Senior Azure DevOps Architect

Mathesh Babu

Contact: 267-***-****; Email: *************@*****.***

DevOps Architect Security Specialist – Azure/AWS

Profile Summary:

Driven by over 11 years in IT, I bring 8+ years of experience in cloud architecture, security, DevOps, and infrastructure engineering. My background spans multi-cloud environments— Azure & AWS—where I deliver secure, high-performance, and scalable solutions tailored to enterprise needs.

1.Multi-Cloud Strategy and Architecture

oSkilled in architecting and managing infrastructures across Azure & AWS.

oAdept at integrating IaaS, PaaS, and hybrid cloud solutions to drive business agility and scalability.

oProven experience in seamless migrations from on-premises environments to cloud, employing Azure Migrate, ASR, and backup tools.

2.Infrastructure as Code (IaC) and Automation

oExpertise in automating deployments with Terraform, ARM templates, BICEP, PowerShell, and Azure CLI.

oImplements IaC best practices to ensure efficient, consistent, and scalable infrastructure management.

3.Network and Data Management

oExperienced in configuring secure, high-throughput network architectures with Azure Virtual Networks, Load Balancers, VPN Gateways, and ExpressRoute.

oSkilled in designing and implementing data solutions with Azure SQL, Blob Storage, Cosmos DB, and Data Factory.

4.Security and Compliance

oProficient in threat detection, policy-driven monitoring, and multi-factor authentication using Azure Security Center, Key Vault, and AWS GuardDuty.

oStrong focus on data integrity and identity management to meet security and compliance standards.

5.DevOps, CI/CD, and Containerization

oExtensive experience with CI/CD pipelines in Azure DevOps, Jenkins, and GitLab, promoting efficient release processes and GitOps practices.

oContainerization expertise with Docker and Kubernetes, enabling consistent and scalable deployments.

6.Monitoring, Incident Response, and Business Continuity

oSkilled in monitoring and analytics using OMS Log Analytics, Azure Monitor, and AWS WAF for proactive infrastructure health management.

oSolid experience in disaster recovery planning and business continuity, ensuring resilience in enterprise operations.

7.Leadership and Project Management

oDemonstrated ability to lead teams, manage cross-functional projects, and align IT initiatives with business goals.

oEffective in mentoring, fostering collaboration, and driving strategic technology implementations.

Technical Skills:

Security & Monitoring: Azure Key Vault, Disk Encryption, Azure App Insights, Azure Monitor, Azure Log Analytics, Azure Sentinel.

Operating Systems: UNIX, Linux, Windows, Solaris.

Virtualization Platform: Oracle VirtualBox, VMware Workstation, Vagrant, VMware, vSphere ESXi 5.x/4.x, ESX/3.x, HyperV.

Bug Tracking Tools: JIRA, Bugzilla, Remedy, HP Quality Centre, IBM Clear Quest, Mingle, VersionOne.

Logging & Monitoring Tools: Nagios, Splunk, ELK, Data Dog, Dynatrace, Prometheus, Grafana, New Relic, Azure Service Health, Azure Network Monitor.

IaaS: Virtual Machines, Virtual Machine Scale Sets, Azure Bastion Host, Jump Server, Virtual Network Peering, Virtual Private Network, Express Route, Availability Sets, Availability Zones, Virtual Networks, Regions, Traffic Manager, Application Security, Front Door, Load Balancer, Network Security Group, Application Security Groups, Service Bus, Service and Private Endpoints.

DevOps: GitHub, Jenkins, Azure DevOps, YAML, CICD Pipelines, Blue Green Deployment, Canary Deployment.

Storage: Azure Storage Account, Blob, Containers, Queue, Table. Access Keys, Shared Access Signatures.

Database: Azure SQL Managed Instance, Azure SQL, Cosmos DB.

Data Warehouse: Azure Synapse (SQL Datawarehouse).

Identity: Azure Active Directory, Managed Identity, Service Principal, AD B2C, OAuth.

