We provide IT Staff Augmentation Services!

Sr. Cloud Infrastructure Engineer Resume

3.00/5 (Submit Your Rating)

Atlanta, GA

SUMMARY

  • Senior Cloud/DevOps engineer with over 8+ years of IT experience with excellent knowledge in Configuration Management, Continuous Integration and Continuous delivery (CI/CD),Build and Release, Linux and System Administration with a major focus on Cloud Platforms Amazon Web services(AWS), Azure.
  • Which also includes a wide variety of technologies while working on multiple DBMS, Operating Systems & programming languages with best practices of software configuration Management (SCM) in agile, scrum and waterfall methodologies.
  • Well versed in variousAzureservices likeVirtual Networks, Virtual Machines, Resource Groups, Active Directory, Express Route, Traffic Manager, VPN, Load Balancing, Azure Blob Storage, Virtual Machine Scale Sets,AzureStorage,Application Gateways, Web Apps, Logic Apps, Azure Data Factory, Azure Application Insights,Azure Log Analytics, Azure SQL Data Warehouse,Azure Monitoring, Key Vault, Azuresearch, and Azure Notifications Hub, configuring VSTS pipeline with Azure app container services.
  • Experience in migrating on - premises to the Windows Azure DR using Azure Recovery Vault and Azure backups, Azure Fabric, Docker containers to the cloud in Azure and created Domain Controller in one of the Virtual Machine and added users to Domain Controller.
  • Experience in writing ARM templates from scratch to deploy the existing v1 Azure infrastructure into v2 New Infrastructure and templating the whole end to end process as possible. Configuring the Azure Load Balancer to Load balance incoming traffic.
  • Managed migration of on-premises SQL Server databases to SQL Azure Database using SQL Azure Migration Wizard and used Python API to upload agent logs into Azure blob storage.
  • Creating and Managing Virtual Machines in Windows Azure and setting up communication with the help of Endpoints. Configured Shared Access Signature (SAS) tokens and Storage Access Policies in Azure Cloud Infrastructure.
  • Deployed application which is containerized using Docker onto a Kubernetes cluster which is managed by Azure Kubernetes Service (AKS).
  • Deep knowledge in Utilization of AWS services such as EC2, Load Balancer, lambda, S3, RDS, DynamoDB. Security and network management by VPC, Subnet’s, IAM, WAF. Integration layer Services like Kinesis, SNS, SQS, Route53 and Orchestrated application workflows using AWS Fargate, EKS.
  • Worked on migrating the tier-0 microservice applications from on-premises servers to Kubernetes service (EKS) on AWS and creating Auto scaling groups for EKS clusters in both region level and Availability zone level
  • Expertise in writing Cloud Formation templates to deploy EKS clusters on AWS and used Jenkins to setup the CI/CD. Worked on Kubernetes cluster to deploy microservices for various applications and supported the cluster services, load balancing, network policies.
  • Written Terraform templates with a focus to maintain high-available, fault tolerant, and auto-scalable resources. Hands on experience on using AWS Serverless servicelike lambda as a back-end service and a middleware for log processing.
  • Configured various triggers and used AWS messaging services like SNS, SQS, SES, Pinpoint. acquainted with database services like Amazon Aurora, RDS, DynamoDB and Redshift.
  • Created generic Infrastructure-As-A-Code templates using Terraform dat were leveraged by various environments like Dev, UAT, Prod by passing the respective .tfvars file which reduced the difficulty of maintaining parallel environments and made it practical to elastically create and destroy them whenever required.
  • Expertise in working with Terraform Infrastructure automation and automated the provisioning of both AWS and Azure infrastructure by utilizing Execution Plans, Resource Graphs and Change Automation features extensively used to support tier-0 with application where high availability is required.
  • Extensively worked on AKS Clusters (Azure Kubernetes Cluster) and written YAML files to create necessary services like pods, deployments, auto-scaling, load balancers, labels, health checks, Namespaces, Config Maps.
  • Played a pivot role in implementing DevSecOps Model across the organization platform and implemented vulnerability checks Confidential different phases of deployment.
  • Worked on Kubernetes Operation (kops) with Terraform scripts to get a production-grade Kubernetes cluster up and running on AWS Cloud. Provided support for installing CNI providers, and cluster validation. Improved kops rolling update to include support for draining and validating clusters.
  • Experience in setting up and managing Kubernetes clusters by using Helm charts and used Flux for deploying any code changes made SCM tools like GitHub, Bitbucket on the Kubernetes cluster.
  • Expertise in integrating Docker container-based test infrastructure to Jenkins CI test flow and set up build environment integrating with Git and Jira to trigger builds using Web-Hooks and Slave Machines.
  • Worked across functional staging environments and project teams to setup Kubernetes clusters on both on-premises and cloud environment, Deployed applications as microservices on clusters using Docker for containerization, (CI & CD) process by Jenkins and used GITHUB, Docker hub for Artifactory, SCM.
  • Experience in different log monitoring tools like Nagios, Prometheus, Grafana and Datadog, Splunk, ELK (Elastic Search, Log Stash, Kibana) to see logs information, monitor, security and get the health notifications from nodes.
  • Utilized Ansible Tower to create projects, Inventory files, jinja2 templates, used Python SSH as the wrapper to manage configurations of Azure Nodes and being able to test them on Azure Instances.
  • Strong Experienced in managing Ansible Playbooks with Ansible roles, high-level child-branch strategies inventory management, group variables, copy and remove files on remote systems using file module.
  • Extensively worked on Ansible Playbooks, Inventory files, Vault feature to configure the servers, deploy software, encryption of data file & orchestrate continuous deployments with zero downtime rolling updates.
  • Hands on experience with build and CI/CD tools like Bamboo, Hudson/Jenkins, Sonar and ANT.
  • Proficient in building deployable Artifacts (War, Jar, Ear, Zip, Tar) from source code and maintained by using Maven (Pom.xml), Ant (Build.xml) and Gradle (Build.gradle) and worked with Groovy DSL Scripts and Jenkins file to Automate Configuration in Jenkins.
  • Hands-on experience in using Chef for automation, provisioning, and configuration management on enterprise Linux distributions, JFrog, and Nexus repository, by using ecosystem integrations with AWS, Azure, and Docker.
  • Proficient with Ruby, Perl, Power Shell, JSON, YAML, Groovy, Bash/Shell, Python. Developed python, and shell scripts for automation of the build and release process.
  • Experience in System Administration, System Builds, Server builds, Installs, Upgrades, Patches, Migration, Trouble shooting, Security, Backup, Disaster Recovery, Performance Monitoring and Fine-tuning on UNIX (Red Hat Linux) Systems.

