Open to opportunities πŸ“ Valencia, Spain

Rafael
Madolell

DevOps & Cloud Engineer

I build the systems that keep critical things running β€” from multi-cloud architectures to hardened, air-gapped environments where security is non-negotiable.

Get in touch Download CV

Press ~ anytime

AWS GCP Kubernetes Terraform Ansible Docker WireGuard Talos Linux
bash β€” rafa@cloud:~

rafa@cloud:~$ status --live

name "Rafael Madolell" role "DevOps & Cloud Eng." company S2 Grupo [cybersec] status ● AVAILABLE uptime calculating... certs AWS CCP Β· Pentesting stack K8s Β· Terraform Β· AWS client Cartier Β· Centex Β· CCC location Valencia πŸ‡ͺπŸ‡Έ

rafa@cloud:~$ β–ˆ

scroll
0+ yrs
Production experience
0%
Incidents reduced
0h/w
Saved via automation
0%
Better threat detection
0 sev0
Incidents in production

01. about

The engineer who takes full ownership

I'm a DevOps & Cloud Engineer with 4+ years designing, deploying, and owning infrastructure at scale. My work spans the full lifecycle: cloud provisioning with Terraform & Ansible, container orchestration on Kubernetes (including Talos Linux clusters), end-to-end CI/CD pipelines, and production observability stacks.

Currently at S2 Grupo β€” Europe's leading cybersecurity company β€” building hardened, air-gapped infrastructure for critical products in environments where security is not a feature, it's the baseline. Before that, 3.5 years at Blue Trail Software engineering cloud solutions for clients including Cartier, Centex, and CCC.

Beyond the job, I build in public: I run @devopsession, publish educational content on automation, and maintain open-source tools used in production environments. I believe the best engineers are also teachers.

πŸ“‹

For recruiters

4+ years of verifiable production experience at recognized companies. AWS Certified. Clear, linear growth from junior infrastructure to senior DevOps. Available now.

πŸ› οΈ

For engineers

Real-world Kubernetes on Talos Linux with MetalLB + Longhorn + Tailscale. Air-gapped vSphere deployments. WireGuard VPN at scale. Burp Suite, DevSecOps, penetration testing. See my GitHub β†’

πŸš€

For leaders

I reduced incidents by 30%, saved 20h/week through automation, and built real-time dashboards that cut downtime by 25%. I don't just run infra β€” I own outcomes. Worked with Cartier. Open to what's next.

02. experience

Where I've built things

S2

DevOps & AI Engineer

S2 Grupo β€” Europe's #1 cybersecurity company

Sep 2025 β€” Present Current

S2 Grupo operates in 35+ countries with 700+ experts. Technology trusted by IBEX-35 corporations, government ministries, and the CCN-CERT. The environments are hardened, air-gapped, and bastionized β€” cloud is the exception, not the rule.

  • Infrastructure provisioning on VMware vSphere with Terraform & Ansible targeting strict security baselines in air-gapped environments.
  • Kubernetes as primary deployment platform with Helm Charts β€” HA, policy compliance, custom Docker images aligned with security standards.
  • Full observability stack: Grafana + Prometheus + Alertmanager + Loki/Promtail.
  • Reverse proxy & API Gateway routing with Traefik & Nginx.
  • CI/CD with Jenkins & GitLab CI/CD. Participated in AI automation initiatives.
vSphereTerraformAnsible KubernetesHelmJenkins GrafanaPrometheusTraefikNginx
BTS

DevOps Engineer

Blue Trail Software β€” IT Services & Cloud Consulting

Feb 2022 β€” Sep 2025 3y 7m

Multi-client DevOps role. Designed and maintained cloud infrastructure across AWS and GCP for clients in retail, finance, and luxury goods.

GCP Β· Elastic Β· Ansible Β· WireGuard
  • Migrated Elastic/Kibana to GCP with SSL & DNS management.
  • Deployed Ansible playbooks; WireGuard VPN on each node.
  • Custom Linux distro for automated ALG deployment + CI/CD pipelines.
AWS Β· Terraform Β· GitHub Actions
  • Full AWS deployment (EC2, RDS, S3, R53) across Test/Staging/Prod.
  • Backup, Restore & Disaster Recovery plans in Terraform.
  • Security-hardened deployments via GitHub Actions CI/CD.
AWS Β· CloudFormation Β· GitHub Actions
  • Full AWS stack (EC2, S3, RDS, Lambda, ECS, CloudFront).
  • CloudFormation DR; multi-job CI/CD (builds, backports, lambdas).
  • Database migrations + Datadog & Err0 metrics integration.
AWS Β· Autoscaling Β· Nagios
  • EC2 Autoscaling Groups, Load Balancers, SSL, CloudWatch.
  • AMI management, Mongo Atlas, KMS, Nagios + UptimeRobot.
  • Multi-env migration (Prod, Pre-Prod, QA) with Docker & MongoDB.
AWSGCPTerraform CloudFormationKubernetesDocker ElasticWireGuardAnsible GitHub ActionsGitLab CI/CD

03. skills

The full tech stack

Not just a list of logos β€” tools I've used in production, under pressure, at scale.

