Post Job Free
Sign in

Machine Learning Security Specialist

Location:
North Bethesda, MD
Posted:
May 08, 2025

Contact this candidate

Resume:

Email: ***********@*****.*** North Bethesda, Maryland Tel: 240-***-**** www.linkedin.com/in/estifanosb

BINIAM ESTIFANOS EPHREM

Cloud Architect Azure & AWS Expert Infrastructure as Code

DevOps Automation AI/ML Cloud Security Specialist

PROFESSIONAL SUMMARY

Experienced Cloud Infrastructure Architect and Engineer with 18 years of expertise designing and deploying scalable private and public cloud solutions across Azure and AWS platforms. Specialized in cloud architecture, Infrastructure as Code (Terraform, ARM/Bicep), DevOps automation, AI/ML integrations, and cloud-native security frameworks. Skilled in leading technical engineering teams, driving cloud migrations, and delivering innovative solutions aligned with enterprise business strategies. Strong background in troubleshooting, system optimization, and operational excellence across hybrid and multi-cloud environments.

KEY KNOWLEDGE & STRENGTHS

Cloud Infra Architect (Azure & AWS)

Azure and AWS Solution Design and Implementation

Azure DevOps and AWS DevOps Pipelines & Automation

Cloud Migration Design & Execution

Infrastructure as Code (IaC) using Terraform, ARM Templates, and Bicep

Azure OpenAI Services and Microsoft Copilot Integration

AWS Workspace & AppStream 2.0 Deployment

Automation scripting with PowerShell, Azure CLI, Bash, Python, R, and Go

Git, Ansible, and Jenkins for CI/CD and infrastructure automation

Generative AI and Machine Learning (ML) Solutions

Natural Language Processing (NLP) with Llama, GPT models

Azure OpenAI service and Copilot

AI Model Integration using Titan and Amazon OpenSearch

Private Cloud Management (VMware, Nutanix, Hyper-V)

Network Virtualization (VMware NSX-T)

Azure VMware Solution (AVS) Deployment and Operations

Azure Virtual Desktop (AVD) and Windows Virtual Desktop (WVD)

Azure Active Directory Domain Services (Azure AD DS)

Authentication Services: ADFS, SAML Integration

Secure Access Control and Federated Identity Solutions

Docker Containerization and Kubernetes Orchestration

Linux Administration and Windows Server Management

Hybrid Cloud and On-Premises Infrastructure Support

Technical Consultation, Cloud Strategy Advising, and Training Delivery

Led cross-functional Engineering Teams in Cloud Transformations

CERTIFICATION

Azure Solution Architect expert

Microsoft Certified: DevOps Engineer Expert

Microsoft Certified: Azure Administrator Associate

Microsoft Azure AI Fundamentals AI-900

AWS Certified Solution Architect Associate

AWS Security Specialist, VMware cloud on AWS

MCP & MCTS (Microsoft Certified Technology Specialist)

CompTIA CASP, CompTIA Security+, CompTIA Network +, CompTIA A+

PROFESSIONAL DEVELOPMENT

Accenture, Amazon, Microsoft, Google, and VMware Partnership Training May 2018 - Now

AWS: AWS Solution Architect, AWS DevOps, Artificial Intelligence (AI) and Machine Learning (ML), VMware Cloud on AWS

Microsoft Azure: Azure Architect and Administrator, Office 365, Azure Active Directory (AD), Azure DevOps (CI/CD Pipelines), Azure OpenAI, Cognitive service, Kubernetes

Google Cloud: Google Cloud Architect and Design

Citrix: Citrix Virtual Desktop (XenDesktop/XenApp) and Citrix NetScaler Administration

Applied Information Technology Mar 2012 – Mar 2015

U.S. Department of State, Foreign Service Institute, Arlington, VA

State Department, Foreign Affairs Training Center, Arlington Virginia

CCNA, CompTIA Network +, CompTIA A+, Cloud, VMware, System Administration

Regional Information Management Center, American Consulate General January 2013 – 2014

