Solutions Architect Cloud Engineer

Location:

Fort Washington, MD

Posted:

May 12, 2025

Contact this candidate

Resume:

Mark William Waldo

***** ********** **, ****-**********, Maryland, USA 20744

Email: ************@*****.*** Phone: 240-***-****

Senior AWS SOLUTIONS ARCHITECT Senior CLOUD ENGINEER Senior DEVOPS ENGINEER Senior CLOUD SECURITY ENGINEER / Cloud Consultant

I am a highly skilled Senior AWS Cloud Engineer with over 12 years of experience in technology consulting, IT management, business development, technical writing, and application migration. Proficient in collaborating with technical teams and known for being an exceptional team player. Possessing strong analytical skills for assessing enterprise-level business requirements, I excel in designing efficient, effective technological solutions tailored to clients' needs. Currently, my professional focus lies in cloud strategy, migration, Cloud Security implementation with CSPM tools, Wiz, Networking, Connectivity and optimization, with a passion for driving cloud computing forward. I am well exposed to GCP and Azure environments.

CERTIFICATIONS

1.AWS Certified Solutions Architect – Professional

2.AWS Certified Cloud Practitioner

3.AWS Certified Solutions Architect – Associate

4.AWS Certified Security – Specialty

5.AWS Business Professional Accredited

6.AWS Cloud Economics Accredited

7.Microsoft: Harnessing the Power of Data with Power BI

8.Fundamentals of Visualization with Tableau (UC Davis)

9.Introduction to Structured Query Language (SQL) – University of Michigan

10.Certified Agile Scrum Master (CASM) Certification

PROFESSIONAL EXPERIENCE

Senior Cloud Security Engineer / Senior AWS Solutions Architect

Warner Bros. Discovery January 2024 – Present.

Wiz: Designed and implemented cloud security dashboards for AWS, Azure, and GCP to monitor vulnerabilities, including CSPM, host, and container risks, ensuring continuous compliance with organizational security standards.

I leverage AWS WAF to implement robust security measures by protecting web applications from common threats such as SQL injection, cross-site scripting, and DDoS attacks, ensuring compliance with industry best practices." for 4 seconds

I have extensively utilized AWS WAF, implementing and fine-tuning custom rules and security policies to effectively mitigate web application threats and maintain industry compliance.

Define and maintain comprehensive cloud security standards and procedures while managing vulnerabilities, misconfigurations, and risk scenarios.

Understanding of industry standards and compliance requirements, such as PCI-DSS, CIS.

Splunk: Automated threat detection and response by developing queries to monitor IAM key deactivation and deletion activities across cloud environments, improving visibility into critical security events.

Operationalize innovative cloud security features and support secure workload migrations.

Collaborate with application owners and cloud engineers to translate requirements into actionable Agile user stories and ensure effective tool adoption.

Brinqa: Integrated asset and risk management data to enhance security orchestration, enabling effective remediation prioritization and tracking for multi-cloud environments.

Collaborated with cross-functional teams to optimize security frameworks, improve alert mechanisms, and align operations with industry best practices and compliance requirements.

I design, implement, and optimize cloud solutions leveraging AWS services such as EC2, S3, RDS, Lambda, and CloudFormation, as well as Azure services like Virtual Machines, App Services, Azure SQL Database, and Azure Kubernetes Service (AKS).

I manage secure, scalable, and highly available cloud network infrastructures, employing AWS VPC, Azure Virtual Networks, and hybrid connectivity solutions such as VPN, ExpressRoute, and Direct Connect.

I enforce robust cloud network security practices, including network segmentation, firewall configurations (AWS Security Groups, Azure NSGs), and advanced traffic routing using AWS Transit Gateway or Azure Traffic Manager to secure cloud perimeters.

Use AWS Config to continuously monitor and record configuration changes across your AWS environment, triggering automated remediation actions when resources deviate from established security standards.

A Senior AWS Solutions Architect, I design scalable architecture, optimizes cloud costs, ensures security best practices, implements CI/CD pipelines, manages infrastructure automation, integrates cloud-native services, leads migrations, enforces compliance, collaborates with stakeholders, and mentors teams on AWS best practices.

I support hybrid cloud architecture, ensuring seamless integration between on-premises and cloud environments, managing DNS and IP configurations with tools like AWS Route 53 and Azure DNS.

