Cloud Engineer Data Center
Resume:
Sanjay
Cloud engineer
**************@*****.***
Professional Summary:
•10+ years of experience in IT Industry and having more than 8 years of experience in Azure in Configuring, Implementing, Deploying and Maintaining the Azure infrastructure. Experience working with Azure Infra and Dev Ops with CI/CD implementation in the Azure Environment.
•Experience working with several industries like Aviation, Manufacturing, Energy and Financial sectors.
•Good expertise in Managing Azure services and subscriptions using Azure portals and PowerShell, managed Azure resources to Azure Resource Manager,
•Worked with Data Center Assessments and Migrations using latest tools to migrate and deploy the workloads.
•Have knowledge of Database Migration Assistant (DMA) in assessing and migrating the database workloads.
•Designed and implemented storage solutions like Azure storage, images and disks and Microsoft Defender for compliance.
•Design and implementation of HUB and Spoke networking topology and network connectivity’s like Express Route, Site-to-Site VPN, Point to Site VPN, VNET peering.
•Experience in managing the docker images in Docker Hub and container registries, Azure Kubernetes Services including Nginx and App gateway ingress service.
•Experience in understanding and designing the IAC, Code repos, Static code analysis using SonarQube, branching strategy, app deployments on IaaS VMs and App services using build and release pipelines with the CI/CD approach.
•Design and Implementation of IAC tools like ARM, Power Shell scripts, Biceps and Terraform through automated deployments in Azure Dev Ops.
•Managing the repositories for securing the app and infra codes, application deployments, creating the build and release pipelines with YAML.
•Managing key vault in ADO, Azure container registry for images, Kubernetes for microservices deployment with ADO.
•Managing the Azure Governance policies with built and custom policies for the compliance.
•Creation of run books and managing the automation accounts for running and scheduling various jobs using runbooks.
•Experience with logging and monitoring using Azure monitor by configuring alerts, metrices and generating notifications using various signals available.
•Deployment of Azure app services like web apps, logic apps and function apps using terraform IAC.
•Managing the Azure costs using the cost management and cost analysis features and budgets implementation.
•Demonstrated experience in integrating Azure Data Factory with Databricks for streamlined data processing workflows and connecting Databricks with Azure Data Lake for enhanced data storage solutions
•Experience in handling Azure boards, Org level and Project level activities and permissions.
•Experience in designing and configuring monitoring solutions like Azure Monitor, log analytics, diagnostic logs and application insights including alerts.
•Having Good experience working with Gitlab, and Git Hub actions for managing the source code with push and pull commands.
•Collecting the logging information from azure services into azure monitor and implementing the alerts based on signals and metrics available in azure monitor.
•Analyzing the logging information from diagnostic storage accounts, log analytics workspaces and event hubs.
•Creating the custom policies from ARM and terraform and assigning them at different scopes.
•Experience with automation run books for scheduling daily jobs for monitoring the existing environment related services and their status to perform some operations.
•Implemented Azure policies for built in and custom policies with definitions and assignments.
•Designed and implemented Azure AVD infrastructure for a largescale requirement creating Host pools, Workspaces, Application groups and Host sessions.
•Very good understanding with the Reverse Connect Transport and RDP short path connection sequence and connection security.
•Load balancing and monitoring the AVD host sessions with multi session environments and implementing backup and DR solutions for AVD infrastructure.
•Experience in working with Nerdio Manager for Enterprise for managing AVD infrastructure and for the cost management too.
•Designing and Implementing Azure Site Recovery and Azure Backup for migration of workloads from on-prem to Azure and Azure to Azure.
•Automation of deployments in Cloud through PowerShell and other scripting languages
•Identifying and implementing NIST, HIPPA HITRUST and CIS controls using Azure blueprints, managing backups for VMs, SQL databases.
•Possess good organizational and interpersonal skills in a team-based environment. Tech savvy, Goal driven, Customer focused, honest, loyal with decent work ethics.
•Mastery in Planning and implementation of data and storage management solutions in Azure (SQL Azure, Azure files, Queue.
Technical Skills:
Azure Expertise : IaaS VM Migrations, Traffic Manager, Azure Cloud Services, Active Directory, Express Route, ACR, AKS, Azure Firewall, Azure Synapse, Service bus, blob storages.
