| | | 20,000+ Fresh Resumes Monthly | |
|
|
| |
Click here or scroll down to respond to this candidateCandidate's Name
PROFESSIONAL SUMMARYWith 5 years of experience, specialize in secure applicationdevelopment using DevOps and DevSecOps methodologies. Proficient in SCA, SAST, and DAST tools, ensure compliance with industry standards like OWASP TOP 10. Skilled in CI/CD pipeline automation, monitoring, and containerization, possess a strong understanding of networking principles and security tools such as Gitleaks, Trivy, and Snyk. Experienced in setting up and managing CI/CD pipelines for multiple applications across Linux and Windows servers, leveraging infrastructure as code for automated configuration and management. With keen analytical and problem-solving abilities, I'm dedicated to continuous improvement.WORK HISTORYDevOps DevSecOps Engineer, 03/2020 - 02/2024 NIDROSOFT, San Diego, CAStreamlined application Build & Release process, reducing deployment time by 30%.Developed Terraform scripts for AWS and Azure, improving infrastructure efficiency by 20%.Integrated secure build and deployment pipelines, reducing vulnerabilities by 25%.Led End-to-End automation efforts, decreasing manual intervention by 40%.Enhanced pipeline security and reliability by 50% through CI/CD tools management.Collaborated cross-functionally to ensure seamless deployment processes.Automated microservices deployment, boosting scalability by 30%. Linux System Administrator, 08/2017 - 01/2019TECHNOLOGY EVOLUTION, Douala, CameroonAdministered user accounts, access control, and permissions to enforce security policies.Configured SSH servers and clients, implementing firewall rules to restrict access and patch security vulnerabilities.Set up IMAP and IMAPS services for secure email access across devices.Managed database servers for security, performance, and reliability.Optimized disk space utilization and system performance through partition management.Configured systems for file system mounting and centralized storage solutions.Collaborated with developers to manage application servers and databases.Maintained documentation for system configurations and troubleshooting guidelines.Achieved a 75% resolution rate for complex system and network issues within SLA targets.PROJECTSDallas, BurlesonPHONE NUMBER AVAILABLEEMAIL AVAILABLELinkedInTECHNICAL SKILLS.DEVSECOPS DEVSECOPS:Scripting Languages: ShellPython Groovy Yaml VersionControl Tools: GitProject Management Tools:JIRA SlackContainers: Kubernetes DockerCloud Computing Services:Amazon Web Services AZUREMonitoring Tools: PormetheusGrafanaApplication Servers: TomcatNginx Apache ContinuousIntegration Tools: JenkinsGitlabDAST TOOLS: Zap CheckmarxSATS TOOLS: CheckmarxSonarqube GitleaksSCA Tools: Snyk and OWASP,Code Commit, Code PipelineLINUX SYSTEMADMINISTRATOR: Scripting andAutomation (Bash, Python)Virtualization (VMware, KVM)Web Servers (Apache, Nginx,Tomcat) Containerization (Docker)Problem-Solving Communicationand CollaborationEDUCATION.Bachelor of Science, 12/2019Matamfen Higher Institute -(Yaounde, Cameroon)CERTIFICATIONS.CERTIFIED KUBERNETESADMINISTRATORCERTIFIED PEGA SYSTEMARCHITECHTHE RESTAURANT APP (ODILIA)Odilia allows users to vote or rate a set of alternative restaurant and dynamically update pie charts bases on number of votes received. In addition to that, odilia keeps track of number of page views as well. IAM Policies: Manage access control and implement least privilege principles to ensure that only authorized users and systems have access to resources. Automated Scans: Set up automated security scans, including Static Application Security Testing (SAST), Dynamic Application Security Testing (DAST), and Docker Image vulnerability scanning.EXPRESSO SHOPP APP (COFFEFORUSA) (SECURITYENGINEER)Laugh an online shop where millions of customers will be able to shop and post review on different coffee flavor, they offer IaC Security: Ensure that infrastructure provisioning and configurations are securely defined using tools like Terraform or Ansible. Secure Secrets: Implement secure secrets management solutions like HashiCorp Vault or AWS Secrets Manager to protect sensitive information, such as API keys and credentials.RIDE-SHARING APPLICATION (WAITMOI)Waitmoi is an application that allows passengers to book a taxi online with the help of an internet connection and application interface. Here there is a total of two applications that are developed for a successful taxi booking service. The first application is a driver app, and the other is a passenger application. Knowlege Sharing: Using the output or feelback of DAST, SCA, and DAST to build step-by-step knowledge to apply coding best practices and avoid malicious attacks like SQL injection, cross-site scripting, and sanitizing user inputs. E-COMMERCE APP. (PET LOVERS)Automated Scans: Set up automated security scans, including static code analysis, dynamic application security testing (DAST), and container vulnerability scanning. Security Automation: Implement automated security checks and tests throughout the software development lifecycle to identify and remediate vulnerabilities early. Application Deployment: Deploying the application using Docker Compose in a staging environment to check if the application is stable before pre-production.. |
