SUMMARY:

• Over Seven+ years of experience in the Architecting/Development/Administration of Highly available, fault tolerant, scalable, cost efficient, monitored and secured applications on AWS cloud and provided support to all the relevant teams.
• Datacenter migration to Amazon Web Services (AWS) infrastructure and provided initial support to Applications and Database teams.
• Configured highly available and fault tolerant infrastructure for applications including configuration of Load Balancers (classic & application load balancers), launch configuration using AMIs and boot strapping scripts, health checks and alarms to trigger auto scaling to maintain number of instances and adjust capacity to scale up/down based on triggered alarms and tested application vulnerabilities to maintain high availability.
• Develop, deploy, and manage event - driven and scheduled AWS Lambda functions to be triggered in response to events on various aws sources including logging, monitoring, security related events and to be invoked on scheduled basis to take backups
• Configured ELK (Elastic search, Log stash & Kibana) stack for log aggregation and analysis to support business critical application and system logs and hence have these logs available on Web interface for searching and visualizing and analysis purpose.
• Developed and deploy AWS Cloud Formation scripts to launch Infrastructure and configure various components including EC2, RDS, VPC, Public/Private Subnets, NAT, Security Groups, R53, Load Balancer, hatchecks, Auto Scaling group, Launch Configurations, user data, IAM roles ... etc. and map these resources to their respective dependencies.
• Designed, Install and configured Continuous Integration & Continuous Delivery strategies using various tools including Jenkins, Code Deploy, GIT, Stash, Maven, code commit, puppet etc. to ensure zero downtime deployments and with minimal manual intervention to automate release to various environments like Dev/QA/UAT/Production/DR and Analyze, troubleshoot and resolve build and deployment issues
• Extensive experience on building and maintaining continuous integration, continuous deployment, continuous delivery, supporting Build Pipelines Release Management, configuration management tools and services.
• Install, monitor and configuration of Applications in nginx and Apache Tomcat Server and establish connectivity to databases and troubleshoot issues on the fly.
• Configured AWS cloud watch logs to monitor AWS resources and application, including creating AWS customized Scripts to monitor various application and system & Instance metrics and trigger alarms based on metrics defined.
• Experienced in build, deploy, provisioning, configuring and troubleshooting of Windows/Linux/Unix based servers and installation & configuration of various services.
• Provided security at various levels, including encryption at rest and in transit, limited accessibility, blocking of bad IPs, event-driven security based on cloud watch logs using lambda functions, aws trusted advisor, aws cloud trial, aws config, aws WAF service etc. configure lambda to be triggered in response to events and fix security loopholes based on internal penetration testes.
• Established connectivity to AWS resources in another VPC in another region using AWS VPC peering and strong swan/IPSEC tunnel.
• Experience in provisioning, configuring, monitoring, troubleshooting and managing various storage such as aws s3, glacier, EBS, EFS, wrote scripts to backup EBS volumes, RAID Configuration, encrypted EBS volumes on both Windows/Unix based instances.
• Worked with DB teams to deploy RDS in Multiple Availability zones and configure & simulate Disaster Recovery scenarios, Failover and switch over by creating read replicas of primary DB, including testing of Read replicas to promote to Primary DB and configured backups and snapshots of Databases.
• Configured R53 failover policies, cloud Front distribution, VPCs with public/private subnets, aws config across accounts, aws WAF etc.
• IAM- for user management at different levels, including using policy making for restricted access, users, groups, roles, MFA etc.
• Introduced new features offered by aws to replace already existing complex service by utilizing these new services such as aws Cloud Front, Application load balancers, Elastic File System, Lambda etc.

TECHNICAL SKILLS:

Operating Systems: RHEL 4.0/5.0/6.0, OEL 5.X/6.x, Amazon Linux, Ubuntu, AIX, Windows Server 2008/12.

Virtualization: VMware ESX4 server, VMware Workstation, VirtualBox, AWS EC2

Storage: AWS Elastic Block Storage(EBS), AWS S3, AWS Glacier, EFS VERITAS Volume manager 3.5 and 4.x, Logical Volume Manager, Tivoli (TSM)

Web Servers: Apache, LAMP stack, Tomcat, IIS 5.0/ 4.0, ngnix

Database Servers: Oracle8i/9i, 10g, 11g, MS SQL, MySQL 5.1/5.5/6, postgres sql

Network Services: AWS VPC,, AWS Route 53, SMTP, SNMP, SSL,DHCP, POP, HTTP, SMB, NIS, NIS+, NFS, SFTP, DNS, FTP/TFTP, LDAP, JDBC, ARP/RARP, SSH, TCP/IP, WEBSM, NAT, NTP, TELNET.

