EXPERIENCE SUMMARY:

Over 3 years experience in a large scale Cloud - based infrastructure and a total of 7 years of experience in Information Technology. Strong Knowledge of cloud solutions architecture designs, cloud security and network planning, automating cloud deployments and implementing cloud service solutions.

TECHNICAL PROFICIENCES:

AWS: VPC, EC2, Auto Scaling, Systems Manager, EFS, S3 Life Cycle, RDS with Multi AZ and Read Replicas, Route 53 DNS Designing, IAM role, JSON, AWS Migration, SNS topic with CloudWatch alarms, Kinesis, Direct Connect, AWS CLI, CodeCommit, CodePipeline

Platforms: AWS, RHEL, CentOS, Ubuntu, Debian

Programming Languages: JSON, Bash, Python

Tools/APPs: Apache, DNS, Servers, File systems, Firewalls, Account Management, Load balancing, SSL

DevOps Tools: CloudFormation, Ansible, Jenkins, CodeCommit, CodePipeline, Git & GitHub, Artifactory

Command Workstation: Microsoft Office Suite (Word,Excel, Access, Powerpoint,Outlook), Splunk, CSAM, NESSUS,CFACTS, Toad, OEM, SQL Developer

Networking: LAN / WAN Administration,VPN, TCP/IP, SMS/SQL, NAT, Subnetting, Cisco Routers & Switches, Firewall, Encryption, Windows active director

Protocols: IPSec, DNS, SSH, TLS, SSL, TCP/IP, HTTPS, SCP, ICMP, IPv4, IPv6, FTP, Telnet, SFTP, LDAP

PROFESSIONAL EXPERIENCE:

AWS Solutions Architect

Confidential, Baltimore, MD

Responsibilities:

• Architected Amazon RDS with Multi-AZ for automatic failover at the database tier
• Developed architecture diagram for the production environment using Google Diagrams.
• Recommended and implemented DR strategies for Business Continuity and HA
• Provisioned EC2 instances and related architecture using CFTs
• Provided technical perspective on infrastructure design options and configurations
• Developed Solution Definition Documents (SDD) and Low Level Design Documents for public cloud
• Designing AWS VPC and its associated NACL/Subnet/Route/Networking components
• Recommend and implemented security best practices in AWS including MFA, access key rotation, encryption using KMS, firewalls- security groups and NACLs, S3 bucket policies and ACLs, mitigating DDOS attacks
• Managed AWS infrastructure provisioning using CloudFormation
• Designed and deployed scalable, highly available, fault tolerant and reliable infrastructure in AWS
• Hands-on experience with AWS CLI including deploying CFTs, managing S3, EC2, IAM on CLI
• Monitored infrastructure and applications using CloudWatch
• Implemented cost optimization strategies in the AWS infrastructure
• Build highly available content distribution sites by using CI/CD tools like Ansible, Jenkins, Jira,
• Managed Ansible for configuration management
• Used AWS system manager documents run and automation command to automate operational tasks across AWS resources.
• Used Jira to plan, track, support and close requests, tickets and incidents. Prioritize the tickets from Blocker, Critical, Major or Minor.
• Delegated access across AWS accounts using IAM cross account roles
• Implemented STS to provided temporary access
• Setting up monitoring using SPLUNK and Cloudwatch

Information System Security Officer

Confidential, Bethesda, MD

Responsibilities:

• Experienced developing and maintaining security artifacts from scratch like SSP, SAR, and POA&M.
• Experience in the application of FISMA guidelines including the NIST special publications 800-18, 800-30, 800-37, 800-39, 800-53, 800-53A, and 800-60
• Understanding of the NIST Supplemental guidance for Ongoing Authorization
• Experienced selecting security controls for a Low, Medium and High systems from NIST 800-53rev 3 and 4
• Experience in performing gap analysis between NIST 800-53rev3 and NIST 800-53rev4.
• Worked with business process owners to ensure timely identification and remediation of jointly owned risk related issues and action plans.
• Managed the development of System Security Authorization Agreements and performed threat vulnerability assessments and provided security test and evaluation support.
• Development and maintenance of Plan of Action & Milestones (POA&M)
• Provided input to management on appropriate FIPS 199 impact level designations and identify appropriate security controls based on characterization of the general support system or major applications.
• Oversaw the preparation of a Comprehensive and Executive & Accreditation (C&A) packages for submission to the Information Assurance Program Office for approval of an Authorization to Operate (ATO).
• Reviewed security controls and provided implementation responses as to if/how the systems are currently meeting the requirements.
• Ensure customers are in compliance with security policies and procedures following NIST 800-53 and NIST 800-53A.
• Perform specific quality control for packages validation on the SP, RA, RTM, PIA, SORN, E-authentication assessment and FIPS-199 categorization
• Experience in FISMA, NIST Cyber security Framework, and OMB, NIST information security standards and guidance including FIPS 199, FIPS 200, NIST SP 800-53, and NIST SP 800-53A
• Strong understanding of Plan of Action and Milestone Process (POA&M) and Remediation procedures

Oracle Database Administrator

Confidential

Responsibilities:

• Troubleshooting backup/recovery issues
• Cloning and Refresh using RMAN
• Implementing database changes - schema, configuration etc
• Patching databases - CPU/PSU/Security Patches
• Performance tuning of long SQL queries
• Set up of Data Guard for High Availability databases
• Auditing databases for use of privileged access
• Performing database switch over for maintenance
• Planning and implementing RMAN backup policies
• Monitoring and troubleshooting database jobs and cron jobs
• Shell scripting for monitoring database health