We provide IT Staff Augmentation Services!

Cloud Infrastructure Security Specialist Resume

3.00/5 (Submit Your Rating)

SUMMARY:

  • Cloud Engineer with experience in Amazon Web Services. A resilient, focused and passionate professional seeking to use my knowledge and experience in helping to transform clients
  • IT infrastructure, operations and applications to the most innovative, scalable, highly available, secured, fault tolerant system and cost effective on AWS cloud platform.

TECHNICAL SKILLS:

  • Linux administration, Jenkins, Terraform, CloudFormation, Ansible
  • Docker container management
  • Expertise with IPsec, VPN, Load Balancing, Iperf MTR, Routing protocols, SSH
  • AWS.
  • Datebase experience ( RDS, DynamoDB, MySQL,SQL Server)
  • Network Monitory / Troubleshooting tools
  • Windows/Unix (bash, powershell, perl)
  • SQL, JSON, YAML, XML, Java, Python.

PROFESSIONAL EXPERIENCE:

Confidential

Cloud Infrastructure Security Specialist

Responsibilities:

  • Experienced with AWS services: EC2, S3, VPC Endpoints, VPC Peering, Transit VPC, Network Protocol, Subnetting, IPsec, VPN, Route53, ELB, Auto scaling, SQS, SNS, IAM, DynamoDB, Lambda, API Gataway, Auto Scaling, Amazon Kinesis, CloudFront, CloudWatch, CloudTrail, internet Gateway.
  • Configuring NACL, Security Groups and WAF to secure applications and VPC network with respect to access parameters and conditions.
  • Writing Lambda functions in python to query database and integrating the lambda function with API gateway to support end - end integration.
  • Setup storage for infrastructures in the AWS cloud using server-side encryption Key Managed Service (SSE-KMS)
  • Created and managed IAM user accounts and role-based policies for access to AWS services.
  • Created and managed users, permissions, directories and files in Linux environment.
  • Developed AWS CloudFormation templates to create custom sized VPC, subnets, NAT, EC2 instances, ELB, Security Groups.
  • Implement and maintain monitors, alarms, and notifications for EC2 instances using CloudWatch and SNS
  • Defining and deploying monitoring metrics and logging systems on AWS environment. Application and system log analysis using Cloudwatch, CloudTrail, and Logic Monitor.
  • Design, develop and implement high availability; backup and recovery strategy for applications and database.
  • Customized Lambda functions and Amazon Lex to work with Amazon Connect IVR
  • Experience on working in Agile Methodology/Scrum Team.
  • Setup and implemented AWS shield, AWS config, Amazon Macie and Amazon Inspector for the security and protection of sensitive data.
  • Used Terraform to provision application infrastructures employing tools like Autoscaling Groups, Security Group, VPC, CloudWatch etc
  • Researched on Open source tools for statics application security testing and dynamic application security testing for securing CI/CD pipeline
  • Build automated penetration testing within Aws environment
  • CI/CD pipeline management through Jenkins. Version control through GIT.
  • Adding Users into Active Directory
  • Designed and build a Multi Tier web application Infrastructure leveraging AWS VPC via Terraform for customer migrating an existing business into the Cloud
  • Implemented an automated process of patching of EC2 Instance using AWS OS Patching
  • Launching databases via RDS to support web application functionality
  • Experience on AWS Connect IVR, Lex and Lambda design and development

Confidential

AWS Admin/ Cloud Infrastructure Engineer

Responsibilities:

  • Provision of AWS resources using management console as well as Command Line Interface.
  • Plan, build and configure network infrastructure within VPC with public and private subnets, configure routing tables, security group and internet gateway.
  • Provide expert guidance on Amazon Web Services (AWS), GovCloud, Commercial Cloud Services (C2S)
  • Configure NACL, security groups and WAF to secure the application and VPC network depending on access parameters provided and conditions.
  • Setup and configure VPC PrivteLink (Endpoints), Direct Connect, Transit VPC, VPC Peering, Reverse Proxy Caching, CDN, IPsec and VPN for secure data transfer, and secured connection to other AWS services and other AWS accounts.
  • Automate positioning of cloud infrastructure using CloudFormation, Terraform; and application configuration and deployment using Terraform and Ansible.
  • Provision of Aws VPN connection using Terraform to connect cloud network and on premise Network which is Palo-Alto
  • CI/CD pipeline management through Jenkins, Version control through GIT.
  • Testing and deployment automation with Docker containerization and Jenkins. Automation of manual tasks using Shell scripting.
  • Using Docker in Environmental variables, Configuration files, Option types and Strings & integers.
  • Leverage AWS cloud services such as EC2, auto-scaling and VPC to build secure highly scalable and flexible systems that handled expected and unexpected load bursts.
  • Create and manage IAM user accounts and role based policies for access to AWS services.
  • Implement and maintain monitors, alarms, and notifications for EC2 instances using CloudWatch and SNS.
  • Perform S3 buckets creation, access policies and archive outdated data to Glacier through LifeCycle Policy configuration.
  • Launching databases via RDS to support web application functionality.
  • Create low latency website using S3, Cloud Front, and RouteS3.
  • Install Apache and Nginx Web Server on Ec2, (proxy server as needed).
  • Set up Ansible environment for configuration management, Dynamo DB, Elastic cache and Lambda.
  • Implementation of compliance with CIS Benchmark on AWS environment.
  • Enforcing company’s policies and procedures during design and implementation.
  • Defining and deploying monitoring metrics, and logging systems on AWS environment. Application and system log analysis using Cloudwatch, Cloudtrail, Data Dog, Logic monitor.
  • Design, develop and implement high availability; backup and recovery strategy or applications and database.
  • Hands-on experience and good knowledge of AWS services: EC2, S3, VPC Endpoints,VPC Privatelink, VPC Peering, Transit VPC, Network Protocol, Subnetting (Private and Public), IPsec, VPN, Route53, ELB, Auto scaling, SQS, SNS, IAM, DynamolDB, Lambda, Amazon Kinesis, Cloud Front, Cloud Formation, CloudWatch, CloudTrail, Storage Gateway, Internet Gateway.

Confidential

AWS Engineer

Responsibilities:

  • Planning, designing and developing solutions on Amazon Web Services.
  • Working closely with customers to get to know their business and technical goals and challenges.
  • Managing the relationship between the Organization’s technical demands and the capacity to be pulled from the AWS cloud.
  • Ensure compliance with the company’s policies and procedures during design, development and implementation.
  • Automation of cloud infrastructure configuration and deployment using cloud formation and Ansible.
  • Designing and deployment of public and hybrid cloud solutions for customers using appropriate services based on requirements.
  • Provisioning secure environment for AWS VPC network, and implement infrastructure as code using configuration management tools. Implementing CI/CD pipelines using Jenkins and monitor infrastructure.
  • Migration of customers’ on-premise workloads (applications) to the AWS cloud platform.
  • Design, develop and implement high availability, backup and recovery strategy for applications and database.
  • Evaluating and improving existing AWS deployments.
  • Scripting with Shell SQL, JSON, YAML, XML, Linus script.

Confidential

AWS Engineer

Responsibilities:

  • Proactively develop best practice standards, architectures, and procedures to support the utilization of cloud infrastructure services.
  • Installing/Patching ESX Cluster on VMware and install Linux virtual.
  • Proactive resolutions of issues and prevention of both physical and virtual servers’ outage.
  • Assisted in managing the AWS relationship and AWS interface managing/monitoring the utilized AWS services/resources.
  • Involved in architectural lead for migration of several application to the cloud.

We'd love your feedback!