SUMMARY:

• Around 6 plus years of experience in Architecting/Developing/Automating/Administration of AWS Environments, DevOps, Software Configuration Management, Change/Build/Release Management, Linux and Windows System Administration.
• AWS Certified Solutions Architect, Developer, SysOps Administrator.
• Extensive experience in building scalable, elastic, secure and highly available multi - tier application infrastructures with best practices on Amazon Web Services (AWS) public cloud.
• Developed and deployed AWS Cloud Formation scripts to launch Infrastructure and configure various components of VPCs such as EC2, RDS, Public/Private Subnets, NAT, Bastion Host, Security Groups, Route53, Load Balancer, Auto Scaling group, Launch Configurations, user data, IAM roles ... etc. and map these resources to their respective dependencies.
• Configured high availability and fault tolerance of the applications using Ealastic Load Balancers (classic & application load balancers), launch configuration using AMIs and boot strapping scripts, health checks and alarms to trigger auto scaling to maintain number of instances and adjust capacity to scale up/down based on triggered alarms and tested application vulnerabilities to maintain high availability.
• Configured AWS cloud watch logs to monitor AWS resources and applications, including VPC flow logs, ELB logs, RDS logs, creating AWS customized Scripts to monitor various application and system level EC2 Instance metrics and trigger alarms based on metrics defined.
• Integrated security at various levels such as encryption at rest and in transit of data in EBS and S3, limited accessibility, blocking of bad IPs, fixing security loopholes based on internal penetration tests, event-driven security based on cloud watch logs, aws trusted advisor, aws cloud trial, aws config, aws WAF service etc.
• Experienced in administering AWS user identities, IAM permissions to various AWS resources, applying policies to users and roles, restricting access to various administrative actions on Amazon Services using Multi Factor Authentication (MFA) such as EC2, EBS, S3, RDS, etc.
• Created RDS with different Database Engines such as MySQL, Oracle, SQL Server and PostgreSQL and applied security using Security Group (SG) rules.
• Configured and simulated Diasater Recovery scenarios for RDS databases using backups and including Failover and Switching of Read Replicas promoted to Primary Databases.
• Experienced in Infrastructure as a code by automated and repeatable deployment of stacks of AWS resources using CloudFormation, ElasticBeanstalk and OpsWorks.
• Strong Understanding of the principles and best practices of software configuration management (SCM) in Agile and Scrum methodologies.
• Experienced in building and maintaining Continuous Integration, Continuous Deployment, Continuous Delivery, supporting Build Pipelines Release Management, Configuration Management tools and services.
• Supported projects in DevOps based project implementation through Infrastructure Automation, Configuration Management, Deployment Management and Test Orchestration.
• Developed Dev/Test/Prod environments of different applications on AWS by provisioning Kubernetes clusters on EC2 instances using Docker, Bash, Chef, and Terraform.
• Installed, Configured and Managed Docker Containers, Docker Images for Web Servers and Applications servers such as Apache Tomcat using Docker and integrated with Amazon MySQL RDS database.
• Experienced in Deployment Automation and Infrastructure Configuration Management using Chef using industry standard best practices.
• Developed terraform scripts to build, change and version infrastructure as code using AWS as provider and launch multi-tiered stack to be provisioned and configured with terraform scripts.
• Developed and implemented automated Linux infrastructure environments on VMs using Vagrant, Chef, Jenkins, Maven, Git, Apache and Tomcat servers.
• Experienced in setup of Linux virtual servers for developing and testing environments on workstations using Vagrant Scripts. Created custom Vagrant Boxes to spin up the servers.
• Versioning and Source control of codes using Git, Bitbucket using concepts such as branching, merging, labelling/tagging, branches locking, access control and integration.
• Experienced in build, deploy, provisioning, configuring and troubleshooting of Windows/Linux/Unix based servers and installation & configuration of various services.
• Installed, monitored and configured Applications in nginx and Apache Tomcat Server and establish connectivity to databases and troubleshoot issues on the fly.
• Configured and administered Monitoring tools like Nagios, Logstash, ElasticSearch etc.

