SUMMARY:

• IT experience as AWS Solution Architect& Cloud EngineerandSAP Business Objects Administrator working on Linux,Ubuntu,CentOS&Windows Operating Systems.
• In - depth knowledge in AWS cloud services like EC2, S3, RDS, VPC, Cloud Front, Route53, Cloud Watch, OpsWorks, IAM, SQS, SNS and SES, Cloud Formation,Cloud Trail,Amazon Auto Scaling groups,Security Groups, Firewalls, Mask the IP Address of EC2 Instances,AMI’s,Load Balancers,IAM Security & Policies,Elastic Bean Stalk, migrating applications from company data center to AWS cloud.
• Expertise in DevOps, Release Engineering, Configuration Management, Cloud Infrastructure Automation, it includes Amazon Web Services (AWS), Maven, Jenkins, Chef, Puppet, Ansible, SVN, and GitHub. Proven ability to scale and administer the Continuous integration systems on multiple platforms using Jenkins.
• Facilitated Identity federation, external identities are granted secure access to resources in your AWS account without having to create IAM users. These external identities can come from your corporate identity provider (such as Microsoft Active Directory or from the AWS Directory Service
• Virtualized the servers using the Docker for the test environments and dev-environments using Docker containers. Experience using Docker to implement a high level API to provide lightweight containers that run processes isolation and worked on creation of customized Docker container images, tagged and pushed the images to the Docker repository.

TECHNICAL SKILLS:

AWS: EC2,ECS (Elastic Container Service), Elastic Load Balancer (ELB), S3, Glacier, RDS, Dynamo DB, Elastic Cache, VPC, Cloud Front, Route 53, Code Commit, Cloud Formation, Cloud Watch, Cloud Trial, SWF, SQS, SNS, OpsWork, Elastic Beanstalk, IAM, EMR,Lambda

Config Tools: C hef, Ansible, Puppet, Docker, and Jenkins

Languages: HTML, JSON, SQL, Python

Web Servers: Apache Tomcat, WebSphere, WebLogic

IDE/ Tools: Toad, Putty, Jenkins

Database: Oracle,SQL Server,DB2,Teradata,MySQL

Operating System: Linux, Unix, Windows

Version Control: CVS,SVN,GIT

Build Tools: Maven, Jenkins

Virtualization Tools: Virtual Box, Docker, Kubernetes,VMWare

Middleware Technologies: Micro Services, Web Services (SOAP and REST)

PROFESSIONAL EXPERIENCE:

Confidential, Hoboken, New Jersey

AWS Solution Architect

Responsibilities:

• Configuration of AWS Auto Scaling Virtual server environments in for development and test
• Designed Security layer applied to EC2 instances through security groups. Security groups comprise of rules which allow traffic to and from the EC2 instances.
• Ingress rules designed rules are used to control the inbound traffic
• Egress rules designed to control the outbound traffic
• On Web Tier all the ports are locked down except the port 80 for http & Port 443 for https through security groups
• On Application tier create security groups in which only the bastion host would have access to the application servers.
• On Database Tier security groups are designed to allow traffic from the web and application tier in addition to the SSH protocol all the other traffic from Internet is blocked.
• Experience with CloudFormation to create environment templates for consistency and ease of use w/ JSON
• Mapping Multi-Tier Architectures to AWS Services, such as web/app servers, firewalls, caches and load balancers
• AWS Solutions consultations regarding data backups and physical hardware migration into S3, RDS, and EC2. Cloud System Administration creating security groups and ACLs for resources, processes, and users
• Architect high availability environment with auto scaling in conjunction with S3 as storage and route 53 as DNS
• Experience in Designing,developing,migrating application deployment in AWS cloud&AWS IAM User Account, role, and policy creation
• Support cloud first strategy for application development. Build Terraform script to provision AWS resources. Develop CI-CD using Jenkins tool, Terraform, PowerShell and Shell script. Used Terraform in managing resource scheduling, disposable environments and multitier applications
• Installed, Configured, Managed Monitoring Tools such as Splunk, Nagios for Resource Monitoring/Network Monitoring/Log Trace Monitoring. Monitoring, Alerting, Log Aggregation using Cloud Watch & Kinesis
• Used Maven as build tools on Java/J2EE projects for the development of build artifacts on the source code and deployed them on Tomcat.
• Hands on experience in writing Ansible scripts and used Ansible for configure tomcat servers and maintenance
• Developed and managed build, deployment, server configuration, monitoring through Git, Maven, Jenkins, and Puppet.Worked extensively with Maven build tools for writing pom.xml files
• Created Jenkins Jobs to automate Maven Application Builds by pulling code from GIT and GitHub repositories.
• Created a road map for their application migration & CI/CD using AWS CodePipeline, CodeDeploy & Cloudformation to automate the process
• Created puppet manifests and modules to automate system operations. Created monitors, alarms and notifications for EC2 hosts using CloudWatch
• Deployed Docker ECS EC2 Container Service to streamline deploying multiple micro service stacks across a cluster of EC2 instances using Docker containers
• Network, CPU, Disk and connectivity monitor with cloud watch and setup to trigger alarm and notify system administrators
• Use of AWS IAM to create roles, users, and groups with least privilege principle& MFA Policies
• Experience with Port Forwarding, SSL certificate maintenance, DNS hosting compatibility, URL masking andforwarding
• Extensively used Lambda function to take backups of EBS Volumes Snapshots
• Designed and configured AWS SNS, SQS, SWF to build highly scalable and fault tolerant architecture.
• Lambda function used to backup data from S3 buckets
• Worked on running Jenkins in Docker containers with AWS EC2 slaves in AWS Cloud configuration with Docker Swarm
• Connected Lambda to API Gateway
• Built Continuous Delivery pipeline with Docker, Jenkins, GIT, Bit Bucket and AWS AMI using Terraform.
• Worked with various SQL databases such as Oracle, MySQL, PostgreSQL and Microsoft SQL Server to migrate into AWS SQL RDS database.
• Implemented and troubleshoot Networking Services like NFS, FTP, NTP, Telnet, SSH, VPN, UDP, HTTP/HTTPS and TCP/IP.
• Implemented Identity and Access Management (IAM) solutions across the organization for various business applications
• Working knowledge of AWS Cloud Security in implementing IAAS, PAAS and SAAS based applications
• Implemented Multifactor Authentication (MFA) for AWS root accounts, including password rotation policies.Set up Access Keys and Secret Assess Keys for newly created users
• Working knowledge of SSO implementation for the applications deployed in AWS cloud platform
• Participated in the implementation of AWS Cloud security for applications being deployed in the Cloud. Implemented OAuth2.0 and SAML authorization frameworks for granting permissions by third party Identify Providers.
• Performed security compliance assessments for all IT infrastructures (firewalls, routers, IDS/IPs, DLP, Linux/Windows security hardening).
• Implement Security Group Policies for Elastic Compute Cloud (EC2) instances within AWS. Develop AWS Service Roles to protect Identity Provider access.
• Implemented security controls for AWS Virtual Private Clouds (VPCs),EC2 instances, RDS and Route53.
• Design and develop information security architecture, cryptography, security assurance, threat modeling, IT risk assessments, SSO, and risk remediation activities.
• Experience with Identity and Access Management (IAM) and development of user roles and policies for user access management.

