George-Dan Serbanescu

Administer Linux-based application platforms in ING’s private cloud, with operational ownership for environments running on RHEL 8/9, Apache Tomcat, JBoss, WebLogic, Oracle DBaaS and S3-compatible storage.

• Administer and maintain Linux-based application environments, including platform configuration, patching, upgrades, security controls, technical documentation and lifecycle activities.

• Manage application availability and operational readiness through Backup & Restore, Disaster Recovery, vulnerability management and compensating security controls.

• Coordinate technical changes, incident resolution and platform improvements with development, infrastructure, network, security and vendor teams.

• Implement and maintain infrastructure- and application-level configurations required for secure and reliable private-cloud operations.

━━━━━━━━━━━━ KEY PROJECTS ━━━━━━━━━━━━

OpenShift Application Implementation

• Create OpenShift namespaces and define resource requirements for application workloads.

• Build and maintain Docker container images and CI/CD pipelines for deployments, routes, ConfigMaps, HPA resources and OpenShift configuration.

• Implement integrations with Kafka and Elasticsearch, including application configuration, connectivity and deployment requirements.

• Implement monitoring and observability using Prometheus and Grafana.

• Integrate code-scanning tools into deployment pipelines to strengthen security controls.

• Analyse business requirements and translate them into technical implementation and deployment solutions.

• Produce technical and operational documentation and implement an automated certificate-generation solution.

Core Areas: Linux Administration • RHEL 8/9 • Tomcat • JBoss • WebLogic • OpenShift • Kubernetes • Docker • Kafka • Elasticsearch • Oracle DBaaS • S3 Storage • Private Cloud • CI/CD • Prometheus • Grafana • Security Controls • Backup & Restore • Disaster Recovery

Administered Windows platforms (IIS, SQL Server Always On, SSRS, Citrix and NGINX), owning infrastructure, security, resilience and delivery.

• Administered internal and vendor environments, including patching, upgrades, security controls, documentation and lifecycle activities.

• Managed availability through annual Backup & Restore and quarterly Disaster Recovery exercises; maintained procedures and follow-up actions.

• Assessed vulnerabilities, applied compensating controls and supported penetration testing, including Burp Suite web assessments.

• Acted as Scrum Master, facilitating delivery ceremonies and coordinating team priorities.

• Migrated an application from Windows Server 2012 to 2019, including infrastructure provisioning, network rules and cutover.

• Delivered cluster-level network segmentation by documenting application flows, defining firewall rules and testing connectivity.

━━━━━━━━━━━━ KEY PROJECTS ━━━━━━━━━━━━

PRIVATE CLOUD MIGRATION — 3 APPLICATIONS

• Defined HLD/LLD with Architecture and coordinated stakeholders across test, acceptance and production.

• Provisioned networks, servers and firewall rules; prepared compatible infrastructure, installed applications, migrated databases and integrated dependent systems.

• Implemented infrastructure and application security controls, certificates, encryption, Backup/Restore and DR processes; deployed Prometheus and Grafana monitoring.

• Produced technical documentation for DORA, SDT, AOS-G and internal controls.

AZURE CI/CD DEPLOYMENT AUTOMATION

• Automated deployments for two migrated applications through Azure CI/CD pipelines, excluding infrastructure provisioning.

Core Areas: Windows Server • IIS • SQL Server Always On • SSRS • Citrix • NGINX • Private Cloud • Firewall • Backup & Restore • DR • Prometheus • Grafana • Vulnerability Management • Burp Suite • Scrum Master • Azure CI/CD

DevOps Engineer II | ING Bank

Provided L2 technical and operational support for business applications hosted on Windows, Microsoft SQL Server and SharePoint, collaborating with internal development teams, external vendors and 1st/3rd line support to maintain application availability and resolve incidents.

• Investigated and debugged incidents, defects and application issues; coordinated resolution with development teams and vendors.

• Managed internal incidents, service requests and change-related activities through ServiceNow; tracked vendor defects and fixes through Jira.

• Provided technical support to 1st line teams and users, including SharePoint-based applications.

• Developed T-SQL queries, stored procedures, SQL Agent jobs, scripts and reports to automate recurring activities.

• Supported project delivery with technical analysis, testing, documentation and production-readiness activities.

━━━━━━━━━━━━ KEY PROJECTS ━━━━━━━━━━━━

INTEGRATION OF TWO SYSTEMS SUPPORTING THE SAME BUSINESS PURPOSE

• Implemented server-level firewall rules and prepared network-rule templates for Network teams.

• Built SQL stored procedures, functions, tables, views and SQL Agent jobs for internal systems.

• Enabled data exchange between two applications through APIs and files; defined XML parsing and file structures.

• Translated business requirements into database procedures and file-transfer processes; tested technical workflows and logic.

• Created CMD and PowerShell scripts and implemented encryption for files in transit using cryptographic keys.

Core Areas: Application Support • Windows Server • Microsoft SQL Server • SharePoint • ServiceNow • Jira • T-SQL • API Integration • XML • PowerShell • CMD • Firewall Rules • File Encryption • Testing • Automation

Worked in a highly regulated banking environment, following ING internal security standards and ISO/IEC 27001-aligned controls.

• Monitored and investigated security events across critical systems and networks, identifying suspicious or malicious activity and escalating incidents through defined response paths.

• Analysed alerts from firewalls, IDS/IPS, endpoint protection, antivirus and DLP controls; documented findings, assessed severity and supported incident investigations.

• Performed vulnerability analysis and supported remediation follow-up with infrastructure, application and network teams.

• Created and maintained Security Event Monitoring documentation, including use cases, monitoring scenarios, event sources, correlation rules, alert criteria, escalation paths and investigation procedures.

• Translated business and risk requirements into actionable monitoring controls and helped teams standardise monitoring, alert handling and asset-onboarding processes.

• Coordinated onboarding of assets into monitoring and supported annual reviews of high- and critical-risk assets.

• Performed IAM analysis and documentation for Personal Accounts (PA) and Non-Personal Accounts (NPA), including access governance and risk reviews.

• Reviewed application architectures, network designs and proposed changes from a security perspective; participated in CAB assessments.

• Supported forensic evidence collection and analysis when required.

Core Areas: Security Monitoring • Incident Triage & Escalation • SIEM / Alert Correlation • Vulnerability Analysis • IAM • DLP • Security Architecture Reviews • Network Security • CAB • ISO/IEC 27001-Aligned Controls

• Managed the registration, tracking and reconciliation of produced and dispatched cards.

Maintained operational documentation and prepared reports related to card production and delivery activities.

Facilitated card-production and administrative operations within controlled banking environment to ensure compliance and security.

• Produced physical PIN mailers for bank cards using specialised printing equipment.

• Followed defined security, handling and traceability procedures for card-related materials.

Core Areas: Card Operations • Secure Printing • Inventory Management • Dispatch Tracking • Operational Documentation • Reporting • Process Compliance