NICOLINE NDE
SMYRNA TN
PHONE: 615-***-****
EMAIL: adsuce@r.postjobfree.com
LinkedIn Profile: www.linkedin.com/in/nicoline-nde-377680110
AWS SECURITY ENGINEER
AWS CLOUD ENGINEER
SOLUTION ARCHITECT
DEVOPS ENGINEER
PROFILE SUMMARY
Experienced AWS CLOUD ENGINEER/ AWS SECURITY ENGINEER with 5 years of experience in creating solutions that are consistent with enterprise application and security standard policies. Provisioning resources and providing solutions that are based on the AWS 5 pillars of a well architected framework. I have comprehensive knowledge in building, planning, Implementing, and maintaining system applications in the AWS Cloud platform. Fully involved in the implementation, analysis, optimization, troubleshooting and documentation of all Development and production support tasks. I have effective communication skills and the ability to work in a team environment, emphasizing team goals over personal goals. A strong ability and drive with initiative to understand technical information. 3 years’ Experience of Microsoft packages, Word and Excel. I have a total of 7 years of IT background
AREAS OF EXPERTISE
AWS Migration: Phases (Assess, Mobilize, Migrate and Modernize), Tools (CART, ADS, Cloud Endure, DMS)
Network: VPC, VPC PEERING, TGW, VPC DIRECT CONNECT, IGW, vpc Endpoint
Orchestration / Automation: AWS CloudFormation, Terraform, AWS Systems Manager, Ansible
Identity and Access Management: AWS IAM, Control Tower.
Governance and Compliance: AWS Config Rules, AWS Organization, AWS Trusted Advisor, Service Catalog, Systems Manager.
Programming Languages: Python. Edited and used python code to Run Lambda Functions. Bash. Used it to perform automation and to reduce manual processes such as system administration, web applications, automated backups, data crunching, and creating custom scripts for various used cases.
Data Protection: AWS KMS, Snapshot, AWS SSM parameter store.
Image and Patch: AWS SSM Patch Manager, AWS Golden/baked AMI
AWS Platform: S3, VPC, EC2, ELB, RDS, SNS, Route53, Trusted Advisor, CloudWatch, DynamoDB, Lifecycle Manager, ASG, Building Proficiency on ECS, EKS.
Monitoring and Event Management: AWS CloudWatch (Events and Logs), AWS SNS, AWS Cloud Trail
AWS Security: AWS Guard Duty, AWS STS, AWS Shield, AWS Firewall Manager, AWS Inspector, NACLS, AWS Security groups, MFA, AWS LAMBDA, Automation
Application Delivery: AWS Code Pipeline, GitHub.
PROFESSIONAL EXPERIENCE
AWS Cloud Engineer / AWS Cloud Security Engineer August 2018 to present
Tanktech Solutions – (Remote)
- Provisioned AWS infrastructures using CloudFormation and Terraform.
- provisioned for high availability and business continuity using self-healing-based architectures, fail-over routing policy, multi-AZ deployment of EC2 instances, ELB health checks, Auto Scaling, and other disaster recovery models.
- provisioned and maintained secure, cost-optimized, highly available, and fault-tolerant infrastructure in AWS.
- configured different environments in AWS (VPC, subnets, security groups, EC2 instances, load balancer, RDS, route53, etc.).
- Carried out multi-AZ deployment, created Read Replicas, Elastic Cache of database to Achieve High Availability, High Performance, Self-healing.
•- Implemented security best practices in AWS including multi-factor authentication, role-based permissions, enforced strong password policy, configured security groups and NACLs, S3 bucket policies and ACLs. Implemented entry point security using tools like Aws Secrets Manager, Aws Single Sign On. Implemented Detective Point Control Security using tools like Aws Guard Duty, Trusted Advisor, Aws Config, Security Hub. Implemented Infrastructure protection using tools like Aws Firewall Manager, Aws Direct Connect, (Automation of different environments), Amazon Inspector. For Data security I leveraged Encryption both in transit and at Rest using SSL and TLS certificates for data in transit and KMS keys for data at rest
- Optimized cost through reserved instances, Instance Scheduler, Setting Budgets, and Budget plan, Switching S3 storage classes and S3 lifecycle policies, leveraging Horizontal Autoscaling, etc.