Scripting & Programming Languages: Python, PowerShell, Bash/Shell, JavaScript, Perl, ASP .Net, VBScript, Ruby, C, PHP, Java/J2EE.

Infrastructure as Code (IAC): ARM Template, BICEP, Terraform.

SDLC: Agile Methodology, Waterfall.

PaaS: Azure App Service, Azure Functions, Web Jobs, Azure Batch, Azure Logic Apps, Azure Container Services, Azure Kubernetes Services.

Application/Web Servers: Apache Tomcat, NGINX, IIS, JBoss 4.1, WebSphere, Web Logic 9.x/10.x, Gerrit.

CI/CD Tools: Jenkins, Bamboo, Azure Pipelines, Gitlab Pipelines.

Source Code Management: GIT, GitHub, GitLab, Bitbucket, Azure Repos.

Containerization Tools: Docker, Kubernetes, Mesos, OpenShift.

Developer Tools: Visual Studio Code.

Professional Experience:

Azure Cloud Data & DevSecOps Architect October 2023 – Present

Citibank, New York City, NY

At Citibank, I led a team in designing and implementing secure, flexible Azure solutions that support sensitive financial data across on-premises, hybrid, and public cloud environments. I ensured compliance with industry regulations by creating high-availability architectures, securing Azure DevOps pipelines, and leveraging Terraform for Infrastructure as Code. Additionally, I optimized data processing through PaaS solutions and CI/CD pipelines, while conducting thorough security assessments and fostering collaboration across teams to drive successful adoption of the new infrastructure.

Directing a team to design secure Azure solutions across various cloud models (on-premises, hybrid, and public) aligns with Citibank's need for flexible, secure architectures that can support sensitive financial data across different environments.

Designing and creating an Azure-based architecture ensures high availability, disaster recovery, and compliance with industry regulations.

Securing Azure DevOps pipelines with vulnerability scanning, access controls, and limiting permissions is critical for maintaining data integrity and regulatory compliance, a major focus in financial services.

Using Terraform with Sentinel policies or Azure Policy for enforcing compliance ensures that all infrastructure meets Citibank’s stringent governance and regulatory standards.

Building CI/CD pipelines for deploying resources using IaC tools like ARM templates, BICEP, and Terraform streamlines development processes.

Designing PaaS solutions for data visualization and managing ETL workflows with Azure Data Factory aligns with Citibank's need for efficient data processing and visualization in analytics and reporting.

Working on Azure Virtual Machines (VMs), Virtual Networks (VNets), and Network Security Groups (NSGs) to replicate on-premises infrastructure in the cloud ensures seamless transition and optimal performance.

Conducting threat modeling, security assessments, and enforcing Azure Security Center recommendations directly addresses Citibank’s requirements for proactive risk management.

Encrypting data at rest and in transit, utilizing Azure Key Vault for Customer-Managed Keys, and integrating backup and disaster recovery solutions are essential in safeguarding sensitive financial data.

Implementing Azure Active Directory (AAD) to establish secure user authentication and access control mechanisms safeguards sensitive data and resources.

Implementing industry-standard branching strategies using GIT, GitHub, and Azure Repos enhances collaborative development.

Utilizing Azure App Service and Azure SQL Database to host web applications and manage database workloads efficiently ensures scalability and reliability.

Building data integration and data pipelines to connect different data sources and systems ensures smooth data flow and interoperability, enabling effective data-driven decision-making.

Deploying Azure Monitor and Azure Security Center for continuous monitoring, threat detection, and compliance management ensures the security and integrity of the Azure environment.

Implementing Python and Bash scripts for automation and data manipulation streamlines processes and enhances efficiency.

Implementing NSGs, Azure Firewall, and isolated VNets to control traffic and prevent lateral movement strengthens Citibank’s security posture.

Automating deployment workflows by integrating Ansible with Jenkins for continuous integration and repeatable deployment processes aligns with Citibank’s need for efficient, compliant, and scalable infrastructure management.

