Azure Cloud Solution Engineer
Resume:
Rishi Raj
Cloud Solution Engineer Cloud Migration DevSecOps Financial Cloud Architecture
+1-312-***-**** ************@*****.*** linkedin.com/in/rishiraj31 SUMMARY
Cloud Solution Engineer with 7+ years of experience in cloud migration, DevSecOps and full-stack development. Specializing in leading, designing and automating cloud solutions for financial platforms. Spearheaded the adoption of the Azure Cloud Native Framework, improving application performance scores by 40% for applications migrating to the public cloud. Reduced infrastructure threats from over 400 to less than 10 per month by incorporating DevOps security. EXPERIENCE
Cloud Engineer Full Stack Engineering
Northern Trust
05/2022 - Present Chicago, United States
Azure Cloud Solution Engineer for Wealth Management BU Enterprise Architecture Team. Led a team of cloud engineers and DevOps contractors across multiple teams to resolve critical DevOps challenges, enhancing Terraform code quality and optimizing Azure cloud infrastructure, maintaining an application uptime of 99.99% across Wealth Management. Championed the adoption of the Azure Well-Architected Framework, establishing cloud infrastructure patterns. Led the team on enterprise cloud compliance initiatives for financial workloads, aligning architecture and DevOps practices with regulatory frameworks including NIST 800-53, CIS Controls, PCI DSS, and ISO 27001 across hybrid Azure environments. Implemented NIST 800-53 and CIS Benchmarks across Azure resources to meet internal InfoSec and regulatory compliance standards, reducing control gaps during audits.
Embedded Zero Trust Architecture (NIST 800-207) into platform design by enforcing identity-based access, conditional access policies, network segmentation, and continuous monitoring across AKS, Azure Firewall, and App Gateway. Cloud Solutions Engineer on the project of Enterprise API Platform which required re-architecture of Layer 7 Gateway, Developer API Portal and decommission of On-Prem Gateway.
Mapped enterprise API platform architecture to SOC 2 Type II and PCI DSS requirements using Azure API Management, OAuth/JWT validation, and Azure Key Vault.
Authored at least 5 new cloud patterns for hybrid cloud strategy with on-prem and Azure for application teams using resources like Azure Express Route, App Gateway, WAF Firewall.
Optimized scalability and security of Kubernetes services with HPA, RBAC, network policies, and service mesh (Istio) while enabling zero- downtime deployments via Helm and Argo CD pipelines. Implemented DevSecOps pipelines with enforcement of PCI DSS, SOC 2, and ISO 27001 controls via IAC, CI/CD gates, and policy-as-code
(Azure Policy) and with Infrastructure as Code (IAC) using Terraform, GitHub CI/CD for scalable deployments and automation. Leveraged GitHub Copilot to accelerate Terraform automation by generating optimized IAC templates, reducing development time by 40%. Integrated over 5 automated security testing framework and tools, including DAST, SAST, IAST, and SCA, leveraging tools like Checkmarx, CxOne, and InsightAppSec (Rapid7).
Strengthened code delivery to production by incorporating infrastructure scanning tools such as Wiz, Microsoft Defender, and Sentinel which helped mitigate infrastructure threats by reducing the monthly average from over 400 to less than 10. For Mission Critical Application configured alert and monitoring system, Distributed Tracing (Open Telemetry) using Azure Monitor, App Insights, Log Analytics, Dynatrace and Service Now to achieve 99.995% availability. Software Engineer
Pr.Business
02/2021 - 05/2022 Boca Raton, FL
Full Stack & API Development - PHP, React.js, Google Cloud Architected a propriety WYSIWYG website design builder for clients. Leveraged technologies like React.js, Go, Google Cloud, GitLab, Docker to host and Salesforce, IAM to integrate to the CRM and internal application. Launched a new SaaS solution for QA, testing and deployment of client websites. Full-Stack design using GitLab DevOps CI/CD, React.js, Postgres, REST APIs, JIRA.
The new process reduced the previous deployment time by 40% increased QA efficiency and added DevOps pipeline tracking and monitoring agent.
Architected a scalable Klaviyo API library and integration for bulk email campaigns using Google Cloud Functions and PHP, processing 10,000+ emails/month with a 99.99% uptime, ensuring reliable marketing automation. Constructed REST API endpoints and integrated with Salesforce using Triggers to automate data synchronization between systems, eliminating manual data entry and speeding up data availability by 50%. Designed and revamped an internal Leads API library by integrating Google Ads and Salesforce APIs which decreased lead processing time by 70% and lowered operational costs by up to $10,000 weekly. Resolved critical bugs, eliminating duplicate account creation, and reducing lead generation delays from over 6 hours to near real-time.
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
E q
EXPERIENCE
Associate Software Engineer
Accenture
05/2017 - 06/2018 Bangalore, India
Overhauled on the optimization of CPQ and commissions management solutions for a major telecom client with $100M+ in monthly sales and affiliate transactions, ensuring high-availability and scalability. Optimized rule-based pricing and discount models within SAP Callidus CPQ, leveraging groovy scripting, rule engines, and SQL optimizations to enhance performance and reduce quote generation time by 20%. SKILLS
Artificial Intelligence & Machine Learning
OpenAI, GitHub Co-Pilot, Azure Machine Learning (AML), Azure OpenAI Service, Azure Databricks, Azure Synapse Analytics, Prompt Engineering - ChatGPT, Natural Language Processing (NLP) – Sentiment Analysis, Chatbots. AI Security – Identity, Role-based Access Control (RBAC), Data Privacy, Microsoft Power Automate, Azure Logic Apps, Power Automate Cloud Technologies
GitHub CI/CD, Bitbucket, Terraform, Infrastructure as Code (IAC), ARM Templates, Identity Access Management (IDP), OKTA, Ping, Entra ID, Wiz CLI, Azure Kubernetes (AKS), Azure Containers (ACA), Azure API Management, Azure Security, Monitoring & Log Analytics, Dynatrace, Grafana, Prometheus, Docker, ServiceNow, Azure DevOps, Azure Compute, Cloud Foundry, Linux, AZ CLI, Ansible, ADO, AWS EC2, Datadog, Databricks, Cloud Formation, Splunk Development
React.js, Node.js, Spring Boot, Java, Python, PHP, Shell, Bash, Ruby, PowerShell, Postgres, GraphQL, SQL Server, Flyway, Redis, MongoDB, REST APIs, HTML/CSS, NPM, Swagger, YAML, OAuth, JWT, JUnit, Mockito, Agile, Azure SDK, Security and Compliance
NIST Cybersecurity Framework (CSF), NIST 800-53, NIST 800-171, CIS Controls & Benchmarks (Azure, AWS), CSA Cloud Controls Matrix (CCM), Microsoft Cloud Security Benchmark, ISO/IEC 27001 / 27017 / 27018, Zero Trust EDUCATION
Master of Science in Computer Engineering
University of Illinois Chicago
08/2018 - 05/2020 Chicago, US
B.Tech in Electrical and Telecommunications Engineering KIIT University
08/2013 - 05/2017 India
CERTIFICATION
Terraform Associate
HashiCorp
Microsoft Certified: Azure AI Fundamentals
Microsoft
Microsoft Certified: Azure Fundamentals
Microsoft
Microsoft Certified: Azure Administrator Associate Microsoft
•
•
Contact this candidate