Supply Chain Software Development

Addis Tesfaye

Tel: 202-***-**** Email: **********@******.**

CLEARANCE:

Public Trust; Level 6C

1

Professional Profile

Proven Cloud DevSecOps Engineer with 12+ years of experience designing, securing, and automating production-grade application deployments. Expert in embedding security into CI/CD pipelines, hardening containerized environments (Docker, Kubernetes), and managing cloud-native infrastructure (AWS EKS, Azure AKS). Key Achievements

Ensured 99.99% uptime of containerized applications on Kubernetes clusters in AWS (EKS)

Reduced deployment time by 30% through optimized CI/CD pipelines

Implemented monitoring and logging, reducing Mean Time to Detect (MTTD) by 25% and Mean Time to Resolve (MTTR) by 40%

Achieved zero-downtime deployments for 90% of applications using container orchestration patterns

Achieved SLSA (Supply Chain Levels for Software Artifacts) Level 3 compliance, reducing supply chain risks by 25%

Implemented Secure Software Development Life Cycle (SSDLC) practices, reducing security incidents by 40%

Implemented Continuous Policy-as-a-Service (CPaaS), reducing security vulnerabilities by 30% Technical Skills

AWS EC2, S3, IAM, Lambda, ECR, Azure VM, Azure Container Instance, Blob Storage, Azure Function

Docker containers and orchestration tools (Kubernetes, Docker)

Scripting languages (Bash, Python, Go)

Infrastructure Orchestration (Terraform, CloudFormation)

Configuration management tools (Ansible, Chef, Puppet, HELM)

Delivery (CI/CD) pipelines (Jenkins, GitOps, GitHub Actions, GitLab CI/CD)

Version control systems (GitHub, GitLab)

Monitoring and logging tools (Prometheus, Grafana, ELK stack, CloudWatch, Splunk, Jira)

Agile methodologies (Scrum, Kanban)

Artifact Management (Nexus, JFrog, Azure Artifacts, AWS CodeArtifact) Professional Experience

Ward 8 Digital (Washington, DC) CLEARANCE: N/A

Lead DevSecOps/Consultant 2020 – Present

• Deploy, configure, and optimize containerized applications on Kubernetes clusters in AWS (EKS) and Azure

(AKS), ensuring high availability, scalability, and reliability

• Design and implement secure CI/CD pipelines using GitLab, integrating Argo CD for automated deployment of containerized applications to Kubernetes clusters, ensuring robust security, scalability, and reliability

• Monitored and logged Kubernetes clusters and applications using native tools and third-party tools

• Implement container orchestration patterns like blue-green deployments, canary releases, and rolling updates, minimizing downtime and risk during application deployments

• Automate cluster provisioning, scaling, and maintenance tasks using Terraform

• Implement and enforce security best practices for Kubernetes clusters in AWS and Azure, including configuring network policies, managing access controls using AWS IAM and Azure Active Directory (AAD), and implementing RBAC for fine-grained access control

• Deployed, scaled, and managed applications on Kubernetes, optimizing deployment configurations and resource allocation

2 Resume of Addis Tesfaye

Ward 8 Digital (Suitland, MD) CLEARANCE: Public Trust; Level 6C Lead DevSecOps/Consultant – U.S. Census Bureau 2018 – 2019

• Set up and managed 20+ CI/CD pipelines using GitLab, reducing deployment time by 35%

• Automated 90% of testing and deployment processes

• Utilized Amazon ECR for storing and managing 300+ Docker container images

• Implemented automated image scanning and vulnerability management

• Worked with 15+ Kubernetes clusters on AWS EKS, achieving 99.95% uptime

• Collaborated with 5+ cross-functional teams to optimize system performance and security

• Established a dedicated support team for 24/7 availability NTTDATA/Ward 8 Digital (Washington, DC) CLEARANCE: Public Trust; Level 6C Senior DevOps/Consultant – U.S. Citizenship and Immigration Services 2015 – 2017

• Manage and maintain infrastructure as code using tools such as Terraform, CloudFormation, or Ansible, ensuring consistency and repeatability across environments

• Design and implement secure CI/CD pipelines using Jenkins and GitLab CI/CD

• Integrate code analysis and security scanning tools like SonarQube, Veracode, Fortify, and Snyk into CI/CD pipelines

• Collaborate with cross-functional teams to identify and mitigate security risks

• Participate in agile software development processes, including sprint planning, backlog grooming, and retrospectives

• Provide training and support to other team members and stakeholders on production support processes and procedures

L-3 Communications (Washington, DC) CLEARANCE: Public Trust; Level 6C Senior Automation Engineer/Consultant – U.S. Citizenship and Immigration Services 2012 – 2015

• Develop and maintain automation frameworks and test scripts for web applications using tools such as Selenium & QTP

• Execute automated tests and analyze results to ensure the quality of software releases

• Develop and maintain relationships with stakeholders, including product owners, developers, and testers

• Troubleshoot and resolve issues with automation frameworks and scripts SAIC (Washington, DC) CLEARANCE: Public Trust; Level 6C Senior Automation Engineer – U.S. Immigration and Customs Enforcement 2009 – 2012

• Design, develop, and maintain automated test scripts using tools such as Selenium WebDriver, TestNG, JUnit, or Robot Framework

• Analyze test results and collaborate with developers to identify and resolve defects

• Maintain and enhance existing automation frameworks and scripts to ensure they remain effective and efficient Education:

Bachelor of Arts in International Studies & French Virginia Commonwealth University Richmond, VA Certification: Scrum Master, AWS Certified Developer – Associate Akuity Continuous Delivery and GitOps using Argo CD

Contact this candidate