| | | 20,000+ Fresh Resumes Monthly | |
|
|
| |
Click here or scroll down to respond to this candidate565 Charleston RoadWillingboro NJ, Street Address
PHONE NUMBER AVAILABLEEMAIL AVAILABLECandidate's Name
TECHNICAL SKILLSCI/CD tools Technical Skills:CI/CD tools: Git, GitHub/GitLab, Docker, Kubernetes, OpenShift (Amazon ECS & EKS), Terraform, Jenkins, Cloudbees, Artifactory, Maven Build, Ansible, LINUX, NGINX & TomcatAWS cloud platform services: S3, EC2, VPC, CloudFormation, ELB, Elasticsearch, Redshift, AWS Kinesis, AWS Auto Scaling, Route 53, ECS, RDS, SNSAWS security services: IAM, KMS, WAF, CloudWatch, CloudTrailInfrastructural Architecture Diagraming and Git Branching StrategyAutomationMicroservices ArchitectureAgile Development & CI/CD Methodology - ServiceNow, Atlassian Tools: Jira & ConfluenceScripting Languages: Python, Bash, Ruby on RailsTCP/IP protocol & OSI ModelFlexible & Adaptable, critical thinker, diligent in interpersonal communicationCybersecurity elements: Threats, Attacks, Vulnerabilities, Architecture, Implementation, Governance, Risk and CompliancePROFESSIONAL SKILLSExperience with open technologies like Jenkins, Gradle, Maven, DevSecOps, Docker, Kubernetes, OpenShift, Jenkins, GitHub, Git, Lacework, and others.Solid understanding of and experience with provisioning and managing infrastructure as well as applications in cloud environments, including security within DAST and SAST with SonarQube, Tenable Nessus, CloudGuard, Crowdstrike, Qualys, etc.Experience using Jenkins & AWS Code pipeline with testing and scanning into a fully automated CI/CD deployment to Dev, Testing, & Production environments.Experience using Postman, SwaggerHub, and SonarQube, Katalon acceptance testing, IAAS, Trend Micro Deep Security intrusion and system integrity monitoring, Fortify, Atlassian Tool Admin, Monitoring and Tracing using Jaeger (OpenTelemetry & Prometheus alternative).Hands-on experience with AWS cloud platform services such as S3, AMI, EC2, EBS, VPC, CloudFormation, ELB, AWS Auto Scaling, Route 53, ECS, RDS, Dynamo DB, ECS-EKS-Fargate, API Gateway, Systems Manager, AWS Support, and securing AWS services.Linux, Windows Server, Operating Systems: System administration and security, SAML, OKTA Single Sign-On, Identity & Access Management (IAM): Configuring SSO and identity federation, YAML, Configuration Management: Automation with tools like Ansible, Chef, Puppet.Threat Modeling: Utilizing IriusRisk and OWASP methodologies, Microsoft Azure, Amazon Web Services (AWS): Cloud resource management and security implementations.Continuous Integration and Continuous Delivery (CI/CD): Orchestrating containerized applications and pipelines using Docker, Jenkins, Nginx, Tomcat, Web Services API: Server configuration and API security.Shift-left Security: Integrating security early in the SDLC, Internal Audits, Quality Assurance, Triage: Compliance checks and security testing.SQL: Database administration and security, Customer Service, Communication Tools (Slack, Zendesk): Client support and team collaboration, Bug Tracking: Issue resolution with tools like JIRA and GitHub.Cloud Security Frameworks: Implementing NIST CSF, ISO 27001 standards, Encryption, Automated Security Testing: Data security and continuous security assessments.Incident Response: Coordinating incident remediation efforts.12 Solutions LLC, WASHINGTON DC Cloud Infrastructure Engineer (Remote)08/2023 - PRESENTExtensively employ infrastructure as code for scripting, deploying, and maintaining infrastructure, ensuring efficient configuration management for patching servers and deploying updates across diverse environments. Designed and provisioned highly available, scalable, and secure cloud infrastructures on AWS using CloudFormation, Terraform, and AWS CDK for Infrastructure as Code (IaC), ensuring consistent deployments across multiple environments.Collaborate closely with Release Management and Automation Testing teams throughout the Software Development lifecycle, overseeing GitHub code peer-review, publication, and merger processes.Implemented robust CI/CD pipelines leveraging Git for version control, Jenkins/GitLab CI for automated builds/deployments, Docker for containerization, and Kubernetes/AWS ECS/EKS for container orchestration, enabling faster software delivery cycles.Lead and evolve CI/CD processes within DevSecOps frameworks, emphasizing vulnerability management using