SUMMARY

• Experienced AWS Cloud Engineer with over 6 years of experience with technology consulting, IT management, business development, technical writing, and collaborating with technical teams.
• Strong analytical skills in assessing business requirements at the enterprise level and designing efficient and effective technology solutions for clients.
• Current interest is in cloud strategy, cloud migration, and optimization.

TECHNICAL SKILLS

Cloud Orchestration / Automation: AWS CloudFormation, AWS Lambda, AWS Systems Manager, AWS SSM Parameter Store, Ansible, Docker, Jenkins, ECS, EKS, Terraform

AWS Security: AWS Security Hub, AWS Guard Duty, AWS Shield, AWS Firewall Manager, AWS Inspector

Monitoring and Event Management: AWS CloudWatch (Events and Logs), AWS SNS, AWS S3

Identity and Access Management: AWS Organization, AWS IAM, AWS AD Connector, Active Directory, AWS Workspaces, AWS Secrets Manager, etc

Governance and Compliance: AWS Config Rules, AWS Organization, AWS Control Tower, AWS Trusted Advisor, AWS Well Architected Tool, AWS Budgets, AWS License Manager

Programming Languages: Bash, JSON, YML, Python

Application Delivery: Jira, Confluence, Jenkins, Bitbucket, AWS Code Pipeline, AWS Code Commit, AWS Code Build, AWS Code Deploy

Data Protection: AWS Certificate Manager, AWS KMS, Snapshot Lifecyle Manager, AWS Cloud HSM

Self Service: Service Catalog

Network: VPC, VGW, TGW, CGW, IGW, NGW

Image and Patch: AWS SSM Patch Manager, AWS Golden AMI Pipeline

Ops Analytics: Splunk

AWS Platform: AWS CloudFormation, AWS Lambda, AWS Systems Manager, S3, VPC, EC2, ELB, RDS, SNS, SQS, SES, Route53, CloudFront, Service Catalog, AWS Auto Scaling, Trusted Advisor, CloudWatch, Dynamo DB, Glue, Event bridge

AWS Migration: Phases (Assess, Mobile, Migrate and Modernize),Tools (CART, ADS, Migration Hub, CloudEndure, DMS, SCT etc)

PROFESSIONAL EXPERIENCE

Confidential, MD

Senior AWS Architect/Engineer

Responsibilities:

• Leading on designs/development aspects of migration journey - assess, mobilize and migrate phase including leveraging CART, ADS, Migration Evaluator, DMS, Cloud Endure etc
• Automatically remediated Trusted Advisor findings using Amazon CloudWatch events and AWS Lambda
• Designed for high availability and business continuity using self-healing-based architectures, fail-over routing policies, multi-AZ deployment of EC2 instances, ELB health checks, Auto Scaling, and other disaster recovery models.
• Implemented AWS Systems Manager management service capabilities to automatically collect software inventory, apply OS patches, and automate administration tasks and complex workflows across our environments.
• Leveraged different design principles for security in the cloud and implemented various AWS services to improve our security posture for Authentication, Authorization, Monitoring, Auditing, Encryption and Data path security.
• Implemented docker containers on AWS using ECS and complementary services, including Amazon Elastic Container Registry (ECR).
• Implemented and managed Ansible Tower to scale automation and handle complex deployments.
• Developed terraform modules and CloudFormation templates to provision infrastructures in cloud
• Leveraged AWS Control Tower to set up and govern a secure, multi-account AWS environment based on
• Developed and created custom Service Control Policies and attached them to approved OUs and AWS accounts as required.
• Deployed GuardDuty across our Control Tower managed organization with the Audit account being the delegate administrator.
• Designed secured, cost optimized, highly available and fault tolerant architecture designs and infrastructure in AWS.
• Implemented security best practices in AWS including multi factor authentication, access key rotation, role-based permissions, enforced strong password policy, configured security groups and NACLs, S3 bucket policies and ACLs.
• Optimized cost through reserved instances, selection and changing of EC2 instance types based on resource need, S3 storage classes and S3 lifecycle policies, leveraging Autoscaling.
• Leveraged EC2 LifeCycle Manager tocreate snapshots of EBS Volumeson scheduled intervals for backup and define a retention period as a cost saving measure.
• Configured CloudWatch alarm rules for operational and performance metrics for our AWS resources and applications.
• Configured S3 events to set up automated communication between S3 and other AWS services.
• Designed highly available infrastructure using Elastic load balancer and auto-scaling for Web servers which Scale in and Scale out automatically, also isolated environment by having security groups and NACL across subnets for EC2 instances.
• Architected and Implemented AWS Cloud cost effective solution for Non-Production environment such as Development, and Test.
• Managed tools like JIRA, Confluence, Jenkins and their usage / process ensuring traceability, repeatability, and quality.

