Justin Gorny

Senior Infrastructure Engineer

• Owned the company Kubernetes ecosystem across multiple EKS clusters using Argo CD, Helm, and GitOps workflows for consistent and reproducible deployments.
• Provisioned and managed infrastructure with OpenTofu (Terraform), including reusable modules for AWS, GitHub, and Artifactory access governance.
• Built reusable GitHub Actions and standardized CI/CD patterns for testing, promotion, artifact publishing, and drift detection.
• Maintained 99.5% uptime for customer-facing applications (including the NES Registry) through SLO-driven monitoring and expanded observability with Prometheus, AlertManager, Blackbox Exporter, and Grafana.
• Implemented Kyverno policy-as-code guardrails to reduce misconfiguration risk and strengthen baseline cluster security.
• Improved Kubernetes scheduling efficiency with Karpenter node pools and spot instances across ~35% of workloads.
• Reduced AWS spend by 65% month-over-month on EC2/EKS and drove an 84% year-over-year reduction through rightsizing, spot adoption, savings plans, and RDS/storage optimizations.
• Improved reliability and MTTR by designing multi-region disaster recovery for secrets and RDS backups with infrastructure-as-code.
• Onboarded Terragrunt to enforce DRY IaC patterns and isolate state files, reducing configuration complexity and speeding CI.
• Operationalized OSS Teleport for secure, short-lived, identity-based access to private EKS/RDS resources with centralized RBAC and audit logs.

Lead Cloud Infrastructure Engineer

• Managed 80+ AWS accounts and 25+ projects across technical incubation and lifecycle stages.
• Led a team of 3 cloud engineers designing and deploying cloud solutions to accelerate healthcare IT and AI startups.
• Implemented an organization-wide data perimeter using SCPs, RCPs, VPCE policies, and supporting documentation.
• Architected and deployed a de-identification pipeline on Amazon EMR to support commercialization of payer/provider data (Ahavi™).
• Operationalized AWS SageMaker and MLflow workflows for model development, testing, and lifecycle maintenance.
• Collaborated with customers on solution requirements, feasibility, cost/value analysis, and risk assessment for moderate-to-complex initiatives.
• Oversaw patch scheduling and coordinated directly with customers to plan, communicate, and execute updates.
• Drove infrastructure strategy innovation with cross-functional stakeholders.

Senior Cloud Infrastructure Engineer

• Architected and executed migration of on-prem workloads to AWS using a hub-and-spoke design with AWS Transit Gateway and site-to-site VPNs.
• Served as Terraform SME for enterprise IaC initiatives and knowledge transfer sessions.
• Re-architected self-hosted GitLab runners into EKS using Argo CD and Karpenter for scaling and job isolation, achieving ~65% YoY cost savings.
• Achieved HiTrust CSF certification for the MyUPMC application architecture and security posture.
• Implemented Kubernetes autoscaling with Karpenter and HPAs, resulting in ~20% annual EC2 savings.
• Adopted Flux CD for Kubernetes manifest management, improving deployment performance by more than 400%.
• Enhanced Kubernetes security using NSA hardening guidance, including Network Policies, IRSA, and RBAC.
• Modernized application servers to AWS Bottlerocket for container-focused operations.
• Built a solution to surface application health details and enable remote dynamic updates via a Slack app.
• Led sign-on migration from Azure IMS generic roles to AWS SSO scoped roles with least privilege controls.
• Drove a cost savings initiative using Karpenter, Spot Fleets, and EC2 Savings Plans to reduce spend by 36%, plus CoreDNS adoption over Route53 for an additional $17,000 annual savings.
• Established a warm disaster recovery solution that reduced RTO by 600% while maintaining an RPO under 15 minutes.

Software Engineer

• Developed and maintained web-based applications hosted on Android devices for field use using Java, Spring Boot, Maven, and Jenkins CI.

Master of Science · Organizational Leadership

Pittsburgh, PA

Graduate Certificate · Leadership and Organizational Change

Pittsburgh, PA

Bachelor of Science · Computer Engineering

Erie, PA