Sam Lehman

Sam is a system administrator that deploys & manages workstations & infrastructure running a wide array of operating systems and software services. Sam has a depth & breadth of experience using programming languages, shell scripting, & declarative code for managing, running, and deploying servers & workstations.

Skills

Operating Systems

Windows
MacOS
Linux
Android
iOS
NixOS
Arch Linux
Debian

Scripting

PowerShell
Bash
Zsh
Nushell
Python

Deployment

Ansible
Virtual Machines
Terraform
GitHub Actions
GitHub Pages
Forgejo Actions

Kubernetes

Helm
Ceph
Flannel
NGINX-Ingress
Cert-Manager
Prometheus

Containers

Podman
Docker
Docker Compose
OCI
Container registries

Microsoft Azure

Directory servers
Domain controllers
Cloud computing
Cloud VMs
Office 365
OAuth2

Web Development

HTML
CSS
Javascript
Typescript
Node.js
React.js
Webpack.js
Babel.js
Django
Python
NGINX

Remote Management

SSH
RDP
VNC
journald
Group Policy Objects
Wireguard tunnels
Tailscale

Nix

Nix
NixOS
reproducible builds
functional programming
immutability

Work Experience (4)

Aug 2021 - Nov 2023

System Administrator

Presque Isle Wine Cellars

North East, PA https://piwine.com

Responsible for administration of servers and all user workstations for the entire company.

Migrated local domain controller to Azure cloud.
Migrated local servers to container-based infrastructure.
Migrated local databases to cloud-based PostgreSQL instance.
Managed virtual machines running company infrastructure.
Managed DNS server & configured records to improve security, routing behavior, and standards compliance
Deployed internal company mesh VPN to secure company infrastructure in remote & hybrid work environments.
Enhanced mail server security by configuring DMARC, DKIM, & SPF DNS records.
Created Group Policy Objects (GPOs) to push configuration updates to remote Windows workstations.

Feb 2020 - May 2020

Software Engineering Intern

Brazen

Arlington, VA https://brazenconnect.com

Developed features for video conferencing platform & chatbots for automated candidate onboarding.

Wrote Java code with Tensorflow API to integrate chatbot NLP agents with custom business logic.
Wrote frontend & backend code in Java for video conferencing web platform.

Jun 2018 - Sep 2018

Electrical Integration - Software Engineering Intern

General Electric: Transportation

Lawrence Park, PA https://ge.com

GE Transportation (now Wabtec) is a global leader in locomotive manufacturing.

Wrote C program to validate configurations to control locomotive hardware.
Wrote Python program to perform mechanical analysis on locomotive wireframe structures to identify & diagnose possible points of failure.
Wrote Visual Basic for Applications (VBA) code to integrate Python & C programs with Microsoft Excel spreadsheets used by engineers.
Built graphical Python application to compare, diff, and validate options in locomotive configuration files.

Jun 2017 - Sep 2017

Electrical Integration - Software Engineering Intern

General Electric: Transportation

Lawrence Park, PA https://ge.com

GE Transportation (now Wabtec) is a global leader in locomotive manufacturing.

Wrote C program to parse failure logs to identify causes of locomotive failure.
Wrote DXL script to push batches of locomotive configuration updates and pull diagnostic data.
Added OAuth2 authentication to numerous internal tools to use company-wide single-sign-on (SSO) to prevent unauthorized access to sensitive data.

Projects (4)

nix-configs

Mar 2023 - Current

https://codeberg.org/Lehmanator/nix-configs

Kubernetes
Helm
Nix
NixOS
DevOps
CI / CD
deployment
infrastructure-as-code

Declarative configurations representing both personal workstations and server infrastructure.
Encrypted secret management with sops.
Deployment of configurations via SSH.
Running many self-hosted server applications in Kubernetes

resume.nix

Jan 2024 - Current

https://resume.samlehman.dev

Nix
GitHub
GitHub Pages
GitHub Actions
DevOps
Node.js
static site
reproducible builds
declarative
CI / CD

Reproducible environment that pulls locked dependencies to build artifacts for my resume.
Builds an static webpage and PDF of my resume.
Automatically deploys successfully built artifacts to GitHub Pages using GitHub Actions.
Development shell with automatic installations of dependencies needed to hack on, build, and deploy my resume.

react-image-classifier

Jan 2018 - Jan 2023

https://codeberg.org/Lehmanator/react-image-classifier

Javascript
Node.js
React.js
Machine learning
Tensorflow
Image classification
AI

React drag-n-drop frontend.
Classifies images using Tensorflow.js

HeyImHungry

Mar 2018 - May 2020

https://codeberg.org/Lehmanator/HeyImHungry

Javascript
Node.js
React.js
Google Assistant
Google Cloud
Firebase

React & React Native frontend.
Google Assistant interface to query & add listings.

Volunteer

Sep 2018 - Apr 2019

Technology Captain

THON

THON is a student-run non-profit organization raising money for pediatric cancer research and the children affected by it. The THON Technology committee develops software to facilitate volunteer work and manage the annual dance marathon event.

Containerized developer environment to speed up onboarding new volunteer developers.
Containerized production webserver to make production environment reproducible.
Used Python & Django to create informational webpages to update volunteers on latest events & news.
Used Python & Django to create forms to collect and process information from volunteers.

Education (1)

2014 - Current

Computer Science

Penn State University

Languages

English

Native speaker

Spanish

Intermediate

Interests

Home Automation

Home Assistant
ESPHome
Self-Hosting
Raspberry Pi
ESP32
Microcontrollers
Circuitry
Automation

Self-Hosting

Kubernetes
Helm charts
Docker
PostgreSQL
OpenID Connect
OAuth
Networking
DNS
IPv4
IPv6

Fitness & Sports

Weight lifting
Wrestling
Martial arts
Health

References

“ It's my pleasure to recommend Sam. He single-handedly moved our business IT into the 21st century. Any company would be lucky to have him. ”

Lauri Lewis