Link: [1]canonical [2]~nick.groenen * [3]Home * [4]Search * [5]Articles * [6]Now *  * More *  * [7]About me * [8]My Resume * [9]My personal manual * [10]Contact information * [11]LinkedIn profile * [12]GitHub profile * [13]Terms & Conditions * [14]Home * [15]Search * [16]Articles * [17]Now * [18]About me * [19]My Resume * [20]My personal manual * [21]Contact information * [22]LinkedIn profile * [23]GitHub profile * [24]Terms & Conditions NICK GROENEN -------------------------------------------------------------------------- E-Mail: [25]nick@groenen.me Website: [26]https://nick.groenen.me/ LinkedIn: [27]https://www.linkedin.com/in/nickgroenen/ GitHub: [28]https://github.com/zoni/ -------------------------------------------------------------------------- Hello! 👋 I’m Nick Groenen. My professional career covers over 10 years of experience in infrastructure and IT operations, currently as Site Reliability Engineering team lead at [29]Castor. I have managed various teams across multiple companies, with my sweet spot appearing to be the growing of small- to medium-sized teams responsible for managing software infrastructure, especially in regulated and safety-critical environments. Check out my [30]Personal Manual if you wish to learn more about my personality style and ways of working. Key qualifications * Leadership experience with small- to medium-sized teams in both IC and manager roles, as well as in positions reporting directly to executive management (as CISO). * DevOps/infrastructure background with a strong focus on software engineering best-practices. I’m experienced with multiple programming languages, including [31]Python, [32]Go, [33]Elixir and [34]Rust (as well as shell scripts, like bash). * I have designed (and participated in) various on-call rotations ^[35]1 and facilitated many [36]Post-incident reviews. * Strong writing skills, including in user-facing (technical) documentation, internal project documentation, decision records and project proposals. * Experience in regulated industry (healthcare) and familiarity with privacy and security certifications/standards. Work experience Engineering Team Lead - Platform [37]Castor. April 2021 - Present. Amsterdam, Netherlands When I joined Castor in early 2019, I was hired as their first dedicated DevOps/SRE person. I’ve grown this to a team of 5 engineers, discovered I am good at engineering management but don’t actually enjoy people management all that much, and am now refocusing on being an Individual Contributor (IC) and Tech Lead again. Notable projects and accomplishments here include: * Designed and built database migration tooling which integrates with Castor’s business logic, allowing for the migration of medical studies between different MySQL database clusters in a (near-)automated fashion. This was used in a cloud migration of about 45.000 studies across two providers, and has unlocked the capability to redistribute databases for optimal resource utilization within clusters. ^[38]2 * Adopted [39]Earthly for the building/packaging of all of our custom Ubuntu software packages, providing a simple and repeatable build process that anyone can use with minimal fuss. * Fostered a team culture with a high degree of [40]Psychological safety, placing a strong emphasis on transparency and quality documentation, a reduction of [41]Toil through automation, and continuous learning through practices such as pre-mortems, [42]After Action Reviews and [43]Post-incident reviews. * Set the roadmap for Castor’s infrastructure, balancing competing priorities like investments in new technologies, compliance improvements, process optimization, paying back technical debt, etc. * Supported a company-wide migration to Azure AD for enterprise SSO, working closely with the office IT department to integrate all services and onboard all users. Chief Information Security Officer [44]Castor. October 2019 - August 2021. Amsterdam, Netherlands I joined Castor primarily as an SRE, but also acted as the CISO until we had grown large enough to hire somebody for this position full-time. ^[45]3 Notable projects and accomplishments in this role include: * Helped scale security and compliance processes while growing from about 40 to 100 employees across offices in the EU and US. * Played a key role in leading Castor through a recertification audit of [46]ISO 9001, [47]ISO 27001 and [48]NEN 7510. * Implemented a Single Sign-On solution for internal services together with the IT department to reduce account management burdens and more easily meet compliance requirements. * Implemented