Confidential, VA

Specialist Senior, Cloud Engineering

Responsibilities:

• Built high-performing, resilient, and efficient infrastructure for customer applications, and performed reviews for architecture and infra builds.
• Developed CI / CD to standardize the infrastructure and automate the DevOps processes, allowing customers to rapidly build, test, and release code while minimizing errors.
• Managed provisioning of AWS infrastructures using CloudFormation and Terraform.
• Designed for high availability and business continuity using self-healing-based architectures, fail-over routing policies, multi-AZ deployment of EC2 instances, ELB health checks, Auto Scaling, and other models based on customer’s functional and non-functional requirements.
• Developed event processing architecture patterns with event trigger, logging, analysis, visualization, notification and responding.
• Developed and implemented DDoS-resilient architectures.
• Eliminated single point of failure in production architecture designs by deploying service instances (e.g., EC2 or RDS) across two or more isolated AZs based on our customer’s actual resiliency and availability requirements.
• Leveraged Auto scaling groups to right-size EC2 pools to match the level of demand and helped to manage costs by eliminating excess capacity to maintain optimal level of resources.
• Democratized advanced technologies in our architecture patterns including leveraging ECS, EKS, Lambda functions, parameter store, DynamoDB etc.
• Released, provisioned and deployed software using git, Jenkins, terraform and packer (AMIs)

Confidential, CA

AWS Infrastructure Engineer

Responsibilities:

• Managed provisioning of AWS infrastructures using CloudFormation and Terraform.
• Designed for high availability and business continuity using self-healing-based architectures, fail-over routing policies, multi-AZ deployment of EC2 instances, ELB health checks, Auto Scaling, and other disaster recovery models.
• Created patch management using Systems Manager automation for multi-region and multi account execution.
• Implemented detective guardrails using Cloud Custodian policies and AWS config.
• Designed and implemented for elasticity and scalability using ElastiCache, CloudFront - Edge locations, RDS (read replicas, instance sizes), etc.
• Developed a solution design document as well as low-level design for customer’s J2C-AWS.
• Used AWS system manager to automate operational tasks across AWS resources.
• Used System Manager to automate operational tasks across customer’s AWS infrastructure.
• Developed and documented security guardrails for AWS Cloud environments.
• Built custom images though docker server, docker compose with multiple local containers, and created production grade workflows and a continuous application workflow for multiple images.
• Implemented multiple container deployments to AWS and maintained sets of containers with deployments.

AWS Engineer- Senior Consultant

Responsibilities:

• Designed secure, cost-optimized, highly available, and fault-tolerant infrastructure in AWS.
• Architected and configured Dev / Stage / QA environments in AWS (VPC, subnets, security groups, EC2 instances, load balancer, RDS, Redis, route53, etc.).
• Implemented security best practices in AWS including multi-factor authentication, access key rotation, role-based permissions, enforced strong password policy, configured security groups and NACLs, S3 bucket policies and ACLs, etc.
• Optimized cost through reserved instances, selection and changing of EC2 instance types based on resource need, S3 storage classes and S3 lifecycle policies, leveraging Autoscaling, etc.
• Configured CloudWatch alarm rules for operational and performance metrics for AWS resources and applications.
• Configured S3 events to set up automated communication between S3 and other AWS services.
• Monitored end-to-end view of runtime systems CPU, bandwidth, disk space, and log files using NewRelic.

Confidential, Arlington, VA

Senior DevOps / Linux / AWS System Administrator

Responsibilities:

• Ensured data recoverability by implementing systems snapshot, AMIs, RDS Replicas, and application level backup to S3.
• VPC build with Private and Public Subnet couple with VPNs setup back to on-premise datacenter and cooperate offices.
• VPC peering with other accounts allowing access and routing to service and users of separate account to communicate.
• Monitored Network, CPU, disk, and connectivity with CloudWatch and setup to trigger alarm and notify system administrators.
• Aided setup for and configured for logs files detail monitoring and alerts notification when changes were made.
• Performed root-cause analysis of recurring issues, system backup, and security setup.
• Configured security groups and locked down the various authorized subnet and IP addresses in AWS.