TECHNICAL SKILLS:

AWS: EC2, ELB, Auto Scaling, EBS, S3, Glacier, VPC, VPC Peering, VPN, RDS, Route 53, CloudFront, CloudWatch, IAM, SNS, CloudFormation, OpsWorks, ElasticBeanstalk, AWS CLI, JSON templates, Code Commit, Code Pipeline, Code Deploy, CloudTrailDevOps Docker, Kubernetes, Terraform, Vagrant, Jenkins, Chef, JIRA, Bamboo, GIT, Bit Bucket

Web Servers: Apache, LAMP stack, Tomcat, Nginx

Databse: Servers Oracle, MS SQL, MySQL, PostgreSQLLinux RedHat Linux, Cent OS, Ubuntu, Oracle Linux, Linux Administration, TCP/IP, FTP, SFTP, SMTP, HTTP, SSH, TELNET, DNS, SAN, NAS, NAT, Nagios, LAMP servers

Scripting: Bash (Shell Scripting), Python, Ruby, Powershell, YAML, JSON, SQL, AWS CLI Boto3

PROFESSIONAL EXPERIENCE:

Confidential, Northfolk VA

AWS DEVOPS ENGINEER

Responsibilities:

• Created development and test environments of different applications by provisioning Kubernetes clusters on AWS using Docker, Bash, Chef, and Terraform.
• Installed, configured and maintained web and application servers including Apache 2 and Apache Tomcat on Docker containers and integrated with Amazon MySQL RDS database.
• Installed and configured Docker, Docker images, Docker Hub registers and Containers.
• Build development and test environments using Docker for a web farm of containers on AWS EC2 instances and integrated with Git clone for protecting the environment.
• Integrated Docker container orchestration framework using Kubernetes by creatig pods, configMaps, deployments.
• Installed Chef server container and client nodes on the web server farm of containers to implement infrastructure configuration management.
• Experienced in writing Cookbooks and Recipes using industry standard best practices for Deployment Automation and Infrastructure configuration management.
• Good understanding of Knife, unattended Node Bootstrapping process, Roles, Environments, Data Bags and their encryption using Vault etc.
• Integrated source control and versioning of cookbooks and recipes by using Git.
• Developed terraform scripts to build, change and version infrastructure as code using AWS as provider and launch multi-tiered stack to be provisioned and configured with terraform scripts.
• Configured Amazon Virtual Private Cloud (VPC) with public- private subnets, IP address ranges, route tables, network gateways, NAT instances and Bastion host.
• Added security for multi-tier VPCs by adding Network Address Translation (NAT) instances, by configuring firewalls such as Network Access Control Lists (NACLs) for subnets and Security Groups (SGs) for instances in public and private subnets.
• Configured Bastion Host instance in Public subnet with NACLs and firewalls attached for secure shell access (SSH)/remote desktop (RDP) access to servers residing in Application’s and Database’s private subnets in multi-tier VPCs.
• Created backup of Amazon Machine Images (AMIs) of EC2 instances using Packer, and critical business data for Disaster Recovery (DR) and upgrading to new instance types for better performance.
• Scripted automation for snapshots of existing Elastic Block Storage (EBS) volumes for backups and restored these snapshots to other EC2 instances including resizing the capacity of EBS volumes.
• Applied granular access policies for users and groups to Amazon Simple Storage Service(S3) resources by configuring Identity and Access Management (IAM) Policies, S3 Access Control Lists (ACLs) and JSON-based Bucket Policies.
• Applied Version Controlling of objects in Amazon S3 for protecting from accidental overwrites and deletes.
• Deployed MySQL RDS Database in Multi Availability Zones for redundancy and high availability and created Read Replicas of primary DB.
• Tested DB Failover and Disaster Recovery (DR) by promoting standby read replicas to primary DB and switching over DNS using an Elastic IP, using Pilot light and warm standby scenarios.
• Configured and managed AWS Elastic Load Balancing (ELB) to provide fault-tolerant infrastructure avoiding single point failures of applications, thus increasing infrastructure’s availability and performance, optimize throughput and response time.
• Created both internet-facing and internal load balancers to accept and distribute large traffic coming from internet and internal network respectively, among the instances in different Availability Zones (AZs), thus ensuring level of fault tolerance.
• Configured Elastic Load Balancer (ELB) Sticky Sessions to divert the traffic to the instances where the session data is stored.
• Offloaded the work of encryption and decryption of https requests by assigning SSL Certificate authentication to the Elastic Load Balancer (ELB), thus reducing network bottlenecks.
• Configured AWS AutoScaling to automatically scale up or down the Web Server instances, NAT instance, Bastion Host instance ensuring the high availability of resources and highly scalable environments.
• Configured lifecycle policies to Amazon S3 objects for storing the enterprise data, applications logs and databases logs for specified period; archiving these data and logs to Amazon Glacier based on retention policy of enterprises.
• Configured AWS Route53 for highly available and scalable Domain Name System (DNS) service using hosted zones and resource record sets.
• Applied routing policies for AWS Route53 such as Latency Routing policy, Weighted Routing policy, Failover Routing policy based on health checks of resources.
• Applied AWS CloudFront content delivery network (CDN) to speed up distribution of static and dynamic content based on latency health checks to the content on nearest edge location.
• Created CloudWatch alarms for host level metrics for EC2 instances such as CPU utilization, network traffic, disk read & write.
• Configured and installed custom monitoring scripts with cronjobs to EC2 instances for monitoring OS level metrics in CloudWatch such as disk utilization, disk available space, memory utilization etc.
• Monitor AWS Relational Database Service (RDS) for performance and availability in CloudWatch based on events/metrics such as CPU utilization, database connections, read/write IOPS, read/write latency etc.
• Monitor AWS ELB using CloudWatch metrics such as latency, backend connection errors, surge queue length and spill over count.
• Monitor user activity and all API requests to AWS services through CloudTrail logs to help protect and enhance security on AWS account.
• Monitor and manage billing and cost optimization.
• Configured AWS Identity and Access Management (IAM) by creating groups and users. Also, used Multi Factor Authentication (MFA) for secure login authentication.
• Provided security and managed user access to AWS resources using IAM roles and attaching IAM policies to users in JSON-format.
• Created automated and repeatable deployment of AWS infrastructure using CloudFormation templates in JSON-format.
• Build cloud infrastructure with Amazon OpsWorks by codifying the architecture with AWS resources as a Stack with layers, apps and more.
• Deployed PHP application by building the infrastructure and automating into code using OpsWorks.
• Deployed and managed an application in the AWS Cloud using Elastic Beanstalk with monitoring, AutoScaling and Elastic Load Balancing (ELB).

