ROMUALD DEMSONG

Virginia 540-***-**** ad3wg5@r.postjobfree.com

Summary

Experienced AWS professional with over seven-years track record in DevOps, DevSecOps, and cloud engineering. Designed and managed AWS cloud infrastructures for different projects, ensuring 99.99% availability, scalability, and robust security. Implemented Infrastructure as Code (IAC) practices, reducing deployment time by 30% and increasing consistency by 25%. Collaborated with development teams to optimize architectures, resulting in a 20% improvement in application performance.

Skills

Cloud Services: Airflow, Amazon Web Services (AWS), AWS Cloud, AWS Services, Azure

Infrastructure as Code (IAC) and Configuration Management: Ansible, CloudFormation, Terraform

Web and Application Servers: Apache, EC2

API and Gateway: API, API Gateway

Scripting and Automation: Bash, groovy, shell

Continuous Integration and Continuous Deployment (CI/CD): CI/CD, Jenkins, GitHub Actions, GitLab, Argo CD, Team city

Monitoring and Logging: CloudWatch, CloudTrail, Datadog, ELK Stack, Grafana, Sumo Logic and Instana.

Version Control: Git, GitHub, bitbucket and GitLab

Identity and Access Management (IAM): IAM

Database: DynamoDB, MongoDB, MySQL, PostgreSQL

Collaboration Tools: Confluence, JIRA, Trello

Programming Languages: bash, python, shell, java,

Containerization and Orchestration: Containers, Docker, Kubernetes

Security OWASP ZAP

Experience

DevOps/DevsecOps Engineer 2018 to Current

Tenet Healthcare Corp Santa Clara

Enhanced system security, achieving a 30% reduction in vulnerabilities through DevSecOps practices.

Automated deployment pipelines with AWS Code Pipeline and Jenkins resulted in a 40% reduction in deployment time.

Spearheaded a 25% improvement in incident response time through the implementation of automated monitoring and alerting solutions.

Integrated security scanning tools into pipelines, achieving continuous code checking for vulnerabilities and compliance with security standards.

Actively involved in designing, deploying, and managing cloud infrastructure to meet strict security and compliance requirements set forth by federal regulations.

Implemented monitoring and alerting systems like Prometheus and Grafana to proactively identify performance bottlenecks and issues thus enabling faster incident response and resolution.

Automated database provisioning and maintenance task, DNS records using scripting to reduce manual intervention.

Designed Jenkins open-source automation server to install code-built artifacts with code deployment and formulated several functioning CICD pipelines.

Collaborated with cross-functional and cross-organizational teams on root cause analysis and to design and implement SRE best practice including Service Level Objective (SLO) and error Budgets to achieve high system reliability.

Successfully build and deployed highly available and scalable Microservices on Kubernetes clusters using Helm chart in environment-specific segregation.

Constructed a fully functional CICD pipeline and integrated other tools like GitHub, Maven, SonarQube (for code quality analysis), ansible, docker and Kubernetes.

Set up databases in AWS using RDS, storage using S3 bucket and configuring instance backups to S3 bucket by creating snapshots.

Implemented AWS solutions using EC2, RDS ELB and auto scaling groups.

Used Kubernetes for container orchestration and managed containerized applications in EKS cluster on AWS platform in a Linux environment.

Used script like python, Bash, shell scripting and YAML to automate solutions.

Developed Docker images using a Docker file and Docker container snapshot and managed docker volumes also deployed Docker containers with ansible.

Maintained high availability clusters and standalone server environments and refined automation components with scripting and configuration management using Ansible.

Eliminated single point of failure in production architecture designs by deploying service instances across two or more isolated AZs based on our customer actual resiliency and availability requirements.

Integrated Jenkins with GitHub, Maven, SonarQube, Ansible, Docker and Kubernetes for CICD to automate deployment of new version of code.

Supported and developed tools for integration, automated testing, and release management, involved in research of the project application architecture to support/resolve build, compile, and test issues/problems.

Responsible for installation, configuration Management, Maintenance and systems Development of Red Hat Linux and Oracle Enterprise Linux/UNIX Systems.

Implemented Horizontal Pod Autoscaling (HPA) based on CPU and memory metrics, optimizing resource utilization and application performance.

Created Helm charts for various applications, improving deployment consistency and simplifying rollbacks.

Utilized Sumo Logic for log aggregation, analyzing trends and identifying abnormalities for proactive issue resolution.

Deployed Istio service mesh to manage microservices communications, enhance security and streamline traffic routing.

Configured Calico for network policy enforcement, isolating application workloads and enhancing cluster security.

