Post Job Free
Sign in

Senior Azure DevOps Architect

Location:
University City, PA, 19104
Posted:
February 19, 2025

Contact this candidate

Resume:

RAUNAK SINGH

848-***-**** *****.************@*****.***

Cloud Architect DevOps Engineer Azure AWS Security Automation Profile Summary: Azure Cloud Architect and DevOps Engineer with a total of 12+ years of experience in the IT industry. Bringing 9+ years of experience in Azure & AWS, designing, securing, and optimizing multi-cloud environments. Mastery in cloud architecture, security, infrastructure automation, and DevOps methodologies, ensuring high availability, scalability, and compliance for enterprise applications. Key Expertise:

• Infrastructure Automation & IaC: Proficient in Infrastructure as Code (IaC) using Terraform, ARM Templates, BICEP, and Ansible, enabling automated and consistent cloud deployments.

• DevOps & CI/CD: Skilled in CI/CD pipeline development with Azure DevOps, GitHub Actions, and Jenkins, streamlining application deployment and software delivery.

• Security & Compliance: Strong background in cloud security best practices, implementing Azure Security Center, IAM, Key Vault, MFA, RBAC, and compliance frameworks to harden cloud environments.

• Hybrid Cloud & Networking: Expertise in hybrid cloud strategies, migrating on-premises infrastructure to Azure, and implementing networking solutions (Azure VNet, ExpressRoute, Load Balancers, VPN Gateways).

• Containerization & Monitoring: Deft in containerized workloads (Docker, Kubernetes) and proactive monitoring using Azure Monitor, Dynatrace, ELK Stack, and Prometheus for performance optimization and business continuity.

• Serverless Computing & Event-Driven Architectures: Expertise in designing serverless applications using Azure Functions, AWS Lambda, Event Grid, and Step Functions, enabling cost-efficient, scalable, and event-driven workflows.

• Big Data & Analytics: Skilled in building and optimizing data pipelines using Azure Data Factory, Databricks, Synapse Analytics, and AWS Glue, ensuring real-time data processing, transformation, and business intelligence.

• Leadership & Strategy: Proven ability to lead cross-functional teams, collaborate with stakeholders, and align cloud strategies with business objectives to drive digital transformation. Professional Experience

Sr. Azure DevOps Architect

Amicus Therapeutics, Philadelphia, PA, Sep 2023- Present At Amicus Therapeutics, I led the migration and optimization of applications and databases to Azure, leveraging services like Cosmos DB, AKS, and App Service. I implemented automation with Terraform, ARM templates, and Azure DevOps, achieving significant performance and scalability improvements. Key accomplishments include

• Led end-to-end application and database migration to Azure, enhancing scalability, cost optimization, and disaster recovery.

• Designed and deployed secure, scalable Azure cloud infrastructure using Terraform, BICEP, ARM Templates, and Azure DevOps pipelines.

• Configured Azure Kubernetes Service (AKS) with ISTIO, enabling traffic management, enhanced security, and observability.

• Architected microservices-based solutions integrating Cosmos DB, Azure API Management, App Insights, and Azure Functions.

• Automated infrastructure provisioning and management using Terraform, BICEP, Ansible, and PowerShell, reducing manual intervention.

• Implemented enterprise-grade authentication and authorization using OAuth, OpenID Connect (OIDC), SAML, and Azure Active Directory (AAD).

• Optimized globally distributed Cosmos DB databases, ensuring low-latency reads and high-performance transactions.

• Developed scalable CI/CD pipelines in Azure DevOps, GitHub Actions, and Jenkins, automating .NET Core, Python, and containerized deployments.

• Enhanced network security by implementing Azure Firewall, DDoS Protection, Private Link, and Service Endpoints.

• Integrated Azure Virtual WAN and ExpressRoute for secure, high-speed hybrid cloud connectivity.

• Established policy-driven security compliance with Azure Policy, Azure Defender for Cloud, and Sentinel, ensuring SOC 2 and HIPAA compliance.

• Designed multi-region failover strategies with Azure Site Recovery, Backup Vaults, and cross-region replication for disaster recovery (DR).

• Implemented observability and alerting using Azure Monitor, App Insights, Prometheus, Grafana, and ELK Stack, ensuring real-time performance tracking.

• Managed container security by integrating Kyverno, Falco, and Aqua Security for runtime protection in Kubernetes environments.

• Automated configuration management and deployment orchestration using Ansible, Puppet, and PowerShell DSC.

• Led performance tuning initiatives for Azure SQL, Cosmos DB, and Data Lake, optimizing query execution and indexing strategies.

