Cloud Engineer It Infrastructure
Resume:
M D MARUTHI KUMAR
Senior AWS Cloud Engineer
SUMMARY:
•IT Infrastructure: Total (15+ years), Cloud (10+ years), Network (5+ years)
•Cloud Platforms: AWS (10+ years), Azure (5+ years), GCP (3+ years)
•IaC & Automation: Terraform (5+ years), CloudFormation (5+ years), Ansible (6+ years)
•CI/CD Tools: Jenkins (7+ years), GitLab/GitHub (7+ years), AWS CodePipeline (5+ years)
•Containerization & Orchestration: Docker (8+ years), Kubernetes (6+ years), Helm (4+ years)
•Programming & Scripting: Python (5+ years), Bash (5+ years), Shell Scripting (5+ years)
•Database: MongoDB (3+ years), Microsoft SQL (3+ years), PostgreSQL (3+ Years), AWS Redshift (3+ years)
•Security & Monitoring: SonarQube (4+ years), Checkmarx (3+ years), AWS WAF (5+ years), CloudWatch (5+ years), Prometheus (4+ years), Grafana (4+ years)
PROFESSIONAL SUMMARY:
•Cloud Platforms & Infrastructure: 15+ years extensive experience in designing, deploying, and managing cloud infrastructure and networking across AWS, Azure, and GCP. Expertise in provisioning, monitoring, using IaC tools like Terraform, CloudFormation, AWS CDK, AWS SAM and securing cloud resources, including EC2, EKS, S3, Lambda, RDS, and IAM.
•DevOps & Automation: Proficient in implementing CI/CD pipelines using Jenkins, GitLab, GitHub Actions, Terraform, Ansible, and Docker. Skilled in automating infrastructure provisioning, application deployment, and security controls.
•IAM: Hands-on experience on Identity and Access management; users and groups creation and resource-based access controls, single sign on using cloud native tools like AWS IAM, AWS Cognito.
•Containerization & Orchestration: Hands-on experience on Docker, Kubernetes, EKS, AKS, Docker Swarm, and Helm. Expertise in container security, performance optimization, and scaling containerized applications in both cloud-native and hybrid environments.
•Cloud Networking: Strong working knowledge of AWS Networking such as VPC, Peering, Transit Gateway, Security Groups, NACL, VPNs, and Direct connect; DNS & Route 53 service, Cloudfront, and WAF.
•Security & Compliance: Strong background in implementing DevSecOps practices, integrating security tools such as SonarQube, Checkmarx, Nessus, AWS WAF, and Azure Security Center. Proficient in conducting security assessments, vulnerability scanning, and ensuring compliance with industry standards like PCI-DSS, HIPAA, SOC 2, and ISO 27001.
•Infrastructure Monitoring & Incident Management: Experienced with AWS CloudWatch, Prometheus, Grafana, Splunk, and New Relic for real-time monitoring, alerting, and performance visualization. Proven ability to optimize system observability and incident resolution.
•Programming & Scripting: Proficient in Python, Bash, Shell scripting for automation, monitoring, and security processes. Experience in writing reusable Terraform modules and Ansible playbooks.
•Configuration Management & IAC: Expertise in using Ansible, Terraform, and CloudFormation for automated configuration management and infrastructure-as-code (IaC) deployments.
•Database: Engineering of efficient and complex NoSQL and relational SQL solutions using MongoDB, Microsoft SQL, PostgreSQL and cloud native database solutions.