Implement a resource policy on an Amazon S3 bucket to restrict access exclusively to a designated IAM role, ensuring that only authorized users can read or write to the bucket.

Utilized Terraform and CloudFormation to provision cloud infrastructure.

I am a Terraform Master at work.

Senior Cloud Engineer / DevOps Engineer/ Senior AWS Security Engineer (Advisory)

PricewaterhouseCoopers (PwC) November 2021 – December 2023

Projects: GE, Voya, FSI, Comcast, Disney etc.

Define and maintain comprehensive cloud security standards and procedures while managing vulnerabilities, misconfigurations, and risk scenarios.

Operationalize innovative cloud security features and support secure workload migrations.

Collaborate with application owners and cloud engineers to translate requirements into actionable Agile user stories and ensure effective tool adoption.

Led application migration projects as Product and App Lead.

Integrate Prisma Cloud into the CI/CD pipeline to automatically scan container images for vulnerabilities and compliance issues before they are deployed to production.

Managed account decommissioning, builds, and engagement requests using Azure DevOps pipeline.

Designed and implemented architecture solutions on AWS.

Managed and deployed infrastructure using Infrastructure as Code (IaC) with CloudFormation and Terraform.

Set up AWS Control Towers, established landing zones, and enabled SSO.

Ensured robust AWS security management, including IAM, NACLs, security groups, and WAF configurations.

Migrated on-premises infrastructure to AWS Cloud following industry best practices.

I ensure high resilience and reliability in cloud deployments, designing systems for operational continuity and rapid disaster recovery.

I collaborate with application teams to establish consistent methodologies for application deployment and create on-demand environments for application testing and validation.

I actively contribute to Incident Management, Service Request Management, and Change Control processes, ensuring efficient and effective issue resolution.

I serve as an escalation point for complex issues, assisting the System Administration team with advanced troubleshooting and problem-solving.

Utilized Terraform and CloudFormation to provision cloud infrastructure.

Hands on with security tools like Wiz and Brinqa.

I designed MongoDB Atlas to fully manage cloud database service for MongoDB, designed to simplify database deployment, scaling, and security across multiple cloud providers (AWS, Azure, GCP)

I am a Terraform Master at work.

As DevOps Engineer with extensive experience supporting infrastructure and operations across compute, containerization, messaging, storage, SaaS applications, and disaster recovery environments. Proven success in establishing DevOps practices by automating infrastructure provisioning, implementing Infrastructure as Code (IaC), configuration management, and building robust CI/CD pipelines. Skilled in supporting multiple Kubernetes platforms, including open-source Kubernetes, MicroK8s, AKS, and EKS. Adept at collaborating with engineering and operations teams to drive automation, system monitoring, and continuous delivery improvements. Detail-oriented, agile, and capable of performing Linux and Windows Server administration while contributing to high-availability datacenter operations and automation-driven workflows.

Specialist Senior, Cloud Engineering / AWS Solutions Architect / DevOps Engineer

ALC DC/MD (Cloud Adoption Accelerator / Therap Management) June 2018 – 2021

Built high-performing, resilient, and efficient infrastructure for customer applications; conducted architectural reviews.

Developed CI/CD pipelines to standardize infrastructure and automate DevOps processes, accelerating code deployment.

Provisioned AWS infrastructure using CloudFormation and Terraform with Groovy scripts.

Operationalize innovative cloud security features and support secure workload migrations.

Collaborate with application owners and cloud engineers to translate requirements into actionable Agile user stories and ensure effective tool adoption.

Designed architectures for high availability and business continuity using multi-AZ deployments, ELB, Auto Scaling, and self-healing mechanisms.

Developed and implemented DDoS-resilient architectures and event processing patterns.

Consolidate security findings from multiple AWS services into AWS Security Hub to prioritize alerts and streamline incident response with a unified dashboard.

Deployed AWS services, including ECS, EKS, Lambda, DynamoDB, and SSM Parameter Store.

Led migration efforts utilizing AWS CART, ADS, Migration Evaluator, DMS, and Cloud Endure.

Automated remediation of Trusted Advisor findings with CloudWatch events and Lambda functions.

Utilized Terraform and CloudFormation to provision cloud infrastructure.

Expert in Active Directory Domain Services (ADDS), Active Directory Federation Services (ADFS), Azure AD, and Windows Server (2016 and later), with a deep understanding of identity management, authentication protocols, and enterprise security best practices.