Environment: Oracle,Tomcat, AWS,Windows,Linux,EC2,ECS (Elastic Container Service),Elastic Load Balancer (ELB),S3, RDS, VPC, Route 53, Cloud Watch, SNS, Workspaces, IAM,Lambda

Confidential, Atlanta,GA

AWS Solution Architect

Responsibilities:

• Encrypt sensitive data in S3 using server side encryption(SSE)
• Amazon Macie can be implemented to protect against security threats by continuously monitoring your data and account credentials
• Implemented methods to secure scan the infrastructure and applications
• Automated security assessment service to help improvethe security and compliance of applications deployed on AWS
• Recommended Web Application Firewall (WAF) for cloud environments to protect data from known and unknown threats, and leverage automated learning capabilities to keep unwanted incursions at bay
• Verification of Security in the Platform
• Configuring Elastic Load Balancers with EC2 Auto scaling groups.
• Created AWS Cloud formation templates to create VPC architecture, EC2s, Subnets and NATS to meet high availability application and security parameters across multiple AZs.
• Configured S3 to host static web content and deployed cloud stack using AWS Opswork
• Used AWS S3 services for creating buckets, configuring buckets with permissions, logging, versioning and tagging
• Experience scripting with bash and SysAd tools Ansible, Docker, Cloud Watch, and ELK to automate and monitor resources spinning up/updating/use
• Expert inusing different source code version control tools likeGIT, Subversion
• Experience in Build automation toolslikeJenkins, Maven
• Application Deployments & Environment configuration using Puppet, AWS.
• Implementing a Continuous Delivery framework using Jenkins, Puppet, Maven & Nexus in Linux environment
• Strong interest in developing Python skill set to grow deeper into automation and Machine Learning
• Experience with GitHub and Atlassian suite products to share documentation and standards
• Significant experience troubleshooting and user acceptance testing; bug discovery, reproduction, reporting, and remediation
• Run services on Docker using ECS& Configuring the Docker Containers and Creating Docker files for different Environment.
• Installed and configured Hudson/Jenkins for Automating Deployments and providing an automation solution
• Monitored from end-to-end view of runtime systems CPU, bandwidth, disk space, and application logs
• Applying AWS Security Features along with traditional Information and Application Security
• Built process workflow with different levels of user access control
• Worked with Amazon IAM console to create custom users and groups
• Experience in working with AWS provided Solutions like EC2, ELB, VPC, Route 53, RDS, S3, IAM, and Cloud Watch
• Worked on AWS EBS Volumes, Cloud Formation and Cloud Watch services
• Experience in various configuration and automation management tools such as Chef, Puppet, and Ansible Tower
• Experience in version control using SVN, GIT and GITHUB and continuous integration management using Jenkins
• Strong experience in designing and developing applications on AWS Cloud using S3, Aurora, Redshift, ElastiCache, EC2, VPC, Subnets, IAM.
• Launching Amazon EC2 Cloud Instances using Amazon Web Services (Linux/ Red Hat/Windows) and Configuring launched instances with respect to specific applications
• Installed application on AWS EC2 instances and also configured the storage on S3 buckets
• Implemented various security best-practices including IAM, Encryption, SSL termination, AD Federation, SAML integration

Environment: Oracle, Tomcat, AWS, Windows, Linux, EC2,ECS (Elastic Container Service), Elastic Load Balancer (ELB), S3, RDS, VPC, Cloud Front, Route 53, Cloud Formation, Cloud Watch, Cloud Trial, SNS, IAM

Confidential, Washington, DC

AWS Cloud Engineer

Responsibilities:

