SUMMARY

• An experienced DevOps Specialist, Security Consultant, Cloud Infrastructure Designer, Linux/Open Source and Network Infrastructure specialist with considerable skill in teh design, installation and management of high end, high performance, resilient and highly available computer systems.
• Possesses expert analytical and problem analysis skills with an exceptional record for delivery. Very strong Linux automation and scripting skills with a calm, methodical approach to implementation and service delivery combined with an excellent ability to present technical information and concepts to a non - technical audience.
• Infrastructure Development
• Application Stacks
• Containerization
• High Availability
• OSI Network Layers
• Openstack
• Databases
• Client Communication
• Storage Network Design
• Google Cloud
• Cloud Network Design
• VMware
• Big Data Hadoop
• Microscoft Azure
• Load Balancing
• Web Application
• Network Monitoring
• Backend Development
• Amazon AWS
• Linux/Unix
• Kubernetes

TECHNICAL SKILLS:

• Cisco IOS, RedHat, Linux, Centos, Debian, Ubuntu, FreeBSD, Windows NT/2003/XP, Solaris 10 Cisco Routers/Switches/ASA firewall, F5 LTM and Juniper ERX, Foundry Load Balancers
• BGP, OSPF, EIGRP, RIP
• VLAN, STP, RSTP
• Cisco ASA, Checkpoint R71, Iptables
• OpenSSL, RSA, DSA, 3DES, ASA
• SNMP, DNS, Sendmail, Qmail, Exim, Postfix, Imail, MySQL, MSSQL, Apache, Microsoft Exchange, RADIUS, Active Directory, Spacewalk, Cobbler, RAID, Squid Proxy, Jenkins, Git, Puppet
• MySQL, MSSQL, LDAP, PgSQL, Cassandra, MongoDB
• Veritas Volume Manager, NetApp Data-OnTAP, EMC Celerra, EMC Vnx, Bacula, CA ArcServe, Netvault
• VMware VCloud, ESXi, Amazon AWS, Azure, OpenStack
• Puppet, Python Fabric, Celery, Docker, Ansible, Jenkins
• Zabbix, Nagios
• Python, C++, Ruby, GoLang, QT, Node.JS
• Hive, Spark & Pig
• Docker, Vagrant
• EC2, Elastic Beanstalk, S3, Redshift, AMR, RDS, Lambda Functions
• Redis, Gearman, rabbitMQ
• Elasticsearch, Apache Solr
• Cloudera 5.5, Hortonworks 2.2, Pivotal Greenplum, Intel IDH
• HTML5, CSS3, Javascript,Node.JS, Express.JS,Socket.IO, MongoDB,MEAN Stack

PROFESSIONAL EXPERIENCE

DevSecOps and Cloud Solution Architect

Confidential

Responsibilities:

• Design and implement microservices architecture on Kubernetes for British Gas
• Secure Kubernetes CI/CD pipelines on Azure Devops and AWS codepipelines
• Implement Zero trust model via kube2iam, alb-ingress controllers etc
• Aquasec container security implementation
• Network security implementations using Calico, AWS CNI configurations
• Terraform EKS along with basic helm charts for auto-cluster configurations for different environments
• Secrets management using AWS secrets manager for microservices
• Implement AWS cloud security standards on aws resources
• Codepipline devops strategy to deploy microservices.
• Design and Architecturize DevSecOps standards for all teh BAU’s including britishGas, HIVE and DirectEnergy(USA)
• Microservice and Cloud architecture design for AKS and EKS
• DevSecOps tools for git-secrets, container scanning and SAST
• Aquasec and SAST devsecops as a service solution for BAUs
• Azure and AWS cloud architecture for cloudcustodian, rapid7 and jfrog
• AKS and EKS Zero trust model microservice architecture design and implementation
• SecDevops Cloud operating model
• Kiuwan SAST centralized deployment for repository scans
• Azure AKS,API Gateway,Data Factory terraform automation
• Azure and AWS VNet/VPC integration and secure hybrid cloud environment
• Nexus,Twistlock and various vendors product reviews and PoCs
• Azure Devops and AWS codepipeline devsecops standards and PoCs.
• Centralized SAST,DAST,Container scans for pipelines
• Build devops teams for Azure and AWS projects.
• Microsoft Windows Azure environments, ADFS,Identity management, IAM etc.

