SUMMARY

• 7 years on AWS and 5 years on Azure. Expertise in Cloud Compute, Storage, Database, Networking, Mgmt Tools, Security, Identity & Compliance, Analytics, Migration, Developer Tools and Application Integration.
• Total 15+ years of experience, 9 years worked in GTI (Global Technology Infrastructure) of Confidential Bank, architecting AWS and Azure Cloud and On - Premise infrastructure at the bank.
• Expertise with working on AWS services such as EKS, ECS, VPC, IAM, EC2, Serverless Architecture (Lambda), Elastic Beanstalk, DynamoDB, Autoscaling, CloudFront, Route53, API Gateway, DirectConnect, S3, Kinesis, RDS, SQS, & SES. Developed several POCs on the same to prove the cost, performance and agility related efficiencies these services can bring.
• AWS DevOps Platform, Jenkins, CircleCI, Terraform, Github, Ansible, Chef, Puppet etc.
• Expertise on Kubernetes Architecture and Productionizing, Docker Containers with Linux and Windows OS, Helm Deployments, Istio, Kubernetes Security, Kubernetes Performance, Kubernetes Networking etc.
• Expertise in Azure DevOps, Board, Releases, Pipelines, Repos with Azure App Service, Data Factory, SQLServer, TFS, Visual Studio, ARM Templates, Terraform and Powershell.
• Expertise with working on Azure services such as Azure AD, Functions, Application Gateways, Azure Service Fabric (ASF), CosmosDB, Azure SQL Databases, App Service, VM’s, VM Scale Sets, Blobs, Files, Queues, Tables, VNets, Load Balancers, CDN, Traffic Manager, Route Tables, OMS, Migration Projects, Database Migration, Server Migration, ExpressRoute.
• Experience within following engineering disciplines - Storage, Server OS, Networking, Messaging, Monitoring, Database, and Web technologies.
• Seasoned with exposure of working on multi-million $ efforts right through from inception and strategy down Visual Studioto implementation and run activities.
• In depth understanding on how Cloud solutions can benefit business and technology strategies.
• Worked on framing the Cloud Adoption Strategies for migrations and transformations to AWS Cloud.
• Exposure of making business areas adopt digital strategy and explore the options of prospect, customer and partner self-service for their organizational success.
• Driving innovation with directly designing and developing proof of concepts on the AWS Cloud.
• Advanced skills in SAN, NAS, Servers, Network, AD, Security, Sizing for Applications, infrastructure scalability, resiliency, DR, high-availability, infrastructure performance and its mapping to frontend applications from end to end.
• Present Enterprise Architecture status, progress and next steps to C-level executives.
• Understand and advocate architecture principles and articulate value proposition of architecture to business and technology partners.
• Chair and manage an architecture review board. Develop architectural strategy for a given domain and implement mechanisms necessary to ensure that the strategy is realized.
• Ensure decisions around architecture are made and deviations from standards are properly identified, addressed and communicated.
• Ensure that Architects follow all aspects of the Enterprise Architecture process from initiation to closure.
• Provide guidance to the Architects in the early planning stage around the different solution patterns that may be appropriate for this specific solution.
• Ensure that standards set by Data, Security, Infrastructure, Platform and other architecture domains are followed when designing solutions.
• Stay abreast of industry trends, and active in staying knowledgeable to help the firm take advantage of new technologies.
• Operate as a hands-on architecture practitioner, deliver within a team as an individual architect.
• Balance strategic and pragmatic concerns and decompose the most complex problems into discrete work units.
• Key stakeholder and contributor to Disaster Recovery planning and Resiliency planning for CAF (Critical Application Functions for Chase Bank) applications.
• Manage and approve vendors for storage infrastructure, constantly engage them and evaluate products.
• Play the role of Project/Solution Architect where needed. Develop architecture work products where needed such as Implementation Strategy, Conceptual Architecture, Logical Architecture, Data Architecture and Technology Architecture.
• Infrastructure analysis, Security and Risk Management, lead and participate vendor assessments based on ongoing system improvements and to cater for growing business needs.