• Expert in AWS Cloud Security Assessment
• Implemented Access Controls in the Cloud Environment
• Suggested methods to decrease the vulnerabilities in the cloud environment
• Built security in CI-CD Pipeline and DevOps Deployments
• Integrate Continuous Integration Security Practices in the SDLC
• Verification of Security in the Platform
• Conduct functional security tests in the application
• Recommended best practices to implement security
• Designed Security Checklist for the Cloud environment
• Designed Identity access management policies, roles, users, groups
• Control inbound & outbound traffic to your EC2 instances with clearly structured secured groups
• Encrypt sensitive data in S3 using server side encryption(SSE)
• Implemented methods to secure scan the infrastructure and applications
• Automated security assessment service to help improve the security and compliance of applications deployed on AWS
• Recommended Web Application Firewall (WAF) for cloud environments to protect data from known and unknown threats, and leverage automated learning capabilities to keep unwanted incursions at bay
• Recommended Web Security assessment tools for the cloud environments
• Understanding of Elasticity and Scalability Concepts
• Deploying and Managing Services with tools such as Cloud Formation, OpsWorks and Elastic Beanstalk.
• Orchestrating different Cloud applications using AWS (VPC, ELB, Route53, S3 etc.)
• Worked with Custom AMI's, created AMI tags and modified AMI permissions.
• Created AWS S3 buckets, performed folder management in each bucket, Managed cloud trail logs and objects within each buckets.
• Ensured data recoverability by implementing systems snapshots, AMIs, RDS Replicas and application level backup to S3
• Life cycle configuration for data to live and cycle within buckets in accordance with how often it’s been accessed minimaxing cost
• Orchestrate, create and manage environment containers deployment and virtualization using Docker
• Worked on running Jenkins in Docker containers with AWS EC2 slaves in AWS Cloud configuration with Docker Swarm
• Using application lifecycle management across the company to implement and manage CI/CD pipeline processes and automation including building, auto scaling, cloud formation and systems operation monitoring
• Implemented Puppet for software deployments like managing and configuring Puppet master server, updating and creating modules and pushing them to the puppet clients.
• Worked on creating the Docker containers and Docker consoles for managing the application life.
• Configuring a local Docker hub for storing Docker images internally and using the Docker registry
• Manage deployment automation using Puppet, MCollective, Custom Puppet Modules
• Design and Implemented Cloud Orchestration solution using AWS EC2, Docker and Kubernetes.
• Experience using Docker to implement a high level API to provide lightweight containers that run processes isolation and worked on creation of customized Docker container images, tagged and pushed the images to the Docker repository.
• Implemented a continuous Delivery Pipeline with Docker, Jenkins and GitHub to build a new Docker container automatically using Jenkins whenever a new GitHub branches are created.
• Configured Nexus repository manager for managing the Maven artifacts and Implemented JIRA tool for project tracking and work flow control.
• Created batch Linux scripts to automate some processes such as temp & cache cleanup, Agents cleanup, Listener cleanup, dump cleanup including monitoring the growth of OS file system size
• Security groups configured and locked down to the various authorized subnets and ip addresses in AWS
• SSL setup for Apache and Nginx applications coupled with AWS ELB SSL for all http to https thereby maximizing security
• Managed & deployed a second layer of security on top of AWS Cloud environment using Qualys appliance to streamline security and compliance solutions
• Strong experience in designing and developing applications on AWS Cloud using S3, Aurora, Redshift, ElastiCache, EC2, VPC, Subnets, IAM.
• Experience in working with AWS provided Solutions like EC2, ELB, VPC, Route 53, RDS, S3, IAM, and Cloud Watch.
• Experience in using Tomcat and Apache web servers for deployment and for hosting tools
• Implemented security controls for AWS Virtual Private Clouds (VPCs), EC2 instances, RDS and Route 53.
• Design and develop information security architecture, cryptography, security assurance, threat modeling, IT risk assessments, SSO, and risk remediation activities.
• Experience with Identity and Access Management (IAM) and development of user roles and policies for user access management
• Experience in Architectural understanding of computing solutions and services, Cloud computing, Network topology, files systems, operating systems and servers and storage management, security practices, identity management, system recovery/backup tools and procedures, hardware virtualization, system monitoring and control processes and industry standards and trends
• Implemented and maintained the monitoring and alerting of production and corporate servers/storage using AWS Cloud watch

Environment: Oracle, Tomcat, AWS, Windows, Linux, EC2,ECS (Elastic Container Service),Elastic Load Balancer (ELB), S3, Glacier, RDS, VPC, Cloud Front, Route 53, Cloud Trial, SNS, Elastic Beanstalk, IAM

• Bachelor in Computer Sciences
• Post Graduate Diploma in Management Information Systems and Computer Applications
• Master’s in Public & Personnel Management.

7