Senior Secure Devops AWS Infrastructure Architect

Confidential

Responsibilities:

• Design and Architecturize Nodejs - MongoDB enterprise application
• Design highly available and secure AWS platform for BAU projects hosting around 30 projects, for 20+ developers and 3 scrum masters.
• Devops Git, Jira, Slack integration, Codepipeline notifications reports, Cloudwatch alarms and logs
• Implement BT Enterprise security standards
• Design Continuous Deployment Pipeline on AWS using Packer,Codebuild,CodeDeploy and CodePipeline
• Ansible configuration management for EC2 instances
• Terraform AWS Infrastructure Provisioning
• AWS Lambda devops tools for notifications, backups and reports
• Centrallized Auth infrastructure design with AWS Cognito and backend internal webservers.
• AWS Codepipeline, Codebuild custom Python Boto3 Dashboards
• AWS API Gateway, Lambda Auth Architecture design with backend DynamodB
• Design higly available and secure API gateway infrastructure on AWS
• S3 Bucket, Lambda, DynamoDB Data at rest encryption and data at transit encrpytion using AWS KMS keys, LUKS disk encryption using AWS KMS
• Lambda Autantication module in Python for CORS and HTTP referrer verfication for API Gateway
• Devops Dashboard for AWS Codepipline using Python Boto3
• EC2 automated backup and lifecycle managed using Lambda Python boto3
• CIS (center for information security) operating system standards on Ubuntu 16.04 LTS
• Packer automated AMI build using codebuild
• IAM roles and polices for AWS Services
• Centralized logs for all services on cloudwatch using cloudwatch agents
• Patch management using Amazon SSM on EC2 instances

Senior SaltStack Consultant

Confidential

Responsibilities:

• Design and Architecturize SaltStack infrastructure for 10,000 servers across 5 geographical regions
• Foreman Integration with SaltStack
• Salt States for middleware applications IBM websphere, tomcat, jboss etc
• Google GCP PoC

Big Data DevOps Architect

Confidential

Responsibilities:

• Immutable infrastructure using Packer & Ansible
• RedHat Openstack Baremetal deployment
• Hortonworks Hadoop deployment on Open-stack
• Salt Stack for Configuration Management
• ETL batch processing with Azkaban
• MongoDb & PostgreSQL cluster automation
• Maven’zng java apps and build Docker Container
• HIVE db roles and schema with ETL processes.
• Google GCP hortonworks deployment for development environments

DevOps Automation Consultant, AWS

Confidential

Responsibilities:

• Terraform full AWS infrastructure deployment
• Ansible EC2/S3/ECR provisioning on AWS
• Maven‘ising existing Java application
• Migrate existing IBM Websphere application to Tomcat
• Jenkins CI/CI pipeline with Docker container and Intgeration,Unit and Smoke tests.
• Google GCP and AWS python SDK automation scripts.

Chef Azure Devops Senior Hadoop Devops Engineer (AWS)

Confidential

Responsibilities:

• Chef deployment and knife playbooks for City of Copenhagen Data Science Project (Hitachi)
• Ansible EC2/S3/ECR provisioning on AWS
• DCOS Mesos and Marathon spark cluster with Jupyter Spark notebook
• Marathon service discovery smartstack,consul,synapse
• Dockerize Jenkins, Spark, and Smartstack service discovery
• CI & CD Jenkins Docker deployment to Mesos cluster
• AWS Cloudformation for mesos/marathon cluster
• Sensu Dockerized containers for marathon with smartstack
• Python Flask/Django framework with Celery for distributed scheduling.
• Teraaform AWS automation framework
• Google GCP BigQuery PoC.