TECHNICAL SKILLS

AWS Cloud: EKS, EC2, Lightsail, Elastic Container Service, Lambda, Elastic Beanstalk S3, EFS, Glacier, Storage, Gateway, RDS, DynamoDB, Elasticache, Neptune, Redshift, VPC, CloudFront, Route53, API Gateway, DirectConnect, CloudWatch, AutoScaling, CloudFormation, CloudTrail, Config, Opsworks, Service Catalog, Systems Manager, IAM, Cognito, Secrets Manager, CloudDuty, SSO, Migration Hub, Database Migration, Server Migration.

Azure Cloud: Azure Compute (VM’s, VM Scale Sets, App Services, Containers, Availability Sets, Kubernetes), Azure Storage (Blobs, Files, Queues, Tables), Azure Database (SQL Databases, CosmosDB, Redis, MySQL, MariaDB), Azure Networking (VNets, Load Balancers, CDN, Traffic Manager, Route Tables), Azure Mgmt Tools (OMS, Templates, Monitor, App Insights), Azure Security, Identity & Compliance (Azure AD, Users, Groups), Azure Analytics (HD Insight, PowerBI, Data bricks, Data Lakes), Azure Migration (Migration Projects, Database Migration, Server Migration)

AWS: CodeBuild, CodePipeline, CodeCommit, CodeDeploy, CodeStar

Open Source Git, Github, Jenkins, CircleCI, Terraform, Ansible, Chef, Vagrant, Consul, PagerDuty, Snort, Splunk, CFEngine.

Azure: Azure Functions, Azure Boards, Azure Pipelines, Azure Repos, Azure Test Plans, Azure Artifacts

On-Premise Infrastructure: OS Windows, Linux.

Database: Oracle, SQL, PL/SQL.

Server, Network & Storage: IBM, Microsoft, VMware, DellEMC, Netapp, Cisco, Brocade, F5, Palo Alto & Zscaler.

Coding & Technologies: Shell, Python, JavaScript.

Methodologies & Tools: Agile, SCRUM, JIRA, Bitbucket, CVS, SVN, Clear Case.

PROFESSIONAL EXPERIENCE

Confidential

Cloud DevOps Architect

Responsibilities:

• AWS Evangelist and Architect for DevOps transformation of the IT Organization and advising executive leadership on cloud migration strategy.
• Architected and performed AWS Cloud migrations for many applications of large enterprise scale.
• Architected and managing Kubernetes Clusters on AWS EKS and EC2 platforms in AWS along with use of CloudFront, ALBs/ELBs, Route53, S3 etc.
• Architected and managing RDS and DynomoDB Databases, handled encryption, lifecycle, configuration, automation and several other DB activities.
• Automation with Python scripts, created cloud security dashboards with Go.
• Infrastructure As Code with Terraform and Terragrunt with Bash/PowerShell, on AWS Cloud for EC2 AutoScaling, EKS, RDS, S3, IAM, ElastiCache, CloudFront, CloudWatch and several others.
• Implemented CI/CD Pipelines on AWS with Jenkins, Github, SonarQube, CircleCI, CodePipeline, CodeCommit, CodeDeploy etc.
• Worked on AWS Lambda Functions for Automation and Governance purposes.
• Implemented CI/CD Pipelines on Azure with Azure Pipelines, Azure Repos, Azure TestLabs, Azure DevOps.
• Architected and managing Kubernetes Clusters on Azure AKS and deployed a .Net Core application with Windows and Linus Containers.
• Worked on Docker Containers using Linux and Windows OS Docker Images, worked on DockerFile.
• Helm Charts, Helm Repos and wrote several Helm Kubernetes Deployments.
• Worked on DevSecOps security tool evaluations and implementation for SonarQube and VeraCode Code Security Tools for Pipelines.
• AWS Tagging strategy and implementation using Cloud Custodian for Billing, Governance, Reporting, Auditing etc.
• Built cloud migration road map and budget keeping AWS well architected framework
• Architected and implemented AWS direct connect with multiple VPCs for AWS connectivity with colocation and corporate offices - Direct Connect VLANs
• AD ADFS integration with AWS accounts - Windows Active Directory, ADFS, SAML 2.0, IAM.
• Implementing Palo Alto VM-Series Firewalls on AWS & Azure Cloud for advanced firewall solutioning in the Multi-Cloud hybrid environment.
• Configured and managed various AWS Services including EKS, ECS, Lambda, RDS, ElastiCache, ElasticSearch, EC2, RDS, VPC, S3, Glacier, Cloud Watch, Cloud Front, and Route 53 etc.
• Configured various performance metrics using AWS Cloud watch & Cloud Trial
• Worked on configuring Cross-Account deployments using AWS Code Pipeline, Code Build and Code Deploy by creating Cross-Account Policies & Roles on IAM.
• Written various Lambda services for automating the functionality on the Cloud.
• Used AWS Route 53 for configuring the High-Availability and Disaster recovery to make the environment up and running in case of any unexpected disaster.
• Maintained the user accounts (IAM), RDS, Route 53, VPC, RDB, Dynamo DB, SES, SQS and SNS services in AWS cloud.
• Architected and implemented IT Security Vulnerability management - Data Warehouse and Analytics platform using AWS services.
• Performed a full Company Application Portfolio review for Azure Migration to PAAS services like App Service, Azure SQL Server etc.
• Created Pilot and POC environments for Azure Migration and created a plan to migrate for Azure.
• Meet with .Net/C# developers and worked on resolving critical Azure DevOps problems in Pipelines, Releases and recommended standard approaches.
• Created Azure ARM templates to provision Azure Resources in the cloud
• Architected standard designs for Azure PaaS migration.
• Deployed Migration Assistants for Azure App Service and Azure SQL Server Migrations.
• Did SQL Server Database Assessments with DBAs, went over the DB issues and remediation plan to prepare for SQL Server database migration to Azure.
• Recommended Azure migration and design strategies with stakeholders and C-Level executives.
• Architected Azure PAAS and IAAS cloud environments for .NET applications with Azure DevOps integration across multiple subscriptions.
• Extensive experience migrating .NET applications into Azure App Service with Azure SQL Server database, setting up Web Jobs, Powershell scripts, and Azure DevOps integration.
• Migrated to Azure with and without Azure SQL Server Migration Assistant, Azure App Service Migration Assistant, SFTP migrations to App Service and setting up non-impacting zero downtime migrations.
• Designed and configured Azure Virtual Networks (VNets), subnets, Azure network settings, DHCP address blocks, DNS settings, security policies and routing.
• Automate deployment of VMs, VMSS, Storage, Networking, Load Balancing, containers and various other resources using ARM templates, Powershell, Visual Studio, Terraform, Ansible and Jenkins
• Using Azure Site Recovery (ASR) for ON-Premise to Azure and AWS to Azure migrations of VMs.
• Develop custom features in Visual Studio based on specifications and technical designs in Azure Cloud.
• Develop PowerShell scripts and ARM templates to automate the provisioning and deployment process
• Azure API Management, Security, Cloud-to-Cloud Integration (Public, Private)
• Working on databases (SQL Server and MySQL).
• Worked on Managed disks, Azure Files, Blobs, Storage Cool and Archive Tier.
• Worked on Azure Monitor, Azure Log Analytics, Stream Analytics, Azure Queues.
• Implemented Key and Secrets management solutions using Azure KeyVault.
• Worked on bulk data migrations that used Azure Import/Export.
• Worked on Azure Functions for IAAS and PAAS service integrations, DR implementations, triggering jobs.
• Deployed Azure IaaS virtual machines (VMs) and Cloud services (PaaS role instances) into secure VNets.
• Provided high availability for IaaS VMs and PaaS role instances for access from other services in the VNet with Azure Internal Load Balancer.
• Implemented high availability with Azure Resource Manager deployment models.
• Designed Network Security Groups (NSGs) to control inbound and outbound access to network interfaces (NICs), VMs and subnets.

