VARUN REDDY

240-***-****

adhvhc@r.postjobfree.com

PROFESSIONAL EXPERIENCE

Cloud Engineer with 7 years of experience in Windows Administration, Configuration Management, Continuous Integration, Continuous Deployment and Cloud Implementations.

Hands on experience in Azure Administration, worked on Azure web application, App services, Azure storage, Azure SQL Database, Virtual machines, Fabric controller, Azure AD, Azure search, and notification hub.

Configured and deployed Microsoft Azure for a multitude of applications utilizing the Azure stack (Including Compute, Web & Mobile, Blobs, Resource Groups, Azure SQL, Cloud Services, and ARM), focusing on high - availability, fault tolerance, and auto-scaling.

Authored several scripts leveraging VMware’s PowerCLI and Windows PowerShell to aid with capacity planning and monitoring of the virtualization infrastructure.

Strong expertise on DevOps concepts like Continuous Integration (CI), Continuous delivery (CD) and Infrastructure as Code, Cloud Computing etc.

Experience in developing automation tools for client platforms and application deployments on AWS, Azure, Google Cloud, Softlayer and Firehost cloud providers.

Hand on experience with Docker administration and build Docker images by writing Docker files forvarious applications deployments.

Building, Installation, Administration, System Monitoring, Performance Tuning, Troubleshooting, Maintenance of Linux operating systems.

Experience in branching, tagging and maintaining the Version Control and Source Code management tools like GIT, SVN (subversion) on Linux and windows platforms.

Worked on infrastructure with Docker containerization. Collaborated with development support teams to setup a continuous delivery environment with the use of Docker.

Worked on Setup JIRA Project, Issue type, Workflows, Custom fields, Field Configuration Schemes, Permission schemes and Notification Schemes.

Deployment of end-to-end cloud solutions utilizing a variety of PaaS/IaaS technologies & supporting middleware/data tier technology stacks such as message queues, web/worker roles, database engines, enterprise search and accompanying monitoring solutions

Installed, configured and managed monitoring tools such as Splunk, Nagios for Resource monitoring/ Network Monitoring/ Log Trace Monitoring.

Exposed to all aspects of Software Development Life Cycle (SDLC) such as Analysis, Planning, Developing, Testing, Implementing and Post-production analysis of the projects.

Identity and Access Management systems management (AD, Azure AD, ADFS), Work closely with the Development and QA teams on architecture and technologies.

Participate in internal and customer meetings assisting with the ongoing evolution of technology offerings

Provide technical guidance on building solutions using Azure PaaS and other services.

Keeping the ship sailing! Monitoring and supporting the IT infrastructure environment.

Monitoring and diagnosis of systems for optimal performance.

Generating well defined and documented standard processes for the enterprise.

Provide architectural and practical guidance to software development to improve resiliency, efficiency, performance, and costs

Monitor and report on service level objectives for a given applications services. Work with business and product owners to establish key performance indicators.

Experience working in Azure Security including RBAC, Azure Security Center and Azure Monitor. Have experience working Azure Automation including Runbooks and Terraform scripts.

Worked in extending and integrating On - premise and Azure Active Directory.

Enterprise Mobility and Security Suite (EM+S), Advanced Threat Protection (ATP), Azure Information Protection (AIP) and Intune.

Azure Key Vault, Azure Security Center, Azure Operations Management Service, Log Analytics. Identity and Access Management principals, including B2B and B2C cloud design and implementation.

Analyzed, standardized, and stabilized Active Directory in preparation for migration. Defined an outlook and culture of looking ahead to act proactively instead of reactively.