TECHNICAL SKILLS

Cloud Technologies: Azure, AWS

Operating Systems: Ubuntu, CentOS, RedHat, Linux, Windows.

CI/CD Tools: Jenkins/Hudson, Azure dev0ps, Bamboo

Configuration Management Tools: Terraform, Ansible, Chef, Puppet

Version Control & Build Tools: GitHub, GitLab, Bitbucket, SVN, TFS, Maven, Ant, Gradle

Scripting Languages: Python, Ruby, JSON, YAML, Groovy, Bash shell, Power shell, Go

Monitoring Tools: Splunk, Nagios, ELK, Azure App Insights, Cloud Watch, Grafana, Prometheus

Virtualization Technologies: VMware, Windows Hyper-V, Virtual box, Vagrant

Containerization & Orchestration: Docker, Kubernetes, AKS, Azure Containers

Databases: MySQL, PostgreSQL, NoSQL (MongoDB, DynamoDB), Maria DB, Cosmos DB

Web Servers: Web Logic, JBoss, WebSphere, Apache Tomcat, Nginx

Network Protocols: TCP/IP, DHCP, DNS, SMTP, Ethernet, NFS, OSPF, BGP, UDP

Bug Tracking Tools: JIRA, Service Now

PROFESSIONAL EXPERIENCE

Confidential, Atlanta, GA

Sr. Cloud Infrastructure Engineer

Responsibilities:

  • Utilized Windows Azure Services like PaaS, IaaS and worked on storages like Blob (Page and Block), SQL Azure. Well experienced in deployment & configuration management and Virtualization.
  • Created Azure DevOps Pipeline to build and publish Docker image to Azure Container Registry and integrated it with Azure Kubernetes Service (AKS) and setup set up Secrets store CSI driver provider to fetch secrets from Azure key vault while deploying microservice applications.
  • Created custom Azure AD roles and RBAC roles for development teams and configured least privileged access to provision Azure resources using privileged identity Access management (PIM).
  • Configured Active Directory Federation Services (ADFS) autantication flow, Azure VPN for Virtual Network. Integrated office 365 with Azure Active directory to synchronize with SAAS applications. Also, deployed Azure IaaS virtual machines and Cloud services (PaaS instances) into secure Virtual Networks and subnets.
  • Configured App services and Functions in Application Gateway V2 using PowerShell and enabled Application Insights to get more insights on application for developers.
  • Migrated applications to Azure DevOps with focus on development by using services such as Repos to commit codes, Build Pipelines using PowerShell scripts for CI/CD and Test plans for unit test, deploy to App Service, Azure Application Insights collects health performance and usage data of the process, stored artifacts in blob storages.
  • Worked on the Amazon Aurora database service on the AWS cloud and implemented automatic machine Disaster recovery on AWS cloud and setting up databases using RDS, storage using S3 bucket.
  • Created monitors, alarms, and notifications for EC2 hosts using Cloud Watch Monitored System Performance Managed Disk Space LVM (Logical Volume Manger) and performed system Backup and Recovery.
  • Used Elastic search, log stash, Kabana stack to get efficient log analysis and see changes in S3 buckets.
  • Applied Key Management service (KMS) for encrypting data when residing on one environment and implemented SSL encryption during data transportation.
  • Implemented AWS Lambda functions in python scripts to invoke events in Amazon Dynamo DB table, S3 buckets,and HTTP requests using Amazon API Gateway.
  • Converted existing AWS Infrastructure to Serverless architecture (AWS Lambda, Kinesis), deploying via Terraform and AWS Cloud Formation templates.
  • Created Terraform templates for provisioning virtual networks, Auto Scaling, APP Gateway and used Terraform graph to visualize execution plan using the graph command. Worked on HashicorpVaultsecrettool to provide security for credentials, tokens, and API keys.
  • Responsible for writing terraform reusable modules and mentoring the peers in writing consumable code for terraform modules for provisioning and managing the different cloud provider infrastructure and to support deployment of applications across the organization
  • Transformed Terraform as an enterprise level cloud infrastructure automation solution by maintaining prewritten cloud-formation scripts and converting Python BOTO3 CLI scripts as a custom wrapper in Terraform null resources.
  • Responsible for writing sentinel polices to variouscloudresources using sentinel language and configured Azure workspaces to generate mocks for testing these policies by using Terraform enterprise version.
  • Worked on migrating the tier-0 applications from on-premises servers to cloud infrastructure usingKubernetes service (AKS) on AWS and creating Auto scaling groups for AKS clusters in both region level and Availability zone leveland usage data of the process, stored artifacts in blob storages.
  • Deployed microservice applications onKubernetes Cluster in Azure Platform which are responsible for cluster management, Virtual Network to deploy agent nodes, Ingress API Gateway, MySQL Databases and Cosmo DB for stateless storage of external data, and setup reverse proxy Nginx, HA Proxy in the cluster.
  • Created dynamic routing/load balancing capability enabling large application scaling, used ingress rules and Ingres Controllers- Nginx in Kubernetes. Also added global network policies in Calico CNI.
  • Maintained the secrets using TLS certificates and passed as Environment variables from one application to other application using Config Maps in Kubernetes.
  • Involved in Design discussions of Tier 0 application implementations with Canary/ Bluegreen Deployment in production on Kubernetes cluster in the rollback and rollout methods and services are packed by Helm charts.
  • Integrated Jenkins with Docker container using Cloud Bees Docker pipeline plugin to drive all microservices builds out to the Docker Registry and tan deployed to Kubernetes.
  • Automated the application and infrastructure deployment by writing the Jenkins shared libraries in Groovy with end-to-end testing using Groovy Spock/Junit testing frameworks for CI/CD life cycles and created Generic pipelines and used Jenkins Script console for cleaning the Zombie pipeline jobs on worker nodes.
  • Expertise in writing Ansible Playbooks from scratch using YAML functions and utilizing setup and automate the CI/CD pipeline and deploy microservices. Provisioned load balancer, auto-scaling group and launch configuration for microservices using Ansible.
  • Configured and Managed Ansibleand AnsibleTower to automate repetitive tasks, configure AMIs, support apache/tomcat and configure VM’s as Web Servers and proactively manage changes and experience in managing Ansible Playbooks with Ansible Roles, group variables, inventory files with integration of Molecule test cases.
  • Implemented CI/CD using azure pipeline and conducted Security Scans like Static and Dynamic Application testing Confidential each layer of DevOps life cycle to eliminate SQL Injections, Vulnerabilities present in the source code and converted the existing methodologies/workflows to DevSecOps model.