Frankfurt, Germany

Completed extensive technical training across multiple platforms, including Web-Based Applications Development, CompTIA Security+ certification, and Linux RedHat System Administration. Gained advanced expertise in Server administration, Microsoft Exchange Server management, and virtualization and Automation. in-depth knowledge in IT Disaster Recovery and Contingency Planning to support critical infrastructure resilience. Additionally, technical support and system maintenance for Consular Application Systems, ensuring secure and efficient government service operations

EDUCATION

Master of Science (M.Sc.) in Artificial Intelligence University of Maryville, St. Louis, Missouri Expected Graduation: 2025

Bachelor of Science (B.Sc.) in Computer Science College of Science, Eritrean Institute of Technology Graduated: 2009

PROFESSIONAL EXPERIENCE

OCTO ECIS – DC Government Cloud Architect Engineer JULY 2023 – Now

Designed and managed OCTO’s and DC Agencies’ cloud infrastructure strategy, ensuring alignment with business goals and objectives.

Evaluated and recommended cloud providers, services, and solutions, including AWS and Azure.

Designed scalable, secure, and resilient cloud architecture; developed architecture diagrams and technical documentation.

Architect and implement infrastructure platforms tailored for AI/ML workloads, with a focus on scaling private cloud environments to support high-throughput training, inference, and Agentic workflows and pipelines.

Architected AI-driven solutions incorporating Azure Copilot for code generation, review, debugging, and workflow optimization for DC agencies.

Planned and executed cloud migrations from on-premises environments to Azure VMware vSphere (AVS) for agencies.

Implemented cloud deployment, monitoring, and maintenance processes using Azure services.

Enforced cloud security best practices, maintaining secure access controls, encryption, and regulatory compliance.

Optimized cloud resource utilization and spending through cost management strategies and monitoring tools.

Provided leadership, training, and technical support to internal development teams on cloud best practices and Azure Copilot integration.

Continuously stayed up to date with Azure Copilot’s features, AI capabilities, and evolving cloud best practices.

Designed, developed, and integrated Generative AI and Machine Learning (ML) solutions to optimize business processes, automate workflows, and enhance decision-making capabilities.

ACCENTURE

ACCENTURE Cloud Infrastructure AI Architect and Engineer January 2023 – June 2023

Projects: Huntsman, Capital One Bank, Eversource

Designed and implemented cloud infrastructure solutions across Azure and AWS platforms, ensuring alignment with business requirements and integration with existing enterprise systems.

Planned and developed scalable, secure, and cost-effective cloud architectures; created detailed architectural blueprints and documentation.

Architect and implement infrastructure platforms tailored for AI/ML workloads, with a focus on scaling private cloud environments to support high-throughput training, inference, and Agentic workflows and pipelines.

Oversaw deployment, monitoring, and management of cloud environments, implementing automation tools for provisioning and system maintenance.

Ensured cloud environments adhered to security best practices and compliance requirements by implementing security controls and conducting regular assessments.

Analyzed and optimized cloud infrastructure performance; troubleshot and resolved performance issues across cloud systems.

Collaborated with development teams, IT operations, and business stakeholders to ensure seamless integration and operational stability.

Provided technical support and leadership to engineering teams, promoting the best practices in cloud architecture and DevOps automation.

Continuously evaluated and improved cloud infrastructures to enhance performance, resilience, and efficiency while staying current with evolving cloud technologies.

Designed and implemented disaster recovery plans and backup strategies to ensure business continuity, including regular testing and plan updates.

Managed and optimized cloud costs by monitoring resource usage, implementing cost-saving measures, and providing cost estimates for new initiatives.

Designed and implemented solutions utilizing Azure OpenAI services and Microsoft Copilot to enhance application functionality, streamline development workflows, and integrate AI-powered assistance into business operations.

Project - SEMPRA ENERGY

Cloud Architect / DevOps Engineer November 2022 – December 2022

Planned, designed, and deployed Azure Virtual Desktop (AVD) environments using Terraform (Infrastructure as Code), managing operations efficiently with Nerdio AVD Manager, and integrating AI/ML capabilities into cloud services.

Conducted discovery and assessment of the Sempra AWS and Azure environments, designing Technical Architecture Diagrams (TADs) for AWS Workspace and AppStream 2.0 deployments.

