SUMMARY

• A young, innovative and goal - oriented AWS Cloud Solution Architect /Project Manager offering about 7 years’ experience in designing and implementing a well architected, secured, cost-optimized, fault tolerant, self-healing and highly available infrastructure.
• Proficient in configuring and implementing CI/CD pipeline using Jenkins and AWS Code pipeline.
• Provisioning a highly scalable infrastructure on AWS utilizing Cloud Formation and terraform as Infrastructure as Code (IAC) and automating this configuration with Ansible.
• Proficient in cloud security, Identity and Access Management, Networking, EC2, AWS governance and control, application delivery, data protection, patch management and project management skills.

TECHNICAL SKILLS

• AWS Cloud Formation
• Terraform
• Networking (VPC
• Subnet
• IGW
• NGW)
• Data Protection: AWS Certificate Manager
• AWS KMS
• Snapshot Life
• Governance &Compliance: AWS Organization
• AWS Config Rules
• AWS Control Tower
• AWS trusted Advisor
• AWS Budgets
• AWS License Manager
• Life cycle Manager
• AWS Migration
• Ansible
• Docker
• Jenkins
• AWS Code Pipeline
• AWS Code Commit
• AWS S3
• EBS
• Identity and Access Management
• Control Tower
• Route 53
• Programming Languages: Bash
• JSON
• YML
• Python.

PROFESSIONAL EXPERIENCE

Confidential

AWS DEVOPS ENGINEER

Responsibilities:

• Ensure optimal performance by maintaining a 99% uptime and continuous availability on all services utilizing several monitoring tools.
• Designing and implementing automation infrastructure for configuration management and orchestration deployment using Automation tools such as Ansible.
• Manages provisioning of AWS infrastructures using Cloud Formation and Terraform.
• Used Ansible for configuration management.
• Perform data migration from on premises environments into AWS.
• Built and maintained automated CI/CD processes for applications with Jenkins, eliminating up to 70% of manual work which reduced human error and sped up production.
• Leverage an efficient server less architecture with Lambda function integrated with SNS, Cloud Watch logs and other AWS services.
• Assisted developers in breaking up monolithic app into micro services, improving developer workflow, increasing scalability, and optimizing speed to meet the business.
• Securely deploy MySQL Primary DB and its read replica in private subnet with multi-AZ for disaster recovery and best practice.
• Creates patch management using Systems Manager automation for multi-region and multi account execution.
• Implemented detective guardrails using Cloud Custodian policies and AWS config.
• Implementing a design to achieve elasticity and scalability using ElastiCache, Cloud Front - Edge locations, RDS (read replicas, instance sizes), etc.
• Developed a solution design document as well as low-level design for WK J2C-AWS.
• Migration of high availability webservers and databases to AWS EC2 and RDS with minimum or no downtime.
• Make recommendations for improvement of service performance, reliability, security and scalability.
• Used AWS system manager to automate operational tasks across AWS resources.
• Project Management -AWS Infra design and application migration.
• Used System Manager to automate operational tasks across WK AWS infrastructure.
• Implement security best practices in AWS including enforced strong password policy, access rotation, multi-factor authentication, security groups configuration, S3 Bucket policy and NACLs.
• Develops and documents security guardrails for AWS Cloud environments.
• Build custom images though Docker server, Docker compose with multiple local containers, and created production grade workflows and a continuous application workflow for multiple images.
• Implemented multiple container deployments to AWS and maintained sets of containers with deployments.
• Utilizing Jenkins, Docker, GitHub and Git for version control, code build, testing and release including CI/CD to develop CI pipeline in collaboration with automation testing team.
• Designed secured, cost optimized, highly available and fault tolerant infrastructure in AWS.
• Configured and designed Dev/Stage/QA environments in AWS (VPC, subnets, security groups, EC2 instances, load balancer, RDS, Redis, route53, etc.).
• Implementing Cloud Solutions using various AWS Services including EC2, Virtual Private Cloud (VPC) Glacier, EFS, Lambda, Cloud Formation, Elastic Beanstalk, ElastiCache, RDS, Redshift, Dynamo DB, Terraform, Docker, Kubernetes.

