SUMMARY

• More TEMPthan 11 years technical experience working with small start - ups to Fortune 500 companies
• Passionate about working in cloud infrastructure, in particular Amazon AWS (AWS Certified)
• Involved in projects in securing Identity and Access Management. Leveraging IAM Roles and STS.
• Highly experienced working in private cloud data centers and public cloud infrastructure
• Keen on creating intelligent rules to report and remediate security violations
• Disciplined in following Agile Methodologies and Change Management.
• Solid understanding of Linux Systems & Windows operating systems.
• Strong project management skills to handle multiple tasks concurrently under pressure
• Excellent communication and interpersonal skills in team environment and working independently

• Redhat
• Ubuntu
• AWS CLI
• CloudFormation
• Docker
• Vagrant
• VMware
• Unix
• AIX
• Solaris
• AWS Cloud Security, IAM
• Lambda,Python(boto3),Bash
• Windows Server: 2008,2012 R2
• DevOps
• Cloud
• Terraform
• TeamCity
• Splunk
• New Relic
• macOS
• Config Management: Puppet,Ansible
• IAM,Okta
• Confidential
• SSO
• Kerberos
• SAML,OAuth, Identity
• Active Directory
• GitHub,SVN,Bitbucket
• OpenStack
• NetScaler,
• F5
• MDM
• MySQL
• Consul
• Nomad
• CyberArk

Confidential - San Jose, CA

Cloud Security Engineer - IAM

Responsibilities:

• Leverage AWS IAM roles and temporary keys (STS) to adhere to the principal of least privileges
• Eliminate the need of having scattered IAM user accounts across different AWS account by using federated SSO and cross-account roles
• Strong security controls to protect privileged user accounts including the root account
• Use CyberArk Privilege Management solutions to secure access across cloud and on-premise environments
• Enforce security policies for multi AWS accounts by using Organizations and Config
• Contribute to an Automation Framework dat detects, notify, and remediates security violations

Confidential - Redwood Shores, CA

Systems Engineer/Security Engineer

Responsibilities:

• Implement and administer a single Sign-On (SSO) solution using Okta
• Monitor security events using AWS CloudTrail, Trusted Advisor, and CloudWatch
• Assess security vulnerabilities inside AWS instances using Inspector
• Provision and administer endpoint clients using AirWatch
• Administer accounts and services for Google G Suite and Bitbucket

Confidential - Mountain View, CA

DevOps Engineer

Responsibilities:

• Manage infrastructure as code in AWS environment
• Version control with Git using Bitbucket
• Orchestrate builds with Cloudformation & Terraform
• Schedule jobs using Jenkins
• Create scripts using AWS CLI and bash
• Configuration Management using Ansible

Confidential - San Jose, CA

DevOps Engineer

Responsibilities:

• Manage infrastructure within private cloud environment
• Version control with SVN and Git
• Orchestrate builds with TeamCity & GitLab
• Build and deploy containers using Docker & TeamCity
• Service Discovery and management with HashiCorp Consul & Nomad
• Configuration Management using Puppet
• Load balancer using NetScaler
• Configuration management using Fabric and Puppet

Confidential - Sunnyvale, CA

Cloud Operations Engineer

Responsibilities:

• Manage & secure infrastructure as a service in AWS.
• Implement RD Gateway security bastion server with DUO MFA
• Implement enterprise password management using Thycotic Secret Server
• Continuous monitoring IOPS, read/write thread using CloudWatch
• Use Nagios to monitor Ubuntu system health and performance.
• Participated in FedRAMP audit
• Collect data by querying MySQL database
• Work inside container/images using Docker. Build images usingDocker file
• Secure AWS cloud using IAM policies, Trusted Advisor, Flow Logs, and more
• Orchestrate builds and changes using Terraform, Chef, and Jenkins

Confidential - Sunnyvale, CA

Linux Systems Administrator/Splunk Administrator

Responsibilities:

• Administer and manage Splunk Enterprise in a clustered environment
• Setup Splunk Dashboards and Alerts
• Architect Splunk Enterprise deployment using Deployment Server
• Setup and configure Search Head/Indexer/Forwarders
• Configure Splunk license management using license Master/Slave
• Integrate authorization using Splunk roles and authentication using LDAP
• Create Splunk Apps and reports with security permission