- Configured CloudWatch alarm rules for operational and performance metrics for AWS resources and applications.
- Exceed goals through effective task prioritization and great work ethic.
-Successful created and automated a CICD Pipeline from beginning to end using Jenkins.
Edited and created security best practices in my CICD pipeline to secure my environment.
- Edited and Used python codes to leverage Lambda Functions in different use cases.
- Use Ansible playbooks for Automation and patching, setting up Ansible friendly Environment, Ansible Dynamic Inventory.
- Set up Docker files for running Applications in docker containers
-Used Kubernetes as an orchestration engine and open-source platform for managing containerized applications such as container deployment, scaling, and descaling of containers and container load balancing.
AWS Cloud Security Engineer /AWS Cloud Engineer July 2016 to 08/2018
Today's technology solutions LLC -MD
•- Designed for high availability and business continuity using self-healing-based architectures, fail-over routing policies, multi-AZ deployment of EC2 instances, ELB health checks, Auto Scaling, and other disaster recovery models.
•- Leveraged EC2 Lifecycle Manager to create snapshots of EBS Volumes on scheduled intervals for backup and define a retention period as a cost saving measure.
•- Optimized cost through reserved instances, selection and changing of EC2 instance types based on resource need, S3 storage classes and lifecycle policies.
•- Implemented and managed Ansible friendly Environment.
•- Used Aws Kafka for streaming of Apache Servers
•- Assisted with migration of over 200 VMs from on-premises to Aws cloud using - assess, mobilize, and migrate phase including leveraging CART, MRA, DMS, Cloud Endure.
•- Use terraform and CloudFormation templates to provision infrastructures in cloud
•- Architected CICD Pipeline using Jenkins
•- Designed and Implemented security best practices in AWS including Automation, multi factor authentication, role-based permissions, enforced strong password policy, configured security groups and NACLs, S3 bucket policies and ACLs. Implemented entry point security using tools like Aws Secrets Manager, Aws Single Sign On, Security Token Service. Implemented Detective Point Control Security using tools like Aws Guard Duty, Trusted Advisor, Config, Security Hub. Implemented Infrastructure protection using tools like Aws Firewall Manager, Aws Direct Connect, Automation of different environments, Amazon Inspector. For Data security I leveraged Encryption both in transit and at Rest using Kms.
•- Implemented AWS Cloud cost effective solution for non-Production environments such as Development, and Test. Configured CloudWatch alarm rules for operational and performance metrics for our AWS resources and applications.
•- leveraged highly available infrastructure using Elastic load balancer and auto-scaling for Web servers which Scale in and scale out automatically, also isolated environment by having security groups and NACLs across subnets for EC2 instances.
ACCOMPLISHMENT
Increased development team participation in assigned tasks up to 100% within my first month with the company.
Received praises from the team, for my warm and engaging cordial business relationship with the development team; the product owner, and for smoothly organizing and successfully executing all assigned tasks over a period of 12 months with never any glitches.
Repeatedly helped the development team focus on the successful execution of many large projects despite serious time constraints.
EDUCATION
University of Yaoundé Cameroon
Bachelor’s Degree in computer science
Nashville State Community College, Nashville TN
Associates Degree
Grand Canyon University, Phoenix AZ
Bachelor’s Degree in applied science
Murfreesboro State University, Murfreesboro TN
Master’s degree in IT Project Management in Progress
LANGUAGE
English - Fluent
French – Fluent
CERTIFICATE
AWS Certification
Certified Scrum Master
VOLUNTEER EXPERIENCE
St Ignatius church housekeeping and Sunday school teacher