SUMMARY

• Confidential is an innovative, dependable, and multi - skilled AWS Security Cloud Engineer with years of experience in solution architect, infrastructural development, automation, security and Networking.
• Responsible for development and secure management of infrastructure using cloud-native and third-party tools.
• Responsible for CI/CD process implementation usingCode Commit, Code Build, Code Deploy (CodePipeline)or Jenkins
• Developed Security Architecture for highly scalable and fault-tolerant applications that adhere to expected standards and discipline from a security posture.
• Leverage several security tools for comprehensive visibility and threat detection in the cloud infrastructure
• He is highly skilled technically, result driven team player who helps ensure systems operate smoothly and efficiently and TEMPhas a good communication skill.
• Outstanding organizational and documentational skills, with exceptional follow through. Trustworthy and loyal, with a genuine commitment to making sure the customer’s needs are met.

TECHNICAL SKILLS

• EC2
• EBS
• S3
• IAM
• VPC
• VPC Peering
• Security Group
• Auto Scaling
• Load Balancer ELB
• NLB
• Route53
• Route Table
• Transit Gateway
• Cloud Formation
• Aurora
• MySQL
• DynamoDB
• Putty
• MobaXterm
• Visual Studio Code
• Terraform
• Jira
• JSON
• YAML
• Git
• AWS CLI
• PowerShell
• Linux
• MacOS
• Windows.
• ECS
• EKS
• Helm
• Fargate docker Container
• Office 365
• Google suite.
• VPC (peering
• DNS interface endpoints gateway endpoints)
• Transit Gateway
• VPN
• Route 53
• GuardDuty
• Access Keys
• Incident Response in cloud
• CloudWatch
• SonarQube
• Power BI
• Jfrog
• Dome9
• Prisma Cloud
• AWS Inspector
• Security Hub
• WAF
• System Manager
• Session Manager
• Parameter Store
• NACL
• IDS/IPS
• AWS Shield
• AWS Organization & SCP
• IAM Policies
• MFA
• CloudHSM
• Key Management Service
• Encryption
• Code Commit
• Code Artifact
• Code Build
• Code Deploy
• CodePipeline
• SonarCloud
• Github
• Elastic Beanstalk
• Jenkins
• Nexus
• Sonarqube
• Slack
• Maven

PROFESSIONAL EXPERIENCE

Sr Cloud engineer

Confidential, Indianapolis, Indiana

Responsibilities:

• Responsible for architecting designing, implementing, and support of cloud-based infrastructure and its solution.
• Deployed multi-tier web application on to AWS cloud and automate required configurations using terraform
• Supported the implementation of new security solutions and participated in creation and maintenance of policies standards, baseline, security parterns, guidelines and procedures.
• Support the enforcement of security policies or posture across the organization
• Led Application Security Discovery/Architecture security Review to determine if Manual penetration test (MPT) or Cloud Accreditation is needed.
• Work with Application owners/subject matter expert/DevOps Team/Developers to guide them through remediating vulnerability findings from SonarQube (SAST), Power BI Cloud/App Security, Dome9, Jfrog (SCA), and Brup Suite (DAST)
• Ensure a new application onboarding process follow all security patterns before deploying to production
• Ensure third party apps integration follows Third Party Risk Assessment before integration with organization Apps.
• Process IAM policies request to ensure least privileges is been implemented and ensure policies are not too permissive.
• Processed Firewall request to and fro cloud to on-prem and verse vasal to ensure connectivity is secured and comes from a non source/destination
• Working with AWS identity and access management (IAM) service creating new IAM users, groups, policies, defining roles and identity providers.
• Work directly with IAM team to troubleshoot permissions (policies)
• Used security groups, network ACL’s, internet gateway and route table to ensure a secure zone for organization in AWS public cloud.
• Participated in conducting series of interviews with stakeholders and walked closely with Subject Matter Experts to get more information on the current infrastructure which aided in project deliverables and outcomes
• Prepared and conducted a successful workshop with stakeholders and their associates to get a better understanding of their pain point
• Aided in creating presentations for workshop and final deliverables
• Provisioned cloud infrastructure using Terraform
• Created EKS cluster using terraform to enable application deployment in worker nodes.
• Created K8s namespaces for app deployment which utilizes K8s RBAC to interact with AWS services, resources and roles and enables developers to deploy containerized applications to their respective pods without interfering with other pods in the same worker node.
• Taking security controls into consideration while provisioning clients cloud infrastructure. leverage Prisma Cloud for comprehensive visibility and threat detection in the cloud infrastructure to ensure developer follow CIS benchmark security compliance rules for any services deployed in the EKS cluster.

