Post Job Free
Sign in

Azure Devops Cloud Infrastructure

Location:
Hyattsville, MD
Posted:
June 27, 2024

Contact this candidate

Resume:

Isaac B. Israel

Garland,TX *******************@*****.*** 347-***-****

U.S. Citizen

Agile professional with significant experience in global technologies focusing on cloud infrastructure design, development, and deployment. Collaborating with high-performing teams and individuals throughout the firm to accomplish common goals. TECHNICAL SKILLS

Azure & AWS Cloud platform services such as: Azure DevOps, S3, Blob Storage, File Storage, EC2, VPC,

CloudFormation, Azure Virtual Machines (VMs), Azure Kubernetes Service (AKS)

ELB, ElasticSearch, AWS Auto Scaling, Azure Application Gateway

Route 53, EKS, AWS Service Catalog, etc.

AWS security services: AWS Identity Management

System (IAM), AWS Web Application Firewall (WAF) & Security Hub, Guard Duty. Microsoft Azure Services

Azure Security and Identity Services: Azure Active Directory, Azure Security Center, Azure Sentinel

Azure Monitor, Azure Log Analytics, CloudWatch,

Prometheus, Grafana & CloudTrail or Azure Advisor

for monitoring and audit purposes

RDS Database, SNS messaging, AWS System Manager

Scripting: Python, Bash, Powershell, Groovy,

CI/CD tools: Git, BitBucket,

Docker, Jenkins, Artifactory,

Maven Build, OWASP Zap,

Terraform, Kubernetes, Ansible,

Linux.

Cybersecurity elements: Threats, Attacks, Vulnerabilities, Architecture, Implementation, Governance, Risk and Compliance

Agile Development, Scrum &

CI/CD Methodology

Infrastructural Architecture

Diagraming and Git Branching

Strategy

DevOps Tools: Proficient in

GitLab for SCM, CI/CD pipelines,

and automated testing

Data Entry & Analysis

Schedule Coordination

CERTIFICATE & CLEARANCE

CompTIA Security Plus (COMP001022146016) 11/2022 - Present

Government Clearance – SECRET Interim

EXPERIENCE Econolite - Anaheim, California 11/2023 – Present DevSecOps Cloud Infrastructure & Container Engineer

Spearheaded the integration of Azure DevSecOps and Azure DevOps, enhancing project deployment strategies and security protocols.

Led the deployment of applications using Helm and Kubernetes, significantly improving deployment processes and application scalability

Managed and optimized Linux-based systems, contributing to improved system performance and reliability.

Developed complex YAML configurations for multiple DevOps tools, streamlining deployment processes and enhancing configuration management.

Architected and deployed Azure Fortify's static application security testing (SAST) and dynamic application security testing (DAST) modules within a microservices- based architecture, leveraging custom scripts and Azure DevOps pipelines for seamless integration and automated vulnerability detection

Developed and maintained CI/CD pipelines, optimizing the software delivery process and reducing deployment timeframes.

Spearheaded the deployment of CrowdStrike Falcon across multiple environments, enhancing security posture through real-time visibility and advanced threat hunting capabilities.

Designed and executed a strategy for seamless migration of legacy applications to Kubernetes using Helm in Azure, achieving higher scalability and resilience.

Integrated CrowdStrike with existing SIEM systems to provide a comprehensive view of threat intelligence and enhance correlation capabilities, leading to improved threat detection and mitigation.

Leveraged Microsoft Defender's advanced threat analytics and reporting tools to gain insights into threat trends, enabling proactive defenses and strategic planning for future security initiatives.

Configured and optimized CrowdStrike policies to tailor defenses against specific threats, ensuring high efficiency in threat prevention and response with minimal false positives.

Implemented Azure Fortify for automated security scanning and code analysis in a cloud-native environment, enhancing application security posture by identifying and remediating vulnerabilities in real-time.

Collaborated with cross-functional teams to integrate Helm into existing Azure CI/CD pipelines, ensuring smoother and more consistent deployment workflows. Applied Research Solutions – Dallas, TX 09/2022 – 11/2023 DevSecOps Engineer – Azure Cloud Engineer

Assist developers in building, scanning and testing source code using a selected set of tools and techniques

Developed and implemented custom threat detection rules and automated response protocols, enhancing the speed and accuracy of incident response and minimizing manual intervention.