Designed and implemented Azure DevOps pipelines to automate infrastructure deployment using Terraform IaC, enhancing cloud resource provisioning efficiency.

initiatives in Generative AI systems design, including Retrieval-Augmented Generation (RAG), LLM fine-tuning, semantic search, and multi-modal data processing.

Architected and deployed Azure OpenAI and Machine Learning infrastructure, building containerized platforms using Kubernetes for scalable AI/ML solutions.

Executed the deployment of AWS Workspaces and AppStream 2.0 environments through Terraform automation triggered via Azure DevOps Pipelines.

Integrated ServiceNow workflows with Azure DevOps to automate the resource deployment lifecycle and streamline DevOps operations across AWS environments.

Developed and integrated Natural Language Processing (NLP) solutions leveraging Llama and GPT models to enhance conversational AI, automate text generation, and support intelligent data analysis initiatives.

Project - CELANESE GMBH

Azure Solution Architect / DevOps Engineer March 2022 – November 2022

Deploy Azure AVD and Nerdio Manger for enterprise for all PaaS secure azure application

Designed Technical Architecture Diagrams (TADs) to support migration of legacy and cloud-native applications to Azure public cloud infrastructure.

Deployed Azure Virtual Desktop (AVD) environments using Nerdio Manager for Enterprise to secure PaaS-based Azure applications.

Configured continuous integration and deployment (CI/CD) pipelines using Azure DevOps, integrating GitHub repositories and Jenkins automation for builds and deployments.

Designed and implemented containerization and orchestration platforms using Docker, ECS, EKS, and Kubernetes (KOPS) for scalable application environments.

Led the deployment of Kubernetes clusters, setting up control and data planes for compute resource management.

Designed and built Infrastructure as Code (IaC) solutions utilizing Terraform, ARM templates, and Azure DevOps to automate IaaS, PaaS, and SaaS service deployments.

Provided architectural leadership for the Celanese migration project, leading migration planning, execution, and Hyper-Care post-cutover support.

Led the migration of Celanese.com and major data platforms (Celenytic – Data & Analytics Services) to Azure Data Lake, Azure SQL Pools, Apache Spark, Synapse Analytics, Azure Data Factory, Databricks, and Machine Learning platforms.

Migrated AI-based platforms (Celmation – Artificial Intelligence tools) to the Azure ecosystem.

Acted as SME (Subject Matter Expert), coordinating migration activities between client stakeholders, technical teams, and project managers.

Project - BAKER HUGHES COMPANY Azure Architect May 2021 – February 2022

Consulted with the client to identify cloud needs and opportunities, advising on cloud strategies to enhance operational safety, efficiency, and scalability.

Designed and implemented Azure infrastructure architectures, supporting the migration and transformation of legacy systems to modern cloud environments.

Accountable for technical delivery of cloud solutions, ensuring architectures were operable, scalable, high-performing, and cost-effective across private and public cloud platforms.

Planned, designed, and deployed Azure Virtual Desktop (AVD) environments, configuring network connections, images, and provisioning policies using Nerdio Manager and Windows 365.

Created Technical Architecture Diagrams (TADs) for application migrations from AWS to Azure, gathering requirements directly from application owners and stakeholders.

Led TAD design reviews with client enterprise architecture teams, incorporated feedback, and finalized migration-ready architecture plans.

Collaborated closely with migration teams to validate and prepare final TADs for AWS to Azure application migrations.

Project - AXIS CAPITAL (Insurance) Cloud Infrastructure Operations Engineer (SME) June 2020 – May 2021

Deployed and managed Azure Virtual Desktop (AVD) environments across hybrid infrastructures.

Led cloud and hybrid infrastructure operations, including incident and change management in coordination with business and technical stakeholders.

Monitored and supported performance, availability, and reliability of cloud and hybrid applications and infrastructure.

Designed and implemented cloud and on-premises (VMware, Hyper-V) infrastructure in collaboration with application owners and vendors.

Troubleshoot technical issues during infrastructure deployment and migration, ensuring minimal downtime and performance impact.

Worked with DevOps teams to support migration efforts and CI/CD pipeline deployments.