Ensuring minimal disruption to banking services by conducting thorough testing and validation of migration processes guarantees a seamless transition to the new Azure-based infrastructure.

Building user journeys using Azure B2C policies and implementing OIDC and SAML for authentication and authorization enhances security measures.

Collaborating with bank stakeholders and IT teams to provide training and support for the new Azure-based infrastructure ensures adoption and successful utilization across the organization.

Lead Cloud DevOps/Data Security Engineer Nov 2021 – Sep 2023

Intel, Santa Clara, California

At Intel, I led a team to develop robust data integration and processing solutions on Azure, utilizing Synapse and Databricks. I orchestrated efficient data ingestion workflows through Azure Data Factory and Logic Apps, and engineered scalable, cost-effective serverless architectures with Azure Functions and Python. My focus on security included implementing Azure Security Center and automated incident response, while leveraging CI/CD pipelines and Azure DevOps for streamlined deployments and infrastructure management.

Led the team in developing architectural blueprints, solution designs, and technical specifications for Azure Synapse and Databricks, focusing on data integration and processing capabilities.

Coordinated data ingestion workflows into Databricks via Azure Data Factory, Logic Apps, and other Azure services, ensuring efficient processing and analysis.

Designed serverless solutions with Azure Functions and Python, enhancing application scalability and cost-effectiveness.

Utilized Azure DevOps/VSTS for version control, build, release management, and deployments, fostering streamlined collaboration and development efficiency.

Enhanced security through Azure Security Center, setting up threat detection, security alerts, and coordinating incident response simulations.

Leveraged a suite of Azure services, including SQL Database, Data Lake, Data Factory, SQL Data Warehouse, and Analysis Services, for optimized resource utilization.

Managed Kubernetes environments to orchestrate Docker containers, overseeing pods, scaling, and load balancing for efficient deployment.

Configured Azure ExpressRoute for secure, reliable connectivity between Azure and on-premises infrastructures.

Strategized a seamless migration plan for the company's e-commerce platform to Azure, optimizing IaaS VMs and PaaS instances for peak performance.

Deployed advanced security monitoring and logging frameworks to ensure rapid detection and response to incidents across Azure environments.

Developed custom data connectors and integrations for smooth data ingestion into Azure Data Lake Storage.

Automated CI/CD processes for data pipelines and infrastructure using Azure DevOps, streamlining development, testing, and deployment workflows.

Contributed to data transformation initiatives on Azure Databricks with Apache Spark, utilizing Scala, Python, and SQL for advanced processing.

Established CI/CD pipelines for automated testing and deployment of Databricks notebooks and jobs, maintaining production reliability.

Optimized Azure resources using monitoring tools like Log Analytics and Application Insights to enhance performance and uptime.

Enabled secure access through Azure Active Directory, Key Vault, and multi-factor authentication, reinforcing resource security.

Automated Windows patching with PowerShell scripts and configured release pipelines in Azure DevOps to streamline updates.

Optimized network performance by configuring BGP routes for ExpressRoute to ensure reliable data center connectivity.

Implemented monitoring and alerting via the ELK Stack, configuring Logstash and Elasticsearch for efficient data collection and compliance.

Employed Azure Automation for process automation and configuration management, adhering to best practices for optimal resource use and cost efficiency.

Cloud Data & DevOps Engineer Sep 2019 – Oct 2021

Vertex Pharmaceuticals, Boston, Massachusetts

At Vertex Pharmaceuticals, I spearheaded the development of robust Azure data pipelines using Azure Data Factory, Databricks, and SQL Data Warehouse, ensuring alignment with business objectives and stringent security standards. I optimized data processing performance through targeted tuning techniques and automated workflows to enhance operational efficiency. By deploying Azure services seamlessly and establishing CI/CD pipelines, I facilitated rapid and reliable delivery of solutions, significantly improving scalability and integration across the organization. My efforts in documentation and knowledge sharing fostered a collaborative environment, supporting continuous improvement and innovation.

