Post Job Free
Sign in

Cloud Security Aws

Location:
Hinesville, GA
Posted:
April 29, 2025

Contact this candidate

Resume:

Ayodeji Afolabi

Phone: 609-***-****

Email: **********@*****.***

LinkedIn: www.linkedin.com/in/afolabi-ayodeji-2401502b7

Location: Hinesville, Georgia

Clearance: Secret

PROFESSIONAL SUMMARY

Experienced Cloud and DevOps Lead with 7+ years of hands-on expertise in AWS cloud services, infrastructure automation, and security implementation. Proven track record of leading cross-functional teams, managing Agile workflows, and aligning technical initiatives with business objectives. Advanced practitioner of Terraform with expertise in modular design, state management, and multi-environment deployments. Exceptional communicator with proven ability to collaborate across development, operations, and business teams to implement technical solutions aligned with organizational goals. Also specialize in cloud security configurations, compliance management, and cost optimization, bringing a disciplined and mission-oriented approach to delivering high-quality solutions.

TECHNICAL SKILLS

● Cloud Platforms: AWS (EC2, VPC, S3, CloudWatch, ELB, ECR, EKS, Route 53, CodeBuild, CodePipeline, CodeArtifact, CloudTrail, GuardDuty, Inspector, KMS, Secrets Manager, SNS, SQS, Cognito, Bedrock), Azure

● Infrastructure as Code: Terraform (modules, workspaces, remote state, complex expressions, providers, data sources), Terragrunt, Cloudformation.

● Automation & Scripting: Bash, Python, PowerShell, Lambda

● Operating Systems: Linux (Ubuntu, CentOS, Amazon Linux), Windows Server

● Containerization: Kubernetes, Docker, ECR, Helm, EKS

● Version Control: Git, GitHub, GitLab, BitBucket

● Networking: VPC, VPN, Security Groups, Transit Gateway, Direct Connect

● Monitoring & Logging: CloudWatch, ELK Stack, Prometheus, Grafana, Fluent Bit, Route 53 Query Logs

● Collaboration Tools: Jira, Confluence, Slack, Microsoft Teams, Google workspace

● Security: IAM Policies, IAM Identity Center, Security Groups, Network ACLs, AWS KMS, GuardDuty, Inspector, Config, CloudTrail, Vanta, SOC2 compliance

● CI/CD: AWS CodePipeline, CodeBuild, CodeArtifact, GitHub Actions, Jenkins, Maven, JFROG, Status Checks

● Project Management: Agile, Scrum, Sprint Planning, Backlog Grooming, Fibonacci Estimation, Kanban

● Authentication & Identity: AWS Cognito, OAuth 2.0, OIDC, SAML, Azure AD, IAM Identity Center

PROFESSIONAL EXPERIENCE

Lead Cloud/DevOps Engineer

Rhino AI LLC [Remote]

October 2024 -- Present

● Led a team of 8 DevOps and cloud engineers, managing workload distribution, career development, and technical mentorship

● Planned and facilitated sprint planning, daily standups, and retrospectives using Agile methodologies to ensure consistent delivery

● Conducted backlog grooming sessions using Fibonacci estimation in Jira to prioritize work items and maintain a healthy sprint velocity

● Collaborated closely with product owners to define priorities and align technical initiatives with business objectives and roadmap

● Managed comprehensive access controls and implemented least-privilege principles across cloud resources and development environments

● Led cloud architecture design initiatives ensuring alignment with AWS best practices, cost optimization, and security compliance

● Architected and deployed multi-account AWS infrastructure using Terraform and Terragrunt with modular design patterns, custom modules, and reusable components

● Implemented Terraform best practices including state isolation, drift detection, and version-controlled infrastructure deployments

● Developed comprehensive Terraform documentation and knowledge sharing sessions to enable cross-team infrastructure development

● Implemented comprehensive cloud security using AWS GuardDuty, Inspector, and Config, reducing security vulnerabilities by 65%

● Designed and enforced custom IAM policies and implemented least privilege access across all AWS accounts

● Facilitated bi-weekly cross-functional planning sessions bringing together development, security, and business stakeholders to align on infrastructure roadmap

● Managed Kubernetes deployment on EKS, including cluster upgrades, add-ons version management, and deployed Metrics Server for cluster monitoring

● Orchestrated CI/CD pipelines through AWS CodePipeline, CodeBuild, GitHub Actions, and Dependabot for automated testing, vulnerability scanning, and deployment