Confidential

CLOUD ENGINEER

Responsibilities:

• Managed provisioning of AWS infrastructures using Cloud Formation.
• Designed for high availability and business continuity using self-healing-based architectures, fail-over routing policies, multi-AZ deployment of EC2 instances, ELB health checks, Auto Scaling and other disaster recovery models.
• Implemented preventive guardrails using Service Control Policies (SCPs).
• Applying detective guardrails utilizing Cloud Custodian policy framework and AWS config.
• Designed and implemented for elasticity and scalability using Elastic ache, Cloud Front - Edge locations, RDS (read replicas, instance sizes) etc.
• Implemented security best practices in AWS including multi factor authentication, access key rotation, encryption using KMS, firewalls- security groups and NACLs, S3 bucket policies and ACLs.
• Implemented Jenkins, GitHub and Git for version control, code build, testing and release and CI/CD.
• Monitored end-to-end infrastructure using Cloud Watch and SNS for notification.
• Used AWS system manager to automate operational tasks across AWS resources.
• Used System Manager to automate operational tasks across WK AWS infrastructure.
• Built kinesis dashboards and applications that react to incoming data using AWS provided SDKs; and exported data from kinesis to other AWS services including EMR for analytics, S3 for storage, Redshift for big data and Lambda for event driven actions.
• Developed and documented security guardrails for AWS Cloud environments.
• Built custom images though Docker server, Docker compose with multiple local containers and created production grade workflows and a continuous application workflow for multiple images.
• Setup, Configured, and used Ad Hoc ansible Command
• Designed secured, cost optimized, highly available and fault tolerant infrastructure in AWS.
• Designed a highly available, secured and self-healing environment using AWS (VPC, subnets, security groups, EC2 instances, load balancer, RDS, Redis, route53, etc.) .
• Implemented security best practices in AWS including multi factor authentication, access key rotation, role-based permissions, enforced strong password policy, configured security groups and NACLs, S3 bucket policies and ACLs, etc.
• Optimized cost through reserved instances, selection and changing of EC2 instance types based on resource need, S3 storage classes and S3 lifecycle policies, leveraging Auto scaling etc.
• Leveraged EC2 Create Snapshot API call to create snapshots of EBS Volumes on scheduled intervals.
• Configured Cloud Watch alarm rules for operational and performance metrics for our AWS resources and applications.
• Setup and configured logs files for detail monitoring and alerts notification when changes are made.
• Monitoring from end-to-end view of runtime systems CPU, bandwidth, disk space and log files using New Relic.
• Deployed and configured infrastructure using Terraform and Ansible.
• Architected and implemented continuous integration and deployment pipelines using Jenkins.
• Installation, configuration and administration of Enterprise Linux.

Confidential

SOLUTIONS ARCHITECT / ENGINEER

Responsibilities:

• Designed, deployed and clustered High Availability servers on VMware Exsi using vSphere Client.
• Performed applications installation, upgrades/patches, troubleshooting, maintenance, and monitoring Linux servers.
• Created, managed and administered user accounts security and ssh password less login.
• Network configuration & troubleshoot issues with respect to network and configuration files.
• Configuring Apache, NFS, FTP, and SMB.
• Create users, groups and give permissions on bear metal servers.
• Task automation, service management and application deployment using Ansible and Jenkins.
• Build and configured Linux servers from scratch with type one hypervisors for virtualization and network components
• Perform security setup, networking, system backup and patching for both AWS, and on premise environments.
• Architect high availability environment with auto scaling & Elastic Load Balancer.
• Securely deploy MySQL Primary DB and its read replica in private subnet with multi AZ for disaster recovery and best practice
• Migration of high availability webservers and databases to AWS EC2 and RDS with minimum or no downtime
• VPC build with Private and Public Subnet couple with VPNs setup back to on premise datacentre and cooperate offices.
• VPC peering with other Accounts allowing access and routing to service and users of separate account to communicate.
• SSL setup for Apache and Nginx application couple with AWS ELB SSL for all http to https thereby maximizing security.
• Network, CPU, Disk and connectivity monitoring with Cloud Watch and setup to trigger alarm and notify system administrators.
• Aide setup for and configured for logs files detail monitoring and alerts notification when changes are made.
• Performed root-cause analysis of recurring issues, system backup, and security setup.
• Security groups configured and locked down to the various authorized subnet and IP addresses in AWS.
• Automated deployment, configuration and security settings using Ansible.
• Experienced in GitHub (cloning a Git repository, creating a branch, pushing to Git from local, making a PR, etc.).
• Architected and implemented continuous integration and deployment pipelines using Jenkins and other CI. And experienced in GitHub.