DEVOPS ENGINEER

Responsibilities:

• Developed and implemented automated Linux infrastructure environments on VMs using Vagrant, Chef, Jenkins, Maven, Git, Apache and Tomcat servers.
• Setup Linux virtual servers for developing and testing environments on workstations using Vagrant Scripts. Created custom Vagrant Boxes to spin up the servers.
• Installed Chef server and client nodes on the VMs to implement infrastructure configuration management.
• Experienced in writing Cookbooks and Recipes using industry standard best practices for Deployment Automation and Infrastructure configuration management.
• Build continuous integration and automated deployment environment using Jenkins.
• Used Maven as a build tool on java project for the development of build artifacts on the source code.
• Managed source code, software builds, software versioning and defect tracking on software maintenance tasks/projects.
• Versioning and Source control of codes using Git, Bitbucket using concepts such as branching, merging, labelling/tagging, branches locking, access control and integration.
• Appliation Build/Deploy and maintaining the environment and troubleshooting build errors.
• Used Apache and Tomcat as application servers for deploying the artifacts.
• Configured Nagios and logstash for monitoring web server and application logs etc.

LINUX SYSTEM ADMINISTRATOR

Responsibilities:

• Installation, patching, configuration and administration of Red Hat Linux, Debian, Ubuntu, Oracle Enterprise Linux (OEL) servers.
• Installed and managed YUM server repository for Linux Environment.
• Managed partitioning, mounting and maintaining file systems, system security, change management, documents and performance tuning of Linux servers.
• Managed file permissions, file systems, resizing the file systems as per the requirement and ownership of important files and directories.
• Troubleshoot the disk errors and File System errors.
• Managed systems routine backup, scheduling jobs, enabling and disabling cronjobs, enabling system logging, network logging of servers.
• User administration, creating users, groups, modification, removing, checking user parameters.
• Performed remote system administration using network protocol tools such as SSH, HTTP, TELNET, FTP, SFTP, SMTP, SSL.
• Installed and configured DHCP, DNS, TCP/IP, UDP, FTP, NFS servers and clients, assigning IP addresses to client hosts.
• Experience in configuring and maintaining system securities using IP tables.
• Monitored system performance statistics such as storage, CPU utilization and network bandwidth utilization. Proficient in Nagios log server manager.
• Supporting servers with MySQL and PostgreSQL databases and coordinating with DBA’s for performance monitoring.
• Experience in installation, integration of web servers such as Apache Tomcat with databases and also create LAMP servers.