Led the enterprise-wide deployment of Microsoft Defender for Endpoint (MDE), ensuring comprehensive coverage and protection for all endpoint devices.

Design and document best practices for DevSecOps actions - Utilize USAF PlatformOne DevSecOps guidelines and tools

Develop DevSecOps tools and techniques as necessary to construct an automated and secure DevSecOps pipeline

Ensures cybersecurity functions, performance, and characteristics are incorporated into the weapon system and validated IAW DOD and USAF policy

Developed comprehensive CI/CD pipelines using GitLab CI, integrating automated testing and deployment to Kubernetes, which reduced downtime and improved deployment success rates.

Utilized SentinelOne's deep analytics and machine learning capabilities to identify and neutralize sophisticated threats, including zero-day exploits and advanced persistent threats (APTs).

Designed CI/CD pipelines in Azure Gov Cloud utilizing Azure DevOps tool & GitLab

Configure and deploy commercial and developed software utilizing Helm, Kubernetes, tools and approaches related to monitoring/logging, cloud expert. Can autonomously contribute to cloud and application orchestration code and actively involved in peer reviews, Gitlab & GitOps.

Experienced in Azure Resource Manager (ARM). Automated Build Testing, Pipeline Templates, Azure Service Fabric, Azure Storage Manager (Blob), Git Repositories and Powershell are required.

Automate deployment and maintenance of solutions across multiple cloud instances using Terraform or other selected Infrastructure as Code tooling

Orchestrated the full migration of source code repositories from local servers to GitLab, streamlining version control processes across 20+ projects.

Championed the use of GitLab’s built-in monitoring tools to preemptively address potential deployment issues, enhancing system reliability and operational efficiency.

Develop DevSecOps monitoring and reporting capabilities to allow developers, testers and stakeholders to observe the availability and performance of the system.

Networking (security, advanced DNS, VPN, Cloud, load balancing)

System admin (security, multiple OS): understands permissions/security, kernel services and organization of file structure and best practices

Any public cloud platform experience (AWS, Azure, or GCP) NPO – Greater Fort Worth, TX Branch 08/2019 – 07/2022 DevSecOps Engineer/Consultant (Remote)

Implement several common continuous deployment use cases using AWS technologies, including blue/green deployment and A/B testing.

Responsible for automating platform deployments, including DEV, TEST and PROD; in GovCloud environments.

Provide hands-on support for CI/CD and other automation initiatives (e.g. Ansible, Jenkins or similar technologies).

Deploy updates, fixes and patches as needed. Monitor all systems for health (e.g. Prometheus, Cloudwatch, Grafana, Nagios etc.).

Experience with open technologies like Jenkins, Gradle, Maven, DevSecOps and related Infrastructure as Code (IaC) tools, including Docker, Kubernetes, Jenkins, GitHub, Git, Lacework, and others.

Managed end-to-end software lifecycle with GitLab, integrating issue tracking, and project management to streamline collaboration and monitor project progress.

Solid understanding of and experience with provisioning and managing infrastructure as well as applications in cloud environments. Experience with security within DAST and SAST with SonarQube and Tenable Nessus, Crowdstrike, Qualys, etc

Automation of functions using Lambda and Messaging services Apache Kafka (e.g. Python BOTO3 Scripting & Automation)

Develop and maintain Infrastructure as Code (IaC) using: AWS Cloud Formation, HashiCorp Terraform, and Azure Bicep (ARM templates)

Experience using Jenkins, Azure DevOps & AWS Code pipeline with testing and scanning into a fully automated CI/CD deployment to a Dev, Testing, & Production environments

Spearheaded the migration of source code management and CI/CD pipelines to GitLab, enhancing deployment frequencies by 40%.

Worked with containerization of environments, using Docker, Kubernetes, ECS, and AWS Fargate, Azure AKS

Built Automation processes for blue-green & Canary deployment using Terraform, Golden Images, AWS Autoscaling processes, Azure Functions

Maintained an up-to-date environment using AWS Systems Manager & Service Catalog with managed and custom XML, JSON and YAML for configuration

Implemented GitLab’s security scanning tools to reduce vulnerabilities at early development stages, significantly lowering the risk of security breaches.