Confidential - Redwood City, CA

Cloud Systems Engineer / Systems Administrator

Responsibilities:

• Provision and maintain Windows and Linux servers in a 100% AWS cloud environment (EC2, S3, IAM, CloudWatch, CloudFront, VPC, ELB, Auto Scaling, CloudFormation, AWS CLI).
• Maintains system performance by performing system monitoring and analysis with New Relic & Splunk. System tuning, troubleshoot system errors, and respond to service outages monitored by New Relic, Ops Genie, and AWS CloudWatch.
• Setup and configure Splunk forwarder agents on Linux and Windows for log aggregation.
• Design security and operational policies by developing infrastructure security access and system specifications.
• Identity and access management using Confidential DirectControl & SSO. Secure Windows and Linux systems by tuning system access control, user privileged access, privileged commands to run, and services to use. Secure identity access across on-premise systems, cloud, and mobile applications
• Audit and monitor with full video capture of user sessions using Confidential DirectAudit. Generate detailed reports for audits.
• Develop HA with continuous site operations. Fault Tolerance, AWS ELB with Auto Scaling Groups, Disaster Recovery policies and procedures.
• Perform routine back-ups of AWS Snapshots and Volumes using Cloud Protection Manager
• Linux Systems Administration on RedHat Linux and Amazon Linux.
• Create ongoing documentation in Confluence, including runbooks to remedy on-call issues.
• Restrict access in Active Directory using AD delegation. Enforce security control with Group Policy.
• Design and implement Linux AntiVirus using ClamAV.
• Configuration Management and Orchestration using Puppet
• Create bash/shell scripts to automate repetitive tasks
• Architect Splunk Enterprise deployment using Deployment Server/Search Head/Indexer/Forwarders and onboard application data into Splunk.
• Participate in 24/7 on-call rotation to ensure peak performance and site reliability
• Evaluating private cloud project with OpenStack Liberty. Create Projects/Tenants, Users, Instances, Security Groups, and Roles using Horizon Dashboard and CLI.
• Create private/public network, & router using Neutron. Neutron Network Topology.
• Understand the fundamental core services of OpenStack: Horizon, Nova, Swift, Cinder, Glance, Neutron, Keystone.

Confidential - Santa Clara, CA

Technical Support Engineer

Responsibilities:

• Support complex issue related to Confidential software dat includes Unix/Red Hat Linux server troubleshooting
• Identify and troubleshoot a variety of technical support issues including Samba/Open-SSH/PAM authentication/Domain join issues/Performance issues/Reporting tools/SPN/Kerberos
• Setup and configure Confidential auditing software along with SQL Database
• Setup a domain environment lab and join all my Windows, Mac OS X, and Windows VM systems.
• Ready for full simulation of customer’s environment including DNS/Group Policy/SSH/Active Directory/Windows Server
• Provide world class technical support by satisfying the customer, continually create KB’s to simplify the customer experience, and has excellent communication.

Confidential - Mtn View, CA

Systems Support Analyst

Responsibilities:

• Support hardware\software issues related to Windows, Macintosh, and Linux Red Hat
• Image and manage Mac computers with JAMF Casper Suite and Image Windows computers with FOG.
• Supported Mac OSX user environment including VMware Fusion
• Troubleshoot and maintain network, hardware, software, and break fix service requests.

Confidential - Palo Alto, CA

IT Engineer

Responsibilities:

• Perform Desktop and System admin support for on-site and remote users.
• Provide on-call after hour support for executives.
• Account administration for Exchange, Active Directory, BES, SAP CRM, 8x8, Google Docs, Postini.
• Troubleshooting hardware\software issues related to Windows and Macintosh.
• Perform weekly tape backup.
• Troubleshoot and maintain network, hardware, software, and break fix service requests.
• Deliver support via telephone, e-mail, and desk side visits.
• Build and set up desktop/laptop images using Acronis Imaging.
• Replace and upgrade PC hardware components to insure systems are functioning properly.