Application/Web Server : Tomcat 5.0/6.0
Scripting Language : PowerShell, JSON, Biceps, Terraform, CLI
Database : SQL Server 2008/2014, Postgres SQL, Cosmos DB
Operating System : Windows 98/NT/2000/2003/XP/Vista/Windows 7, Windows
Server 2012/2008, Windows Azure, Linux,OpenShift
IDE : Visual Studio
Work Tracking : Visual Studio Online
Migration Tools : ASR, Cloudamize, MAP, FDT, Azure Migrate, Cloud Endure
Automation : Azure Dev Ops, Jenkins
Containers : Windows Containers, docker, Kubernetes, ACR
Technical Certifications:
•Azure Fundamentals (Az-900)
•Azure DevOps Certification (Az-400)
•Azure Solutions Architect (AZ-300)
Education Background:
•Bachelors in information technology JNTU, Hyderabad, India
•Masters in Data Science University of the Cumberland's Kentucky
Work Experience:
Senior Cloud Engineer
LPL Finance, TX Jan 2023 – Till Date
Description: Production Services Management Inc is the leading service provider globally across automative, aerospace, defense, energy, medical and agricultural industries.
Responsibilities:
•Design and implementation of the landing zones and foundational services for the customer requirements.
•Designing the network security network policies, managing RBAC permissions with PIM, conditional access and designing the custom RBAC policies.
•Enabling the monitoring on all the Azure services with Diagnostic storage, log analytics workspace, app insights and Azure monitor with Alerts and notifications based on metrics and thresholds.
•Design the infrastructure which includes IaaS and PaaS services as per the architecture.
•Deployment of infrastructure with the IAC tool that is Biceps and deploying them through the dev ops best practices and multistage deployments with Azure Dev Ops.
•Managing the team’s permissions on the projects and repositories and integrating the git, bitbucket repositories with the ADO.
•Design and implementation of back up and DR for many azure services by replicating to secondary regions.
•Governing and managing the environments with Azure built in and custom policies.
•Managing run books for managing the virtual machines and to run some scheduled jobs.
•Deployment of Azure landing zones and managing network related changes and updates with the terraform IAC.
•Implementation of security controls and ensuring security for the cloud services and working with cyber security for the testing and evaluation.
• Managing the branching strategy with branching policies and enabling Pull request for merging into master branch.
•Building the Azure dashboards for monitoring various azure services and monitoring AKS logs with app insights.
•Creation of build and release pipelines for deploying the infrastructure and application deployments using YAML pipelines.
•Experience in designing and managing the Dev Ops agents for running the jobs based on demand basis.
•Monitor the azure services by collecting logging information into log analytic workspace and application insights and helping the customers with KQL queires.
•Deployment of Azure app services like web apps, logic apps and function apps using terraform using CI/CD approach.
•Worked with logic app connector for integrating both Microsoft and non-Microsoft services and also connecting with different environments.
•Implemented RBAC with custom roles deployed using terraform for managing the logic apps
•Infrastructure deployment and managing the Postgres and Azure SQL servers through IAC and implementing the DR solution for any BCDR scenarios.
•Cluster management of Azure data bricks for user management and unity catalog.
•Managing the IAM based roles and access controls using azure policies and deployment of custom based roles using terraform.
•Managing the ADF deployment, Data bricks using the terraform as IAC through CI/CD pipelines.
•Integrating the ADF with GITHUB for backup and deployment the updates to higher environments using the linked templates in CI/CD approach.
•Configuration of terraform, biceps and arm templates in the ADO build and release pipelines and restricting the deployment procedure with the approval process.
•Integration of key vault with ADO and deployment of applications onto the docker and AKS containers.
•Designing the road map and migration strategy for both assessment and migration of on prem workloads.
•Deployment and managing the Azure data lake integrating with Azure Data Bricks and managing data bricks runtime versions.
•Integrating the external clients with Data lake with SFTP connections and implementation of network security.
•Design and implementation of the DR solution for some of the critical workloads which are in on prem and Azure.
•Implementation of the Networking connectivity using S2S VPN with the on prem data centers and point to site P2S VPN for the remote users.
•Implementation of cloud security with IAM roles, Entra ID authentication, PIM, and conditional access.
•Handling the https request using app gateway and routing the requests to the backend pools, managing the network security with NSG, UDR, ASG and monitoring with NSG flow logs, traffic analytics.
Client: UBS Jun2021 – Jan 2022
Role: Azure DevOps Engineer
Description: Designed and implemented the DevOps CI/CD framework for provisioning the platform infrastructure for foundation and all applications of UBS hosted in Azure cloud.
Responsibilities:
•Designed a DevOps framework for IAC using Terraform, YAML and Azure pipelines.
•Created a repository and branching strategy for implementing IaC for implementing all platform infrastructure deployments in Azure environments.
•Created terraform modules for Virtual Machines, App services, Key Vault, Storge, SQL DB, Application Gateway, Networking components.
•Created master pipelines (YAML) for provisioning the platform infrastructure in Azure.
•Implemented the Cloud Landing zone with Hub-Spoke architecture using the master pipelines.
•Enabled cloud engineers to leverage the IaC master pipelines to provision application specific infrastructure.
•Deployed the ExpressRoute circuit manually and other VPN connections like Site-to-Site VPN connection through ARM and azure dev ops.
