We provide IT Staff Augmentation Services!

Aws Solutions / Security Architect Resume

Atlanta, GA

SUMMARY

  • Senior AWS Technical Architect with over 12 years of professional IT experience specializing in data migration, Integration, deploying secure cloud consumption and embracing best practice methodology for security, maintaining decision support and reporting systems, systems.
  • Hands - on experience on Architecting and securing Cloud Solutions using various AWS Services including EC2, VPC, S3, Glacier, EFS, AWS Kinesis, Lambda, Cloud Formation, Code Pipeline, Terraform, RDS, Data Pipeline, DynamoDB, Redshift etc.
  • Familiar with data architecture including data ingestion pipeline design, machine learning and Big data processing in Enterprise Data lake plate form.
  • Cloud Security and Application design based on Agile, ITL and Scrum methodologies for designing and deploying hybrid cloud solutions for IaaS, SaaS and PaaS.
  • Incorporating Encryption and credentials management and rotations method using Secrets Key management encryption services for SysTrust, OWASP, and OAuth and API authentication.
  • Experienced in extract transform and load (ETL) processing large datasets of different forms including structured, semi-structured and unstructured data.
  • Used Kubernetes to deploy scale, load balance, scale and manage docker containers with multiple namespace versions.
  • Extensively worked on CI/CD pipeline for code deployment by engaging different tools.
  • Having good Knowledge in Amazon Simple DB, Amazon RDS, NOSQL data base like DynamoDB.
  • Selecting the appropriate AWS service based on compute, data, or security requirements.
  • Experience in Integration of Amazon Web Services AWS with other applications infrastructure.
  • Experience in migrating existing databases from on premise to AWS Redshift using various AWS services
  • Designing and deploying scalable, highly available, Secured and fault tolerant systems on AWS.
  • Extensive knowledge in all phases of Software Development Life Cycle SDLC Requirement Analysis, Design, Development, Testing and Documentation.
  • Estimating AWS costs and identifying cost control mechanisms.
  • Expertise in creating databases, users, tables, triggers, macros, views, stored procedures, functions, Packages, joins in databases using PL/SQL and Involved in performance tuning.

TECHNICAL SKILLS

DATABASE \ETL: Oracle 11g\12C, SQL Server 208, DB2, Teradata, VPD, PostgreSQL, Dynamo DB

AWS Services: Ec2, Elastic Beanstalk, EFS, VPC, RDS, S3, Glacier, IAM, Terraform, Cloud Front, Cloud Watch, Cloud Trail, Cloud Formation, Lambda, Route53, SNS, Data Lake, API Gateway, Code Pipeline, Code Build, Elastic Search, Code Deploy etc.

DATA MODEL: Erwin, SQL Developer, Toad languages: Python, Java, Scala PL / SQL

OPERATING SYSTEMS: Windows XP, 7 &10, Unix\Linux

CLOUD PLATFORMS: AWS Cloud, API

PROFESSIONAL EXPERIENCE

Confidential - Atlanta, GA

AWS Solutions / Security Architect

Responsibilities:

  • Design, implement and maintain all AWS infrastructure and services within a managed service in public and private facing websites on AWS Cloud.
  • Provide Security Architecture for Confidential ’s AWS production services and lead best practice creation and implementation around Credentials/Secrets rotation with AWS Key Management Service
  • Provisioned Infrastructure as code with Terraform to lunch AWS resources.
  • Provides security expertise for cloud-based DevOps development and deployment.
  • Amazon IAM service enabled to grant permissions and resources to users. Managed roles and permissions of users with the help of AWS IAM.
  • Security controls, intrusion detection using Guard Duty, Inspector, VPC flow log, Cloud Watch and Cloud Trail for monitoring User login
  • Create Nginx Certificate for load balancing
  • Design IAM role-based account with least privilege access for 3rd party SaaS reporting services
  • Work with distributed teams to design and develop frameworks, solution accelerators, proofs of concept, and external customer facing products.
  • Design and Develop ETL Processes in AWS Glue to migrate Campaign data from external sources like S3, ORC/Parquet/Text Files into AWS Redshift.
  • Enterprise data lake architecture integrating various data sources on Hadoop architecture from PostgreSQL and DB2.
  • Project planning, effort estimation, deliverables, project costing and People management.
  • Create external tables with partitions using Hive, AWS Athena and Redshift
  • Experience with container-based deployments using Docker, working with Docker images, Docker Hub and Docker-registries and Kubernetes.
  • Emphasis on security posturing, implementing MFA on console admin account, VPN network access
  • Spinning AWS serves like EC2, VPC, EMR with terraform code for CI/CD use case requirements
  • Design AWS VPC'S with endpoints with Application gateways, Security groups and flow logs for secure Route 53 DNS and web services via specific port access
  • Configured various performance metrics using AWS Cloud watch & Cloud Trial
  • Design IAM role-based account with least privilege access for 3 rd party SaaS reporting services such as New Relic for security compliance
  • Responsible for configuring and securing the infrastructure on AWS Cloud.
  • Led initiative to deliver Mobile and tablet network security posturing using ISE for tablets and mobile devices.
  • Implement AWS Security Services such as AWS Cloud HSM, Amazon Guard Duty, Amazon Inspector, AWS Key Management Service, Amazon Macie, AWS Shield, and Security Groups for access control of network subnets, VPC’s and AWS resources.
  • Schedule a step job in EMR cluster with Hive and Spark job with terraform code

