Cloud Engineer Aws
Resume:
GODLOVE SUH
Greenbelt, MD 240-***-**** **********@*****.***
https://www.linkedin.com/in/godlove-chongwain
Result-oriented and highly skilled AWS Cloud Engineer with 7 years of hands-on experience in designing, deploying, and managing complex cloud infrastructures. Equipped with a comprehensive knowledge of AWS services and Linux-based systems, adept at optimizing system performance and ensuring seamless integration of DevOps tools. Seeking to leverage my expertise and drive innovation in a dynamic organization.
AWS: VPC,WAF, S3, EC2, Auto Scaling, Migration, Load Balancer, IAM, CloudFormation, Lambda, Route53, CloudFront, Aurora, DynamoDB, SSM, SNS, SQS, GuardDuty, CloudWatch, CloudTrail, EKS.
DevOps Tools: Terraform, Ansible, Git, GitHub, Gitlab, Bash scripting, Jenkins, SonarQube, Maven, Nexus, Docker and Kubernetes, Python.
Linux Systems: RHEL, Ubuntu, disk management, package management, job scheduling, file and directory management, user management, systempatching.
Agile (Scrum): Ability to communicate with stakeholders, Servant leader, organize scrum meetings, Ability to plan and prioritize based on the backlog Avenel Health 02/2019 – Present
AWS Cloud Engineer.
Managed AWS VPC, EC2 instances, Auto Scaling groups, Load Balancers (ELB) and IAM policies to meet SLA requirements, resulting in a 30% reduction in infrastructure downtime.
Automated resource provisioning using IAC tools like with Terraform and CloudFormation decreasing deployment time by 70%.
Worked in a team to develop CI/CD pipeline with Jenkins, Git, GitHub and Maven resulting in a 40% increase in overall speed and accuracy of deployment of features and updates.
Developed and implemented custom Terraform modules as part of infrastructure as code (IAC) approach, enhancing efficiency, reusability, and maintainability of the infrastructure code across different environments in AWS.
Utilized Python to develop several Lambda functions which improved security and reduced costs in our environment.
Utilized AWS Control Tower to automate governance frameworks, significantly OBJECTIVE:
TECHNICAL SKILLS:
PROFESSIONAL EXPERIENCE
reducing manual oversight requirements and enhancing compliance using account factory, landing zone, guard rails, service control policies (SCP) and AWS Organization.
Managed a portfolio of cloud service offerings through AWS Service Catalog, customizing services to meet specific business needs and enhancing operational efficiency.
Designed and deployed AWS infrastructure using AWS Cloud Development Kit (CDK), leveraging Python to define reusable and scalable cloud resources, improving automation and maintainability.
Developed robust access management policies using AWS IAM Identity Center, ensuring secure and compliant user access to cloud resources across multiple teams and projects.
Designed and implemented AWS Organizations to streamline account management and policy implementation across multiple business units, enhancing operational efficiency using control tower.
Created custom policies as well as automated policy enforcement in OPA to manage and control access to AWS resources, reducing unauthorized access incidents and protecting sensitive data.
Automated the rotation of secrets and credentials using AWS Secrets Manager, ensuring compliance with security policies and reducing the risk of unauthorized access due to compromised credentials.
Led the deployment of AWS WAF, resulting in a 50% decrease in malicious requests and a significant improvement in application stability and security.
Leveraged AWS WAF logs to analyze and mitigate attacks, minimizing downtime and potential data breaches.
Handled Terraform state management, in different environments using remote state file with S3 buckets and DynamoDB for state locking, backend configurations, and version controlling Terraform configurations.
Used Ansible in automating configuration management and application deployment.
Managed configurations using Ansible playbooks which increases productivity
Led a team in implementing Prometheus and Grafana for monitoring a high- traffic e-commerce application, resulting in 98.5% uptime
Created Grafana dashboards with custom alerts, reducing incident response time by 20%.
Developed a serverless data processing pipeline on AWS using Python in Lambda, S3, and DynamoDB, demonstrating cost-effective and scalable data handling.
Developed backend services in Python, integrating with various AWS services like S3 and RDS for data storage and retrieval.
In-depth knowledge of HTTP protocols, including methods, status codes, headers, and the request/response cycle.
Implemented HTTPS in web applications to ensure secure data transmission, including configuring SSL/TLS certificates.
Enhanced security posture by configuring AWS GuardDuty and CloudWatch reducing the risk of security breaches by 90%.
Used Python to write and develop Lambda functions to automate different actions in my environment.
Implemented automated security scanning and compliance monitoring using AWS Lambda and Amazon CloudWatch, proactively identifying and mitigating security risks.
Manage storage in AWS using Elastic Block Storage (EBS), elastic file system (EFS) and S3 that has reduced storage cost to about 20% by using the appropriate class and type when necessary.
Gained proficiency in Linux administration especially Red Hat Enterprise Linux as I was frequently called to assist because I indicated prior knowledge.
Design and set up databases including MYSQL, DynamoDB and Aurora to host data from on premise system at a far reduced cost.
Implemented different deployment strategies as necessary using EKS which improved uptime by 15%.
Used shell scripts with Ansible to automate the configuration of servers including installation and updating of packages.
Implemented shell scripts to automate CI/CD pipelines, integrating withJenkins and Docker for seamless build and deployment processes.
Extensive experience in managing containerized applications on Amazon EKS, including cluster provisioning, scaling, and optimization.
I also implemented backups in Kubernetes, EKS, using volumes and a third- party tool called Velero.
Gained more familiarity in Python as I used it to build simple scripts.
Wrote and executed shell scripts for automating several other processes in my environment such as updates and installations.
Automated routine operational tasks using AWS Lambda, SNS, and SQS, streamlining the workflow and reducing manual intervention by75%.
Successfully integrated AWS Route53 with CloudFront to optimize content delivery, resulting in a 70% decrease in latency for global users. Community Tech Solutions 06/2017 – 01/2019
AWS Solutions Architect.
Executed successful migrations of critical applications to the AWS cloud using various methods like database migration service (DMS) and MGN resulting in more than 30% operational cost savings.
Achieved a cost reduction of 20% by implementing AWS Lambda functions and EC2 Spot Instances for non-critical workloads.
Leveraged AWS CloudFormation to automate the deployment of resources, reducing the deployment time by 60%.
Improved the security strength of the environment against attacks by 20% by leveraging the principles of least privilege using IAM roles and policies, WAF and Secret manager.
Leveraged AWS Organizations to automate security policies and SCPs
(Service Control Policies) across all accounts, significantly improving compliance with internal standards and external regulations
Created and managed users and user permissions on Linux (RHEL) systems.
Automated AWS infrastructure provisioning and configuration using Terraform and AWS CloudFormation, reducing deployment times by 50%.
Led the implementation and design of backup and disaster recovery plans such as cross-region replication, creation of AMIs, and multi-AZ provisioning
Managed disk and file system through logical volume manager for Linux.
Gained proficiency in the use of tools like Jira and Confluence as we worked in an agile environment which improved our accuracy and productivity by about 30%.
led a team to set up and maintain the network infrastructure including VPCs, VPC peering and VPN.
Let my team to design and explain the impact of most architectural updates to the company stakeholders including cost and benefits
Used security tools like network access control lists (NACLs) and securitygroups to enhance security on my system.
Bachelor of Science in Computer Science University of Buea, Cameroon 2015
AWS Solutions Architect Associates, from AWS Training and Certification
AWS Solutions Architect Professional (in progress)
CompTIA A+ Certified.
Scrum Master (CSM), from Srum.org
References:
Available upon request
EDUCATION:
CERTIFICATIONS:
Contact this candidate