Confidential

Solutions Architect

Responsibilities:

• Architected and performed AWS Cloud migrations for many applications of large enterprise scale.
• Architected and managing Kubernetes Clusters on AWS EKS and EC2 platforms in AWS along with use of CloudFront, ALBs/ELBs, Route53, S3 etc.
• Architected and managing RDS and DynomoDB Databases, handled encryption, lifecycle, configuration, automation and several other DB activities.
• Infrastructure As Code with Terraform and Terragrunt with Bash/PowerShell, on AWS Cloud for EC2 AutoScaling, EKS, RDS, S3, IAM, ElastiCache, CloudFront, CloudWatch and several others.
• Implemented CI/CD Pipelines on AWS with Jenkins, Github, SonarQube, CircleCI, CodePipeline, CodeCommit, CodeDeploy etc.
• Configured and managed various AWS Services including EKS, ECS, Lambda, RDS, ElastiCache, ElasticSearch, EC2, RDS, VPC, S3, Glacier, Cloud Watch, Cloud Front, and Route 53 etc.
• Configured various performance metrics using AWS Cloud watch & Cloud Trial
• Worked on configuring Cross-Account deployments using AWS Code Pipeline, Code Build and Code Deploy by creating Cross-Account Policies & Roles on IAM.
• Written various Lambda services for automating the functionality on the Cloud.
• Used AWS Route 53 for configuring the High-Availability and Disaster recovery to make the environment up and running in case of any unexpected disaster.
• Maintained the user accounts (IAM), RDS, Route 53, VPC, RDB, Dynamo DB, SES, SQS and SNS services in AWS cloud.
• Setup from scratch Azure architectures, implemented Azure foundations and performed migrations for multi-million dollar application workloads.
• Lead Azure CCoE teams and managed standards, architectural strategies, business case justifications, PoCs etc.
• Architected Azure PAAS and IAAS cloud environments for .NET applications with Azure DevOps integration across multiple subscriptions.
• Extensive experience migrating .NET applications into Azure App Service with Azure SQL Server database, setting up Web Jobs, Powershell scripts, and Azure DevOps integration.
• Migrated to Azure with and without Azure SQL Server Migration Assistant, Azure App Service Migration Assistant, SFTP migrations to App Service and setting up non-impacting zero downtime migrations.
• Integrate on-premises network with Azure using ExpressRoute, Azure-AWS VPNs, Azure-Azure VPNs.
• Integrated with On-premise
• Create Windows and Linux VMs on all 6 different categories on instance types.
• Automate deployment of VMs, VMSS, Storage, Networking, Load Balancing, containers and various other resources using ARM templates, Powershell, Visual Studio, Terraform, Ansible and Jenkins
• Using Azure Site Recovery (ASR) for ON-Premise to Azure and AWS to Azure migrations of VMs.
• Worked on Azure Data Factory, Azure SQL Data Warehouse, Azure SQL Database, CosmosDB.
• Worked on Managed disks, Azure Files, Blobs, Storage Cool and Archive Tier.
• Worked on Azure Monitor, Azure Log Analytics, Stream Analytics, Azure Queues.
• Implemented Security using TrendMicro, NessusPro in Azure
• Implemented Key and Secrets management solutions using Azure KeyVault.
• Worked on bulk data migrations that used Azure Import/Export and Azure Databox.
• Worked on Azure Functions for Azure IAAS and PAAS service integrations, DR implementations, triggering jobs. Worked on Azure Functions with azure queue based triggers, moving files, customize notification triggers.
• Designed Network Security Groups (NSGs) to control inbound and outbound access to network interfaces (NICs), VMs and subnets.
• Setup Azure Virtual Appliances (VMs) to meet security requirements as software based appliance functions (firewall, WAN optimization and intrusion detections).
• Design Cloud/AWS migration and transformation architecture for several JPMC applications.
• Experience with laying strategy for infrastructure setup on AWS. Worked on setting up VM’s, Network connectivity and underlying infrastructure components such as VPC’s and Subnets.
• Experience with setting with DirectConnect between CHASE data center and AWS for application and VM migration.
• Worked on laying strategy to identify infrastructure needs to suit application specific non-functional requirements.
• Experience with provisioning up EC2 and EBS instances for support specific application patterns such as External Web Apps, Internal Web Apps, Database and Data Warehouse Apps.
• Experience with provisioning required IAM roles and permissions and required Security Groups for different application tiers to communicate on the AWS platform.
• Provided inputs and provisioned ELB’s where auto scaling of EC2 instances is required.
• Established patterns for Amazon VM Copy depending on specific application pattern, primarily for Web apps hosted on WebSphere and JBOSS application servers. This was used for Lift-and-Shift supported applications.
• Established patterns for Database Migration’s across Oracle, SQL and Sybase servers using Amazon DMS and RMAN backups.
• Experience with provisioning Amazon RDS instances for databases which were identified for re-platforming.
• Identified and suggested application patterns which are suitable for Serverless architecture and provided input on how to move to services such as Lambda.
• Setting up ECS service with underlying Docker instances.
• Performed storage infrastructure audits to meet the storage, server & network security needs and industry security standards to keep infrastructure of 70+ PBs secure.
• Experience in working within an Agile development environment.
• Experience in migration and implementation of application from on premise to AWS.