endpoint security monitoring together with the IT department to improve adherence to security policies, while remaining conscious and respectful of employees’ privacy. * Facilitated response to security incidents, including investigation, remediation and communications (internal and external). * Ensured Castor would meet the security requirements of major clients, including the World Health Organization (WHO) to [49]support their SOLIDARITY trial on COVID-19 treatments. Site Reliability Engineer [50]Castor. February 2019 - March 2021. Amsterdam, Netherlands I joined Castor as the first and sole SRE and helped shape their infrastructure/platform roadmap throughout their [51]Series A investment. Notable projects and accomplishments during this period include: * Led the transition from doing ops management by hand to using Infrastructure as Code principles with [52]Ansible and [53]Terraform. * Helped shape strategic efforts to migrate away from local managed hosting providers, standardizing on Microsoft [54]Azure’s cloud services. ^[55]4 * Launched a dedicated server offering (“Castor Private Cloud”) on Azure. * Designed and built automation to perform a cross-region migration/split of Castor’s entire user database with minimal downtime and strong operational guarantees to avoid manual error. * Opened up [56]a new EDC region in Australia (also on Azure). * Played a key role in leading Castor through a recertification audit of [57]ISO 9001, [58]ISO 27001 and [59]NEN 7510. Developer & security officer [60]StartMail. February 2017 – January 2019. The Hague, Netherlands I was one of the senior developers at StartMail, a privacy-focused email service. During my two years there my team worked on rebuilding all of StartMail’s core infrastructure, including a tricky customer migration which was completed without incident. After completion of the project I continued to work on further infrastructure improvements and assisted in the rewrite of their frontend webmail application from an 90’s-style PHP webapp (helloooo SquirrelMail!) to modern javascript with a [61]Python backend. In addition to my role as developer I also served as StartMail’s security officer, responsible for implementing security policies and having knowledge of fun acronyms such as ISO/IEC 27001, HIPAA and GDPR. Further past * DevOps engineer - [62]Byte. November 2014 – January 2017. Amsterdam, Netherlands * Developer - [63]TravelBird. August 2013 – November 2014. Amsterdam, Netherlands * Web developer - [64]a&m impact internetdiensten. October 2011 - July 2013. Doetinchem, Netherlands * System administrator/Application developer intern - [65]National Center for Supercomputing Applications. July 2009 - August 2009. Urbana-Champaign, Illinois Area, USA Extracurricular Bedrijfshulpverlener (emergency response officer) [66]Castor. May 2019 - Present. Amsterdam, Netherlands The Dutch Working Conditions Act states companies need to ensure [67]adequate emergency response measures, known as bedrijfshulpverlening. In most companies this translates to having one or more employees trained as emergency response officers. For Castor, I operate as the head of our emergency response organisation. Rode Kruis Evenementenhulpverlener & Noodhulp teamlid [68]Red Cross Haarlemmermeer. August 2019 - Present. Hoofddorp, Netherlands As a volunteer for the Dutch Red Cross, I help provide first aid at various small- and large scale events throughout the Netherlands. I’m also a member of the [69]Noodhulp Team for the [70]district Kennemerland, providing support to professional emergency services during mass-casualty incidents. Certifications Certified Incident Responder PagerDuty University, Certificate number [71]z2po3xomjd33 Level 1 Certificate in English (ESOL) University of Cambridge, License 0012247650 European First Aid Certificate (EFAC) Red Cross certificate number nrks10028399-71892. Beheerder brandmeld- en ontruimingsalarminstallatie NIBHV, Candidate number 890127050 Professionalism and ethics I believe too little attention is currently given to ethics in the field of IT and related industry so I’d like to explicitly call out that I hold myself to both the [72]ACM Code of Ethics and Professional Conduct as well as the [73]IEEE Code of Ethics. For more information, see [74]my core values. See also The latest version of this document is available on-line in a variety of formats: * HTML: [75]https://nick.groenen.me/resume.html * PDF: [76]https://nick.groenen.me/resume.pdf * Text: [77]https://nick.groenen.me/resume.txt --------------------------------------------------------------------------  1. You might find my [78]Research into the effects of on-call work here interesting. [79]↩︎  2. The project to build this tooling and to perform the actual migration took about 12 to 18 months in its entirety. There are a lot of interesting technical details here, including answers to questions like “Why not just use typical database replication and tools like innobackupex for this?” and I’m currently working on writing a long-form article about my experiences and the lessons learned in this endeavor. [80]↩︎  3. I’ve written more about this on my blog in “[81]Stepping down as CISO”. [82]↩︎  4. Azure would not have been my first pick on a purely technical level, but within the medical sector Castor operates in there were other, non-technical concerns that made it a better pick than AWS or GCP. [83]↩︎ REFERENCES Visible links 1. https://nick.groenen.me/resume/ 2. https://nick.groenen.me/ 3. https://nick.groenen.me/ 4. https://nick.groenen.me/search 5. https://nick.groenen.me/posts 6. https://nick.groenen.me/now 7. https://nick.groenen.me/about 8. https://nick.groenen.me/resume 9. https://nick.groenen.me/personal-manual 10. https://nick.groenen.me/contact 11. https://www.linkedin.com/in/nickgroenen/ 12. https://github.com/zoni 13. https://nick.groenen.me/terms 14. https://nick.groenen.me/ 15. https://nick.groenen.me/search 16. https://nick.groenen.me/posts 17. https://nick.groenen.me/now 18. https://nick.groenen.me/about 19. https://nick.groenen.me/resume 20. https://nick.groenen.me/personal-manual 21. https://nick.groenen.me/contact 22. https://www.linkedin.com/in/nickgroenen/ 23. https://github.com/zoni 24. https://nick.groenen.me/terms 25. mailto:nick@groenen.me 26. https://nick.groenen.me/ 27. https://www.linkedin.com/in/nickgroenen/ 28. https://github.com/zoni/ 29. https://nick.groenen.me/notes/castor-overview/ 30. https://nick.groenen.me/personal-manual/ 31. https://nick.groenen.me/notes/python-programming-language/ 32. https://nick.groenen.me/notes/go-programming-language/ 33. https://nick.groenen.me/notes/elixir-programming-language/ 34. https://nick.groenen.me/notes/rust-programming-language/ 35. https://nick.groenen.me/resume/#fn:1 36. https://nick.groenen.me/notes/post-incident-reviews/ 37. https://nick.groenen.me/notes/castor-overview/ 38. https://nick.groenen.me/resume/#fn:2 39. https://nick.groenen.me/notes/earthly/ 40. https://nick.groenen.me/notes/psychological-safety/ 41. https://nick.groenen.me/notes/toil/ 42. https://nick.groenen.me/notes/after-action-review/ 43. https://nick.groenen.me/notes/post-incident-reviews/ 44. https://nick.groenen.me/notes/castor-overview/ 45. https://nick.groenen.me/resume/#fn:3 46. https://www.iso.org/iso-9001-quality-management.html 47. https://www.iso.org/isoiec-27001-information-security.html 48. https://www.nen.nl/en/nen-7510-1-2017-a1-2020-nl-267179 49. https://www.castoredc.com/success-stories/castor-powers-who-solidarity-trial/ 50. https://nick.groenen.me/notes/castor-overview/ 51. https://www.castoredc.com/press/castor-raises-12m-series-a/ 52. https://www.ansible.com/ 53. https://www.terraform.io/ 54. https://azure.microsoft.com/en-us/ 55. https://nick.groenen.me/resume/#fn:4 56. https://www.castoredc.com/blog/new-server-in-australia/ 57. https://www.iso.org/iso-9001-quality-management.html 58. https://www.iso.org/isoiec-27001-information-security.html 59. https://www.nen.nl/en/nen-7510-1-2017-a1-2020-nl-267179 60. https://www.startmail.com/ 61. https://nick.groenen.me/notes/python-programming-language/ 62. https://www.byte.nl/ 63. https://travelbird.com/ 64. https://www.am-impact.nl/ 65. http://www.ncsa.illinois.edu/ 66. https://nick.groenen.me/notes/castor-overview/ 67. https://business.gov.nl/regulation/company-emergency-response-team-bhv/ 68. https://www.rodekruis.nl/haarlemmermeer/ 69. https://nick.groenen.me/notes/rode-kruis-noodhulp-teams/ 70. https://nick.groenen.me/notes/red-cross-districts/ 71. https://verify.skilljar.com/c/z2po3xomjd33 72. https://ethics.acm.org/ 73. https://www.ieee.org/about/corporate/governance/p7-8.html 74. https://nick.groenen.me/notes/my-core-values/ 75. https://nick.groenen.me/resume.html 76. https://nick.groenen.me/resume.pdf 77. https://nick.groenen.me/resume.txt 78. https://nick.groenen.me/notes/research-into-the-effects-of-on-call-work/ 79. https://nick.groenen.me/resume/#fnref:1 80. https://nick.groenen.me/resume/#fnref:2 81. https://nick.groenen.me/posts/stepping-down-as-castors-ciso/ 82. https://nick.groenen.me/resume/#fnref:3 83. https://nick.groenen.me/resume/#fnref:4