Cloud Security Architect - Azure Resume
PROFESSIONAL SUMMARY:
- Having 10+ years of experience in consistently working in the areas of Microsoft Azure Cloud Services.
- Proficient in Terraform scripting, PowerShell scripting, and coding ARM templates using JSON
- Experience deploying and configuring Firewall Appliances (Barracuda, Palo Alto, Fortinet) to secure Azure Cloud
- Experience is defining cloud security controls for an Azure environment at an Enterprise level for SecOps
- Experience working in Azure Security including RBAC, Azure Security Center and Azure Monitor
- Have experience working Azure Automation including Runbooks and Terraform scripts
- Familiar with Docker and Container services
- Worked in extending and integrating On - premise and Azure Active Directory
- Experience working with Azure Web Apps, Service Bus and Azure Functions
- Sound knowledge of PL/SQL, Cursors and Software Development Life Cycle(SDLC), from design to implementation of the system
- Strengths include excellent interpersonal and communication skills and the ability to provide solutions from a functional and technical perspective, meet deadlines
- Proven accuracy, reliable, detail-oriented and capacity to shoulder higher responsibility
TECHNICAL EXPERTISE:
Cloud: Microsoft Azure, Salesforce
RDBMS: MS SQL Server, Oracle 11g, 9i/10g, PL/SQL
Web Technologies: Terraform, JSON, PowerShell, Azure DevOps, CLI, C#, HTML 4.01, JavaScript, JSP
Tools: MS Visual Studio, Visual Studio Team Services (VSTS), VMWare, Azure CLI, SQL Plus, Eclipse
Web Servers: Windows SharePoint, Apache Tomcat Server 6.0, 7.0, WebSphere, Apache Webserver
Operating System: Windows, AIX, Linux
Ticketing Tools: Service Now, JIRA
PROFESSIONAL EXPERIENCE:
Confidential
Cloud Security Architect - Azure
Responsibilities:
- Involved in Cloud Security Infrastructure and design for client’s in-house Azure Applications
- Perform cloud security risk assessment for cloud applications already in Azure
- Involved in defining cloud security controls for an Azure environment at an Enterprise level
- Implemented Cloud security controls in SecOps including but not limited to Encryption, Tagging, Container security, Golden AMI policy, IDS/IPS, NSG management, Service Endpoints, DDoS, Integrating 3 rd party services such as QRadar, Qualys, Redlock
- Configured Azure Key vault and key management policies
- Involved in implementing security agents in Azure Golden Images to be enforced company wide
- Involved in the PTB and PTO process of Azure cloud application building
- Involved in security product assessments such as Palo Alto, Twistlock, Azure Firewall
- Performed security assessment on a newly proposed Azure AD structure
- Performed security assessment on a proposed Azure Hub-Spoke environment
- Performed automation tasks using Azure Devops to implement security solutions
- Design and develop cloud specific security policies and procedures for SIEM tools (QRadar,splunk), Vulnerbility Management tools(Qualys), Data Loss Prevention, Encryption, cloud compliance tool(Redlock), monitoring tools(Data dog).
- Involved in building Azure Security Controls for onboarding on-prem applications to Azure.
- Involved in determining Encryption Policies for Azure Resources.
- Performed security assessments for products like Palo Alto VM Series, Zscalar, Azure firewall.
- Knowledge in User Account Management (SSO/SAML) and multifactor authentication.
- Involved in security assessment while moving on-prem applications to cloud.
- Identify risks and vulnerability reported in Azure security center and Redlock and remediate them.
- Involved in firewall deployment and management in Azure such as Palo Alto, Azure Firewall
- Involved in cloud automation tasks and also provided help in Infrasturcture as a code for the cloud team
Confidential
Cloud Engineer
Responsibilities:
- Created and managed Windows Azure Subscriptions
- Designing and Implementing Azure Infrastructure environment according to the customer requirements
- Configured RBAC and Azure Monitor for adding security in Azure Cloud.
- Configured Network Security Groups for Subnet and NIC level for Azure Virtual Machines
- Configured User defined routes to route traffic between the Azure Networks
- Configured Azure VPN gateway and established Site-to-Site connectivity, Express Route with On Premise Networks and Azure
- Deployed and configured Firewall Appliances (Barracuda, Palo Alto, Fortinet) to secure Azure Cloud
- Deployed and configured virtual networks and storage accounts in Azure
- Extended and Integrated On-Premises AD to Azure Active Directory
- Maintained and managed User’s access using custom RBAC roles
- Deployed and configured virtual Machines in Windows and Linux platforms using PowerShell Scripting, JSON templates and Azure Resource Manager portal.