Scripting: KSH, Bash, Korn, Perl Scripting, Python, Ruby, PHP, Shell Scripting

PROFESSIONAL EXPERIENCE:

Confidential, Chicago, IL

AWS DevOps Engg/Cloud Architect

• Designed Highly available, fault tolerant, scalable, cost efficient and secured infrastructure for various applications on AWS cloud and provided 24 X 7 support in debugging and fixing issues related to infrastructure on cloud.
• Build customized AWS Infrastructure for various applications from scratch (EC2, RDS, Security Groups, VPCs, public/private subnets, ELB, Auto scaling, roles, policies etc.) and establish connectivity between various AWS resources.
• Build customized infrastructure for various environments such as Development, QA, UAT & Production and provision various AWS resources based on type of environment and provided support, including on call support.
• Build, customize and configure OPENVPN to allow connectivity to private AWS resources through OPENVPN, help end users to troubleshoot establishing connectivity to private AWS resources and configure AD server to authenticate users via radius authentication, once reached a level of stability, scripted entire OPENVPN infrastructure to launch similar environments.
• PRTG to monitor various AWS resources, including alerts for prod, uat environments for connectivity, ping test, tunnel status etc.
• Configured web application Instance (Tomcat, Apache) to connect to resources in another AWS VPC & determine latest version to be used based on compatibility of host and configure new upgraded app server to work for specific application.
• Configure High availability of AWS Infrastructure and tested this in QA environment and upon signoff from QA team implemented in higher environments.
• User management including IAM level (AWS Console level)- by creating roles to allow user to switch roles and editing trust relationship to allow switch from main account to other account and at AWS Instance level as well.
• Established connectivity to AWS resources in another VPC in another region using AWS VPC peering and strong swan/IPSEC tunnel.
• Provided support to Application and database team, troubleshoot issues encountered while providing support, contact AWS Support whenever necessary.
• Troubleshoot application and database issues, document root cause and help other teams to understand root cause and solutions for the problems.
• Architected & Implemented security to meet PCI requirements, using VPC Public/Private subnets, Security Groups, NACLs, IAM roles, policies, VPN, WAF, Trust Advisor, Cloud Trail, Inspector, Encryption at rest/transit etc. to pass penetration testing against infrastructure.
• Introduce new features of AWS (such as EFS, CF etc.) to replace already existing 3rd party resources and to have better and cost effective strategies.
• Develop AWS CloudFromation templates (in JSON) to automate infrastructure deployments on the go.
• Build, configure, maintain and troubleshoot Continuous Integration and Continuous Deployment pipeline using a combination of Jenkins, AWS Cody Deploy, Maven, Stash etc.
• Develop, deploy, and manage event-driven and scheduled AWS Lambda functions to be triggered in response to events on various aws sources including logging, monitoring, security related events and to be invoked on scheduled basis to take backups
• Configured ELK (Elastic search, Log stash & Kibana) stack for log aggregation and analysis to support business critical application and system logs and hence have these logs available on Web interface for searching and visualizing and analysis purpose.
• Implemented Continuous Integration and Delivery (CICD) using Jenkins plugin to automatically deploy builds with AWS Code Deploy including creating an AWS Code Commit repository, installing Jenkins and the Jenkins plugin, adding files to the Code Commit repository and configuring the plugin to create a deployment when changes are committed to an AWS Code Commit repository.
• Provided support to DB team, in managing backups, restoring from snapshots, establishing connectivity between application and DB, help in migrating DB from ec2 to RDS using DMS, configuring application to listen to DB etc.

