Cloud Architect Software Development
Resume:
Ali Asghari
***-*******@**********.***
Professional Summary:
●Extensive experience (15+ years) in software development and public cloud (15+ years)
●Currently on Cloud(AWS, Google cloud & Azure), Containers(Docker), Kubernetes, Hashicorp and elastic eco systems
●Involved in complete software development lifecycle in most of the projects
●Fluent in DevSecOps, Blue Green deployment model, Canary Releases, Continuous Delivery/Integration, Agile (Spotify,Scrum, XP, RUP) Methodologies, Test First Development approach, SOA architectures, Onsite/Offshore development model, 12 factor app methodology.
●Multi-tasking and role switching across multiple projects as required.
●Involved in Hiring process, Product Evaluation, Project Feasibility Studies and Mentoring, Creating business Requirements and proposals, Project planning, Implementation plan, Vendor Management, Vendor Engagement
●Hands on architect with excellent skills in development, performance tuning, capacity planning, change management & release management.
Technical Skills:
●Hardware/OS: AIX 6.1.x, Sun Sparc/ SunOS Rel5.8, 80x86 systems/
Windows8/7/10/2012/2016, Linux (Centos 6.x/7.x, Ubuntu, RHEL7.x)
●Languages/ Scripting: Java, OO Perl, python2.x-3.x, awk, sed, groovy, ruby
●App Servers /Portal: WebSphere 7.0/6.1/6.0/5.1, Apache Tomcat 6.0/3.2, IBM WebSphere
Server 8.5/7.0/6.1/6.0/5.1
●Web Servers: Nginx, IBM Http Server, Apache HTTP Server, IIS
●Databases: Oracle 11g/10g/8i/7.x, SQL Server 2008 r2,
Sybase Adaptive Server 12, DB2 v9.7
●Design Tools: Cloudcraft, VISIO, Rational Rose, Together J
●IDE: IBM Rational Application Developer 7.0/6.0, Spring STS
●Java/J2EE: JSP, Servlets, EJB, JDBC, JMS, JNDI, RMI
●Methodologies: Agile, RUP, XP, Scrum, Waterfall, Spotify
●Tools/Testing: Jmeter, Cactus, HttpUnit, Junit, findbugs, pmd, corbetura, eclemma,
easymock, jmockit, asemon, IBM HAT, Introscope, Sitescope, wireshark network packet analyzer,
●ITSM Tools: Rational Clear Quest, HI ITSM, HP Quality Center, Remedy
●Build/Version Control: Maven, Ant, Unix/Dos shell scripts, Cruise Control, Jenkins, Continuum,
Clearcase, Subversion, CVS, PVCS, VSS, Serena Dimensions, Git hub
●Cloud/Devops/tools: AWS, Google cloud, Docker, Terraform, Packer, Consul, Vault, AWS
Code deploy, AWS Run Command, Artifactory, ELK stack, file beat, Vagrant, Chef, Ansible
Professional Experience:
Onsolve Remote Sept. 2021 - Present
Cloud Architect
Project: DevOps, SRE & Cloud Architect
●AWS – Elastic Service, Kinesis Streams, Lambda, S3, Apica, Pagerduty, Terraform, Packer, Bandit. Equifax is multi cloud environment using AWS and GCP.
●Building out MDM Monitorng and alert service for Equifax.
●Terraform used to build out infra. Used S3 bucket as backend for sharing the state.
●Used Terraform AWS Modules extensively.
●Equifax is a multi cloud environment with both AWS and GCP.
●Equifax follows Spotfy agile methodology based on Tribes, Squads, Chapters, and Guilds.
●Implemented security controls to mitigate OWASP top 10 web app security risks as part of Equifax security practice
●Used Bandit for security scanning Lambda code in python as per Equifax security practice.
●Used Fortify for scanning Java code for microservices.
●AWS Elastic service used for log aggregation from CDH, MicroServices BRM for centalized logging for MDM projects.
●Logs from cloud watch moved to Elastic Search using subscription filters & Kinesis Streams.
●Created Lambda functions using python for log enrichment.
●Indexing done for log types and application types. Creatng widgets on Kibana for Custom visualizations
●Created Dashboards on Kibana for multiple user types( operations, Management, Stakeholders)
●Apica Used for Synthetic monitoring & configured Pagerduty integration on Apica.
●Tests created using Zebra tester. Configured Checks and Alerts on Apica
●Configured schedules on Pagerduty for MDM Monitoring tribe. GCP Services created using terraform include
●VPC, Shared VPC, subnets, firewall rules, routes, Custom IAM rôle, Service Accounts, Managed Instance groups, Instance templates For Processing logs at scale on GCP used
●Stackdriver logging ->Cloud Storage -> Cloud Dataflow ->Big Query
●Stackdriver logging collects logs using stack driver log agents installed on each node and saves them to cloud storage buckets
●Dataflow processes the logs by extracting metadata and computing basic aggregations
●Output from Dataflow is loaded to BigQuery tables. Used Terraform to automate the creation of the stack.Kubernetes deployment for microservices on GCP.