Develop and implement robust Azure data pipelines utilizing Azure Data Factory, Databricks, and SQL Data Warehouse to meet business objectives while adhering to stringent data security standards.

Enhance query and data processing performance through meticulous performance tuning and optimization techniques.

Create and maintain comprehensive documentation detailing data processes, lineage, and architecture to foster transparency and facilitate knowledge sharing.

Automate data workflows to streamline operations, reduce manual effort, and enhance operational efficiency.

Deploy Azure services seamlessly using ARM templates, ensuring integration with existing infrastructure with minimal disruptions.

Implement a wide range of Azure services, including Active Directory, storage solutions, cloud services, IIS, ARM, Blob Storage, VMs, SQL Database, Functions, App Service, and Service Bus, demonstrating extensive knowledge of the Azure ecosystem.

Simplify tasks and workflows through automation tools like Terraform and Ansible, driving efficiency and reducing manual overhead.

Design and automate IaaS and PaaS capabilities by provisioning virtual machines, container services, virtual networks, and cloud services to ensure scalability and reliability.

Establish and manage robust CI/CD pipelines using Azure DevOps and PowerShell scripting to enable continuous delivery and accelerate time to market.

Effectively manage the migration of on-premises resources to Azure using Azure Site Recovery and backup solutions, ensuring seamless transitions to the cloud.

Leverage Azure DevOps services (Repos, Boards, Test Plans) for code development, collaboration, and streamlined application deployment.

Demonstrate expertise in VMware ESX installation and virtual machine creation to ensure efficient virtualization solutions.

Troubleshoot load balancing issues and manage system backups to maintain system integrity and reliability.

Utilize source control tools (Git, Bitbucket) and build/deployment tools (Maven, Jenkins) to support agile development practices.

Develop and maintain various Azure DevOps tools, including deployment utilities, staged virtual environments, and provisioning scripts to foster a comprehensive DevOps toolchain.

Utilize Azure Monitoring tools (Log Analytics, Network Watcher, Service Health) to diagnose issues and minimize service degradation, ensuring proactive problem resolution.

Implement monitoring solutions (Azure Monitoring, Dynatrace) with customized alerts to pre-empt disruptions and uphold service uptime.

DevOps/Data Infrastructure Engineer Jun 2017 – Aug 2019

Walgreens Boot Alliance, Deerfield, Illinois

At Walgreens Boots Alliance, I spearheaded the development of tailored Azure infrastructure solutions that prioritized scalability, reliability, and cost-efficiency. I implemented comprehensive monitoring strategies, utilizing Azure Monitor and Application Insights to enhance performance and quickly address bottlenecks. By automating deployment with ARM templates and Terraform, I ensured consistency across environments while facilitating seamless data migrations to the Azure cloud. My efforts in establishing CI/CD pipelines and integrating Azure applications with third-party systems significantly improved operational efficiency and the user experience for Walgreens’ digital services.

Developed and implemented customized Azure infrastructure solutions to meet Walgreens Boots Alliance's application needs, focusing on scalability, reliability, and cost-effectiveness.

Created and executed monitoring and optimization strategies for the Azure environment, proactively identifying and resolving performance bottlenecks and cost inefficiencies.

Configured Azure Monitor, Application Insights, and other monitoring tools to provide real-time visibility into Azure resources and applications, enabling swift troubleshooting and optimization.

Formulated data migration strategies using Azure Data Factory and Migration Services to ensure seamless transitions of critical data to the Azure cloud environment.

Managed provisioning of servers and resources through ARM templates and Terraform, applying infrastructure-as-code principles to automate deployment and maintain consistency across environments.

Established CI/CD pipelines using Azure DevOps to facilitate efficient and reliable deployment of applications and infrastructure across Walgreens' digital ecosystem.