•Disaster Recovery & Backup: Skilled in designing & implementing automated disaster recovery strategies & backup solutions for cloud infrastructures, ensuring smooth conduct
TECHNICAL SUMMARY:
Cloud Platforms: AWS (EC2, VPC, IAM, S3, Lambda, RDS, DynamoDB, EKS, ECS, Fargate, SQS, CloudWatch, CloudTrail, CodePipeline, CodeDeploy), Azure (AKS, App Service, Virtual Machines, Virtual Networks, Azure Storage), GCP (Compute Engine, GKE, Cloud Storage, Cloud Functions, Pub/Sub)
Infrastructure as Code (IaC): Terraform, AWS CloudFormation, AWS CDK, Ansible,
DevOps Tools: Jenkins, GitLab, GitHub Actions, AWS CodePipeline, AWS CodeDeploy
Programming & Scripting: Python, Bash, Shell Scripting, Groovy, PowerShell
Containerization & Orchestration: Docker, Kubernetes, AWS EKS, Helm, Docker Swarm, Amazon ECS
Version Control: Git, GitLab, GitHub
Monitoring & Logging Tools: AWS CloudWatch, Prometheus, Grafana, Splunk, Nagios, New Relic
Security & Compliance: SonarQube, Checkmarx, Nessus, AWS WAF, Azure Security Center, PCI-DSS, HIPAA, SOC 2, ISO 27001 Compliance
Backup & Disaster Recovery: AWS Backup, AWS Glacier, Terraform Automation
Database and Data Management tools: MongoDB, SQL, PostgreSQL, MDM Stibo
EDUCATION & CERTIFICATIONS:
AWS solutions Architect Associate.
Certified Terraform Associate.
Bachelor of Science- Information Technology (2016-2020) from Sikkim Manipal University, India
Diploma in Engineering (Electronics and Communications) -2001 State board of Technical Education
PROJECT EXPERIENCE:
MSRB-Emma Labs, Washington, DC June’22 – Current
Senior Cloud DevOps Engineer
Responsibilities:
Infrastructure Automation & Cloud Management:
Automated infrastructure provisioning using Terraform and CloudFormation, enabling scalable, repeatable deployments across environments with minimal manual intervention.
Developed Python scripts using boto3 and Lambda to automate AWS resource provisioning, updates, and deletions, improving consistency and reducing manual effort.
Led the migration of monolithic applications to serverless architectures with AWS Lambda and API Gateway, enhancing scalability and agility.
CI/CD Pipeline Management & Deployment Optimization:
Designed and maintained CI/CD pipelines with Jenkins, AWS CodePipeline, and GitHub/GitLab, ensuring automated, version-controlled deployments at every SDLC stage.
Developed and managed YAML-based configuration files (buildspec.yml, appspec.yml) to automate build, test, and deployment tasks, ensuring maintainability and scalability.
Implemented automated rollback strategies with Jenkins and AWS CodeDeploy, minimizing downtime and ensuring controlled, safe deployments.
Containerization & Microservices Deployment:
Optimized ECS and EKS microservices deployment, automating containerized application releases for efficient and scalable rollouts.
Improved deployment strategies with canary deployments in AWS CodeDeploy, reducing risks and ensuring smooth rollouts.
Testing, Monitoring & Security Compliance:
Automated performance, security, and regression testing by integrating testing tools like SonarQube, OWASP ZAP, JMeter into CI/CD pipelines.
Implemented CloudWatch, CloudTrail, and AWS X-Ray for system observability, setting up custom metrics, logs, and alerts for real-time monitoring.
Ensured security best practices by integrating IAM roles, security groups, AWS WAF, AWS Secrets Manager, and KMS to protect sensitive data and maintain compliance (GDPR, HIPAA).
Collaboration, Mentorship & Agile Practices:
Worked closely with development teams to enforce automated testing and ensure seamless integration of security, monitoring, and deployment strategies.
Participated in sprint planning, release cycles, and sprint reviews using JIRA, contributing to Agile software delivery practices.
Mentored junior team members on SDLC processes, DevOps tools, and cloud best practices, fostering a culture of continuous learning and improvement.
Disaster Recovery & Backup Strategies:
Designed and implemented disaster recovery (DR) strategies using CloudFormation and AWS Backup, ensuring fast rollback and recovery in case of failures.
Environment: AWS (EC2, Lambda, RDS, VPC, IAM, S3, CloudWatch, AWS Devops), Python, Terraform, AWS SAM,
Jenkins, ECS, GitLab, Slack, SES, Lambda.
