MuleSoft Specific skill tree

K8s / Infrastructure skill tree

More specific for K8s and container orchestration, including running stateful applications in K8s

  • Hands-on Linux (kernel, sysadmin, networking, security, storage, etc.) troubleshooting and problem-solving skills under pressure
    Distros: RHEL / EL, Fedora, Ubuntu Server, Debian, Gentoo, Arch/Manjaro hands-on is considered plus.

  • Infrastructure architecture design knowledge and experience in architecting, implementing and supporting highly-available, scalable, high performance and secure Enterprise-grade infrastructure for running containerised mission critical workloads

  • iptables / IPVS (or LVS) in k8s v1.11.0+ (kube-proxy modes)

  • Storage: LVM2, ZFS, iSCSI, FCoE, NFS, SMB, DRBD, Gluster FS, etc.

  • DNS (dnsmasq, CoreDNS), Service Discovery, Service Registration

  • Shell scripting (Bash)

  • Kubernetes (k8s) - Container Orchestration

  • Hands-on with managed K8s offerings (GKE, EKS, AKS)

  • Istio (Service Mesh) & Knative (Serverless) for future

  • Gravity (AKA Telekube) / gravity CLI

  • OpenShift - container application platform / okd (AKA OpenShift Origin) - great plus

  • Container Runtime: Docker CE, containerd (ctr crictl nerdctl), CRI-O/runc

  • New Container Toolchain: podman, buildah, skopeo

  • Dockerfile / Docker Compose

  • Multi-cloud, cloud service provider agnostic : AWS / Azure / Google Cloud Platform

  • Nginx / HAproxy

  • OpenSSH

  • OpenLDAP (or Apache Directory Server, Active Directory, or equivalent)

  • OpenSSL / PKI

  • OpenPGP, GnuPG, Age (good to have)

  • curl / HTTP / TLS / REST APIs

  • DB: MySQL, PostgreSQL, Cassandra, InfluxDB (time series database)

  • DevOps knowledge & practices, e.g. Git, GitOps, CI/CD (Jenkins, Jenkins X, Tekton) / TnRP

  • Monitoring & Alerting (kube-state-metrics, Prometheus, Prometheus Operator experience is preferred)

  • Elastic Stack

  • Some Java, JVM, Tomcat or similar application server knowledge

  • Some Python, Go

  • Heroku

  • etc.

Generic MuleSoft specific skill tree

  • CloudHub VPC / Connectivity (IPsec VPN) provisioning

  • Provision IPsec VPN gateway (strongSwan based) inside CloudHub VPC so as to have a private connectivity to applications (workers) inside the VPC via mule-worker-internal-{appname}.cloudhub.io on port 8091 or 8092. macOS has built-in support for IKEv1 (Cisco IPsec) with PSK authentication. OpenVPN or WireGuard as alternative option.

  • SME for Anypoint Platform Private Cloud Edition (PCE), Anypoint Runtime Fabric, both powered by gravity flavoured k8s

  • Ninja level Linux hands-on skills (kernel, SysAdmin, Networking, firewall/iptables, Security Hardening, Storage, Troubleshooting, Tuning, Automation)

  • AWS / Azure / Google Cloud Platform

  • Networking (layer 2 - layer 7)

  • Virtualization (Xen, KVM, VMware)

  • Container runtime (Docker CE, containerd)

  • Container Orchestration, Management and Operations: Kubernetes (k8s, DIY using kubeadm), OpenShift (okd - OpenShift Origin)

  • Service Mesh - Istio

  • Serverless framework for k8s - Knative

  • Storage

  • Backup / Restore, Disaster Recovery

  • IT Infrastructure

  • DevOops methodology and practices, familiar with Terraform, Ansible, etc. or equivalent

  • Web Server (Nginx), Load Balancing, Cache (Squid, varnish), DB (Oracle DB, MySQL, PostgreSQL)

  • DNS (Bind9, dnsmasq, CoreDNS)

  • CloudHub iPaaS solution architect and best practices (VPC, Connectivity, Dedicated Load Balancer, security hardening)

  • OpenPGP (encryption, authentication, signing, etc. using GnuPG implementation)

  • SSL/TLS, OpenSSL

  • OpenSSH

  • VPN (PPTP, IPsec, OpenVPN and of course WireGuard)

  • Elastic Stack (Elasticsearch, Kibana, Beats, Logstash)

  • Heroku

  • Integration Cloud

  • ...