☁️ Cloud & Infrastructure

AWS (EC2Β·RDSΒ·S3Β·R53Β·LambdaΒ·ECS)
Terraform
Ansible
GCP
VMware vSphere

🐳 Containers & Orchestration

Docker / Docker Compose
Kubernetes (k8s Β· k3s Β· Talos)
Helm Charts
MetalLB Β· Longhorn Β· Traefik

βš™οΈ CI/CD & Automation

GitLab CI/CD
GitHub Actions
Jenkins
n8n Β· Bash Scripting

πŸ“Š Observability

GrafanaPrometheus AlertmanagerLoki / Promtail Elastic / KibanaDatadog NagiosUptimeRobot

πŸ” Security & Networking

WireGuard VPNDevSecOps Nginx / TraefikAPI Gateway TailscaleCloudflare Tunnels PentestingBurp Suite SSL / TLSFirewall hardening

πŸ€– AI & Emerging Tech

n8n AutomationOllama (local LLMs) RAG pipelinesPrompt Engineering AI chatbot PoCsLLM infrastructure

04. projects

Built in production

Open-source tools and infrastructure I've built and maintain.

⎈
GitHub

n8n on Kubernetes

Production-ready n8n stack for Kubernetes with autoscaling queue architecture. Main + worker separation, Redis, PostgreSQL, HPA (3–10 worker replicas), Cloudflare Tunnels for external access.

KubernetesHelm PostgreSQLRedis HPACloudflare
⭐ 1 🍴 1 Production-tested
πŸ’Ύ
GitHub

DB Backup Operator

REST API for automated database backups. Supports PostgreSQL & MongoDB with cron scheduling, gzip compression, MD5 verification, S3-compatible storage, and native Prometheus metrics.

PythonDocker PostgreSQLMongoDB S3Prometheus
REST API Β· Cron scheduling Β· Retention policies
πŸ–₯️
GitHub

Talos Linux K8s Scripts

Automation scripts for deploying Kubernetes clusters on Talos Linux. Integrates Longhorn (distributed storage), MetalLB (bare-metal LB), Traefik (ingress), and Tailscale VPN with HA virtual IP.

Talos LinuxKubernetes LonghornMetalLB TailscaleBash
HA cluster Β· VIP Β· Bare-metal networking
πŸ€–
GitHub

automation.boy

Curated collection of n8n workflows with Spanish-language guides. Built for engineers who want to automate without the complexity. Tools + tutorials + ready-to-use workflows β€” MIT licensed.

n8nAutomation Open SourceEducation
⭐ 2 MIT · Community-focused
See all projects on GitHub

05. beyond the code

I build in public

The best engineers share what they know. Here's how I give back to the community.

πŸ“Ί

@devopsession

DevOps content brand. Publishing tutorials, infrastructure tips, and automation workflows for the Spanish-speaking tech community.

Instagram β†’
πŸŽ“

mentoria.madolell.com

Educational platform for DevOps learners. Practical guides on automation, Kubernetes, and cloud infrastructure β€” focused on real-world skills.

Platform β†’
✍️

LinkedIn Thought Leadership

Active publisher on Kubernetes architecture, AI agent security, DevSecOps, and SaaS infrastructure patterns. 340+ professional connections.

LinkedIn β†’
πŸ”¬

AI Experimentation

Actively running local LLMs with Ollama, building RAG pipelines, and exploring AI automation with n8n. Published Ollama-Public-Pulse β€” an open resource for LLM experimentation.

GitHub β†’

06. certifications

AWS

Certified Cloud Practitioner

Amazon Web Services

AWS

DevOps Navigate β€” Technical

Amazon Web Services

AWS

Foundations of Prompt Engineering

Amazon Web Services

SEC

Web Security & Penetration Testing

Bug Bounty / Security Research

SEC

Corporate Hacking

Cybersecurity Training

07. contact

Let's build something worth running

Open to senior DevOps, Platform Engineering, or Cloud Architecture roles. Especially interested in teams working on security-critical, large-scale, or AI-adjacent infrastructure challenges.

Or just say hi β€” I always reply.

rmadolell@gmail.com β†’ linkedin.com/in/rafael-madolell β†’ github.com/insanerask77 β†’ Download CV (PDF)