industry-standard security tools and best practices (e.g., OWASP top ten, NIST, CIS, PCI DSS, CISA).Hands-on experience in SecOps using tools such as Twistlock, Sonatype Nexus Repository, Foreman, Terraform, and Ansible, proficient in Bash, Python, and Groovy programming languages.Implement various continuous deployment strategies leveraging AWS & Azure technologies, including blue/green deployment and A/B testing, automating platform deployments across DEV, TEST, and PROD environments, including GovCloud setups.Designed microservices-based applications utilizing API Gateway, Spring Boot, .NET Core, and custom Docker images for individual service components, providing better modularity, independent scalability, and faster release cycles.Secured cloud environments by integrating DevSecOps practices like static code analysis with SonarQube, OWASP Dependency Check, dynamic security testing using OWASP ZAP and Burp Suite, and vulnerability scanning with Tenable Nessus and Aqua Trivy during CI/CD pipelines to identify and remediate security issues early.Implemented comprehensive monitoring and logging solutions by setting up CloudWatch for metrics/logs aggregation, Prometheus and Cortex for monitoring containerized workloads, ELK Stack and Grafana for centralized logging and visualization, enabling proactive issue detection and resolution.Provide hands-on support for CI/CD and automation initiatives utilizing tools such as Ansible, Apigee API Manager, Jenkins, ensuring seamless deployment of updates, fixes, and patches, with robust monitoring of system health using Datadog, Prometheus, Cloudwatch, Tenable Nessus, Grafana, Nagios, etc.Ensured robust cloud security posture by implementing least-privilege IAM policies, encryption using AWS KMS, HashiCorp Vault, and GNUPG, web application firewalls with AWS WAF and Nginx, and perimeter security through AWS Network Firewall and Alcide Kubernetes-Native IDS/IPS configurations.Aligned with cloud security best practices like NIST CSF, ISO 27001, and CIS Benchmarks by utilizing AWS Config for resource configuration management, CloudTrail for audit logging, and incorporating automated compliance checks during deployments using cloud governance tools like AWS Control Tower, AWS Security Hub, and Prisma Cloud.IRIUSRISK, Atlanta GA DEVOPS ENGINEER (Remote)09/2022 - 05/2023Led the deployment and configuration of IriusRisk's automated threat modeling platform across AWS, Azure, and GCP environments utilizing Terraform and Ansible, which streamlined the integration of security within the software development lifecycle and significantly reduced threat vulnerabilities. This included setting up AWS Elastic Kubernetes Service (EKS) for container orchestration, enhancing system scalability and reliability with Prometheus & Grafana.Orchestrated the integration of security measures within CI/CD pipelines utilizing Jenkins, Docker, and Kubernetes, ensuring real-time threat detection and remediation through tools like Splunk and ELK Stack, resulting in a notable reduction in security incidents.Managed and optimized cloud resources and services using AWS Config and CloudTrail, delivering a resilient and scalable infrastructure that supported the evolving needs of threat modeling and risk management processes.Conducted in-depth threat modeling sessions for high-profile projects utilizing OWASP threat modeling principles, identifying potential security risks, and proposing mitigation strategies via Fortify and Checkmarx that were instrumental in safeguarding client applications.Demonstrated expertise in quickly identifying and resolving complex issues within AWS environments, including EC2, S3, VPC, and IAM. Utilized a deep understanding of AWS architecture and services to diagnose root causes of disruptions and implement effective solutions, minimizing downtime and maintaining operational excellence.Effectively Communicating & articulating technical details, expected resolutions, and root cause analyses to stakeholders and customers via phone.Collaborated with cross-functional teams to develop and implement a comprehensive cloud security strategy encompassing identity and access management (IAM) using Okta, encryption using HashiCorp Vault, and security monitoring using AWS CloudWatch and Azure Security Center to ensure compliance with industry standards and regulations.Orchestrated the integration of security measures within CI/CD