Environment: Azure services, ISTIO, Lambda, CloudFormation, Fargate, Docker, Kubernetes, Ansible, Maven, Jenkins, GIT, Jira

Confidential - Jersey City, NJ

Cloud/DevOps Engineer

Responsibilities:

  • Built an application environment to operate Confidential high availability in different Azure regions by using CDN, Azure Traffic Manager, App Services-Web Apps, Active Directory, Storage Queues, Cognitive Services, Azure Search, Storage Blobs, Redis cache and SQL Database.
  • Migrated Windows Active Directories and .Net applications from on-premises to Azure cloud by carrying out various POC’s in the organization and performing POT’s in Azure implementation.
  • Configured private end point for Azure Cosmos DB using Azure Private Link through automatic approval method, and secured data using Network Security Group policies with ARM templates and Azure DevOps pipelines.
  • Designed, configured, and deployed Azure Automation Scripts for a multitude of applications utilizing the Azure stack (Including Compute, Web Mobile, Blobs, ADF, Resource Groups, HDInsight Clusters, Azure SQL, Cloud Services, and ARM), Services and Utilities focusing on Automation.
  • Deployed Kubernetes clusters in AWS infrastructure using CloudFormation templates and written CI/CD pipelines through Jenkins for the deployment of both cluster and Microservices as per the developer team.
  • Migrated On-Premises VM’s to AWS using AWS Direct Connect Service and defined comprehensive strategy around security as part of AWS migration strategy.
  • Worked on Implementing and setting up Route 53 for AWS Web Instances, ELB, Cloud Front and Elastic Beanstalk on AWS Environment and Worked on Route 53 for Failover and Latency Based Routing to the client's websites with weighted routed policies.
  • Built S3 buckets to store both static and dynamic assets and managed policies for S3 buckets and used S3 bucket and Glacier for storage and backup on AWS.
  • Worked with Database teams to migrate MySQL RDS on-premise data to AWS Aurora RDS servers. Used AWS Data migration services to combine databases together, theirby enhancing data compatibility.
  • Maintained ARM templates IaC stacks for complex applications and provided modules to support Immutable deployments theirby converted this as enterprise Infra automation tool and used Terraform Graphs to visualize TF plans.
  • Involved in Design discussions of Tier 0 application implementations with IT Architecture and application squads and provided strategic solutions using Canary and Blue/Green deployment methodologies.
  • Created projects, VPC's, Subnetwork's for environments QA3, QA9 and prod using Terraform.
  • Written Stateful Sets to deploy stateful applications into Kubernetes cluster. Experience in providing various services like headless Services for MariaDB, PostgreSQL with dynamic provision of Persistent Volumes claims to maintain critical database tables.
  • Configured AppDynamics cluster agent to monitor Kubernetes pods failure and automatically restarts the nodes and fills in the missing dependencies such as Services, Config maps and Secrets.
  • Configured Flux CD on Kubernetes container environment, utilizing Kubernetes and Docker for the runtime environment. Worked on monitoring docker images repositories like Docker.io, triggered the deployments and updated the running configurations of Kubernetes cluster.
  • Set up Docker-in-Docker (DIND) as a Daemon set to use underlying host daemon to provision Kubernetes pods as Jenkins slaves and use the dynamic pods to run Jenkins jobs.
  • Defined Ingress & Egress routing rules connecting external HTTP and HTTPS requests with internal services and individual pods using ISTIO Ingress Gateway, Configured default backend as part of the Ingress controller.
  • Implemented Tekton Pipelines in Kubernetes cluster using Helm Charts to create a Custom Resource Definition (CRD) with flux tool.
  • Monitored Kubernetes clusters by integrating it with Prometheus using Helm Charts for collection of metrics and Grafana dashboard to view metrics.
  • Written a custom Azure policy to enable diagnostic setting for AKS cluster to Azure Event Hub and configured Event Hub Splunk connector to forward logs to Splunk.
  • Written Python, Groovy and Shell Scripts to do CI/CD using Jenkins, Git in GitHub and to improve application security. Worked on Automation tool (Maven) and theirby deployed artifacts to Jfrog.
  • Integrated Ansible with Jenkins to provide Automation, Continuous Integration through Jenkins managed nodes over SSH/Power shell using Ansible. Implemented and designed Azure virtual servers by writing Ansible Roles to ensure deployment of web applications. Worked with multiple development teams to resolve issues.
  • Monitored the servers and applications’ health status using Splunk, responded to alerts, and configured threshold settings. Also Configured Splunk to monitor Linux servers with Ansible automation
  • Implemented and managed GitLab Instances and Runners along with its Admin Area to manage Projects, Pipelines, Kanban boards and created GitLab System Hooks for changing the existing information in servers.
  • Wrote Python scripts for pushing data from DynamoDB to MySQL Database. Also created and maintained the Python deployment scripts for WebSphere application server.
  • Used MAVEN as a Build tool for building deployable Artifacts (War & Jar) from source code. Worked with Maven in Java environment for authoring pom.xml files for Java projects and managing maven repositories.