Viskefi Studios, Milton Keynes, UK Dec’19 – May’22
Senior AWS Cloud Engineer
Responsibilities:
Provisioned highly available EC2 instances using Terraform and CloudFormation, ensuring scalable and efficient IaC practices.
Automated Terraform deployments via Jenkins, integrating AWS CodeBuild for seamless infrastructure provisioning.
Managed AWS cloud resources with best security and networking practices, leveraging VPC, VPC peering, NAT Gateway, and Transit Gateway.
Integrated Jenkins with AWS, GitHub, and Docker, automating builds, tests, and deployments for scalable cloud applications.
Optimized CI/CD pipelines using Jenkins, Maven, and Docker, ensuring consistency from code commit to production.
Built and managed Docker images in AWS ECR, leveraging versioning and security for container management.
Deployed Kubernetes clusters on AWS EKS, ensuring high availability, fault tolerance, and scalable microservices.
Configured Helm charts for streamlined Kubernetes deployments, enabling easy updates and rollbacks.
Optimized Kubernetes performance by tuning resources, implementing HPA, and minimizing network latency.
Designed resilient Kubernetes infrastructure on AWS EKS using ASGs and ELB for load balancing.
Integrated SSL/TLS via AWS ACM, ensuring secure communication between microservices.
Implemented Kubernetes security with Network Policies and Service Accounts for controlled pod communication.
Managed container registries in Docker Hub and AWS ECR, ensuring secure storage and efficient distribution.
Provided ongoing Kubernetes support, focusing on incident response and performance tuning.
Enhanced deployment strategies with blue-green deployments, rolling updates, and optimized container rollouts to minimize downtime.
Environment: AWS (EC2, RDS, EKS, VPC), Terraform, Jenkins, Maven, Docker, Kubernetes, Helm, MySQL, GitHub.
STPI, Hyderabad Sep’05 – Oct’19
Project 1: Pennywise, TX Aug’17 – Oct’19
Senior Cloud Engineer
Responsibilities:
Implemented IAM roles and policies with least privilege access, using SCPs and AWS Organizations for cross-account security.
Automated migration of legacy applications from EC2 to AWS Fargate, leveraging ECS and CloudFormation for cost-efficient, scalable serverless containers.
Designed secure VPC architectures with public/private subnets, NAT/Internet Gateways, Route Tables, Security Groups, and NACLs for controlled traffic flow.
Deployed EAR and WAR files on WebLogic and Apache Servers via EC2, ensuring high availability with Auto Scaling Groups (ASG) and Elastic Load Balancing (ELB).
Configured backup strategies using AWS S3 for quick retrieval and Glacier for cost-effective archival storage with automated lifecycle policies.
cloud migrations with Migration Hub, Server Migration Service (SMS), and Database Migration Service (DMS) to optimize cost and scalability.
Conducted security audits using AWS Config, CloudTrail, and Inspector, ensuring compliance with CIS Benchmarks, SOC 2, and GDPR.
Integrated Terraform for IaC, provisioning EC2, S3, VPCs, and RDS through version-controlled templates and managing deployments via Terraform Cloud.
Established secure VPN connections between on-premises and AWS using AWS Site-to-Site VPN and Direct Connect, ensuring high-bandwidth and secure connectivity.
Managed Cloud WAN infrastructure, implementing best security practices for network integrity and scalability.
Optimized serverless computing with AWS Lambda, integrating with S3, Step Functions, and Kinesis for event-driven automation and real-time data processing.
Designed scalable cloud network architecture, conducting security assessments and penetration testing to mitigate vulnerabilities.
Set up AWS CloudWatch monitoring, configuring custom metrics, alarms, and Logs Insights for proactive issue resolution and cost optimization.
Collaborated on cloud cost management, using AWS Trusted Advisor, Cost Explorer, and resource tagging to optimize resource utilization.
Configured AWS RDS instances, ensuring high availability with Multi-AZ deployments, automated backups, and security group policies for access control.
Environment: AWS (EC2, S3, IAM, RDS, Lambda, VPC), Terraform, WebLogic, Apache, Jenkins.