Designed OU structures, group policies, and established security settings for Active Directory

TECHNICAL SKILLS

Programming Languages: Shell scripting, powershell, Yaml, python

Operating Systems: Linux, Windows 98/NT/2000/XP, AIX

Server Software:IBM Data Power, WebSphere MQ 8.5/9, JBOSS, WebSphere 8.5,WebLogic,Tomcat, IBMIHS85/9, Ngnix

Networking: TCP/IP, HTTP/HTTPS

Monitoring Tools: ITCAM, SOLAR WINDS, Azure Monitoring, Power BI, Splunk, prometheus

Databases: SQL Server, Microsoft SQL

Cloud : Azure, AKS, CI Build Sever, Azure Data Factory, Azure Data Bricks, Azure Repo, Azure Storage, Azure Devops, Azure security,ARM templates, Azure AD, Azure Storage, Azure Datalake, Azure PAAS services (Azure functions, logic Apps, Event Grid)

Devops Tools: Jenkins, Ansible, Docker, Terraform

Conatainers: Docker, AKS(Azure Kubernetes Service), Kubernetes

SDLC: Agile, Scrum, SRE, kaban

Version Control : Git, TFS, SVN

EDUCATION

Master – St Marys University San Antonio in Computer Science– completed 2014 in San Antonio TX

Bachlors – Osmania University Hyderabad in Electrical Engineering– completed 2011 in Hyderabad, India

WORK EXPERIENCE

Client: DXC Boston

Duration: July 2018 - present

Role: Azure Consultant

Responsibilities:

Working as Cloud Administrator on Microsoft Azure, involved in configuring virtual machines, storage accounts, resource groups.

Remote login to Virtual Machines to troubleshoot, monitor and deploy applications.

Using Power shell to write, debug scripts to automate the processes and do migration of VM, involving copying and creating of VHDS.

Configuration of Microsoft DevTest Labs to migrate the virtual machines from one subscription to another subscription.

Improved overall AD replication health by developing an automated process using PowerShell to ensure that the organizations site-link topology was consistent with intended design, resulting in stable and efficient replication environment.

Implemented Windows PowerShell scripts to monitor the event logs of critical windows servers in real-time and filter for specific errors, allowing me to view errors from the entire windows infrastructure as they occurred in the environment.

Working or have worked in a role where the primary duties involve developing, managing, maintaining or migrating applications to the cloud Azure.

Good understanding of Core Azure Services - vNets, Resource Groups, VMs, Storage Accounts, Database services, Monitor

Deployed the ARM templates for Kubernetes services etc.

Worked on System and Application Monitoring using Icinga and Prometheus tools. Setup Prometheus for K8 operation and Icinga on all servers and hosts for the accurate update and reduced false alarms.

Installed Prometheus Alert manager to monitor the alerts. Installed SNMP monitoring and used Prometheus Exporter to extract the SNMP data and setup alerts to monitor to reduce the downtime.

Be able to quickly hack up cloud templates (ARM Templates or Terraform).

Implemented Azure Code Pipeline and Created Cloud formation JSON templates in Terraform for infrastructure as code.

Familiarity with security frameworks such as Cloud Security Alliance (CSA), International Organization for Standardization (ISO), National Institute of Standards and Technology (NIST), etc

Manage information security activities related to the protection of PCI and other sensitive information.

Assist during the audit to manage the process of providing all requested evidence during our PCI assessments.

Experience with SOC2 reporting engagements, and Security, Availability, Confidentiality, Privacy, and Processing Integrity Trust Service Principles.

Experience utilizing, deploying, and/or supporting IaaS platforms

Experience with PaaS services like Kubernetes(AKS and EKS), Azure Logic Apps. Mainly in setting up the Azure event Grid, which looped with Logic apps, functions, service bus.

Experience in Azure functions as a service (FAAS) worked in processing bulk data, integrating systems, working with IoT and building simple APIs and micro services. We can run Azure functions on various events or triggers like on Http request, On Schedule Timer, On Document Addition or modification in Azure Cosmos DB etc.

Managed Kubernetes charts using Helm. Created reproducible builds of the Kubernetes applications, managed Kubernetes manifest files and Managed releases of Helm packages.

Involved in installations of middleware application servers like Weblogic, Websphere, Apache. Installations and deployments are done by using Ansible in Hybrid cloud.

Mainly worked middleware automation by using ansible python especially in installations of middleware tools. Especially Nginx installation and maintaining it, in the infrastructure.

Debugging the failure issues by capturing the array and register dumps using Python scripts, traces and performing several experiments by interacting with the design team.

Experience writing documentation for virtualization, cloud administrators, and network and security administrators.

