SUMMARY

• AWS DevSecOps and Cloud Solutions Architect with 15+ years of total IT experience in designing solutions at enterprise level, provisioning, securing and maintaining infrastructure. Strengths in AWS Solutions Architecture, Systems Design, Disaster Recovery, Cyber Security and Storage Administration. Excels in creative problem solving, building capabilities to prevent, detect, contain and respond to cyber threats.
• 4+ years of AWS Cloud Security, Governance & Compliance, Audits and DevOps
• Demonstrated experience communicating Cyber/Compliance threats to Executive Management through qualitative and quantitative metrics
• Guided the cloud security groups by identifying opportunities for improvement and solutioning improvements through the enterprise best practices and patterns
• 4+ years of experience driving technical solution strategy and vision across the enterprise
• Expert AWS solutions architect with experience identifying issues and formalizing strategies that solve customer needs
• Hands on experience with SaaS (Software as a Service), PaaS (Platform as a Service), and IaaS (Infrastructure as a Service) tools and solutions
• Capture and share best - practice knowledge amongst the AWS technical and partner communities
• Experienced in agile methodology through various projects as well as leading weekly and daily standups
• Experienced in management and employee supervision
• Highly organized, dedicated with a “can do” attitude
• Detail-oriented problem solver and team player with proven leadership qualities.
• Excellent written, oral and interpersonal communication skills.

TECHNICAL SKILLS

• Linux, All Windows Platforms
• XML Technologies, Java, Python 3.7
• Java Script

PROFESSIONAL EXPERIENCE

Confidential

DevSecOps Lead

Responsibilities:

• Liaison for all application team leads with Information Security, Risk and Compliance matters
• Managed Security & Compliance programs for ad-platform portfolio
• Continuously monitor multiple AWS environments using internally built tools by CSO (Astra)
• Leveraged AWS Lambda to write automated scripts utilizing Python to remediate risk and monitor compliance
• Managed and Implemented CIS benchmark standards in AWS
• Managed and worked closely with the application teams to meet the audit deliverables and ensure timely delivery of supporting documents and closure of open observations and gaps
• Managed Vulnerabilities Remediation for the application portfolio:
• Elimination of Critical Vulnerabilities (Nessus) within 30 days of discovery
• Deployment of Critical security patches/updates within 30 days of notification for OS
• Experience in Multi-Layered Security Protection/Defense in Depth tools:
• Third party tools like Alien Vault for SIEM, IDS and IPS, Tenable for Vulnerability management
• Experienced with AWS native tools like Guard Duty, Inspector, Macie, AWS Config, KMS, Secrets Manager
• Working with various applications, backend developers to gather function and non-functional requirements to prepare automation
• Support automation of provisioning AWS resources through CloudFormation and Terraform
• Maintain repos in GIT and use Jenkins pipeline while automating
• Hands on experience in AWS provisioning and good knowledge of AWS services like EC2, S3, Glacier, ELB, RDS, Redshift, IAM, Route 53, VPC, Auto scaling, Cloud Front, Cloud Watch, Cloud Trail, Cloud Formation, Security Groups
• Created tagging standards for proper identification and ownership of EC2 instances and other AWS resources
• Developed build & deployment scripts using BASH. Automated the process using plugins available Jenkins and move from one environment to other throughout the build pipeline
• Reduced costs by $500k last year by eliminating unnecessary servers and consolidating databases
• Migrated JIRA across environments and worked on JIRA database dumps

Confidential

Architect - Technology

Responsibilities:

• Driving decisions collaboratively, resolving conflicts and ensuring follow through
• Documenting and sharing technical best practices / insights with engineering and the architect community
• Proven track record of driving decisions collaboratively, resolving conflicts and ensuring follow through
• Create, evolve, mature and execute a cloud migration plan that includes detailed road map and risk assessment and mitigation approach
• Partner with infrastructure operations, platform optimization, and datacenter operation teams to scope, define, size and execute application onboarding, migration & consolidation initiatives
• Documenting and sharing technical best practices / insights with engineering and the architect community
• Detailed knowledge of the cloud computing industry, including key technologies, vendors, and trends
• Hands-on experience on implementing Cloud Solutions using various AWS Services including EC2, VPC, S3, Glacier, EFS, AWS Kinesis, Lambda, Directory Services, Cloud Formation, Ops works, Code Pipeline, Code Build, Code Deploy, Elastic Beanstalk, RDS, Data Pipeline, DynamoDB, Redshift etc.

Confidential

Technical Lead Consultant

Responsibilities:

• Managed and lead all aspects of the project from start to finish, including functional and technical documentation, project team definition, project planning, tracking, reporting, rollout, interface with other groups, and formalized project closure.
• Development lead for the group providing enhancements needed for the audit tool supporting Customer Rate Management.
• Create WSDL and distribute to various applications that want to interact with DP application.
• Implemented various protocol FSHs, SSL Proxy objects,
• Created WSP service that acts as an interface to clients with the WSDL published to them.
• MPGs, XML Firewalls are created to implement various steps specific to the application DP represents.
• Created Load Balance Group objects to load balance the traffic that is going out.
• Schemas, WSDLs are validated and XLTs are developed using XML Spy

Confidential

Contractor

Responsibilities:

• Executed tasks like creating Mediation polices, Security Policies and custom policies in Business Space. Manipulated the SLAs, SLDs etc using business space runtime.
• Created WSP service that would reject messages after a specific number of policies. This uses mediation policy of IBM. Policies are fetched from WSRR at runtime.
• Created WSP service that uses AAA action to implement security features using custom policy (non-standard and customized as per organization).
• Configured self-signed certificates on the datapower boxes XI50 and XI52 to establish HTTPS connectivity that would exchange the certificates.
• Presented documents and presentations on different tasks like Clearing Stylesheet cache, document cache, checking Stylesheet executions, service execution times etc.
• Preformed debugging using multistep probe, Ping test, TCP port test and packet capture, object status.

Confidential

Technical Lead

Responsibilities:

• Designed and developed various services using MPG’s, WSP’s (testing), XML Firewalls(testing) on Data Power XI50 to support mediation services for end to end service architecture.
• Designed FSHs and routings for different protocols like HTTP and MQ in Data Power.
• Integrated and developed services with MQ and Contivo. XML Spy where a manual style sheet development is demanded for Data Power
• Invoking services to Data power and Web methods via SOAP UI for testing.