Coordinated with the cloud operations team to deploy Nerdio Manager for Enterprise, simplifying Azure AVD management and optimizing computer and storage costs through automation.

Project - Marriott International Cloud Infrastructure Operations Lead April 2018 – June 2020

Led day-to-day operations for public cloud environments (Azure & AWS) and private cloud infrastructure (SDDC), ensuring optimal performance and availability.

Managed high-converged infrastructure solutions, including VxRack, VMware vSphere, VMware NSX-T (Virtual Network), and VMware Integrated OpenStack (VIO), supporting over 16,000 physical and virtual servers, including 750+ ESX hosts.

Executed planned changes and handled break/fix scenarios for infrastructure components, including Veeam Backup, Nutanix, and Hyper-converged VxFlex Ready Node OS (ScaleIO).

Coordinated engineering and technical aspects of various infrastructure projects, ensuring smooth execution and alignment with organizational goals.

Collaborated cross-departmentally to develop and implement systems software, improve data analysis processes, and drive productivity.

Provided DevOps expertise, balancing complex programming and network-building tasks to ensure successful project execution.

Delivered training and Knowledge Transfer (KT) sessions to technical staff, including clients and Accenture team members, to enhance team capabilities.

As DevOps Engineer works to balance various aspects of a project, most of them complex issues such as programming and network building.

Give a Training and KT (Knowledge Transfer) session to a technical Staff of clients and Accenture team.

TELESIS CORPORATION (Federal Contractor) Enterprise Architect November 2016 – April 2018

Built, implemented, and supported daily operations of FDA legacy systems and Microsoft Azure Government Cloud infrastructure; migrated on-premises Exchange servers to Office 365 and configured user mailboxes. Installed,

installed, configured, and administered Linux RedHat and Windows Servers (2008 R2, 2012), including Active Directory (AD), Domain Controllers (DC), DNS, DHCP, and Group Policy Objects (GPO).

Implemented private cloud solutions and integrated Azure Active Directory, Azure ADFS, SAML, and SSO (Single Sign-On) environments using PowerShell automation.

Implementing private Cloud, virtual server, Azure Active Directory AD, Azure ADFS, SAML, SSO (Single Sign On) using Power Shell tool

Administered VMware environments, including ESX, vCenter, VM creation, migration (VMotion), and server troubleshooting.

Installed, configured, and maintained Cisco switches, routers, SonicWall firewalls, LAN/WAN networks, and wireless infrastructure (WLAN).

Designed and maintained network architectural diagrams; deployed SAN and NAS storage systems, ensuring secure storage management and disaster recovery readiness.

Created and modified application packages (MSI, APP-V) for deployment via MDT, SCCM, and IBM BigFix.

Conducted vulnerability patching and security remediation across servers and corporate/branch systems.

Installed, configured, and maintained Microsoft SQL Server 2008/2012, created SQL clusters, managed databases, backups, and restores.

Installed, configured, and troubleshot Terminal Services/Remote Desktop Services environments.

Automated system administration tasks using PowerShell scripts for Windows Server 2008 and 2012 R2 environments.

Monitored enterprise application systems, performed backups/restores, and managed disaster recovery operations.

AMERICAN FEDERATION OF GOVERNMENT EMPLOYEES (AFGE) Cloud Operations Lead January 2016 – July 2016

Managed, operated, and maintained scalable, highly available, and fault-tolerant systems on AWS (Amazon Web Services).

Designed and deployed Azure DevOps CI/CD pipelines for containerized applications and Kubernetes cluster deployments.

Installed, configured, and supported SAN storage systems (EMC) for backup, disaster recovery, and replication solutions.

Installed, configured, and maintained Cisco switches, routers, and firewall appliances.

Created Windows application deployment packages in .MSI format using SCCM and Desktop Management Engine for desktop deployment and Windows updates.

Led the migration of on-premises Microsoft Exchange systems to Office 365 and Amazon Web Services (AWS) cloud infrastructure.

Provided Office 365 support for core service onboarding, domain configuration, and troubleshooting configuration failures.

Managed over 1,400 user accounts across AFGE branch offices nationwide using Microsoft Active Directory.

Estimated AWS cloud service usage costs and recommended operational cost-control mechanisms.