DevOPS & Backend Developer, AWS Cloud Platform

Confidential

Responsibilities:

• Backend Node.JS- socket.io and Elasticsearch/mongodb application development
• Backend schedulers written on Node.JS
• Deployed and directed AWS Elastic BeanStalk for frontend, backend and Varnish Clusters for php-symfony framework with AWS RDS database.
• Varnish Docker Elastic Beanstalk deployment; and automated unsetting Cookie from Varnish and clearing varnish cache from teh backend servers on Varnish Cluster.
• Introduced Hiera for existing Puppet deployment and introduced Ansible for inventory management along with Git Flow
• Performance tuning and troubleshooting from browsers and backend to improve page response times for dynamic content.
• Introduced AWS IAM and VPC security groups; additionally managed AWS AMR & Redshift for data analytics
• Google GCP cloud SQL database service

Lead Systems Architect, Big Data Platform

Confidential

Responsibilities:

• Playing a key role in teh cloud-based Hadoop and Spark infrastructure by directing Ancillary web services throughout teh core cluster including multi-tenant Big-Data Hortonworks Kerberized HDP 2.2 platform, FreeIPA Architecture and Apache SSL Single-Sign on and complete data and network encryption on teh Hadoop cluster; all this was done from scratch.
• Designing Single-Sign on autantication, authorization and audit in addition to completing teh full life-cycle DevOps automation suite with Ansible, Puppet and Jenkins by utilising Git Flow
• Implementing an agile approach to create deployment framework whilst collaborating with architects, project management team and additional engineers and partners
• Performing Openstack cloud architecture deployment and automation as well as developing Python Tornado Application framework for SSO and Kerberos Autantication
• Applying security controls in teh platform, software and processes; also coordinating with teh UX team to confirm optimal usability of teh platform
• Utilising Sqoop and Python for data ingestion framework and conducted Spark data analysis; moreover, performing R Studio Integration with Hortonworks and using Hive queries for data analysis
• Executing Spark data analysis for medical records case study
• Configured Amazon AMR, RedShift and S3 for Big Data Processing for IoT projects
• Apache loadbalancing; performance tuning; deployment with Tomcat and JBoss J2EE Container.

Senior DevOps Engineer

Responsibilities:

• Developed automation suites for VCloud and VAPP/VM deployments through Skyscape with Python; furthermore, performed Puppet infrastructure automation with Jenkins and Git workflow
• Used Ansible playbooks for bootstrapping and conducted Zabbix, Graphite, Elasticsearch architecture deployments in addition to Nginx and Java application stack performance tuning
• Developed DVLA IL2 and IL3 infrastructure and provided Git flow and continuous delivery through Jenkins application deployment; also, designed Postgres Clustering and High Availability
• Deployed Varnish for backend server along with Zookeeper cluster
• Backend Tomcat and Spring framework infrastructure deployments and automation.

DevOps Big Data Solution Consultant

Confidential

Responsibilities:

• Accomplished a myriad of tasks including Amazon AWS cloud formation, python fabric and puppet for automated server deployment and development of automation suites for IDH.3 and Cloudera 5.0
• Completed Openstack and Foreman automated on-demand and auto-scaling for Hadoop clusters as well as Vcloud API Automation Suite

DevOps Infrastructure Analyst (Big Data)

Confidential

Responsibilities:

• Delivered EMC Greenplum GPHD, DCA Hadoop deployment and configuration; deployed EMC Greenplum Pivotal HD and implemented EMC Isilon HDFS and NAS
• Designed and frame worked Python Django Celery distributed web scraping architecture
• Designed Puppet Foreman automated build environment
• Upgraded Backend Tomcat and Elasticsearch architecture design and utilised Logstash and Elasticsearch for Cisco ASA, Linux and Windows log centralization
• Performed Zabbix and Nimsoft monitoring architecture and worked with Zabbix API tools written in Python; also, provided Graphite, Statsd. Python application for real-time monitoring in nearly 1 second
• Utilised Python D3.js custom graphs as a high level dashboard and wrote Python Selenium web test framework on live sites.
• Deployed Greenplum Hadoop on Amazon EC2 compute resources and used python boto for automation; whilst using Apache pig for Mapreduce programming
• Managed VCloud configuration and as well as used packer.io with AWS load balancers for Autoscaling
• Deployed AWS Elastic Beanstalk with Autoscaling for frontend and backend servers; including Varnish clustering