As AWS Solutions Architect, I design scalable architectures, optimizes cloud costs, ensures security best practices, implements CI/CD pipelines, manages infrastructure automation, integrates cloud-native services, leads migrations, enforces compliance, collaborates with stakeholders, and mentors teams on AWS best practices.

Deploy, manage, and optimize Amazon EKS clusters for containerized applications, ensuring high availability and efficient resource usage.

Implement Kubernetes’ best practices such as auto-scaling, high availability, and fault tolerance, while managing deployments, services, secrets, ConfigMaps, and other resources within EKS.

I leverage Aurora for scalability, high availability, and cost efficiency, offering MySQL- and PostgreSQL-compatible database engines.

Senior AWS Solutions Architect / Cloud Engineer

Bank of America January 2016 – June 2018

Led design and development aspects of cloud migration, leveraging CART, ADS, Migration Evaluator, and Cloud Endure.

I enforce robust cloud network security practices, including network segmentation, firewall configurations (AWS Security Groups and advanced traffic routing using AWS Transit Gateway to secure cloud perimeters.

Implemented high availability and business continuity solutions using multi-AZ deployments, ELB, Auto Scaling, and disaster recovery models.

Utilized AWS Systems Manager for automated administration tasks, inventory collection, and OS patch management.

Improved security posture through multi-factor authentication, access key rotation, strong password policies, and implementation of AWS security services.

Implemented Docker containers using ECS and managed Ansible Tower for complex deployments.

Utilized Terraform and CloudFormation to provision cloud infrastructure.

Linux Systems Administrator / Consultant

MTN Mobile Telephone Network Central Africa January 2012 – December 2015

Migrated web servers and databases to AWS EC2 and RDS with minimal downtime.

Maintained server integrity by applying updates and patches per maintenance policies.

Configured and managed Apache Web Services and NFS for file sharing.

EDUCATION

Bachelors in Computer Science

Certification in Structured Query Language (SQL)

LANGUAGES

English (Fluent)

Mandarin (Chinese)

TECHNICAL CAPABILITIES

Cloud Orchestration / Automation: AWS CloudFormation, Terraform, Groovy, AWS Lambda, AWS Systems Manager, Ansible, Docker, Jenkins, ECS, EKS, ChatGPT

AWS Security: Security Hub, Guard Duty, AWS Shield, Firewall Manager, WAF and firewall configurations (AWS Security Groups, Azure NSGs)

Monitoring & Event Management: CloudWatch, SNS, S3, SQS, Data dog.

Identity & Access Management: AWS Organizations, IAM, AD Connector, AWS Workspaces, Secrets Manager

Governance & Compliance: AWS Config Rules, Control Tower, Trusted Advisor, Well-Architected Tool, License Manager

Programming Languages: Python, Java.

Application Delivery: Jira, Jenkins, Bitbucket, Code Pipeline, Code Commit, CodeBuild, Code Deploy

Data Protection: AWS Certificate Manager, KMS, Snapshot Lifecycle Manager, Cloud HSM

MongoDB Atlas / MongoDB and Aurora

Networking: VPC, VGW, TGW, IGW, NGW and Azure Virtual Networks, and hybrid connectivity solutions such as VPN, ExpressRoute, and Direct Connect.

Image & Patch Management: SSM Patch Manager, Golden AMI Pipeline

Ops Analytics: Splunk, Wiz, Brinqa and Medusa “CSPM Tools”

I have extensive experience Prisma cloud, AWS config, AWS security hub and Resource policy.

AWS Platform Expertise: S3, VPC, EC2, RDS, CloudFront, Route53, ELB, DynamoDB, Glue, Service Catalog “All AWS Services”

Deploy, manage, and optimize Amazon EKS clusters for containerized applications, ensuring high availability and efficient resource usage.

Implement Kubernetes’ best practices such as auto-scaling, high availability, and fault tolerance, while managing deployments, services, secrets, ConfigMaps, and other resources within EKS.

AWS Migration: Application migration leads to multiple accounts and Data

Active Directory: Expert in Active Directory Domain Services (ADDS), Active Directory Federation Services (ADFS), Azure AD, and Windows Server (2016 and later), with a deep understanding of identity management, authentication protocols, and enterprise security best practices. ACLs, trouble shooting of Defects.

Contact this candidate