Cloud engineer

Confidential, Plainfield, Indiana

Responsibilities:

• Responsible for architecting designing, implementing, and support of cloud-based infrastructure and its solution.
• Deployed multi-tier web application on to AWS cloud and automate required configurations using terraform and Cloudformation.
• Working with AWS identity and access management (IAM) service creating new IAM users, groups, policies, defining roles and identity providers.
• Work directly with IAM team to troubleshoot permissions (policies)
• Used security groups, network ACL’s, internet gateway and route table to ensure a secure zone for organization in AWS public cloud.
• Responsible for resource allocation on EC2 instances (virtual servers) to include disks and instance class.
• Perform Security Incident Event Management (SIEM) using Guard Duty to monitor cloud events and threats.
• Experience in creating alarms inCloudWatch for monitoring the AWS environment.
• Proficient in AWS services like EC2, S3 storage services, Databases, DNS using Route 53, VPCs, ELB, Autoscaling, CloudFront, CloudWatch, CloudTrail, NACL, Security Groups.
• Perform routine security scans using AWS CloudWatch.
• Create, customize and use Terraform/CloudFormation to provision and maintain Infrastructure in AWS Cloud.
• Design the architectural frameworks solution (IaaS, PaaS, SaaS) that best suits the clients web application hosting demands in the AWS cloud platform, leveraging AWS services such as EC2, Elastic Beanstalk, S3 static web hosting, Containerized service (ECS), Lambda, with focus on integrated and automated service delivery.
• Collaborate with business analysts, Linux, and technical support teams to define project requirements and specifications.
• Understanding of application services such as SNS, SQS, SWF, CloudFormation, Cognito, API Gateway and Lambda.
• Basic noledge using Python programming language to automate processes and creation of Lambda functions.
• Configure multi-factor authentication (MFA) for user account in the cloud.
• Basic SQL: Database installation, creating and updating tables, writing basic and nested queries and more.
• Platforms: Windows, Linux and MacOS.
• Experience creating multiple VPC’s and public, private subnets as per requirement and distributed them as groups into various availability zones of VPC.
• Facilitated the application development process and operations
• Responsible for CI/CD process implementation usingCode Commit, Code Build, Code Deploy CodePipelineor Jenkins
• Configured CI/CD Pipeline using Jenkins connected to Github and build environments in AWS (Dev, Stage & Prod)
• Using Git for cloning, pushing and creating of repositories.
• Performed code analysis using Sonarqube, SonarCloud or checkstyle to detect bugs or venerability during code build and troubleshoot error to fix issues before rebuilding.

Environment: AWS EC2, VPC, Route53, Cloud Watch, Json, CloudFormation, AWS Auto Scaling, SQL, AWS CLI, Terraform, Visual Studio Code.

Cloud Specialist

Confidential, Indianapolis, Indiana

Responsibilities:

• Built VPCs from scratch, creating private and public sub-nets, creating security groups and network access lists, configuring internet gateways, creating AMI, understanding of user access management/role based access/multi factor authentication and API access, configuration of auto scaling and elastic load balancer for scaling services if a configured threshold TEMPhas been exceeded, configuration of SNS to send notifications and Cloud Watch to collect logs and metrics, spinning both Windows and Linux EC2 instances as needed.
• Setup Ansible control master - slave nodes and developed playbooks to automate configuration of cloud infrastructure
• Created Snapshots and AMIs of EC2 Instances and use them as backup for future DR
• Developed Security Architecture for highly scalable and fault-tolerant applications that adhere to expected standards and discipline from a security posture.
• Led and perform reviews of multiple cloud platforms (mostly AWS) and services to assesses cybersecurity risks including unauthorized access and data leakage while actively designing controls to mitigate those risks.
• Hosted several web applications on Amazon’s Elastic Compute Cloud (EC2) service to provide secure, resizable compute capacity in the cloud. Also used Amazon’s EC2 Auto Scaling to help maintain application availability and to automatically add or remove EC2 instances according to conditions me defined.
• Created an SSL certificate using AWS Certificate Manager, a service that allows easy provisioning, managing, and deploying of public and private SSL/TLS certificates for use with AWS services and internal connected resources. me used dis to secure the network communications to my application and to establish the identity of my websites over the Internet.
• Used security groups, network ACLs, NAT gateways and route tables to ensure a secure zone for the organization in AWS public cloud.
• Translated technical specifications into project scopes of work and product requirements while spearheading design and development of databases and enterprise solutions.
• Developed Cloud Formation scripts to build on-demand EC2 instances and used AWS CLI to automate backups to S3 buckets and EBS.
• Build and ran docker containers, deposited in ECR for ease in application deployment
• Prepared and maintained documentation of technologies, standards, and procedures.