Lead Infrastructure Systems Designer, 02 Wifi

Confidential

Responsibilities:

• Performed comprehensive systems architecture for O2 Wifi throughout teh UK as well as major Zabbix monitoring architecture for core devices as well as for over 10,000 hotspot locations across teh UK
• Designed high web caching performance service architecture; and wrote custom c++ content and business logic for squid and safesquid
• Puppet infrastructure via Mcollective, Hieradb and RabbitMQ; also deployed Hadoop, Riak, MySql Nodes
• Conducted installation of EMC VNX and HP D2D storage appliance
• Initiated and coordinated a new datacentre which included procuring hardware
• Architectured automated deployment of VMs and customer vlans in addition to data mining, tcp traffic analysis of complex networks and systems
• Developed operation continuity business connector application and complex Radius and DNS configurations with 10G loadbalancers
• Configured Coovachilli access gateways and Cisco Wireless Lan controllers as well as Safesquid, Squid webcaches with ICAP and WCCP protocols
• Configured and managed Radius AAA, performed data mining; vagrant and Cloudmin development stack;
• Furthermore, used logstash, graphite and D3.js to develop Realtime graphing and reports and delivered reporting through Zabbix Python API scripts
• Used PySphere for Python ESXi automation as well as C++ and Python modules for high traffic webcaches whilst deploying and configuring multiple build environments
• Deployed and configured 10G loadbalanger.org; used Python Unittest tools, Python SNMPtrap server for Zabbix and Python based server performance test tools

Unix Systems Engineer

Confidential

Responsibilities:

• Managed Centos and Ubuntu Amazon EC2 with over 200 instances and Amazon RDS deployment for a variety of projects; also, delivered Amazon S3, AMI backup deployment
• Implemented Python scripts for directing EC2 instances as well as for infrastructure automation; meanwhile, performed Puppet configuration and deployment for automation
• Used Nagios, checkmklive and pnp4nagios for event monitoring solution and managed architecture for premium customers such as Barclaycard and Sainsbury
• Configured Citrix Netscaler loadbalancer and managed teh Microsoft SQL server while working in teh VMware ESXi and VMware environment and conducting checkpoint R71 Service management as well as Secure Gateway administration

Systems Architect

Confidential

Responsibilities:

• Performed Linux infrastructure deployment of a broad-spectrum of services and used Python scripting for automation; also, deployed Nagios and used Python and checkmklive for plugin scripting
• Apache and Django server architecture and automated deployments
• Used Puppet to centralize server configuration and provided VMware ESXi 4.1 management and troubleshooting; moreover, worked with Python Nagios for VMware ESXi servers and deployed Xerox 7500 series print services
• Monitored and configured Squid using snmp; also, managed mercurial repository and managed Solaris 10 servers and zoning for virtualized aspects
• Configured custom cacti RRD and applied Python for plugins as well as used PXE build servers for Linux and Windows deployment
• Implemented GEIST devices for Python scripting of weather monitoring, used iptables and Cisco firewalls for Linux server hardening, configured Splunk centralized log server and deployed NetApp server for VMware ESXi datastore and backups

Senior Systems Engineer

Confidential

Responsibilities:

• Played a pivotal role in teh maintenance of teh Cable and Wireless NHSmail hosting solution and provided advanced postfix configuration for a daily mail server load of 30 million
• Initiated VMware Vsphere client for VMware ESXi installation and client deployment; also, performed Microsoft Exchange 2007 troubleshooting as well as Wireshark and tcpdump troubleshooting
• Conducted Postgresql data analysis through Python scripts and
• Delivered performance tuning for high availability and high load Linux servers as well as performance tuning of NAS and NFS to deliver a vast amount of data
• Travelled overseas to Rome and Switzerland

Senior Systems Engineer

Confidential

Responsibilities:

• Designed and developed UNIX/LINUX architecture and DNS architecture for webhosting platform
• Performed Cisco routing and switching as well as Big IP F5 and Foundry loadbalancers administration among a myriad of additional s
• Successful in many developments including Puppet automation, MySQL Clustering, Windows iis6 migration, cacti and rancid tuning and shell scripting