Administered and troubleshot AFGE’s AWS-based cloud systems, continuously monitoring and reporting incidents and service health.

U.S. Department of State, U.S. Embassy – Asmara, Eritrea Computer Management Assistant / IT Specialist February 2012 – December 2015

Managed the administration, operation, and maintenance of the post's local area network (LAN) and communication infrastructure, providing Tier 2 and Tier 3 remote and onsite support for approximately 150–200 users.

Installed, configured, and troubleshot Cisco-based LAN/WAN networks including switches, routers, and firewalls; implemented Storage Area Network (SAN) solutions for disaster recovery.

Built, deployed, and maintained desktops (VDI), laptops/tablets, and Windows Server environments (2008 R2, 2012) including Active Directory (AD), Domain Controllers (DC), DNS, DHCP, GPO, Hyper-V, VMware ESXi 5.0–5.5, and Veeam Backup and Replication.

Led Windows OS migration initiatives, upgrading all PCs from Windows XP to Windows 7, updating virtual servers from Server 2003 to 2008/2012, and ensuring seamless data migration without service disruption.

Installed, configured, and maintained Microsoft SQL Server, SharePoint, IIS, and other enterprise applications.

Provided daily hardware and software troubleshooting for ~250 users, resolving issues related to desktops, laptops, printers, and network devices both remotely and onsite.

Installed, configured, and tested network cabling (coaxial, UTP, fiber) and wireless infrastructure using Cisco network hardware.

Responded promptly to service desk requests, maintaining high service levels and user satisfaction.

Developed and managed standardized desktop imaging and workstation upgrades to maintain infrastructure consistency.

Led a team of three in successfully migrating critical systems, including financial and consular services, to upgraded platforms without major connectivity losses.

Innovated 24/7 internet access solutions for U.S. diplomatic residences by testing and installing alternate WAN paths independent of city power reliability.

Patched and monitored remote desktop systems, performed system backups and restorations, and maintained disaster recovery readiness.

HIMBOL FINANCIAL SERVICE, ASMARA, ERITREA

Western Union subsidiary with 20+ international branch offices worldwide

IT Manager Jan 2011 – Jan 2012

Managed the company's entire IT infrastructure and Western Union online database system, securely connecting users to international databases via VPN technology while ensuring data accuracy, accessibility, and security.

Administered and supported LAN/WAN network environments, including configuration and management of Cisco routers, switches, and firewall technologies.

Led and managed IT staff, including database administrators (DBAs), technical support personnel, help desk teams, and developers; conducted junior staff training and performed biannual performance evaluations.

Managed Storage Area Network (SAN) solutions and developed disaster recovery strategies to ensure data protection and business continuity.

Network Admin/ System Admin Aug 2007 – Jan 2011

Installed, configured, troubleshot, and upgraded computer systems and software; administered user accounts and monitored system health and security.

Conducted daily system backups, email data protection, and administered disaster recovery operations to ensure business continuity.

Trained 40–50 users annually on technical system upgrades and provided orientation for 50–60 new employees biannually, ensuring smooth onboarding and technology adoption.

Created detailed user procedures for company software and systems; delivered cybersecurity training and operational briefings both remotely and onsite to improve user awareness and system security.

Assistant Technology Officer Aug 2005 – Aug 2007

Supported IT and System Manager as needed for special projects.

Prepared documents including IT procedures and policies to better understand how users utilized hardware.

Administered user accounts to provide usernames and passwords weekly to streamline troubleshooting.

Assistant Technical Support Aug 2004 – Aug 2005

Set up, installed, and configured software, hardware, computers, printers, scanners, fax machines, and network cabling across the organization.

Troubleshot issues related to client and Western Union VPN networks, ensuring secure and reliable connectivity between domestic and international branch offices.

Provided Tier 1 troubleshooting support for end users and collaborated with senior technical staff to escalate and resolve Tier 2 and Tier 3 technical issues.

AWARD / PROJECT

Extra Mile Award, US State Dept, US Embassy, Asmara, Eritrea 2014

Franklin Award, US State Dept, US Embassy, Asmara, Eritrea 2014



Contact this candidate