pipelines utilizing Jenkins, Docker, and Kubernetes. Implemented Dynamic Application Security Testing (DAST) and Static Application Security Testing (SAST) methodologies using tools like OWASP ZAP and SonarQube, strengthening application security.Managed and optimized cloud resources and services using AWS Organization, Service Catalog, Config and CloudTrail, incorporating perimeterless network security strategies with CloudGuard to align with Zero Trust principles, ensuring secure access regardless of location.Engaged in continuous monitoring and analysis of cloud security configurations utilizing Palo Alto Networks Prisma Cloud, identifying and rectifying misconfigurations, and ensuring optimal security posture.Developed custom automation scripts using Python, Bash, & Ruby on Rails to facilitate the seamless deployment and management of cloud-based threat modeling solutions, driving efficiency and consistency across operations.Coordinated with enterprise clients to understand their security requirements, and tailored threat modeling solutions utilizing IriusRisk's platform to meet and exceed their expectations, fostering long-term relationships and ensuring client satisfaction. Investigate & troubleshoot complex technical problems within AWS Liaising with AWS support and third-party vendors to escalate unresolved issues.Designed secure and scalable Virtual Private Cloud (VPC) architectures for various applications and environments. Implemented VPC best practices including subnetting, network access control lists (NACLs), security groups, and route tables to ensure a robust and secure network infrastructure.Conducted regular training sessions and workshops for development and security teams on DevSecOps practices using tools like SonarQube for code quality and security scanning, enhancing their understanding and fostering a culture of security awareness.Spearheaded the evaluation and adoption of emerging cloud technologies and security tools like CloudGuard and Azure Sentinel, staying ahead of industry trends and ensuring IriusRisk's threat modeling platform remained at the forefront of technological advancements.Prepared and presented detailed reports to stakeholders using Tableau and Power BI, providing insights into the security posture, threat landscape, and the ROI of security investments, aiding informed decision-making.CyberElite Forces, Washington DC AREA Senior DevSecOps Engineer (Remote)07/2021 - 09/2022Spearheaded audit control initiatives, utilizing AWS CloudTrail, Inspector, GuardDuty, and Config to remediate alerts, significantly enhancing the security posture and compliance with industry standards.Administered AWS Identity Access Management, successfully automating key rotation processes, thereby bolstering security and reducing manual overhead.Orchestrated the development and management of S3 storage lifecycle and retention policies, ensuring data integrity and availability while optimizing cost-efficiency.Led the automation of platform deployments leveraging Jenkins & Ansible, and maintained version control using Git & Bitbucket, accelerating deployment times and ensuring code quality.Implemented Infrastructure as Code (IaC) utilizing Terraform & AWS CloudFormation streamlining the provisioning and management of cloud infrastructure, and promoting consistency and repeatability across environments.Monitored system health and performance through AWS CloudWatch & Nagios, proactively identifying and addressing issues, thereby maintaining high availability and reliability of services.Conducted comprehensive audit control measures utilizing AWS services such as CloudTrail, Inspector, GuardDuty, and Config, enabling timely alert remediation and significantly improving system compliance and security posture across cloud environments.Managed AWS Identity and Access Management (IAM) meticulously, implementing automated key rotation processes which enhanced security measures, minimized risks associated with stale credentials, and streamlined access management operations.Developed and meticulously managed Amazon S3 storage lifecycle and retention policies, ensuring data durability, availability, and regulatory compliance while optimizing storage costs through intelligent archiving and deletion strategies.Spearheaded the automation of platform deployments utilizing Jenkins and Ansible; established robust version control systems using Git & Bitbucket, which accelerated release cycles, ensured code integrity, and facilitated collaborative development across teams.Cloud Governance with AWS Organization using Control Tower & Landing Zone to automate provisioning and management of cloud resources and services, promoting a consistent and repeatable deployment process which enhanced operational efficiency and infrastructure reliability and security.Engineered and deployed firewall solutions using AWS Network Firewall to protect network boundaries, ensuring secure data flow between different parts of the infrastructure. Configured stateful and stateless firewall rules to control inbound and outbound traffic across VPCs.Extensively monitored system and application health using AWS CloudWatch & Nagios, enabling proactive issue detection, timely resolution, and maintaining a high level of service availability and performance across diverse operational scenarios.Collaborate cross-functionally with development, security, and operations teams, fostering a culture of shared responsibility, continuous improvement, and automated, secure, and agile infrastructure management practices.Metropolitan Transportation Authority, Brooklyn NY - CTA09/2016 - 09/2022Spearheaded a dynamic team of 3-6 members as Team Lead, ensuring comprehensive training for all new hires within their first week, and adeptly handling random assignments based on urgent needs and supervisory recommendations.Instituted a daily task receipt and logging system at the outset of each shift, managing up to four stations diligently, with a primary focus on waste removal and maintaining a pristine work environment.Oversaw meticulous station cleaning operations across three locations, including platform, stairway, and restroom sanitation, ensuring a hygienic and welcoming environment for both employees and the public.Directed mobile wash unit operations, leveraging equipment from the truck for power washing and chemical cleaning tasks, demonstrating versatility and efficiency in maintaining cleanliness.Championed comprehensive cleaning initiatives, from wall and platform scrubbing to graffiti removal using specialized cleaning materials, preserving the integrity and aesthetics of surface areas.Utilized power wash and cleaning machines proficiently, and ensured sanding and salting areas when necessary, further extending excellent customer service by providing transit information and traffic direction to passengers.Facilitated rigorous training programs covering standard job duties, hazardous material handling, health, safety, and inspections, promoting a well-prepared and safety-conscious workforce.Committed to ensuring the utmost safety of passengers and crew members by adhering to stringent safety rules and regulations, and promptly addressing emergency situations with customer service announcements when required.Maintained a professional demeanor and well-groomed appearance, embodying competency and setting a high standard of professionalism within the team.Demonstrated resilience and adaptability by effectively operating in diverse weather conditions, and showcased sound reasoning skills in making independent judgments in both emergency and non-emergency scenarios.Exhibited exceptional agility and communication skills in responding to various situations, interacting proficiently with passengers, crew members, and other stakeholders, ensuring safety and superior customer service.Fostered a collaborative yet independent work environment, emphasizing excellent customer service, teamwork, efficient multitasking under stress, and delivering results in time-sensitive environments.New York Police Department, New York NY - CCA08/2007 - 09/2016Responsible for the cleaning and maintenance of 5 floors with several rooms per floor. Worked under surveillance and supervisory within a team; performing optimally with all tasksAccountable for cleaning numerous areas, prison cells and operated under confidentiality. Cleaned staircases, bathrooms, parking lots, sidewalks, garbage and trash receptaclesDusting and wiping the walls, desks, cabinets as well as commonly used furnitureWiped, mopped and swept entire facility; locker room clean-up for both men and women daily. Furniture moving and rearranging when requested, such as dressers, cabinets, desk, etc.EDUCATIONBorough Of Manhattan Community CollegeCredits Obtained in Liberal Arts Degree05/2003 - 05/2005 |