• Designed and configured Azure Virtual Networks (VNets), subnets, Azure network settings, DHCP address blocks, DNS settings, security policies and routing.
• Deployed Azure IaaS virtual machines (VMs) and Cloud services (PaaS role instances) into secure VNets.
• Exposed Virtual machines and cloud services in the VNets to the Internet using Azure External Load Balancer.
• Provided high availability for IaaS VMs and PaaS role instances for access from other services in the VNet with Azure Internal Load Balancer.
• Implemented high availability with Azure Resource Manager deployment models.
• Designed Network Security Groups (NSGs) to control inbound and outbound access to network interfaces (NICs), VMs and subnets.
• Setup Azure Virtual Appliances (VMs) to meet security requirements as software based appliance functions (firewall, WAN optimization and intrusion detections).
• Working on databases (SQL Server and MySQL).
• Working on relevant web services, mail, backup, and application monitoring
• Provide technical guidance on building solutions using Azure PaaS and other services
• Expertise in DevOps, Release Engineering, Configuration Management, Cloud Infrastructure, Automation. It includes Amazon Web Services (AWS), Ant, Maven, Jenkins, Chef, Bitbucket, GitHub, Build Forge, CVS, Tomcat, LINUX etc.
• Storage engineering in designing Cloud, SAN & NAS patterns for global storage builds across datacenters all over the globe.
• Architected production administration design with highly secure banking standards in mind to manage storage infrastructure across all regions.
• Worked on CI/CD tool Jenkins to automate the build process from version control tool into testing and production environment.
• Worked on CI build agents, on Docker and Redhat Linux platform.
• Maintained SVN & Bitbucket repositories for DevOps environment: automation code and configuration
• Automated deployment of all resources related to my work as the Lead Python Developer.
• Developing Docker images to support Development and Testing Teams and their pipelines, distributed Jenkins etc
• Working closely with Architecture, Development, Test, Security and IT Services teams.
• Developing scripts for build, deployment, maintenance and related tasks using Jenkins, Docker, Maven, Python and Bash.
• Installing, configuring and maintaining Continuous Integration, Automation and Configuration Management tools.
• Design and develop continuous deployment pipeline, integrating Bitbucket, Git, Jenkins, across geographically separated hosting zones in AWS.
• Understanding of Browser based technologies (HTML, JavaScript, CSS, etc.)
• Code using Python3.5.1 and working via libraries sys, json, copy, logging, re, secure shell, socket, requests, os, numpy, pandas, matplotlib, django etc.
• Work closely with non-technical management to establish a product roadmap.
• Provides recommendations and advise on system development, improvements, optimization, or support efforts, including proactive recommendations.
• Coded & built tools for automation provisioning in SAN & NAS using workflow tools.
• Provide technical leadership in SAN & NAS engineering/architecture discipline and the setting of technology standards for new & legacy products.
• Participate in or lead strategic, policy level and/or governance development for technology, and create and/or maintain standards, documentation, roadmaps and assessment of strategy and execution.
• Work on Storage Tools like DellEMC SRM, Netapp OCI, Netapp OCUM, Netapp WFA to manage storage metrics across all SAN, NAS & Backup storage devices.
• Worked 300+ VMAX, 100+ ScaleIOs, 100+ Isilons, 200+ Cluster-Modes, 800+ 7-modes, 50+ ECS, 30+ ATMOS, 50+ Centera, totalling approx 70PB+ storage environment on SAN and NAS.
• Experienced in Cisco and Brocade SAN fabrics, fabric migrations, fabric builds, writing scripts to manage fabric provisioning.
• Experienced on all SAN & NAS protocol troubleshooting on FC, iSCSI, CIFS, NFS & NDMP.
• Wrote Shell and Python scripts for storage configuration management, built from scratch performance management dashboards, daily reporting scripts on configuration breaks, auditing scripts, worked on KPI's on all storage arrays.
• Resolved RCA's on P1 production issues on SAN and NAS. Issues related to storage performance, provisioning, access, security, bottlenecks and throttles.
• Worked on NAS Isilon for File&Print CIFS shares, DBDumps and using LDAP authentication to map NFS/CIFS mounts on Linux and Windows platforms.
• Deep hands-on experience on handling OS issues on Linux and Windows, dealing with packages, multipathing, mounting, processes, installing database and apps related to storage.
• Single handedly built all NAS administration servers to manage all Isilons, 7mode, Cluster-Mode by setting up sshkey based centeralized access for all NAS infrastructure.
• Managing access and permissions for various functional accounts and AD accounts to all of NAS infrastructure.
• Worked on Netapp OCUM, OCI, DFM, PA, OPM and DellEMC ViPR and SRM.
• Managed storage audits for SAN and NAS. Wrote RFI (Request for Information) docs to address auditors queries justifying storage security and data access is intact and safe.
• Resolved 1000's on production tickets on SAN and NAS. o Lead complex, cross-organization initiatives involving technical areas of expertise and interaction with Senior Management.
• Provide support to significant downtime/catastrophic events related to the area of expertise.
• Develop and/or participate in specialized mentoring and/or technical development for employees in the technical discipline