Environment: Azure, Docker, Chef, Istio, Kubernetes, Jenkins, Git, Splunk, Ansible, DynamoDB, VMWare

Confidential -Boston City, MA

Cloud Engineer

Responsibilities:

  • Configured and administered AWS resources such as EC2 instances, EBS volumes, snapshots, elastic load balancers, AMI's, security Groups, elastic IP's, Key pairs, and Amazon Cloud watch for different zones in development, testing environments.
  • Build serverless admission webhooks for Kubernetes with AWS Serverless Application Model (SAM). Defined strict regulations in custom admission webhooks to exclusively launch approved resources in Cluster.
  • Designed, configured, and managed cloudinfrastructures utilizing Amazon Web Services including core services EC2, CLI, EBS, ECS, Auto Scaling Groups and Database services RDS, S3, DynamoDB, Aurora and application layer services like API Gateway and network layer services like VPC and its subcomponents and Security layers services like IAM, SSM, KMS and monitoring tools like Cloud trail, Cloud watch, Elastic Search
  • Design roles and groups for users and resources using AWS Identity Access Management (IAM) and implement Multi-Factor Autantication (MFA) on externally available servers and on AWS Console, Monitoring and alerting leveraging Cloud Watch and Cloud Trail.
  • Implemented Data warehouse solutions in AWS Redshift, worked on various projects to migrate data from one database to AWS Redshift, RDS, ELB, EMR, Dynamo DB and S3
  • Worked with AWS EC2 Container Service plugin in Jenkins to automate Jenkins control- commute configuration by creating temporary slaves. Configured and maintained the AWS Lambda function to trigger when their is a Jenkins build is kicked off, which internally gets stored on AWS S3 bucket for everybody to access.
  • Managed AWS infrastructure and automation with CLI and API. Working on Inbound and Outbound services with automation of Chef. Deployed multiple resources simultaneously, using CloudFormation templates.
  • Designed AWSCloud Formation templates to create custom sized VPC, subnets, NAT to ensure successful deployment of Web applications and database templates.
  • Defined AWS Security Groups, which acted as Virtual Firewalls dat controlled the traffic allowed to reach one or more AWS EC2 instances.
  • Worked with AWS Cloud Formation Templates, along with Ansible to render templates and Murano with Heat Orchestration templates in OpenStack Environment.
  • Configured and managed monitoring tools like Splunk, ELK analyze and visualize the Application and system logs on AWS. Automated the installation of ELK agent with Ansible playbook.
  • Built Jenkins End-to-End Multibranch Pipeline by integrating various SCM like SGIT, bitbucket which contains Terraform the infrastructure as code and ansible Playbook's to configuration for various cloud resources to Dev/Test/Prod Branching Model for weekly releases.
  • Implemented the Docker for wrapping up the final code and setting up development and testing environment using Docker Hub.
  • Automated MySQL container deployment in Docker and monitoring of these containers and configured, monitored distributed and multi-platform servers using Nagios.
  • Implementation of JIRA to track all issues pertaining to SDLC and Integration of JIRA with GIT repository to track all code changes.
  • Worked on Git, Issue Tracking, pipeline management and Documentation with GitHub to Automate and integrate the code checkout process.
  • Improvements done to agile software development teams by working with GitHub by Continuous integration and continuous delivery.
  • Written several chef cookbook and recipes to automate the installation of web logic domain and JDK installations and have customized recipes from chef supermarket to align with current requirements.
  • Administered RedHat Linux 4.x/5 servers for several functions including managing Apache Tomcat Server, Mail Server, MySQL database and Firewalls in both development and production environments.