●Used Stackdriver for logging. For monitoring. Demoed kubernetes cluster creation on GKE using Rancher. Used Helm charts for deploying Jenkins
●Used chartmuseum as the helmchart repository, Used ConfigMaps To Inject Configuration Files.
●Using services to enable communication between pods
●Used loadbalancer service type to Forward Traffic to nodes.
●Dividing the cluster into namespaces for clean separation and efficient use of resources.
●Configured limits and requests at container level and Resource defaults and limits at Namespace level for managing CPU and Memory.
●Namespace Inter communication achieved through the url for namespaces.
●Used HorizontalPodAutoScaler to scale the pods and Cluster Auto scaler to scale the nodes
Company.com Remote Feb. 2011 – Sept. 2021
Cloud Architect
Project: DevOps & Cloud Architect
●AWS, Azure, Code Pipeline, Jira, RHEL 7.6, Cloud formation, python, bash, Terraform
●Creating AWS Foundation (Landing Zone) for Bimbo Bakery
●AWS was primary cloud provider and Azure was secondary
●Cloudformation scripts used to create Network Stack
●Landing Zone created with 4 Accounts (Management, Billing, POD & Non-Prod)
●5000 ips for AWS track. Direct Connect from Bimbo Datacenter to AWS us-east-1 & us-west-2. Used AT&T netbond for Direct Connect
●Testing of Direct Connect.
●Creating and Testing of Hardened BASE AMI for RHEL7.6 and Windows2012 using CIS recommendation. Creating IAM roles using cloudformation based on client requirements
●Single Signon from Azure AD to AWS
●Building Golden AMI pipeline to periodically create and distribute Golden AMIs and Decommission obsolete Golden AMI
●Burning Trend Micro agents on to RHEL AMI for security
●Installing Nessus PRO for vulnerability scanning Creating Cross Region/ Cross Account VPC Peering
●Domain joining RHEL and Windows instances. Ansible scripting for Domain Joining and Trend micro registration.Terraform scripts for instance creation.
●Kubernetes demo for AWS and Azure. Used EKS on AWS and AKS on Azure.
●Used Helm charts for deploying Jenkins, ClusterAutoscaler, MetricsServer, Fluentd to kubernetes cluster on EKS. Used chartmuseum as the helmchart repository
●Enabling Process Communication With Kube API Through Service Accounts
●Securing kubernetes cluster through RBAC authorization
●Using ConfigMaps To Inject Configuration Files.Using Ingress To Forward Traffic
●Using services to enable communication between pods
●Dividing the cluster into namespaces for clean separation and efficient use of resources.
●Namespace Inter communication achieved through the url for namespaces.
●Used heapster initially for resource metrics collection. Switched to Metrics Server.
●Used HorizontalPodAutoScaler to scale the pods and Cluster Auto scaler to scale the nodes
●Used DaemonSet for fluentd to collect logs and ship them to cloudwatch.
●Deployment Env : AIX 6.1.0.0,Websphere Portal 7.0/ IBM Lotus Web Content 7.0, DB2 enterprise server 9.7, IBM Tivoli Directory Server 6.1.0.5, IBM Http server 6.1, Serena Dimensions 12.2, ChangeMan DS, Tivoli Access Manager 6.1, Webseal for 2 factor authentication, HP Business Availability Center & Sitescope used to monitor portlets, Physical boxes and OS monitored by HP Operation Manager, Portal JVMS in PROD monitored by J2ee Diagnostic(HP), Apache Directory StudioVersion 2.0 to manage IBM Tivoli Directory Server 6.1.1,ThreatMatrix/ TrustDefender0.5
●Development Env: Windows 7, RAD7.0/8.0.3, Jython, log4j,DOJO 1.6, Java 1.6, Spring MVC 3.0.5, Hibernate 3.5.6, Restful Webservice JAX-RS Jersey 1.6, JSR 286, WCM API JSR 170, ant 1.8.4, Rational Clear Quest, CruiseControl 2.8.4,PUMA
●Designed and developed Track New Business module for AEP.
●Dojo 1.6 was used for UI, Rest calls to spring based middle layer which uses JDBC template to communicate with DB2. Used Dojo widgtes for generating pie chart, line chart, custom tables and grid reports. Used url generation tags for inter-portlet communication.
●Designed/ Developed ThreatMatrix/ TrustDefender client integration with AEP for client machine verification, malware threats.
●Client was blocked for Smartphone/Tablet users. Security implemented using PUMA API. Portal Theme customized for integration effort.
●Designed/Developed Continuous Integration for all AEP Projects.
