud Consultant

Mid-sized financial services company

  • Designed and implemented DevOps environments, including fully automated multi-regional landing zone deployments, enabling customers to have a self-service workflow for creating new integrated AWS accounts with product baselines.
  • Offered guidance on the cloud journey and the mindset shifts required to adopt cloud solutions and leverage cloud benefits.
  • Managed expectations and aligned with stakeholders on cloud benefits and the cloud adoption process.
  • Developed custom-tailored cloud-native solutions, enabling customers to benefit from cloud scalability, cost efficiency, and event-driven workflows.
  • Automated the provisioning of GitHub Enterprise Server on AWS with Terraform, ensuring high availability and compliance with client requirements.
Oct 2021 - Jan 2022
4 months

Cloud Engineer

Global German pharmaceutical company

  • Designed and implemented enterprise-scale solutions including secure landing zones in AWS, providing a solid foundation for cloud adoption and future migration initiatives.
  • Implemented secure automated workflows to provide AWS-native self-service capability, ensuring governance and compliance.
  • Engineered automated pipelines to deploy cloud infrastructure from scratch with one-click deployment using Terraform and Azure DevOps.
  • Ensured high code quality by integrating automated testing tools such as TFsec, TFlint, and Checkov into the pipeline, reducing misconfigurations.
Jul 2021 - Apr 2022
10 months

Cloud Architect / Engineer

Global chemical and consumer goods company

  • Led end-to-end migration of 70+ customers' on-premises data centers to GCP using Migrate for Compute Engine, Terraform, and Google Workspace.
  • Provided consultancy on cloud security, automation, cloud fit, cloud architecture, and cost optimization.
  • Organized and aligned with stakeholders on migration waves, processes, cutover, and testing.
  • Acted as a technical team lead for a team of SMEs to ensure a growing and blameless team culture.
  • Codified cloud infrastructure with Terraform and implemented a near-automated process for migration handling.
  • Integrated migration planning seamlessly into an existing GCP platform, ensuring migrations succeeded and workloads fit into the holistic platform design.
  • Utilized AppScript, Google Workspace, and Terraform to minimize effort from information gathering to ready-to-use Terraform templates for migration preparation.
Jan 2021 - Sep 2021
9 months

Cloud Engineer

Global IT service provider

  • Extended enterprise applications running on GCP with cloud-native services.
  • Developed event-based cloud architectures with TypeScript, Cloud Functions, Firestore, and App Engine.
  • Led a central knowledge base to enable easy knowledge transfer for GCP, improving time-to-onboard new team members by 400%.
  • Deployed secure cloud environments via Terraform and GitHub Actions to GCP, adhering to CIS security standards.
  • Deployed cloud infrastructure with Terraform via automated deployment pipelines and automatic deployment to Google Play Store.
  • Developed an application to enable easier transcription and analysis of video footage for a German public institution, improving case resolution time.
  • Acted as a pre-sales cloud consultant to support sales in winning major cloud deals.
  • Trained internal staff of 300+ colleagues on Infrastructure-as-Code, Terraform, automated deployments, fundamental cloud concepts, cost optimization, and GCP.
Sep 2017 - Dec 2020
3 years 4 months

Software Developer & Computer Science Apprentice

Global IT service provider

  • Designed and developed an application with Flutter for centralizing customer communication in workshops, increasing customer satisfaction by 27%.
  • Implemented MVP landing zones in GCP with the Cloud Foundations Toolkit by Google.
  • Utilized TypeScript, JavaScript, Python, and frameworks such as Flutter and Angular.
  • Leveraged GCP services such as Cloud Functions, Cloud Storage, and Cloud SQL to build event-driven services.
  • Employed Firebase as a backend-as-a-service for multiple POCs and applications.
  • Deployed GCP infrastructure via Terraform using self-built automatic deployment pipelines with GitHub Actions, GitLab CI/CD, and Cloud Build.