● Configured and managed CodeArtifact repositories for secure artifact storage and dependency management across projects

● Implemented Pylint status checks in GitHub Actions to enforce code quality standards and prevent merging low-quality code

● Led cloud security initiatives and SOC2 compliance with Vanta, performing remediations on findings and implementing industry best practices

● Integrated GoDaddy domains with Route 53 and implemented Query Logs for DNS auditing and traffic analysis

● Set up Keygen for software licensing management and integrated it with existing cloud infrastructure

● Deployed AWS Bedrock models for NLP tasks, integrating them with application workflows via Lambda functions

● Provisioned Azure Cognitive Services using Terraform for image recognition capabilities in cross-cloud applications

● Served as technical liaison between development and operations teams, translating business requirements into technical implementations

● Created comprehensive technical documentation and conducted knowledge transfer sessions to improve cross-team understanding of cloud infrastructure

● Managed AWS costs through tagging strategies and resource optimization, providing detailed monthly cost analysis reports

● Implemented centralized logging using CloudWatch Logs with automated alerting for security events detected by GuardDuty

● Developed and implemented technical standards and best practices for cloud infrastructure across the organization

● Led incident response and post-mortem analyses to identify root causes and implement preventive measures

● Implemented multi-factor authentication across applications using AWS Cognito, OAuth 2.0, and SAML integration with Azure AD

● Designed and implemented AWS IAM Identity Center (formerly SSO) for centralized access management across multiple AWS accounts

● Maintained Azure AD directory services integration for cross-platform identity management and Single Sign-On capabilities

● Orchestrated complete SDLC processes from requirement gathering to production deployment, following Gitflow branching strategy

● Designed and documented comprehensive release management workflows including feature branches, PR reviews, and branch protection rules

● Created detailed release playbooks defining pre-release testing, approval gates, deployment procedures, and rollback strategies

● Implemented automated blue/green deployments with health checks and canary testing for critical production services

● Established comprehensive feature flagging system to safely deploy features to production while controlling user access

MILITARY EXPERIENCE

Tech Support

United States Army

June 2021 -- October 2024

● Provided Tier 1 and Tier 2 technical support to personnel, ensuring seamless operation of mission-critical systems in high-pressure environments

● Diagnosed and resolved hardware, software, and network connectivity issues across multiple sites

● Maintained and configured secure communication systems, including encrypted devices and VPNs, adhering to DoD cybersecurity protocols

● Conducted system updates, patches, and routine maintenance, achieving a 99% uptime for IT infrastructure

● Trained military personnel in the use of new hardware and software, enhancing operational readiness and technical proficiency

● Documented support processes, created knowledge base articles, and streamlined troubleshooting workflows to reduce average resolution time

● Collaborated with cross-functional teams to deploy new technologies and optimize existing systems

● Implemented and maintained secure access protocols for classified systems in accordance with DoD security requirements

● Led technical training sessions for new team members, improving overall unit technical proficiency by 40%

● Acted as communication bridge between technical and non-technical personnel, effectively translating complex technical concepts for diverse audiences

Cloud and DevOps Engineer

BBVA Inc. [Remote]

August 2017 -- June 2021

● Designed and deployed scalable and secure cloud infrastructure using AWS services such as EC2, VPC, RDS, Lambda, and ALB

● Established and maintained sophisticated Terraform modules for standardized infrastructure deployment across multiple environments and teams

● Facilitated weekly infrastructure planning sessions with development teams to ensure alignment between cloud architecture and application requirements

● Implemented comprehensive security controls using GuardDuty, CloudTrail, Config, and Inspector to ensure compliance with financial industry regulations

● Configured and managed Secrets Manager and KMS for secure credential storage and encryption key management

● Automated infrastructure provisioning and configuration management using Terraform, Ansible, and custom Python scripts

● Deployed Maven-based applications through CI/CD, integrated with JFrog Artifactory, CodeArtifact, and managed dependencies through POM.xml

● Developed and maintained CI/CD pipelines using CodePipeline, CodeBuild, Jenkins and GitHub Actions

● Set up CodeArtifact repositories to securely store and share software packages and dependencies within the organization

● Set up Dependabot and security scanning in CI/CD pipelines to automatically identify and patch vulnerable dependencies

● Containerized applications using Docker, optimizing the development lifecycle and improving deployment efficiency

● Collaborated effectively across development, security, and operations teams to implement infrastructure changes with minimal disruption

