Scrum Master System Administrator
Resume:
TASHA LENGOUH
Cloud Solution Architect/DevOps Engineer Contact: 240-***-**** Email: ************@*****.***
CAREER OBJECTIVE
Detail-oriented Cloud Security Engineer and AWS Solutions Architect with more than 7 years of experience designing and delivering security and network solutions in cloud infrastructure based on AWS cloud security standards- governance and control practices. Advanced knowledge in Information as a Service (IaaS)- Platform as a Service (PaaS) and Software as a Service (SaaS) on AWS technologies and associated components and variations, knowledge of the AWS shared responsibility model and its application- security controls for workloads on AWS-logging and monitoring strategies; -cloud security threat models- patch management and security automation; ways to enhance AWS security services with third-party tools such as Ansible
TECHNICAL SKILLS
●AWS Cloud: Ec2, EFS, VPC, RDS, S3, Glacier, IAM, Kinesis, CloudFront, Cloud Watch, Cloud Trail, Cloud Formation, DynamoDB, Aurora, Memcached, Lambda, Route53, SNS, SQS, API Gateway, Elastic cache, Redshift, DocumentDB, ASG, WAF, Shield, AWS Config, Jenkins
●Monitoring Tools: Data sync, STC, DMS, SMS, AWS Discovery services, DR strategies, Migration Hub
●DevOps Tools: GitHub, Code Commit, Code Pipeline, Code Build, Code Deploy SSM.ECR, EKS, ECS, SSM (systems manager).
●Migration Tools: Data sync, STC, DMS, SMS, AWS Discovery services, DR strategies, Migration Hub
●Networking Tools: CIDR Block range, VPC Subnets, switches, Routers, LAN, WAN, transit gateway, VPC endpoint, VPC peering, Site to Site VPN, direct connect, VPG, NACLS, Bastion Host, Subnetting
●Databases: MYSQL, MYSQL 5.6, T-SQL, MongoDB, Enterprise Oracle, Postgres, Documents DB, Amazon Aurora, Dynamic DB, RDBM, PL/SQL
●Scripting Languages: Python, YAML, JSON, BASH Scripting, Powershell3
●AWS Organization user management: SSO with OKTA, Cognito, AWS Organizations, Control Tower, AWS manage AD, STS
●Programming Language: Bash Shell, JASON, YAML, Python
●DevOps/CI/CD: Terraform, Jenkins, GitHub, Git, Gitlab, Bitbucket, Maven, CodeCommit, SonarQube, Kubernetes, CodeBuild, CodeDeploy SSM, Docker, etc.
●Ticketing tools: Jira (agile/scrum methodology)
●Operating Systems: Windows, Linux, Ubuntu, Redhat, Centos
EDUCATION/CERTIFICATIONS
Buea State University
●Bachelor’s Degree in Science.
●Aws Solutions Architect Associates,
●Scrum Master Certified
●Msc in Progress
EXPERIENCE
AWS Cloud Solutions Architect/DevOps Engineer
Company: Universal Tech Consulting (OctaFX) Jan – Present.
●Used LucidChart to develop architectural diagrams before implementation and also to give customers and clients a visual workflow of what they require.
●Used Jira to plan, track, support, and close requests, tickets, and incidents.
●Implemented security best practices in AWS including multi-factor authentication, access key rotation, encryption using KMS and TLS, Firewalls, Security Groups, and NACLs, S3 bucket policies. The reason being the client's data security is of great importance.
●Design & architect self-healing, secured, HA & fault tolerant infrastructure in AWS making use of AWS services like ASG, Elastic Load balancers (NLB and ALB).
●Used ASG to scale horizontally and vertically based on ingress traffic and CPU utilization, to save on company resources and cost.
●Monitored servers, devices, and applications to identify and rectify potential issues on time. Made use of CloudWatch and data dog for intensive monitoring of instances and resources.
●Architect Amazon RDS with Multi-AZ for automatic failover servers and created roles for EC2, RDS, S3, and Cloud Watch resources to communicate with each other using IAM
● Made use of SSM for automating patching of AMIs by using patch manager.
●Experience in migrating and implementing multiple applications from on-premises to cloud using AWS services, SMS, DBMS, Cloud Formation, S3, Route 53, Glacier, EC2, AURORA, SNS, Lambda, VPC, Cloud Trail, API gateway.