Experience in technical and functional security prerequisites in main cloud projects, in line with IT and information security strategies, notably regarding digital identities and cloud integration. And Contribute to the definition, drafting and roll-out of security policies, directives, and guidelines.

Mainly provided input for projects focusing on cloud security (identification and formalization of requirements, testing and selection of solutions, contract negotiation, implementation).

Worked with Azure AD B2B, which worked mainly helped in creating a Azure connect and added the bulk users by Powershell to Azure AD. And on my B2C which i worked on creating the B2C service and looped the users, mainly this is used for Web apps and Mobile apps.

Provide solutions for performance management, disaster recovery, monitoring and access management. And mainly involved creating application insights and log analytics.

Work/support business users to understand issues, develop root cause analysis and work with the team for the development of enhancements/fixes.

Configured Azure Alerts for various Azure Services using Azure Monitor. Configured Virtual Network peering between the regions in different subscription.

Worked with Azure active directory, Privileged Identity Management(PIM), which for assigning the roles. Experience in working with policies for compliance assessment and remediations.

Maintained and worked on organizational hierarchy especially for Management Group.

Involved in deploy and update the blueprints cloud environments in a repeatable manner using composable artifacts, for this we have used PowerShell.

Experience in working and configuring Network security groups, Application security, Firewalls both resources and application firewalls. Involved in developing and deploying the Azure policies by using ARM templates.

Configured RBAC and Azure Monitor for adding security in Azure Cloud, Virtual Network Endpoints for Azure Storage and managed User's access using custom RBAC roles.

Environment:

Azure, .Net, Angular JS, Java, Linux, Maven,TFS, Ansible, Chef, Puppet, Jenkins, Docker, Nginix, GIT, VPC, EMR, SQS, Auto scaling, Shell Scripts.

Client: CVS RI (Rhode Island)

Duration: January 2016 – May 2018

Role: Devops/Cloud Engineer

Responsibilities:

Worked on Microsoft Azure (Public) Cloud to provide IaaS support to client. Create Virtual Machines through Power Shell Script and Azure Portal.

Manage and Create Storage Account and Affinity Group in Azure Portal.

Capture an image of a Virtual Machine. Attaching a Disk to a Virtual Machine. Manage and create Virtual Network and End Points in Azure Portal.

Deploying VM's, Storage, Network and Affinity Group through PowerShell Script. Created automated solution using Windows PowerShell to manage the backup of the primary file server and programmatically notify the administrator via email of the backup's success or failure.

Creating Storage Pool and Stripping of Disk for Azure Virtual Machines. Backup, Configure and Restore Azure Virtual Machine using Azure Backup.

Taking Backup to cloud Storage Account using Cloudberry Cloud Storage Tools. Configure Site to Site VPN Connectivity.

Migrating and maintaining build and test environments into the Cloud Infrastructure.

Designing and implementing CI (Continuous Integration) system: configuring Jenkins servers, Jenkins nodes, creating required scripts (Perl & Python), and creating/configuring VMS (Windows/Linux)

Coordinate/assist developers with establishing and applying appropriate branching, labeling/naming conventions using Subversion (SVN) and Git source control.

Managed Git repository, code merging, and production deployments.

Analyze and resolve conflicts related to merging of source code for SVN and Git.

Implement, maintain and support reliable, timely and reproducible builds for project teams.

Maintained build related scripts developed in shell for Maven builds. Created and modified build configuration files including POM.xml.

Work with development/testing, deployment, systems/infrastructure and project teams to ensure continuous operation of build and test systems.

Created Docker images using a Docker file, Worked on Docker container snapshots, removing images and managing docker volumes.

Focus on continuous integration and deployment, promoting Enterprise Solutions to target environments. Implement and maintain the monitoring and alerting of production and corporate servers/storage using Cloud Watch.

Be comfortable with administrative tasks on Linux and Windows Server (I.e. cron jobs/scheduled tasks, create new file shares, patch, debug with/system logs)

Document system configurations, Instance, OS, backup procedures, troubleshooting guides, and keep infrastructure and architecture drawings current with changes.