Summary

Cloud Engineer modernizing infrastructure and delivering training on cloud, cloud security, automation and AI.​

Skills

  • Cloud Architecture And Engineering For Gcp And Aws
  • Google Cloud Authorized Trainings
  • Cloud Native Development Gcp
  • Landing Zones For Gcp And Aws
  • Cloud Consulting For Gcp And Aws
  • Cloud Security, Migration And Modernization
  • Terraform, Ansible, Opa, Sentinel
  • Kubernetes, Docker, Devops, Gitops
  • Ci/cd Pipelines (Gitlab Ci/cd, Github Actions, Azure Devops), Git
  • Javascript, Python, Bash, Firebase
  • Google Workspace

Languages

German
Native
English
Advanced
Spanish
Advanced
Russian
Advanced

Education

Siemens Professional Education

Software Technology Consultant · Software Technology Consultant · Paderborn, Germany

ATIW

IT Specialist in Application Development · IT Specialist in Application Development · Paderborn, Germany

Fachhochschule Südwestfalen

B. Sc., Business Computer Science · Business Computer Science · Meschede, Germany

Certifications & licenses

Associate Cloud Engineer

Google Cloud

B2 Business Vantage A

Cloud Practitioner

AWS

Developer - Associate

AWS

Digital Leader

Generative AI Leader

Google Cloud Authorized Trainer

Google Cloud

ITIL Foundation

Professional Cloud Architect

Google Cloud

Professional Cloud Developer

Google Cloud

Professional Cloud Security Engineer

Google Cloud

Professional DevOps Engineer

Google Cloud

SAFe For Architects

Solutions Architect - Associate

AWS

Terraform Associate

HashiCorp

Need a freelancer? Find your match in seconds.
Try FRATCH GPT
More actions

Similar Freelancers

Discover other experts with similar qualifications and experience

Benito Exner
Benito Exner

Cloud DevOps Engineer

View Profile
Lothar Hinsche
Lothar Hinsche

Solution Manager for PoC investigation and replacement and refinement of an existing cloud and IoT power plant control system

View Profile
Shamaila Mahmood
Shamaila Mahmood

Senior Software Architect

View Profile
Thomas Hoefkens
Thomas Hoefkens

Senior MLOps, DevOps Engineer

View Profile
Max Ritter
Max Ritter

Cloud (AWS) | AI | DevOps | Data

View Profile
Tezcan Dilshener
Tezcan Dilshener

Solution Architect / Project Manager

View Profile
Alexey Gravanov
Alexey Gravanov

Cloud Architect & DevOps, Head of Architecture

View Profile
Arne Hendricks
Arne Hendricks

Embedded Fullstack Developer

View Profile
Serge Kalinin
Serge Kalinin

MLOps (machine learning operations)

View Profile
Stanislav Stolberg
Stanislav Stolberg

Interim CTO / IT Consultant (Cloud & App Security · AI & Web3)

View Profile
Patrick Eichler
Patrick Eichler

Kubernetes Expert | Google Cloud Platform Engineer

View Profile
Anton Klonov
Anton Klonov

Head of Technical Overall Integration NSC / Hadoop Cloud Development

View Profile
Bernhard Bowitz
Bernhard Bowitz

Senior Security Architect

View Profile
Martin Gross
Martin Gross

Product Management for Medical Portal

View Profile
Manuel Reinfurt
Manuel Reinfurt

Cloud Architect & Lead Developer

View Profile
Stephan Rudolph
Stephan Rudolph

ICT Architect/Programmer, DevOps, Design, Implementation, Test, Documentation

View Profile
Cesar Schneider
Cesar Schneider

Lead Cloud Engineer

View Profile
Pierre Gronau
Pierre Gronau

Ansible Automation, Windows Third Level Support

View Profile
Marcel Meyer
Marcel Meyer

Cloud-Architect, Senior Solution Architect, Senior Software-Engineer

View Profile
Sebastian Striebig
Sebastian Striebig

Group Product Manager – Digital Platform Discovery

View Profile
Miguel Skirl
Miguel Skirl

Senior System and Cloud Engineer

View Profile
Tomas Stiller
Tomas Stiller

Co-Founder & CTO

View Profile
Ivaylo Sieme
Ivaylo Sieme

Cloud Architect & AI Engineer

View Profile
Kevin Engelhardt
Kevin Engelhardt

CISO as a Service

View Profile
Matthias Kittner
Matthias Kittner

General ERP and AI Consulting

View Profile
Prasad Tilloo
Prasad Tilloo

Solution Architect / Senior Manager – DTC E-Commerce Platform

View Profile
Satya Vulise
Satya Vulise

Lead Developer

View Profile
Mahesh Simha
Mahesh Simha

Azure Solution Architect

View Profile
Jens Rehsack
Jens Rehsack

Technical Product Owner

View Profile
Björn Ohlrich
Björn Ohlrich

IT Freelancer

View Profile