IT System Administrator

Confidential, Plainfield, Indiana

Responsibilities:

• Monitored and troubleshot issues related to IT support (me.e. Desktop/laptop issues, software application issues, printing/scanning issues and other anomalies that may develop) to ensure end user satisfaction and deliver required desktop service levels.
• Manage Microsoft vulnerability patches deployment via SCCM and Symantec endpoint protection antivirus client management for security.
• Maintain technical support activities by managing end-user request using ServiceNow incident ticketing system.
• Provide timely support for applications ranging from Office 365, MS-Project, Adobe CC, Web browsers etc. and overall performance of computer and mobile systems.
• Set up workstations, monitors and connect to server.
• Performed regular software backups, deploy security updates, troubleshooting, maintaining, and upgrading all PC hardware and peripheral to ensure optimal workstation performance.
• Developed security awareness training program which reduced phishing awareness failures from 55% to 6%.
• Created new users, managed existing users, assigned roles and permissions following principles of least privilege.
• Configured security, network settings, and Outlook Email and Office applications.
• Installed, configured, managed AD / DHCP / DNS Services. and troubleshoot end-user desktops/devices and servers.
• Implemented local area networks (LAN), wide area networks (WAN), intranets, extranets, and other data networks.
• Researched and scanned computers for malware and security risks on a regular basis.
• Supported the Help Desk, rollout of major installations or version updates, on/off boarding of employees, computer imaging/configuration/deployments and coordinating projects with other IT departments within the firm.
• Performed analytical, technical, and administrative work in the planning, designing and installation of new and existing company approved end user devices. Teamed up with the networking, application, and vendor team to find resolution to any critical issues.

Computer Technician

Confidential, Indianapolis, Indiana

Responsibilities:

• Responsible for accurately inspecting the quality of computer hardware and providing installation, troubleshooting, services, upgrades, and maintenance.
• Ensure a high level of quality on all parts and pieces by following spec sheets.
• Assisting users with Installation of software, printers, telephone, and electronic mails.
• Conducting testing to ensure quality performance.
• Prioritize and schedule problems. Escalate problems (when required) to the appropriately experienced technician.
• Keep record and document the help desk request problem-solving process, both successful and unsuccessful.
• Providing warranty services to computer hardware.
• Troubleshooting computer hardware performance.
• Conducting testing to ensure quality performance.
• Problem solving on the spot, including desktop hardware and computer screen.
• Perform test to ensure all problems TEMPhas been resolved accordingly.
• Work as a Team to ensure all work is done appropriately.
• The use of organization software to perform daily activities.

System Engineer

Confidential

Responsibilities:

• Network Topology design, implementation, Installation,Configuration and Maintenance (computer network config, router config, Switches, hub, cable management, data cable crimping/punching etc)
• Server Installation/configuration/troubleshooting/maintenance (Windows Server storage 2008, Windows Server 2003 R2, Windows Server 2008 R2 Standard)
• Clients Installation/configuration/troubleshooting/maintenance (Windows XP, Vista, WIN 7 and WIN 8)
• Assessing and recommending improvements to network operations and integrated hardware, software, communications and operating systems.
• Providing specialist skills in supporting and troubleshooting network problems and emergencies
• Configuration of DNS Server and DHCP Server, VPN, Terminal Services, Remote Desktop Connection.
• Conduct Preventive Maintenance, Installation, Troubleshooting, Repair Defective Devices (Computer, laptop, printer, plotter, CCTV camera, Time attendance machine, Smart TV, Finger Print reader and any related IT devices), Site Coordination, Testing and Commissioning Rectification, Assembling Controls and Parts.
• Performs System Administrator’s Job Roles for clients and computer users.
• Incharge of making any IT related devices (Handware/Software) research and purchase
• Installation of CCTV System, Access Control System and Troubleshooting Related Works Regarding Electronics .Conduct planning,Testing and Commissioning for the Above Systems.
• Incharge of Project Management, Supervisor and Research Management
• CCTV camera installation/setup/maintenance/configuration via internet (IP/Analog camera).
• Webmaster Administrator for Domain registration, Website design/development, Graphics design, Database management, web Hosting (very familiar with any web host control panel, cPanel and Web Host Manager (WHM)), Search Engine Optimisation (SEO), search Engine Marketing (SEM), good use of online software managent tools (Inventory system, Bulk emails, Customer Relationship management (CRM)) and microsoft tools for documentation.