Provide oversight and guidance for the architecture, development best practices for application hosting, and infrastructure deployment for each application.

Day to day administration & operation of application components in a hybrid .NET/Java PaaS & IaaS environment.

Development of Python APIs to dump the array structures in the Processor at the failure point for debugging.

Solid understanding of the IaaS and PaaS models used by public cloud offerings.

Responsible for installation & configuration of Jenkins to support various Java builds and Jenkins plugins to automate continuous builds and publishing Docker images to the Nexus repository.

Used CI/CD tools Jenkins, Git/Gitlabs, Jira and Docker registry/daemon for configuration management and automation using Ansible

Worked or have worked in a role where the primary duties involve developing, managing, maintaining or migrating applications to the cloud Azure.

Good understanding of Core Azure Services - vNets, Resource Groups, VMs, Storage Accounts, Database services, Monitor.

Coordinate with the Application Teams' use of PaaS (Platform as a Service), Solid understanding of the IaaS and PaaS models used by public cloud offerings.

Worked in Setting up the ASE service, configured to Vnet and security policies to that for security purpose.

Managed local deployments in Kubernetes, creating local cluster and deploying application containers.

Experience in working and configuring Network security groups, Application security, Firewalls both resources and application firewalls. Involved in developing and deploying the Azure policies by using ARM templates.

Good knowledge in working on key vault this is mainly used for data protection.

Perform deep analysis and develop metrics that measure current risk and effectively evaluate and manage threats and Identify appropriate technology/data sources and drive the collection of data necessary to effectively evaluate threats.

Communicate threat intelligence and vulnerability management options and analyze threats and current security controls to identify gaps in current defensive posture.

Maintained and managed User's access using custom RBAC roles and Implemented and configured Express Route connectivity from On-Premises to Azure Cloud.

Experience writing documentation for virtualization, cloud administrators, and network and security administrators.

Firm grasp of IP networking and virtualization technologies and infrastructure.

Configured Azure Encryption for Azure Storage and Virtual Machines, Azure Key Vault services to protect and secure the data for cloud applications.

Environment:

Azure, TFS, J2EE, Linux, Maven/ANT, Nexus, Puppet, Jenkins, Tomcat, JIRA, GIT, Shell Scripts, UNIX/ Linux environment, Websphere, Weblogic

Client: AIG NC (North Carolina)

Duration: September 2013 – December 2015

Role: Devops Engineer

Responsibilities:

Worked on CI tool like Jenkins, Created jobs, Installed Plugins and automated build process

Scheduled Build jobs, configured build pipeline and automated deployment using Jenkins

Managing build infrastructures environment setups and monitoring daily operations in Jenkins and enhancing/troubleshoot issues/problems.

Responsible for releases, doing builds and managing build system

GIT administration and supporting source code management services

Responsible for creating branches, merging and resolving merging conflicts.

Implement and maintain continuous build and deployment mechanisms.

Identifying and driving automation of tasks associated with continuous integration and release process Enough understanding to debug or specify major component areas where major bugs or build failures occur.

Experience in configuration management and release engineering in multiple-branches environment.

Giving knowledge to developers about version control and build/release concepts

Participated in the release cycle of the product which involves environments like Development QA, UAT.

Experience in writing a python scripting. Used GIT for branching, tagging, and merging

Taking Care of Patch and Load build Requests from Development Team. Helping developer's issues that are related to version control.

Generate report and send an email to managers about status of daily builds and weekly builds.

Documenting SCM guide and responsible for maintaining it.

Automated JAVA builds using TFS by installing Team Foundation Build Extensions.

Installed Team Explorer Everywhere plugin for Eclipse users to be able to connect to TFS server.

Customized Process Template to include new workitem types, user groups and Security changes.

Proven Track record in meeting the goals and delivering the deliverables within deadlines without slippages.

Experience in Middleware administration specializing in Apache-Tomcat and JBOSS.

Involved in Performance tuning of Jboss/Tomcat servers with respect to heap, threads and connection pools.

Environment:

AWS, TFS, Java, Maven, Jenkins, Jira, Jenkins, Linux, Web Logic, Subversion, Shell scripting

Contact this candidate