Environment: Linux (RHEL 6.x/7.x), Amazon Linux, Ubuntu, Oracle SE, PostgreSQL, Amazon Web Sevices (AWS), Crontab, Perl, ksh, Shell Scripting, Bash, JSON, AWS EC2, AWS S3, Glacier, EBS, EFS, CloudFront, AWS IAM, AWS VPC, AWS Route 53, AWS Cloud Watch, AWS Ops Works, AWS IAM, AWS WAF, AWS SNS, AWS Lambda, AWS Elastic/Application Load Balancing(ELB), AWS Cloud Front, AWS AMIs, PRTG, OPENVPN, TrendMicro Deep Security, Jenkins, Code Deploy, GIT, AWS CloudFormation, CloudTrail, AWS Certificate Manger, Thawte SSL, IPSEC/Strongswan Tunnel, JIRA, Confluence, Hipcaht, Stash etc.

Confidential, Schaumburg, IL

AWS Architect/SysOps Engg

• Experience in architecting and configuring secure VPC through private and public networks in AWS.
• Deployed LAMP based applications in AWS environment, including provisioning MYSQL-RDS and establish connectivity between EC2 instance and MySQL-RDS via security groups.
• Configured Elastic Load balancer(ELB) including high availability of ELB using various subnets in various availability zones, configured security settings and health check for application.
• Provisioned AWS S3 buckets for backup of the application and sync this contents with remaining s3 backups, by creating entry for AWS S3 SYNC in crontab.
• Wrote script to monitor crontab error messages and publish this to AWS CloudWatch using PERL.
• Configured Apache on EC2 instances to make sure application that was created is up and running, troubleshoot issues to meet the desired application state.
• Established connectivity between application and MySQL Db and tested this connectivity (by RDS-endpoints)
• Created customized AMIs based on already existing AWS EC2 instances by using create image functionality, hence using this snapshot for disaster recovery.
• Created AWS Launch configurations based on customized AMI and use this launch configuration to configure auto scaling groups.
• Configured auto scaling policies to scale up/down EC2 instances based on ELB health checks and created alarms to be used in auto scaling decision making policies.
• Simulated failover by randomly deleting instances to test auto scaling is working and eventually configuring chaos monkey to do the same.
• Automate configuration management using Puppet, including setting up puppet master and agents, defining and configuring nodes etc.
• Created read replicas of AWS-RDS-MySQL Db in various regions and AZs using backups and snapshots and scale out AWS-RDS-MySQL instance to additional AZs and regions based on requirements using DB snapshots.
• Tested high availability of AWS-RDS-MySQL database by simulating failover from primary database to read replicas and hence promoting read replica to primary.
• Monitor sync or lag between primary and read replicas of AWS-RDS-MySQL, using AWS cloud watch metrics such as replica lag and created alarms when these events are triggered and send notification using AWS SNS.
• Expertise in AWS Identity and Access Management (IAM) components, including user, groups, roles, policies and password policies and provide the same to end user.
• Created customized AWS Identity and Access Management(IAM) polices for various AWS resources to have required accessibility to required resources.
• Performed configuration, deployment and support of cloud services including Amazon Web Services (AWS).
• Designed, configured and deployed Amazon Web Services (AWS) for a multitude of applications utilizing the AWS stack (Including EC2, VPC, Glacier, Route53, S3, RDS, Cloud Watch, Cloud Trial, WAF, SNS and IAM), focusing on high-availability, fault tolerance, and auto-scaling.
• Configured an AWS Virtual Private Cloud (VPC) and Database Subnet Group for isolation of resources within the Amazon RDS MySql DB cluster.
• Store, Manage & Monitor applications on S3 storage, including accessibility, Cross Region Replication and create and monitor Events, using Cloudberry Explored and s3cmd CLI and AWS Glacier, to move old data to archives based on retention policy of databases/ applications (AWS Glacier Vaults).
• Provided security and managed user access and quota using AWS Identity and Access Management (IAM), including creating new Policies for user management in JSON
• Configured Jenkins for continuous Integration with Stash using GIT repository and AWS Code Deploy as Continuous Deployment.

Environment: Linux (RHEL 6.x/7.x), Amazon Linux, Ubuntu, Oracle SE, PostgreSQL, Amazon Web Sevices (AWS), Crontab, Perl, ksh, Shell Scripting, Bash, JSON, AWS EC2, AWS S3, Glacier, EBS, EFS, CloudFront, AWS IAM, AWS VPC, AWS Route 53, AWS Cloud Watch, AWS Ops Works, AWS IAM, AWS WAF, AWS SNS, AWS Lambda, AWS Elastic/Application Load Balancing(ELB), AWS Cloud Front, AWS AMIs, PRTG, OPENVPN, TrendMicro Deep Security, Jenkins, Code Deploy, GIT, AWS CloudFormation, CloudTrail, AWS Certificate Manger, Thawte SSL, IPSEC/Strongswan Tunnel, JIRA, Confluence, Hipcaht, Stash etc.