Confidential - New Orleans, LA

AWS Solutions / Security Architect

Responsibilities:

  • Good Experience in architecting and configuring secure cloud VPC using private and public networks through subnets in AWS.
  • Developed Spark code using Scala and Spark-SQL for faster testing and data processing
  • Working closely with the client and analysts examined the existing business models and flows of data; discussed the findings with the client, and designed new systems.
  • Implement AWS Security Services such as AWS Cloud HSM, Amazon Guard Duty, Amazon Inspector, AWS Key Management Service, Amazon Macie, AWS Shield, and Security Groups for access control of network subnets, VPC’s and AWS resources.
  • Automate provisioning and repetitive tasks using Terraform and Python, Docker container, Service Orchestration
  • Design and Develop ETL Processes in AWS Glue to migrate Campaign data from external sources like S3, ORC/Parquet/Text Files into AWS Redshift.
  • Experience on moving the raw data between different systems accounts using AWS Data lake.
  • Initiating alarms in Cloud Watch service for monitoring the server's performance, CPU Utilization, disk usage etc. to take recommended actions for better performance.
  • Design SIEM monitoring, Security controls, intrusion detection using Guard Duty, Inspector, VPC flow log, Cloud Watch and Cloud Trail for monitoring User login, resource usage and API access of resources.
  • Experience with designing Snowflake cloud-based data warehouse.
  • Amazon IAM service enabled to grant permissions and resources to users. Managed roles and permissions of users with the help of AWS IAM .
  • Lead development team in designing/migrating AWS cloud-based solutions
  • Demonstrated experience in cloud security (experience with AWS IaaS cloud)
  • Created S3 buckets also managing policies for S3 buckets and Utilized S3 bucket for storage and backup on AWS.
  • Maintained the user accounts (IAM), RDS, Route 53, VPC, RDB, Dynamo DB, SES, SQS and SNS services in AWS cloud.
  • Conducted code reviews and planned the knowledge transfer to client. Designed and Developed ETL jobs to extract data from Salesforce replica and load it in data mart in Redshift.
  • Setup of Cloud Watch alarms, setting up Cloud Trail, creating S3 buckets.
  • Developed Cloud Security standards by working with individual teams to create a service catalog for cloud resource
  • Used different AWS Data Migration Services and Schema Conversion Tool along with Matillion ETL tool.
  • Used Sqoop to import and export data between Hadoop and RDBMS

Confidential - Baltimore, MD

AWS Solution Architect

Responsibilities:

  • Proficient in AWS services like VPC, EC2, S3, ELB, Auto Scaling Groups (ASG), EBS, RDS, Cloud Formation, Route 53, Cloud Watch, Cloud Front, and Cloud Trail.
  • Designed AWS infrastructure to handle more than 500 concurrent users on web server.
  • Designed and developed ETL/ELT processes to handle data migration from multiple business units and sources including Oracle, Access and others.
  • Worked on AWS to provision new instances, S3 Storage Services, CI/CD pipeline management through Jenkins.
  • Participated in daily meetings to discuss upcoming work, schedules and status, attending review meetings and walkthroughs with Architect, Quality team and Developers discussing queries related to defects.
  • Emphasis on security posturing, implementing MFA on console admin account, VPN network access and various cloud services.
  • Monitor and create alarms for CPU, memory, disk space, using Cloud Watch.
  • Amazon IAM was used to maintain the user credentials and involved in creating custom IAM policies to various groups defined within the organization.
  • Used security groups, network ACL’s, internet gateways and route tables to ensure a secure zone for organization in AWS public cloud.
  • Created a pipeline that retrieved source application from Amazon S3 bucket and deploy it to EC2 instances using AWS Code deploy.
  • Utilize Cloud Watch to monitor resources such as EC2, CPU memory, Amazon RDS DB services, Dynamo DB
  • Involve in design high availability applications on AWS across availability zones and availability regions.
  • Built a VPC, established the site-to- site VPN connection between Data Center and AWS.

Hire Now