- Configured Network Security Group for azure security and route traffic between virtual machines
- Experience working in Azure automation services including VSTS and Runbooks
- Worked in implementing Service Bus, Functions in Azure
- Involved in managing Azure Web Apps using Azure PowerShell
- Implemented and configured Express Route connectivity from On-Premises to Azure Cloud
- Deployed and configured Azure Backups for Virtual Machines and files & folders backups on Windows and Linux operating systems using Recovery Services Vault in Azure Resource Manager
- Performed migration of servers from On-Premises to Azure Cloud, servers from Classic to Azure Resource Manager
- Configured Virtual Machines scale sets, Availability sets to manage virtual machines
- Implemented custom RBAC roles, Resource Group Policies based on Customer’s requirements to manage the User’s access
- Configured Virtual Network Endpoints for Azure Storage
- Configured Azure Alerts for various Azure Services using Azure Monitor
- Configured Virtual Network peering between the regions in different subscription
- Configured Azure Encryption for Azure Storage and Virtual Machines, Azure Key Vault services to protect and secure the data for cloud applications
- Actively participated in design and developed multi-threaded server based on J2EE architecture
Environment: Azure Cloud, Express Route, PowerShell, ARM(JSON), Azure CLI, Windows, Linux, Azure Active Directory, Scripting, Azure Data factory, Azure Security
Confidential
Software Engineer
Responsibilities:
- Involved in the whole life cycle of the project
- Determine the process and Interacting with functional team to resolve the issues in the given objects.
- Created database packages, procedures, functions, triggers, views, materialized views using Oracle PL/SQL in Oracle 9i
- Developed scripts for automation of various jobs running for the application server.
- Optimization of the query and performance tuning.
- Created complex functions, stored procedures and packages by using PL/SQL.
- Rectification of errors reported during System Test and User Acceptance Test.
- Gathering the functional requirements from users and converting them into Technical requirements
- PL/SQL was extensively utilized for coding and writing complex database triggers, stored procedures and packages.
- Analyzed performance of database objects and suggesting DBA for Indexes, schema gathering, partitioning, Explain Plan, TK PROF.
- Prepared root cause analysis for problems occurred
Environment: Oracle 9i, Oracle Application Developer, VM Ware
Confidential
Junior Developer
Responsibilities:
- Maintained SQL Script for creation of Database Objects.
- Created, Maintained & Scheduled various reports in SSRS like Drill down and Drill through & Parameterized Reports using SQL Server Reporting Services SSRS.
- Designed and Maintained SSIS Packages for Importing and Exporting Data Migration and Conversion from Legacy Systems to SQL Server 2008.
- Experience in creating complex SSIS packages using appropriate control and data flow elements with SSIS Standards like error handling, logging and working with package config files.
- Scheduled Reports to run the reports Daily, Monthly according to end user Requirements.
- Created different reports using complex queries to create the datasets in SSRS.
- Documented all the project work in support for maintenance.
- Identified and worked with parameters for parameterized reports in SSRS 2008 R2.
- Configuration and Deployment of all the Reports (RDL, RDS) across various SDLC environments.
- Used expressions in SSRS for various reports.
- Worked on querying data and creating on-demand reports using Report Builder in SSRS reports and send the reports via email.
- Responsible for deploying reports to Report Manager and Troubleshooting for any errors occurred during execution.
Environment: MS SQL Server, SSIS, SSRS, MS Office, Windows
Confidential
Computer Programmer
Responsibilities:
- Involved in Oracle database design and Active participation in SDLC
- Responsible for Troubleshooting performance issues and fine-tuning queries and stored procedures
- Programmed Packages, stored procedures, queries, and triggers on Oracle
- Developed complex SQL scripts for data migration
- Involved in extensive optimization of SQL queries for the application
- Managed Tables, indexes and other database objects
- Involved in implementation and updation of PL/SQL scripts
- Created & maintained Database files, Transaction log files, Views, Triggers and Stored Procedures
Environment: Oracle 9i, SQL Plus, Windows, SQL Server
Confidential
Software Engineer
Responsibilities:
- Developed J2EE, JSP and struts action using Eclipse
- Demonstrated proficiency in writing SQL scripts for various data manipulation and data management
- Determined functionality on the base of MVC design-patterns and created several JSP pages using struts
- Proficiently designed and developed web interface using JSP, Servlets, and JDBC for administering and managing users and clients
- Implemented all stored procedures, user defined functions and queries for data retrieval from multiple databases
- Created reports and extracting data as required
- Complete database in SQL Server 2005 was administrated for the application developed
- Implemented all stored procedures, user defined functions and queries for data retrieval for a database with more than 2 million records
- Writing/Modifying T-SQL Scripts like Stored Procedures, Triggers, and Functions as required
- Demonstrated proficiency in writing SQL scripts for various data manipulation and data management
- Troubleshoot / Monitor data and log growth usage for 100+ customers
- Automated the routine administrative and monitoring tasks by writing TSQL scripts
- Created and developed functionality of the application for the customers as per their needs
Environment: MS SQL Server, Stored Procedure, Servlets, JSP, Eclipse, Apache Tomcat 6.0, Windows, Linux
Confidential
Software Engineer
Responsibilities:
- Worked on all queries in DQL, needed for data retrieval for the module worked on
- Wrote code to gather information from user and combine with user entered data.
- Involved in resolving production problems for the applications and Ensure all support service level agreements are met
- Performed Unit and System testing
- Demonstrated proficiency in writing requirement/system specifications and test specifications
- Efficiently created permission sets, folders, custom types and users in Documentum Administrator and transmitted accomplished works to customers on time
- Effectively developed over 20 other search pages for various business units of Honeywell
Environment: Documentum Administrator, Content Server 6.5, Documentum Query Language, Oracle 9i, JSP, Windows