Confidential, Eagan, MN

AWS DevOps/SysOps Administrator

• Involved in datacenter migration to Amazon Web Services (AWS) infrastructure and provided initial support to Applications and Database teams.
• Build sample applications on AWS which demonstrate architectural features.
• Define standards for configuring and using AWS services in a secure and scalable manner.
• Designed, configured, Troubleshoot and deployed Amazon Web Services (AWS) for a multitude of applications utilizing the AWS stack (Including EC2, Route53, S3, RDS, Cloud Formation, Cloud Watch, SQS, IAM etc.), focusing on high-availability, fault tolerance, and auto-scaling.
• Provided security and managed user access and quota using AWS Identity and Access Management (AWS IAM), including building IAM Policies in JSON.
• Configured AWS S3 lifecycle of Applications & Databases logs, including deleting old logs, archiving logs based on retention policy of Apps and Databases.
• Store, Manage & Monitor applications on AWS S3 storage, including accessibility, Cross Region Replication and create and monitor Events, using Cloudberry Explored and AWS s3cmd CLI.
• Provide 24*7 Application availability using Auto Scaling Services, including configuration, define and testing auto scaling policies and created alarms to call scale up/down policy.
• Configured AWS cloud watch to monitor AWS resources and application, includes creating AWS Customized Scripts to monitor various application and system & Instance metrics.
• Troubleshoot AWS EC2 Status check including System Status checks and Instance Status check alerts.
• Configured cloud Watch to monitor EBS volumes including monitoring VolumeQueueLength to monitor applications/databases performance.
• Monitor RDS by events/Metrics, such as Database Connections, Disk QueueDepth, Free Storage Space, ReplicaLag, Read/Write IOPs, Read/Write Latency.
• Worked with DB teams to deploy RDS in Multiple Availability zones and configure & tested DB Failover scenarios by creating read replicas of primary DB, including testing of Read replicas to promote to Primary DB and configured backups of DB.
• Tested Disaster Recovery scenarios in cloud using AWS including Backup & restore, pilot light and warm standby scenarios.

Environment: Linux (RHEL 4.x,5.x and 6.1/6.6), Amazon Linux, Oracle 11/10g, Amazon Web Sevices (AWS), Auto sys 4.5, Perl, ksh, Shell Scripting, Bash, JSON, AWS EC2, AWS Elastic Beanstalk(EBS), AWS Lambda, AWS S3, Glacier, AWS Imp/Export Snowball, AWS RDS, AWS VPC, AWS Direct Connect, AWS Route 53, AWS Cloud Watch, AWS Ops Works, AWS IAM, AWS WAF, AWS SNS, AWS Elastic Load Balancing(ELB), AWS Cloud Front, AWS AMIs.

Confidential, IL

System Administrator

• Provided troubleshooting support for development, test, and production environments for UNIX and Linux servers.
• Provide support to Account Managers, UNIX and Windows technicians, and other departments
• Monitored the performance of the system using ps, prstat, vmstat, mpstat, perfmeter and iostat to check the CPU utilization, bottlenecks of I/O devices, Memory usage and Network traffic
• Troubleshooting Linux network, security related issues, capturing packets using tools such as IPtables, firewall, TCP wrappers, NMAP.
• Experience in Developing KORN, BASH, PERL, Python shell scripts to automate cron jobs and system maintenance. Scheduled cron jobs for job automation.
• Extensive experience in installing, integrating, tuning and troubleshooting Apache, Tomcat.
• Installation of Oracle patches and troubleshooting, creating and modifying application related objects, creating profiles, users, roles and maintaining system security.
• Define/setup network protocols, Network File Services (NFS) and Network Information Services (NIS) on Linux and AIX servers.
• Performed security, users, group’s administration and daily backup and restore operations, networking service, performance, and resource monitoring.
• Documented and maintained the inventory using asset management techniques.

Confidential

Linux Administrator

• Install, Configure, troubleshoot, monitor various resources on RHEL/Windows based servers and provided ongoing support to all the required teams.