Environment: AWS, Terraform, Docker, YAML, Git, GitHub, GitLab, Jira, Apache Tomcat, Python, Nagios.

Confidential, Webster, NY

Build and Release Engineer

Responsibilities:

  • Worked with Jenkins for enterprise scale build and infrastructure configurations, creating required scripts in Python and checking out the code from GIT and use Maven pom.xml to build Jar, war, tar, and ear artifacts.
  • Used Jenkins as a continuous integration tool to create new jobs, managing required plugins, configuring the jobs selecting required source code management tool, build trigger, build system and post build actions, notifying the build report
  • Responsible for defining branching & merging strategy in GIT, check-in policies, improving code quality, automated Gated Check-ins, defining backup and archival plans.
  • Integration of Puppet with Apache and developed load testing and monitoring suites in Python. And Maintained multiple Modules in Puppet by converting production support scripts to Puppet Manifests to automate the configurations in servers.
  • FOSS and FORTIFY scans during the maven deployments Worked in Agile Project management Process, JIRA for Issue Tracking and monitoring and with the Architects on SDLC process being the owner of post-development environments.
  • Created a custom puppet module skeleton to use same structure across all puppet modules and developed Puppet scripts
  • Built and managed a highly available monitoring infrastructure to monitor different application servers like JBoss, Apache Tomcat and its components using Nagios
  • Worked with ANT for building the application, TEMPhas written Shell scripts to automate the build process.Involved in writing Ant and shell scripts for compilation and deployment process.
  • Maintained artifacts storage under snapshots, application releases in Nexus repository management
  • Developed Ant and scripts to automate the compilation, deployment, and testing of Web and J2EE applications.

Environment: Puppet, Nexus, Jenkins, CI/CD, Python, ANT, GitHub, RedHat Enterprise Linux, CentOS, Ubuntu.

Confidential

Linux System Administrator

Responsibilities:

  • Provided administration and maintenance for daily operations of information systems dat support critical applications to servers. Systems support includes openSUSE, LVM, Ubuntu.
  • Developed the Shell scripts, Ruby scripts, and python scripts to automate the system level activities and to run the API calls and parsing through the outputs of the REST API calls
  • Installed operating system on multiple machines using Kick Start and Performed server updates, patching, upgrade, and package installations using RPM and YUM. Installation of SSH and configuration of keys bases autantication.
  • User accounts management, developing cron shell scripts for various system performances monitoring purposes and troubleshooting
  • Configured and maintained NFS, LDAP, HTTP, as well as DNS onLinux servers. Monitoring and managing performance of ESX servers and Virtual Machines.
  • Worked with various storage volume manager such as LVM, SVM, VERITAS volume manager to create disk groups, volume groups and used RAID technology for backup and recovery.

Environment: Linux, Python, Ruby, Nginx, Kickstart, LVM, MySQL, PowerShell, Apache, JBoss, Shell Scripting.

Confidential

.Net Developer

Responsibilities:

  • Developed .NET library project using C# and provides middle layer components with HTTP Module and will be distributed to all DIIT developers via MSI package with full blown MSDN style help document using NDOC 1.3
  • Created different business classes and interfaces using .Net Framework 4.0 with Object Oriented Programming Methodology and Implemented unit testing strategies for all .Net frameworks.
  • Designing and developing the web forms using ASP.Net 2.0. and used CSS in ASP.Net Pages.
  • Handled the Admin module dat focuses on creating and maintaining the User Accounts, Roles, and its Process.
Environment: .Net, Perl, LDAP, HTML, CSS, Eclipse, Beyond Compare

We'd love your feedback!