Comment by sdsd
5 hours ago
Location: Austin, TX
Remote: Yes
Willing to Relocate: No
Technologies & Tools: Linux, Docker, Salt, pyinfra, Python, Bash, Elasticsearch, Kibana, Logstash, Elastic Fleet/Agent, Suricata, Zeek, Security Onion, SoftEther VPN, Caddy (L4 SNI routing), Hyper-V, network security monitoring, detection engineering, incident response, and LLM/agent tooling for operations automation.Looking For: Security Infrastructure, DevOps, SRE, or Detection Engineering roles. Comfortable owning the entire stack — from wire-level packet capture to the Elasticsearch cluster consuming it. Summary: I build and operate distributed security monitoring infrastructure at scale. I currently manage a fleet of 60+ independent Security Onion deployments (per-client managers + on-site heavy nodes behind VPN), each running the full Elastic Stack, Suricata, Zeek, and full packet capture. I own the environment end-to-end: Salt/pyinfra configuration management, deployment orchestration, Docker container lifecycle, Elasticsearch tuning (heap/OOM), Fleet enrollment, VPN/SNI routing, and solving the reboot-recovery and configuration drift challenges inherent in large distributed fleets. Most of my work focuses on converting painful one-off incidents into permanent automated fixes so they never recur. I also heavily leverage LLM and agent tooling (custom Claude Code harnesses, MCP servers, and codebase-aware automation) to streamline fleet-wide operations and diagnostics. If you're building security monitoring, detection engineering, or infrastructure automation capabilities and need someone who has debugged complex issues at 2am across dozens of live nodes, I’d love to talk. Résumé/CV: available on request Email: dan.j.bednarski at gmail dot com
I really, really love infra and the zanier and more recalcitrant the infra problem, the more exciting I find it
No comments yet
Contribute on Hacker News ↗