●Also made use of Content Delivery Service (CloudFront and AWS Global accelerator) to cache company data so that our users from different AWS regions can access data at quicker rates due to low latency.
●Implemented maintenance and configuration of users account for Dev, QA and production servers and created roles for EC2, RDS, S3, and cloud watch resources to communicate with each other using IAM.
●Perform continuous in-depth monitoring of cloud applications (CloudWatch, CloudTrail, VPC Flow logs, Config, etc.) and provide recommendations for minimizing loss and destruction, mitigating exploited or exploitable weaknesses, and minimizing impact to service/returning to normal service as quickly as possible.
Universal Tech Consulting
AWS Solutions Architect, Jan 2017 –2019
●Build and configure a virtual data center in the AWS Cloud to support Enterprise Data Warehouse hosting including Virtual Private Cloud (VPC), Public and Private Subnets, Security Groups (SG), Route Tables, Elastic Load Balancers ELB), Route 53.
●Advised and implemented the hosting of company applications within the Private Subnet and access to those applications were done with the help of bastion host.
●Partook in disaster recovery scenarios for backing up data and utilizing AWS backup and restore tools like AWS storage gateway and developed solutions around pilot light and warm standby.
●Build servers using AWS, importing volumes, launching EC2, RDS, creating SG, auto-scaling, ELBs in the defined VPC.
●Established VPC connectivity by making use of Transit Gateway for connecting VPCs and VPN connection to a datacenter.
●Automate Compliance Governance by provisioning and leveraging AWS Landing Zone as well as AWS Control Tower for centralized enterprise architecture and also centralized managing.
●Recommended AWS SSO on Control Tower for managing user access on multiple platforms.
●Using CloudWatch, and VPC Flow Logs to monitor and retain account activity related to actions across AWS infrastructure.
●Supported our CI/CD pipeline running on ECS.
●Used Jenkins as a continuous integration tool for automation of our daily process.
●Proposed and developed solutions for application deployments by making use of AWS code pipelines as compared to native tools for cost management.
●Worked on a Database Migration Project from the client's data center to Amazon Aurora.
Barvin Corp
Jr. System Administrator: 04/2015 – 12/2016
●Designed, deployed, and clustered High Availability servers on VMware EXSI using vSphere Client.
●Performed applications installation, upgrades/patches, troubleshooting, maintenance, and monitoring of Linux server
● Installation, configuration, and administration of Enterprise Linux
● Created, managed, and administered user accounts security and SSH password-less login
●Network configuration & troubleshoot issues with respect to network and configuration files
●Configuring Apache, NFS, FTP, and SMB.
●Create users, and groups and give permissions on bare metal servers
●Task automation, service management, and application deployment using Ansible and Jenkins.
●Build and configured Linux servers from scratch with type one hypervisors for virtualization and network components.
●Perform security setup, networking, system backup and patching for both AWS and on-premises environments.
●Architect high availability environment with auto-scaling & Elastic Load Balancer
●Securely deploy MySQL Primary DB and its read replica in a private subnet with multi-AZ for disaster recovery and best practice
●Migration of high availability web servers and databases to AWS EC2 and RDS with minimum or no downtime.
●VPC built with Private and Public Subnet coupled with VPNs setup back to the on-premises datacenter and corporate offices.
●VPC peering with other Accounts allowing access and routing to service and users of separate accounts to communicate.
●SSL setup for Apache and Nginx applications coupled with AWS ELB SSL for all HTTP to HTTPS thereby maximizing security.
●Network, CPU, Disk, and connectivity monitoring with CloudWatch and setup to trigger alarm and notify system administrators.
●Aide setup for and configured for logs files detail monitoring and alerts notification when changes are made.
●Performed root-cause analysis of recurring issues, system backup, and security setup
●Security groups configured and locked down to the various authorized subnet and IP addresses in AWS
●Automated deployment, configuration, and security settings using Ansible.
●Experienced in GitHub (cloning a Git repository, creating a branch, pushing to Git from local, making a PR, etc.)
●Architected and implemented continuous integration and deployment pipelines using Jenkins and other CI.
●Experienced in GitHub
Contact this candidate