• Collaborated with cross-functional teams to ensure DevSecOps best practices, integrating SAST/DAST tools like Veracode, SonarQube, and Azure Security Center.

• Provided technical leadership, mentorship, and cloud strategy to accelerate digital transformation initiatives across the organization.

Environment: Azure, Terraform, BICEP, ARM Templates, Azure DevOps, Kubernetes (AKS), ISTIO, Docker, Ansible, OAuth, OpenID Connect, SAML, Azure Active Directory (AAD), Cosmos DB, API Management, App Insights, Azure Monitor, Prometheus, Grafana, ELK Stack, Jenkins, GitHub Actions, CI/CD, .NET Core, Python, PowerShell, Azure Firewall, Private Link, Service Endpoints, ExpressRoute, Virtual WAN, Azure Security Center, Azure Defender for Cloud, Sentinel, Azure Site Recovery, Backup Vaults, Cross-Region Replication, Kyverno, Falco, Aqua Security, Ansible, Puppet, PowerShell DSC, Veracode, SonarQube, SAST/DAST, SOC 2, HIPAA Compliance. Sr. Azure DevOps Architect

PNC Bank, Pittsburgh, Pennsylvania, Jul’21 – Aug’23 At PNC Bank, I led a team to develop Azure-based solutions, managing hybrid and public cloud infrastructures to enhance scalability, security, and operational efficiency.

• Designed secure, high-availability Azure architectures with advanced networking, encryption, and disaster recovery solutions, ensuring financial data protection.

• Developed scalable data workflows using Azure Data Factory, Databricks, and Synapse Analytics, enabling seamless data integration and advanced analytics.

• Optimized CI/CD pipelines using Azure DevOps, Terraform, Kubernetes, and ArgoCD, achieving automated, repeatable deployments.

• Integrated Azure Active Directory (AAD) with Kubernetes (AKS), implementing secure authentication, role-based access control (RBAC), and Just-In-Time (JIT) access policies.

• Conducted risk assessments and security audits, enforcing PCI DSS, SOC 2, ISO 27001 compliance with Azure Policy, Defender for Cloud, and Sentinel.

• Engineered ETL pipelines and data models using Azure Synapse, Data Lake, and Databricks, enhancing data processing and business intelligence.

• Configured Azure ExpressRoute, Virtual WAN, and VPN Gateways, ensuring seamless hybrid cloud integration and optimized network performance.

• Containerized applications using Docker, Azure Container Registry (ACR), and Helm, deploying workloads to Azure Kubernetes Service (AKS) for scalability and efficiency.

• Automated infrastructure provisioning and configuration management using Terraform, Ansible, and BICEP, improving deployment speed and consistency.

• Implemented observability and logging solutions using Azure Monitor, Log Analytics, ELK Stack, Dynatrace, and Prometheus, reducing MTTR and optimizing performance.

• Established multi-region disaster recovery strategies with Azure Site Recovery, Backup Vaults, and cross-region replication for high availability and failover resilience.

• Developed serverless automation workflows using Azure Functions, Logic Apps, and Event Grid, optimizing incident response and operational workflows.

• Collaborated with cross-functional teams and stakeholders, ensuring DevSecOps integration, regulatory compliance, and enterprise-wide cloud adoption best practices. Environment: Azure, Azure DevOps, Terraform, Ansible, ARM Templates, BICEP, Kubernetes (AKS), Docker, Helm, Azure Container Registry (ACR), ArgoCD, Azure AD, RBAC, Just-In-Time (JIT) Access, Azure Policy, Defender for Cloud, Sentinel, Azure Data Factory, Databricks, Synapse Analytics, Azure Data Lake, ExpressRoute, Virtual WAN, VPN Gateway, Azure Site Recovery, Backup Vaults, ELK Stack, Dynatrace, Prometheus, Azure Monitor, Log Analytics, Azure Functions, Logic Apps, Event Grid, CI/CD, Networking, Security, Compliance (PCI DSS, SOC 2, ISO 27001). Sr. Azure DevOps Engineer

Coca-Cola, Atlanta, GA, Sep’19- Jun’21

At Coca-Cola, I implemented high-availability, scalable solutions, and optimized cloud infrastructure on Azure. Key highlights include:

• Designed self-healing, multi-region architectures using Azure VMs, Load Balancers, Auto Scaling, and Traffic Manager, ensuring 99.99% uptime and disaster recovery readiness.

• Led application modernization initiatives, migrating monolithic applications to microservices on Azure Kubernetes Service (AKS), improving scalability, maintainability, and fault tolerance.