Employed IAC tools like Terraform and ARM templates to create and manage multiple resources in Azure, enhancing operational efficiency.

Utilized Azure Monitoring tools and Dynatrace for proactive oversight of applications, allowing for early detection and resolution of potential issues.

Automated build and deployment processes using Maven, Jenkins, and Ansible, streamlining development workflows and minimizing manual intervention.

Seamlessly integrated Azure applications with third-party systems using Azure integration services to ensure smooth data exchange and interoperability.

Engineered scalable Azure infrastructure while adhering to best practices for compliance and security to protect sensitive data and ensure regulatory adherence.

Continuously monitored application performance and optimized it using Azure monitoring tools, enhancing the user experience for Walgreens' digital services.

Demonstrated proficiency in Git, GitHub, and Bitbucket to facilitate effective version control and collaboration within development teams.

AWS Cloud & DevOps Engineer Jan 2016 – May 2017

Kinder Morgan, Houston, Tx

At Kinder Morgan, I leveraged a variety of AWS services, including EC2 and S3, to optimize resource allocation and enhance security measures within our cloud infrastructure. I developed and maintained CI/CD pipelines that utilized Python for automation, ensuring efficient application deployments while conducting rigorous testing protocols with AWS CodePipeline and Selenium. My efforts focused on designing scalable architectures and implementing best practices to improve operational efficiency, security, and reliability across Kinder Morgan’s production systems.

Leveraged AWS services such as EC2, S3, and CloudFormation, along with custom scripts and configurations, to optimize resource allocation and implement robust security measures.

Evaluated new technology alternatives and vendor products to enhance Kinder Morgan's AWS ecosystem, ensuring alignment with industry best practices.

Developed CI/CD pipelines for application deployments, integrating Python scripting to automate tasks and improve deployment workflows.

Ensured the availability, performance, security, and scalability of production systems within Kinder Morgan's cloud environment.

Conducted comprehensive testing protocols using AWS CodePipeline and Selenium, validating functionality, performance, and security before deployment.

Strengthened cloud infrastructure security by implementing IAM policies, security groups, encryption mechanisms, and compliance frameworks to protect against vulnerabilities.

Designed scalable architectures tailored to Kinder Morgan's evolving requirements, enhancing operational efficiency and reliability.

Utilized tools like AWS Elastic Beanstalk and CodeDeploy to streamline release processes, manage configurations, and maintain consistency across environments.

Employed AWS CloudWatch and custom monitoring solutions to promptly identify and resolve issues, minimizing downtime and ensuring uninterrupted operations.

Automated various operational tasks using Python, PowerShell, and Bash, driving efficiency in day-to-day processes.

Data Analyst Nov 2013 – Dec 2015

TIBCO Software, Palo Alto, CA

Collect, process, and analyze large sets of structured and unstructured data from various sources to extract meaningful insights.

Develop and maintain dashboards and reports to track key performance indicators (KPIs) and provide actionable insights for business stakeholders.

Collaborate with cross-functional teams to understand their data needs and deliver tailored analytical solutions.

Utilize statistical methods and data visualization tools (such as Tableau, Power BI, or Excel) to present findings in a clear and concise manner.

Identify trends, patterns, and anomalies in data to inform business decisions and strategic initiatives.

Perform data cleaning, validation, and transformation to ensure data integrity and accuracy.

Conduct exploratory data analysis (EDA) to support hypothesis testing and identify areas for improvement.

Assist in the development of data collection and analysis processes to optimize efficiency and data quality.

Provide support for ad-hoc analysis and reporting requests from management and other departments.

Document methodologies, processes, and findings to create a knowledge base for future reference and team training.

Stay updated with industry trends and emerging technologies to continuously enhance analytical capabilities and tools.

Communicate results and recommendations effectively to both technical and non-technical stakeholders, ensuring clarity and understanding.

EDUCATION

Master of Science in Computer Science

University of California, Riverside

Bachelor of Technology in Information Technology

Contact this candidate