Developed and maintained basic serverless functions using Lambda and Azure Messaging services

Experience using Postman, SwaggerHub, and SonarQube, Katalon acceptance testing, Trend Micro Deep Security intrusion and system integrity monitoring and Fortify, Atlassian Tool Admin, Monitoring and Tracing using Jaeger (Open Telemetry & Prometheus alternative) NPO – Tri-State Area - Philadelphia, PA/Newark, NJ 12/2017 – 08/2019 DevOps Engineer (Remote)

Participated in the Architecture Review process from the DevOps space, strong interpersonal and communication skills to interact with different end users whether internally or externally

Designed and Developed Resiliency Risk and Controls frameworks aligned to Cloud based applications including controls assessment and testing criteria supporting Internal, External, and Hybrid Cloud services

Utilized GitLab CI/CD to automate the deployment of microservices built with Docker and orchestrated via Kubernetes, achieving continuous integration and zero- downtime deployments.

Successfully decomposed business services to identify reusable core technology services using micro-services and API design structures, SpringBoot & Docker Custom Machine Images, Messaging, and decoupled services

Hands on experience with AWS cloud platform services such as: S3, EC2, VPC, CloudFormation, ELB, AWS Auto Scaling, Route 53, ECS, RDS, Dynamo DB, ECS-EKS, API Gateway, Systems Manager, Service Catalog, and securing AWS services, using Azure Active Directory, AWS Identity Management System (IAM), Azure key Vault, AWS Key Management System (KMS), AWS Web Application Firewall (WAF) or Azure Defender, Guard Duty, Inspector, Security Hub from a security perspective, and CloudWatch and CloudTrail for monitoring and audit purposes

Configured GitLab Runners to optimize pipeline performance for testing stages, resulting in a 50% reduction in build times. NPO – Headquarter – New York City, NY 10/2015 – 11/2016 SysOps Engineer/ Support Specialist (Remote)

Primary help desk support for users on the PMS web application.

Managing and navigating multiple software applications in depth and responsible for the initial triage of customer incident reports.

Interfacing with system users to troubleshoot reported issues (e.g., user access, application how-to, application errors, etc.)

Analyzing reported issues and making informed recommendations.

Entering reported issues in a tracking system and following through to resolution.

Coordinate with system developers to provide details of reported issues and validate any code corrections.

Perform QA testing for any newly deployed code in the testing environment and confirm it works correctly with the system and doesn’t break any previously working functions. Conducting functional testing of the system and application updates.

Assisting in development of technical documentation (training materials, process flow diagrams, and user manuals.

Create and Modify User Accounts in Active Directory, Citrix, Citrix inventory applications, and PMS systems.

Within Active Directory on Server 2019 users are added to approved and applicable groups before accounts are made in separate Legacy applications.

Permissions/Group access is determined after supervisor and information owner approval along with required documentation detailing approval.

Utilize Microsoft Access Database to track and maintain active user list and monthly updates of inactive/new accounts. Amplified Aesthetics - Brooklyn, N.Y. and Mesquite TX 01/2010 – Present Personal Trainer/Health Consultant

Designs and demonstrates exercise programs and routines to improve athletic performance

Provides information and resources to clients as well as emergency first aid if necessary

Developed and conduct health seminars and outreach activities in the community. Reviewed and analyzed medical documents

Enrolled Customers into long term health program administered by Amplified Aesthetics

Provides motivational counseling and assessments. Developed client service plans and maintained accurate documentation

Monitored clients via home visits and assisted them in achieving goals pertaining to medical issues

Perform routine clerical duties, organizational task, office support, and telephone inquiries. Increased net worth by 30%, analyze market potential, track sales, and status report EDUCATION

Long Island University Brooklyn N.Y. 2007

M.S. HEALTH SCIENCES

Norfolk State University Norfolk VA

2003

B.A. PUBLIC ADMINISTRATION

Certified National Strength and Conditioning Association (N.S.C.A.)



Contact this candidate