• Automated CI/CD pipelines using Azure DevOps, Jenkins, and GitHub Actions, integrating GitOps best practices for seamless deployments and rollback strategies.

• Strengthened cloud security posture by implementing Azure Firewall, DDoS Protection, Key Vault, NSGs, Just-In-Time

(JIT) Access, and Private Endpoints, ensuring data encryption and regulatory compliance.

• Developed ARM Templates, BICEP, Terraform, and Ansible playbooks for IaC-based infrastructure provisioning, reducing deployment time by 50%.

• Implemented comprehensive observability solutions using Azure Monitor, Log Analytics, Prometheus, Grafana, and Dynatrace, ensuring real-time performance insights and incident response automation.

• Optimized Kubernetes workloads by leveraging Helm, Kyverno, and Falco, improving security and workload orchestration across AKS clusters.

• Established multi-cloud connectivity with ExpressRoute, Virtual WAN, and VPN Gateways, enabling seamless hybrid cloud integrations.

• Enhanced serverless computing strategies, deploying Azure Functions, Event Grid, and Logic Apps for automated event-driven workflows and API integrations.

• Configured disaster recovery and backup strategies with Azure Site Recovery, Backup Vaults, and cross-region replication, reducing RTO/RPO for mission-critical applications.

• Led cost optimization efforts, leveraging Azure Cost Management and Advisor, reducing cloud expenditure by 30% through resource right-sizing and automated scaling.

• Implemented policy-driven governance using Azure Policy, Defender for Cloud, and Sentinel, ensuring SOC 2, ISO 27001, and GDPR compliance.

• Automated patch management and compliance reporting using PowerShell DSC, Azure Automation, and Security Center, ensuring 100% regulatory alignment.

• Mentored and trained Agile teams, improving DevOps adoption and delivery speed, leading to 25% user satisfaction improvement and $40K annual cost savings.

Environment: Azure, Azure DevOps, Terraform, BICEP, ARM Templates, Ansible, PowerShell, Kubernetes (AKS), Docker, Helm, Kyverno, Falco, Azure VMs, Load Balancers, Auto Scaling, Azure Firewall, DDoS Protection, NSGs, Key Vault, RBAC, Just-In-Time (JIT) Access, Private Endpoints, Azure Monitor, Log Analytics, Prometheus, Grafana, Dynatrace, ExpressRoute, Virtual WAN, VPN Gateway, Azure Site Recovery, Backup Vaults, Azure Functions, Event Grid, Logic Apps, Azure Policy, Defender for Cloud, Sentinel, CI/CD, GitOps, Security, Compliance (SOC 2, ISO 27001, GDPR). Site Reliability Engineer (SRE)

ConocoPhillips, Houston, Tx, Nov’17-Aug’19

At ConocoPhillips, I drove Azure cloud adoption, streamlining data processes and ensuring secure, scalable infrastructure. Key contribution.

• Managed production environment, maintaining high availability, performance, and system health.

• Engaged in the entire software development lifecycle, from design to deployment, ensuring quality and reliability.

• Participate in the postmortems to analyze incidents, enhancing future prevention, detection, & response strategies.

• Developed automation scripts to handle infrastructure, enhancing scalability with tools like Jenkins, Azure DevOps.

• Collaborated across teams to implement DevOps principles, focusing on rigorous testing and release procedures.

• Executed SRE strategy, defining SLIs/SLOs, and managing error budgets for optimal reliability.

• Conducted blameless postmortems, learning from incidents to enhance future system resilience.

• Built CI/CD pipelines with Kubernetes, Docker, ensuring rapid software deployment across cloud environments.

• Applied DevOps methodologies throughout the software lifecycle, using version control systems like Git and application monitoring tools.

• Evaluated and optimized system performance to handle large-scale, real-time data processing and insights.

• Configured infrastructure using containerization technologies, managed with Ansible, Chef, and infrastructure as code tools like Terraform.

• Monitored social signals and app store feedback to address and improve site reliability and user satisfaction.

• Monitored system performance with Grafana, JMeter, optimizing for large-scale, real-time data insights.

• Analyzed operational metrics for capacity planning, performance tuning, and compliance in secure, multi-cloud configurations.

• Ensure software solutions comply with security standards, particularly in sensitive areas like medical devices, by managing configurations and access controls.

Environment: Python, Java, Ruby, Jenkins, Azure DevOps, Helm, Kubernetes, Docker, Git, Ansible, Chef, Terraform, Grafana, JMeter.

