Michael Boterf

• Lead platform and data engineering for federal healthcare system supporting IHS migration from VistA/RPMS to Oracle Health, transforming legacy data into FHIR R4 resources and Oracle Cerner CSV outputs.
• Architected medallion-pattern (Bronze/Silver/Gold) ETL pipelines processing 100M+ patient records across 1,000+ tables using Python, PySpark, and a Nix-based build system on Azure Synapse Analytics.
• Built config-driven data platform generating 880+ Nix packages from declarative table configurations, enabling standardized transformations across 1,000+ datasets with 98.4% coverage.
• Achieved 100% FHIR R4 validation across all clinical domains (demographics, vitals, labs, conditions, medications, immunizations, procedures, encounters, orders, documents) with dual tribal coding for IHS-specific requirements.
• Developed streaming-mode processing for large fact tables (9.7M+ rows per table), and dual-output architecture generating both CSV and FHIR Bundle outputs from single pipeline runs.
• Built Go bundle-processor for Cerner Data Syndication API, deployed on Azure Container Apps Jobs with KEDA event-driven autoscaling for post-go-live incremental data ingestion.
• Created FHIR validation tooling processing ~40,000 JSON records in ~15 minutes; built Python fuzzy-matching field mappers, US Core profile skeleton generators, and Pydantic model extensions.
• Built reproducible Nix-based developer platform reducing onboarding time to under 10 minutes and ensuring parity between local development and CI environments.

• Built comprehensive security scanning suite: Trivy, govulncheck, Semgrep, Gitleaks, sbomnix SBOM generation — with SARIF output for GitHub Security integration and automated compliance reporting.
• Designed and maintained GitLab CI/CD pipelines with reusable templates, automated STIG scanning, and standardized deployment patterns across multiple teams.
• Designed and operated internal platform engineering capabilities including CI/CD systems, reproducible development environments (Nix), and standardized deployment patterns across teams.
• Built AWS GovCloud infrastructure using Terraform (EC2, IAM, EBS, RDS, AMIs, ACM); created automated OpenVPN deployment with Ansible.
• Implemented HashiCorp Vault for secrets management including disaster recovery tooling (Python export/comparison scripts); deployed containerized applications in Kubernetes using Helm.
• Built Nix devshell for Platform One Big Bang (DoD Kubernetes distribution) wrapping bbctl, Helm, k3d, kubectl, and kustomize into a reproducible environment.
• Contributed to Cyclops platform (ATA's streaming analytics / MLOps / data fabric): Nix dev environment, k3d local Kubernetes, Traefik routing, Keycloak/Grafana ingress.
• Built missile launch data generators and AIS vessel data pipelines for MDA Spot-Lyt defense simulation platform using Kafka and Flink streaming analytics.
• Developed NIST 800-53 Rev 5 compliance analysis tool in Python — cross-references control catalogs with program-specific requirements for automated assessment.
• Mentored team members on DevOps best practices; created documentation, reference implementations, and Nix flake templates to support org-wide adoption.

• Built CI/CD pipeline from zero for a software development team that had been building their enterprise application off a developer's laptop — designed Azure DevOps pipelines, eliminating regressions and disappearing features caused by ad-hoc branch management and manual builds.
• Consolidated three version control systems (SVN, Mercurial, Git) into Azure Repos with standardized branching strategy, merge request workflows, and formal release process — all documented from scratch as the organization's first engineering standards.
• Authored comprehensive release and branching strategy documentation, establishing the team's first formalized development practices; documentation became the reference for all future development workflows.
• Architected Java-based solutions transitioning from IBM AS/400 legacy systems to modern on-prem infrastructure, supporting claims processing, policy administration, and agent portal systems across the property and casualty insurance platform.
• Supported nightly database rebuild processes for production insurance data — participated in on-call rotations to diagnose failures, manually adjust data integrity issues, and restore system operations during overnight maintenance windows.
• Drove cultural transformation in a change-resistant organization — introduced automated builds, code review practices, and agile methodologies to a team with no prior CI/CD experience, fundamentally modernizing their software delivery capability.

• Built the entire CI/CD pipeline from zero for the JANUS identity platform — designed shared Jenkins libraries, automated build/deploy workflows, and integrated on-prem artifact management, reducing deployment setup from 6 months to minutes across 20+ repositories.
• Authored CI/CD documentation and standards adopted firm-wide — referenced by JP Morgan's internal Jenkins platform team (Jules) and sought out by engineers across global offices for deployment guidance.
• Integrated automated security scanning (HP Fortify, SonarQube, Blackduck) as pipeline gates, establishing shift-left security practices for the legacy Java/Maven application running on RHEL.
• Served as Security Champion — audited the JANUS codebase and uncovered critical encryption standard violations missed by the standing team; escalated findings to management, coordinated remediation with security leads, and drove rapid resolution of severe vulnerabilities.
• Mentored team members and drove adoption of standardized branching strategy, automated unit testing frameworks, and modern development practices for a legacy Java/Tomcat enterprise application.

• Developed web-based geospatial intelligence application (.NET MVC, jQuery/JavaScript) for the Gorgon Stare wide-area persistent surveillance program — aggregated multi-source intelligence data with live video streaming from MQ-9 Reaper UAV sensor pods onto a unified web display.
• Primary Puppet developer — automated provisioning of Windows Server 2008 and Linux environments in air-gapped SCIFs, managed versioned map layer deployments to Google Maps-based GIS application.
• Engineered versioned map layer deployment system enabling incremental GIS data updates instead of full-layer copies, with date-time versioning that caught missed updates and dramatically accelerated deployment cycles.
• Served as Security Champion — ran SCAP and Nessus vulnerability scans, resolved critical/high findings via Puppet automation, documented attestations for exceptions, and performed NIST 800-53/800-171 compliance remediation across the Gorgon Stare server fleet.
• Virtualized SCIF test environments — created VM replicas of production servers so developers could test changes locally instead of manual deployment, significantly improving development velocity.
• Engineered cross-hardware compatibility solution — used Puppet to force Dell RAID controller drivers across hardware generations (R420/R430), enabling backup/restore portability despite vendor RAID controller changes.
• Diagnosed and resolved PostgreSQL garbage collection issue on the production database — identified root cause from documentation and applied configuration fix, restoring database performance.

• Built custom Apache NiFi processors (Java) to simulate real-time sensor and targeting data feeds for the Network Centric Targeting (NCCT) legacy application, replacing manual QA data creation and accelerating test/feature development cycles.
• Mentored NCCT colleagues on Puppet configuration management, helping them become self-sufficient practitioners and improving infrastructure automation capabilities across teams.

Inspected and maintained helicopter airframes and components including flight line operations for UH-1Y/AH-1Z. Instructed and led Marines in career development. Earned BS in Software Engineering while serving full-time. Assisted in C++ rewrite of the Maintenance Support Application for UH/AH-1 maintenance teams at Weapons Systems Support Activity (WSSA), NAWS China Lake — simplifying the interface and preparing the application for future mission data card migration.

Awards: Navy and Marine Corps Achievement Medal | Marine Aviation Detachment Marine of the Year | Marine Aviation Detachment Marine of the Quarter (multiple) | Regional Navy League Joint Service Junior Blue Jacket of the Year