Confidential

Systems Administrator/SAN Admin

Responsibilities:

• Developed, tested, documented and implemented quality infrastructure within targeted due dates. Resolve complex infrastructure issues with no guidance.
• Responsible for over 150 controllers around the world and over 5 PB of data.
• EMC Storage experience in Administration/Design and Implementation on EMC Storage arrays, Symmetrix, Clariion, Celerra or Centerra.
• Experience in capacity planning, Fibre Channel, Zoning, fabric topologies, volume and file systems management, clustering, replication and mirroring, backup/archive and recovery solutions, high availability, storage consolidation/migration, performance and tuning.
• Experience in SRDF and timefinder configuration in EMC storage environment.
• Experience planning, installing and administering of SAN/NAS environments with large enterprise storage systems, including Hitachi HNAS, EMC Isilon, IBM V7000. SAN fabrics, SAN Volume Controller (SVC), McData and Brocade switching technology.
• Senior member of the implementation team responsible for the installation, configuration, migration and go-live process of new filers.
• Experience in Designing, Configuring and troubleshooting Fabric Environment constituting Brocade/ McData/ Connectrix/ Cisco switches.
• Responsible for Data ONTAP 7-mode operations, including setting up Vfilers, Vfiler DR, Snapmirror, Snapvault, CLI, SnapManager, SMVI backups of VM’s, SnapDrive.
• Responsible for Clustered Data ONTAP operations, including creating vservers, volumes, qtrees, setting up namespaces, setting up and implementing Export Policies and netgroups (NFS), setting up snapmirrors to DR site, and troubleshooting and escalating issues to NetApp when necessary.
• Proficient in the use of DFM/Operations Manager - configured to monitor filers worldwide and email alerts when thresholds are reached (% full aggrs/volumes/qtrees, loss of connectivity, performance highs/lows, latency).
• Data Migration using NDMP, Snapmirror and Qtree Snapmirror across same and different domains within the Enterprise, as well as Virtual Storage Console in the migration of VMs.
• Responsible for performing Data ONTAP upgrades (non disruptive).