•Responsible for implementing the foundational services, policies, network level security for the cloud environments.
•Implemented Backup and Disaster recovery for the production related workloads.
•Created IaC leveraging Terraform modules for provisioning the platform infrastructure.
•Created the terraform modules for Azure Kubernetes Service (AKS), App Service web apps, Azure functions, Azure Databricks, Asure storage, Virtual machines, NSGs, Route Tables and Azure SQL.
•Leveraged Ansible for configuration management for virtual machines.
•Leveraged YAML to setup and configure the CI/CD pipelines for deployment of infrastructure.
•Managed keys and secrets by via ADO libraries for pipeline integration.
•Managed various build and release pipelines for deploying both infrastructure with Biceps as IAC for the infrastructure deployment.
•Performed security scans to ensure the platform infrastructure is secure and compliant.
•Implemented monitoring for the production environment with various alerts and notifications.
Cognizant April2014 – May2021
Client: UBS
Role: Senior Cloud Engineer
Description. As a Cloud Architect, responsible for maintaining secure, reliable, and scalable platform for hosting applications and APIs in Ensemble’s Azure production and non-production environments.
Responsibilities:
•Enabled monitoring on all platform components using, Azure monitor, Alerts, Application Insights to ensure the systems meet reliability standards and maintain Service Level Objectives.
•Built fully automated DevOps pipelines to provision platform infrastructure to improve efficiency and minimize deployment errors.
•Leveraged Azure pipelines for Infrastructure CI/CD with YAML, Terraform, PowerShell, Az CLI, and Ansible.
•Responsible for creating, configuring and monitoring the Databricks clusters.
•Managed and monitored the workspace assets like notebooks, libraries and managing the access to these assets.
•Managing azure runbooks for managing some azure services like Virtual machines.
•Managed the users and groups in the workspace like assigning roles, controlling access and managing permissions.
•Managed the data bricks runtime versions and optimize the configurations for cost-effectiveness and performance
•Involved in continuously monitoring the systems to identify performance bottlenecks.
•Optimized existing systems for speed and efficiency leveraging the performance metrics of the platform and ensuring they can handle traffic spikes.
•Enabled the App service web apps to scale on demand based on the capacity planning performed to optimize the platform for cost and availability.
•Created and designed Azure Kubernetes Service based architecture for implementing microservices applications/APIs.
•Fully automated CI/CD for provisioning AKS (Kubernetes) with helm charts and Application Gateway using Azure pipelines.
•Designed and implemented AVD solution with multi sessions for the users with personal desktop and pooled session.
•Managed the AVD infrastructure for scaling the host sessions both for personal and pooled desktops.
•Worked on Nerdio Manager for the AVD infrastructure management for auto scaling, managing the pool size, managing the desktop images, managing workspaces, Storage, RBAC policies, running windows scripts, Azure runbooks and monitoring.
•Involved in designing the back and DR solutions for the AVD infrastructure solutions.
•Integration of AVD infrastructure with the private end point for connectivity.
•Designing Data resources such as ADF, Logic apps, Azure synapse, and SQL MI and linked services.
•Implemented Azure data lake for publishing the output of ADF and Azure Synapse analytics and managed RBAC.
•Design and implementation of complete environment restoration including databases based on demand.
•Worked with cloud security engineers to implement all the security controls to ensure the compliance is met.
Client: Value Labs Mar 2013-Feb 2014
Role: Cloud Engineer
Responsibilities:
•Implement and maintain a continuous integration/continuous deployment (CI/CD) pipeline, reducing the time to deploy new features and update the frequency of deployments.
•Configure, monitor, and automate Amazon Web Services as well as involved in deploying the content cloud platform on Amazon Web Services using EC2, S3 and EBS.
•Implemented Elastic Load Balancers (ELB's) and Auto Scaling groups in AWS on Production EC2 Instances to build Fault-Tolerant and Highly Available applications.
•Installing, configuring, and administering Jenkins CI tool on Linux machines.
•Involved heavily in setting up the CI/CD pipeline using GitHub, Jenkins, Maven, and AWS. Configured an AWS Virtual Private Cloud (VPC) and Database Subnet Groups
•Working with Development team closely on new releases and fixes for the issues.
•Monitor and report performance statistics for cloud hosted environments. Develop and automate standard operating procedures around common failure scenarios.
•Preparing the roadmap(train) for new fixes and patches from Lower environments pipeline.
•Debugged build failures and worked with developers and QA personnel to resolve related issues.
•Working and periodically meeting with Enterprise Architects, Project Managers, Scrum Master, Vendors, Developers and Deployment Managers to define and implement a Software Configuration Management solution.
•Achieved code coverage of 90% for GLAPI.
•Work with the Development team in identifying and resolving CI/CD workflow issues.
•Automate various infrastructure activities like continuous deployment and application installation.
Contact this candidate