AWS DevOps Engineer

American Life Insurance, Waco, Texas, Jan’16-Oct’17 At American Life Insurance, I streamlined deployment processes and enhanced operational efficiency through CI/CD pipeline design, scalable infrastructure, and automation

• Designed and implemented CI/CD pipelines using AWS CodePipeline, Jenkins, GitHub Actions, and Terraform, automating testing, security scanning, and deployment workflows.

• Managed Infrastructure as Code (IaC) with Terraform and AWS CloudFormation, ensuring scalability, compliance, and automated infrastructure provisioning.

• Strengthened cloud security by configuring AWS Security Groups, IAM roles, AWS KMS, Secrets Manager, GuardDuty, and WAF, mitigating security risks.

• Automated monitoring, log aggregation, and alerting using AWS CloudWatch, AWS X-Ray, Grafana, ELK Stack, and Splunk, reducing MTTR by 40%.

• Implemented disaster recovery (DR) and backup strategies with AWS Backup, RDS snapshots, S3 versioning, and cross- region replication, ensuring business continuity and compliance.

• Configured autoscaling, AWS Application Load Balancer (ALB), and centralized logging, optimizing availability, performance, and cost efficiency.

• Deployed and managed Docker containers on AWS ECS (Fargate) and EKS, ensuring scalable, high-performance microservices architecture.

• Integrated AWS Lambda and Step Functions for serverless automation, event-driven workflows, and scheduled maintenance tasks.

• Developed automated security compliance frameworks with AWS Config, Macie, and AWS Inspector, enforcing PCI DSS and SOC 2 standards.

• Led network optimization efforts, implementing AWS Transit Gateway, VPC Peering, and Direct Connect, ensuring low-latency hybrid cloud connectivity.

• Optimized cost management by leveraging AWS Cost Explorer, Auto Scaling Policies, and Reserved Instances, reducing cloud expenditure by 30%.

• Promoted a DevOps-first culture, training teams on GitOps best practices, IaC, and automated release management, improving operational efficiency.

Environment: AWS (EC2, S3, RDS, VPC, IAM, CloudFormation, CloudWatch, AWS X-Ray, CodePipeline, AWS Lambda, Step Functions, Secrets Manager, GuardDuty, WAF, AWS Config, Macie, AWS Inspector, AWS Backup, ELB, ALB, Auto Scaling, ECS, EKS, Fargate, Terraform, Jenkins, GitHub Actions, Python, Bash, Grafana, ELK Stack, Splunk, CI/CD, Disaster Recovery Data Engineer

Sisense, New York City, NY, Jan’13 - Dec’15

At Sisense, I designed and executed the migration of legacy on-premises data systems to AWS Redshift (launched 2012) and Google BigQuery (launched 2011), achieving a 30% improvement in query performance through optimized schema design and parallelized ETL workflows. Developed Python-based data validation frameworks that increased log accuracy by 30% by automating error detection and reconciliation processes. Implemented a SQL-driven data cleansing pipeline to standardize unstructured datasets, reducing manual cleaning efforts by 70%.

• Utilized Python and SQL to perform granular financial and behavioral analyses, identifying key trends in customer assortment, distribution, and marketing strategies, contributing to a 35% expansion of the client’s customer base.

• Streamlined data transformations, including XML parsing and hierarchical data flattening, using Python scripts to automate preprocessing tasks.

• Designed interactive dashboards with Tableau and Excel Power Query to visualize critical metrics, reducing ad-hoc reporting requests. Leveraged Apache Hadoop for distributed processing of large-scale datasets, ensuring scalability.

• Automated legacy workflows using SQL Server Integration Services (SSIS), enhancing operational efficiency and enabling data-driven decision-making.

• Migrated 50+ TB of on-premises data to cloud warehouses (AWS Redshift, Google BigQuery), optimizing costs and performance.

• Reduced data pipeline latency by 25% through parallelized Python ETL jobs and indexing optimizations.

• Built self-service dashboards to track KPIs, cutting stakeholder wait times for reports by 40%.

• Introduced automated data quality checks using Python, reducing production incidents by 20%. Environment: Python, SQL, AWS Redshift, Google BigQuery, Hadoop (HDFS, MapReduce), SSIS, Tableau, Excel Power Query, XML/JSON parsing.

Technical Skills

Azure Cloud Architecture

• Skills: Designing IaaS and PaaS solutions, migrating legacy systems to Azure

• Tools/Technologies: Azure App Service, Azure Functions, Service Fabric, Azure Virtual Machines, Scale Sets, Batch, and Azure Kubernetes Services (AKS).