Project 2:
ADP, TX Sep’14 – July ‘17
Senior DevOps/Cloud Engineer
Responsibilities:
Designed and implemented secure, scalable cloud architectures across AWS and Azure, including VPCs, subnets, NAT Gateways, Transit Gateways, and VPNs for security and fault tolerance.
Optimized network infrastructure with VPC peering, VPN tunnels, AWS Direct Connect, and applied SDN principles for centralized management.
Configured disaster recovery with AWS Backup, Cross-Region Replication, and RDS Multi-AZ, leveraging CloudFormation StackSets for resilience.
Environment: AWS (EC2, S3, IAM, Lambda, AWS VPC, Cloud WAN), Terraform, Ansible, Python, PowerShell, GITLab.
Infrastructure provisioning with Terraform and CloudFormation, developing reusable IaC modules for AWS services like EC2, RDS, Lambda, and S3.
Automated deployments using Ansible, Terraform, and Python, integrating with CI/CD tools such as Jenkins, GitLab CI, and AWS CodePipeline for efficiency.
Configured Ansible playbooks for automation, leveraging Ansible Tower for RBAC and CI/CD integration in multi-cloud environments.
Implemented dynamic inventory solutions with Ansible and Terraform for automatic resource discovery across AWS, Azure, and on-prem environments.
Applied security best practices, implementing IAM policies, Security Groups, Encryption at Rest (EBS, RDS), and TLS/SSL, ensuring compliance with CIS and NIST standards.
Managed AWS security and compliance using AWS Config, IAM, GuardDuty, and Trusted Advisor for continuous monitoring and governance.
Integrated CloudWatch, Prometheus, Grafana, and Datadog, setting up automated incident response via Lambda and SNS.
Troubleshot cloud infrastructure with CloudTrail, CloudWatch Logs, and X-Ray, implementing automated recovery using Lambda and Systems Manager.
Developed Python and PowerShell scripts for server provisioning, configuration, and API automation using AWS SDKs (boto3) and Azure APIs.
Integrated RESTful APIs and GraphQL, implementing OAuth and JWT for secure access, and orchestrating workflows with AWS Lambda and Step Functions.
Mentored junior engineers in DevOps practices, including CI/CD automation, Docker, Kubernetes, and cloud-native microservices.
Project 3:
De-Shaw, India Jan’10 – Aug’14
Infrastructure Engineer
Responsibilities:
Monitored system activities to ensure smooth server operations and avoid performance issues.
Configured and maintained Ansible playbooks for system automation and patch management.
Implemented network security policies and firewalls to protect sensitive data.
Managed DNS servers and ensured proper functionality and security.
Automated tasks with shell scripting to enhance system performance.
Configured Nginx, Apache, and Tomcat web servers for application deployment.
Implemented vulnerability patch management and system upgrades.
Developed security protocols for user authentication and resource access.
Managed backups and disaster recovery processes to ensure data integrity.
Performed configuration changes and updates to network hardware and software.
Conducted periodic vulnerability scans and security audits.
Worked on system troubleshooting to resolve network and server issues.
Environment: Linux, Ansible, Apache, Tomcat, Nginx, Shell Scripting.
Project 4:
Wipro Ltd, India Dec’05 – Dec’09
Network Engineer
Responsibilities:
Developed and managed disaster recovery plans for network infrastructure.
Configured network equipment, including switches, routers, and wireless bridges.
Set up and managed VPN connections between corporate networks and remote sites.
Ensured network infrastructure was secure and up-to-date.
Worked on network performance troubleshooting and optimization.
Configured ACLs, VLANs, and routing protocols such as OSPF and BGP.
Monitored network devices and generated reports for performance analysis.
Collaborated with external vendors to implement voice and data network solutions.
Ensured the timely configuration and maintenance of network devices.
Provided 24/7 support for network-related issues and incidents.
Managed network documentation and maintained up-to-date configurations.
Monitored network performance using tools such as PRTG and NMS.
Ensured reliable operation of wireless bridges and network connections.
Environment: Cisco, Juniper, OSPF, BGP, ACL, VPN, NMS, PRTG.
Contact this candidate