●Apache ant was used for scripting the builds. CruiseControl 2.8.4 used for scheduling the build. Deployment scripts were done using Jython. Deployment requests were configured through Serena Dimensions. Serena is used as artifact repository. Migrated from Changeman DS to Serena Dimensions as part of Continuous Delivery process. Worked with the Enterprise architecture team to layout the deployment and build process. Extending the build and deployment process to Other projects in the group. Worked with WebSphere team to build out SIT2/UAT2/BF environments.Mentored build/Deployment Team on the build process.
●Responsible for building/ Configuring WebSphere Portal/Application servers on non-controlled environments.
●Developed scripts to setup AEP for windows boxes for development team. Brought down the time to setup up local environment from 1 day to 1 hr. Scripts include configuring the Appserver JVM, JMS, URLs, JDBC provider, Data sources, Class loader, JVM properties, App server variables,installing theme, pages, wars, portlets & personalization rules on Portal server, clearing dynacache.
●Created dos/unix scripts using Serena dmcli to update workarea, create DR, deploy DR, promote DR to different environments & upload workarea as part of continuous delivery process.
●Created Streams/Baselines and performed code merge on Serena Dimensions.
●Installed Serena plugin for cruise control and configured cruise control with the plugin.
Corstar New York Nov. 2008 – Sept. 2021
Cloud Architect
Project : Devops & Cloud Infra Structure
●RAD 6.0, Websphere Portal 5.1, RAD 6.0, Websphere Portal 6.0, Sunsparc, SunOS, CVS, ANT1.6.5, Java, JSP, Struts, ANT 1.6.5, Cruise Control 2.3.1, Subversion, Jython, JACL
●Migrated Portal5.1 Infrastructure to Portal6.
●Migrated Code base from CVS to Subversion.
●Strategy for scripting the deployment of Portal artifacts( portlets, portal pages, security, custom urls, themes and skins) for seamless release across environments.
●Devised and implemented Automatic build for Continuous Integration.
●Awk scripting to consolidate error reports for notifying senior management.
●Developing JSR168 JSF portlets.Jython scripts to configure Application server for JDBC data sources, Connection Pools, JNDI names, Custom Services, Environment variables, JAAS entries.
●Concurrent collection and parallel young generation collection set up on JVM
●Wily Introscope to monitor CPU, memory, throughput. Created and setup the pdd files on the server.Taking heap & thread dumps using OS kill commands and wsadmin
●Used IBM Heap Analyzer for analyzing the heap dump on AIX boxes.
●Heap Analyzer tool (HAT) was used to analyze the heap dump on Sun OS in older JVMs.
●Used IBM Thread and Monitor Dump Analyzer for Java for Thread dump analysis.
●Used JHAT for jdk1.6 apps. Enabled large page as per IBM recommendation.
●Involved in Inception, Elaboration, Construction & Transition phases of the project
●Portalising all intranet applications on the private bank.
●Primarily in charge of portalising IMGWEB, IWS, Headsheets & Xamin applications.
●Attended IBM Training for Portlet Development.
●Created Cheat sheets and training manuals to mentor junior team members.
●Responsible for developing the prototype for JSR 168- Struts portlets.
●Converted Struts based/Non Struts based applications to portlets.Created custom themes and skins for Pvt Bank.Created XMlaccess scripts to import & export portal configuration & deploy portlets.Used Parameter passing & Url generation tags for Inter Portlet communication across pages.Integrated CORDA Highwire into portal for PDF generation.
●Used AJAX for Announcement functionality.Worked with DataCenter to build SIT/UAT/PROD environment.Responsible for installation for portal/portlets on different environments.
●Customized Pagebar, Placebar to pick up images for portal navigation instead of text.
●Used PUMA API for programmatic security.
●Automated the build and deployment of portlets using ANT, Cruise Control & XmlAccess.
●Redesigned and integrated Account Cross Reference application with WorkStation Portal.
●Rational HATS (Host Access Transformation Services) Tool was used to transform mainframe 3270 and 5250 green screen applications to portlets.
●Used Java applets & Swing to develop Account Cross referenceUsed JPA with Hibernate for O-R Mapping for Account Cross Reference.Used bcp for data loading to sybase.
●SOA for integrating disparate intranet applications on portal.Designed and developed client tab.
●Installed and configured Corda server to display asset allocation in Chart format.(Pie/Bar)
●Develped the variance, overview modules for asset allocation
●Developed the module for creating model portfolio.Used Struts 1.2 features – multiple struts config files, Map backed form beans and DynaAction beans
Education:
●Bachelor Degree (2003 – 2007)
North Azad University
Tehran, Iran
Computer Programming
●Certification (2008 – 2010)
SUNY Ulster
Ulster New York
CCNA Certified / CCDA Certified
Contact this candidate