AWS Services Proficiency

• Skills: High availability, and performance optimization for enterprise clients.

• AWS Networking: Route 53, AWS Transit Gateway, AWS Direct Connect

• Tools/Technologies: EC2, Auto Scaling, Elastic Beanstalk, Lambda, ECS, Batch. DevOps & CI/CD

• Skills: Building pipelines, managing IaC, implementing GitOps best practices.

• CI/CD Pipelines: Azure DevOps, Jenkins, YAML pipelines, Blue-Green Deployment, Canary Deployment, ArgoCD, Spinnaker

• IaC: Terraform, ARM Templates, BICEP, Azure Blueprints, Terragrunt, Terratest.

• Configuration Management: Chef, Ansible, Puppet, SaltStack, PowerShell DSC.

• Code Quality/Security Tools: SonarQube, Veracode, ZAP, ESlint, Cobertura, dotCover, SAST & DAST. Cloud Infrastructure

• Skills: Designing IaaS and PaaS solutions, migrating legacy systems to Azure

• Azure Compute Services: Virtual Machines, Scale Sets, App Service, Azure Functions, Batch, Service Fabric.

• Azure Storage: Blob, Queue, File, Disk, Azure Backup, Site Recovery.

• Networking: Virtual Networks, Load Balancers, Application Gateway, VPN Gateway, DNS, Traffic Manager, Express Route.

• Database Solutions: Azure SQL Database, MySQL, SQL Data Warehouse, Cosmos DB, Databricks, Data Factory. Containerization & Orchestration

• Skills: Containerizing and orchestrating applications, migrating on-premises apps to cloud environments.

• Tools/Technologies: Docker, Kubernetes, AKS, EKS, Helm charts, Azure Container Registry (ACR), Elastic Container Registry (ECR), AWS Fargate (for serverless container management) Monitoring, Security & Compliance

• Monitoring: Azure Monitor, Application Insights, Log Analytics, OMS, Nagios, Splunk, ELK, Data Dog, Dynatrace, Prometheus, Grafana, App Dynamics.

• Code Quality/Security Tools: Selenium, JMeter, Cucumber, and Postman for test automation. Security:

• Identity Management: Azure AD, Managed Identity, OAuth, RBAC, Azure Access Policies, PAM.

• Tools: Azure Key Vault, Security Center, Azure Defender for Cloud, Firewall, DDoS Protection, Azure Sentinel, OKTA, Kubernetes Security (Kyverno, Falco), AWS Config and AWS Macie

• AWS Security Services: AWS Shield, AWS GuardDuty, AWS Secrets Manager

• Compliance: Policy-driven monitoring, threat assessments, incident response. Disaster Recovery & Business Continuity

• Skills: Designing DR and continuity plans, conducting threat assessments, implementing Azure Backup, and Site Recovery

• Multi-Cloud Disaster Recovery: Cross-region replication (Azure & AWS)

• Backup Solutions: AWS Backup, Azure Blob Snapshot Programming & Scripting

• Languages: Python, PowerShell, Bash/Shell, JavaScript, Perl, .NET, Java, PHP. Logging and Monitoring

• Azure Tools: Monitor, App Insights, Log Analytics, AWS CloudTrail, AWS X-Ray (for AWS observability)

• 3rd Party Tools: Nagios, Splunk, ELK, Data Dog, Dynatrace, Prometheus, Grafana, App Dynamics. Technical Skills Overview

• PaaS: App Service, Functions, Web Jobs, Logic Apps, Container Services, Kubernetes Services.

• IaaS: Virtual Machines, VM Scale Sets, Bastion Host, VPN, Traffic Manager, Load Balancers, NSGs, ASGs.

• Identity & Security: Azure AD, MFA, SSO, OAuth, PAM, Azure Key Vault, Azure Security Center.

• Application Servers: Apache Tomcat, NGINX, IIS, JBoss, WebSphere, WebLogic.

• DevOps Tools: GitHub, Azure DevOps, Jenkins, YAML, Docker, Kubernetes.

• Databases: SQL Managed Instance, Cosmos DB, Data Lake, deltalake.

• Methodologies: Agile, Waterfall.

Certifications

Azure Data Engineer Associate (DP-203)

Azure Fundamental (AZ-900)

Azure Data Fundamentals (DP-900)

HashiCorp Terraform associate

Education

Bachelor of Engineering (B.Tech.), Electronics & Telecommunications Master of Science (MS), Information System

Northeastern University



Contact this candidate