● Created and managed AWS resources through Terraform utilizing modules, remote state management with S3, and advanced Terraform functions

● Managed Linux servers, ensuring system reliability and performance while implementing security best practices

● Collaborated with cross-functional teams to enhance cloud architecture and implement comprehensive cloud security strategies

● Optimized cloud resources achieving 20% cost reduction while maintaining performance and scalability

● Authored detailed technical documentation for infrastructure components and deployment processes

● Implemented automated monitoring and alerting systems using CloudWatch and Prometheus/Grafana dashboards

● Regularly presented infrastructure updates and security posture reports to executive leadership team

Key Achievements:

● Reduced deployment times by 30% through automation of manual processes

● Led migration of 20+ legacy applications to cloud infrastructure, improving scalability and reliability

● Implemented a comprehensive security monitoring solution using GuardDuty and CloudTrail that detected and mitigated potential security threats

● Automated infrastructure monitoring and alerting using AWS CloudWatch and custom scripts, reducing system downtime by 40%

● Implemented infrastructure as code practices that reduced configuration errors by 60%

● Established cross-team Terraform development guidelines that improved collaboration and code quality

Senior Cloud/DevSecOps Engineer

PZ Cussons

March 2015 - July 2017

● Designed, implemented, and managed Kubernetes-based applications using EKS, leveraging custom Helm configurations stored in S3 for deployment triggers

● Created reusable Terraform modules and shared state management practices that enabled multiple teams to safely collaborate on infrastructure changes

● Implemented and managed Metrics Server for Kubernetes resource monitoring and autoscaling capabilities

● Established communication channels between development, security, and operations teams to streamline deployment processes and security reviews

● Established security best practices including GuardDuty for threat detection, CloudTrail for API auditing, and Config for compliance monitoring

● Automated infrastructure provisioning with Terraform and Terragrunt, enabling consistent and repeatable deployments for multi-environment setups

● Configured AWS Transit Gateway and VPCs to enhance network scalability and security, supporting cross-region and cross-account communication

● Integrated Route 53 Query Logs for DNS traffic analysis and security monitoring

● Developed and enforced ECR lifecycle policies to automatically delete outdated container images while preserving stable release tags

● Optimized CI/CD pipelines, including Cypress test automation using Node.js in AWS CodeBuild and CodePipeline

● Reduced PRE_BUILD phase times by 75% in CodeBuild by analyzing and resolving dependency and environment discrepancies

● Deployed and maintained Fluent Bit for centralized logging across Kubernetes clusters, aggregating logs for real-time monitoring and analysis

● Spearheaded SOC 2 Type 2 compliance initiatives, achieving successful validation of 93% of evidence on the first review

● Enhanced application image configurations for deployment upgrades in EKS, supporting different images for various services

● Designed a feature to query Microsoft Teams recordings via Microsoft Graph API to extract requirements, streamlining documentation workflows

● Implemented secure access management by designing IAM policies following AWS best practices and managing AWS Organizations with Service Control Policies (SCPs)

● Led a team of junior engineers, providing mentorship and technical guidance that improved team productivity by 35%

● Facilitated bi-weekly knowledge sharing sessions to improve cross-team understanding of infrastructure and security concepts

EDUCATION

Bachelor of Science in Information Technology

Kogi State University

2010-2014

CERTIFICATIONS

● AWS Certified Solutions Architect -- Associate

● AWS Certified Solutions Architect -- Professional

● AWS Certified DevOps Engineer -- Professional

● AWS Certified Security Specialty

● Certified Kubernetes Administrator (CKA)

● HashiCorp Certified Terraform Associate

KEY STRENGTHS

● Team leadership and technical mentorship with focus on developing engineers and fostering collaboration

● Agile project management experience including sprint planning, backlog grooming, and team facilitation

● Advanced Terraform practitioner with expertise in modular design, state management, and complex infrastructure automation

● Exceptional communication skills with ability to translate complex technical concepts to diverse audiences

● Proven collaboration abilities across development, operations, security, and business teams

● Cloud security expertise with deep knowledge of AWS security services and compliance requirements

● Strong problem-solving skills and ability to troubleshoot complex cloud and infrastructure issues

● Strategic planning and roadmap development for cloud and DevOps initiatives

● Deep expertise in infrastructure automation and security implementation

● Cost optimization and resource management in cloud environments

● Discipline and attention to detail honed from military service, ensuring consistent delivery of high-quality solutions

● Adaptability to rapidly changing technology landscapes and business requirements



Contact this candidate