Configured CloudWatch alarm rules for operational and performance metrics for AWS resources and applications.

Set up and configured log files for details monitoring and alert notification when changes are made.

Used Ansible playbook to auto-deploy servers rapidly as per the requirement and implemented and designed AWS virtual servers by Ansible roles to ensure deployment of web applications.

Created source code in git and branching, created webhook and merging codes on git for Dev, QA, Stage, and release.

Use Maven to build tools on Java projects to build artifacts on the source code and save on the Artifactory.

Use Jenkins file to automatically build and deploy multi branch Pipeline and to trigger the deployment job.

Build and deploy Java or Spring Boot source code and make it run as a workload in the Kubernetes cluster and make it as automation.

Gain permission to a dynamic Agent Pod to connect to the API server by using the service Account concept to do the workload deployment to a specific namespace.

Deploy Apache tomcat and Java applications.

Build and deployed Kafka Cluster and configure the producer service to produce the message and the consumer service to consume the message in the async process, thus the producer can keep producing the message without having to worry about consumer processing that message or not.

Used ELK to aggregate logs from different sources by using Logstash to centralized logs in Elasticsearch and used Kibana to customize a user-friendly log visualization.

Leverage Atlassian software like Jira to plan, track, and manage agile project, Confluence to share, and Splunk to organize and document knowledge within an organization.

Leverage bitbucket to support version control using git and Opsgenie to provide On-call schedules, document and manage escalation and incident notification.

Used various databases engines like PostgreSQL, MySQL, Microsoft SQL server, MongoDB and DynamoDB to customize set different databases as per customers requirement.

Set up various proxy services like Nginx for reverse proxy for application servers and load balancing.

Collaborated with Dev, QA, SRE and product teams to support and improve the software development lifecycle (SDLC).

Cloud Solutions Architect/Cloud Infrastructure Engineer 2016 to 2017

Wimora Technologies Sylver Spring Maryland

Designed, deployed, and managed AWS cloud infrastructure for 8 projects, ensuring 99.99% availability, scalability, and security.

Implemented Infrastructure as Code (IAC) practices using AWS CloudFormation and Terraform, to design highly available and scalable and secure infrastructure reducing deployment time by 30% and increasing consistency by 25%.

Collaborated with development teams to optimize AWS architecture, resulting in a 20% improvement in application performance through service configuration enhancements.

Conducted quarterly security assessments and audits, addressing vulnerabilities, and achieving a 95% compliance success rate.

Implemented disaster recovery and backup strategies, minimizing downtime to 10% and ensuring uninterrupted business continuity.

Worked extensively with OpenShift for deploying, managing, and scaling containerized applications, streamlining development and delivery processes.

Implemented IAM policies and role-based access control to secure cloud environment on AWS.

Assisted in a migration project of applications from on-premises to the cloud and from one cloud to the other.

Leverage AWS config to ensure compliance and remediations across multiple accounts within an AWS organization and ensure MFA within an environment.

Leverage auto-scaling, load balancing and their components to equally distribute workloads throughout the environment.

Used Dome9 to onboard assets of AWS, for security visibility and posture management.

Used cloud formation and terraform to provision and deploy both computer and networking infrastructure on a scale.

Architected and managed storage like EC2, EBS volume and EFS volumes.

Use bash and scripting and Lambda functions to upload code trigger alerts and auto remediate malfunctions in an infrastructure.

Have architected and managed highly secured environment using IAM, cloud trail, cloud watch logs and access server login.

Participated in on-call rotation, incidence response and system reliability, maintain high availability of AWS hosted applications.

Established a budget tracker path to visualize real time cost and implement a cost-efficient budgeting strategy.

Support the team in troubleshooting and resolving infrastructure related issues.

Develop strategies for capacity planning of current and future business needs. Architected and developed baseline and custom guardrails, policies.

Design and implement AWS databases solutions like RDS, Aurora, DynamoDB and Amazon Redshift to meet business needs.

Implemented security practices in AWS including MFA, access key rotation, security groups, NACLs, S3 buckets policies, Web Application Firewall (WAF) and ACLs.

Used EC2 snapshot API call to create snapshots for EBS volumes on scheduled intervals.

Architected and configured Dev/Stagging/QA environments in AWS (VPC subnets security groups EC

Instances load balancers route53, RDS etc.)

Education

Bachelor of Science: Computer Science: University of Buea 2013

Masters.: Computer science and data management: EPI Sousse of Tunisia 2015

Certifications

AWS Certified Solutions Architect Professional

AWS Certified DevOps Engineer Professional

Foundation of Project Management

Data Science, Machine Learning & AI

Terraform certified associate

Contact this candidate