Kubernetes Architect
Resume:
Harika Muthaboyina
**********@*****.***
SUMMARY:
Innovative developer with a proven history of delivering exceptional cloud infrastructures and adeptly navigating challenges for over 8+ years. Proficient in cutting-edge technologies including Cloud, Data Science, Application Development, and DevOps. Driven by innovation and committed to achieving excellence. Ready to bring valuable expertise and make a significant impact within organizations.
Technical Skills:
Operating Systems
Red Hat Linux ES & Centos OS, Ubuntu, Windows
OS Administration
Red Hat 5.X 6.X,7.X Linux administration
Scripting Tools
bash, Python, Shell, java
Scheduling Tools
Autosys, crontab
Application servers
WAS 7.X, 8.X JBoss AS 5.x, 6.x, 7.x and JBoss EAP 5.x, 6.x
Web Servers
Apache (httpd), Apache-tomcat, and Apache http server
E-Mail servers
Send mail, Postfix, Zimbra
Monitoring
Prometheus, Kiali, Jaeger, Nagios, ZABBIX, Splunk, Datadog, Dynatrace
Networking
DNS, DHCP, TCP/IP, SMTP, LDAP
Third Party Tools
Jenkins, Various DevOps Tools, Git, GitHub, GitLab, Harness, stash, Ansible, Terraform
Virtualization tools
VMware vSphere, ESX 5.x/6.0, KubeVirt
Orchestration and Containerization Tools/ Platforms
Kubernetes(k8s), Docker, kubeadm, AKS, EKS, GKE, Rancher, Openshift, Google Anthos (Hybrid Cloud), Service Mesh (Istio)
EXPERIENCE:
Client: BCBS, Chicago, IL April 2024 – current
Sr. DevOps / Cloud Engineer – Kubernetes Lead
•Designed and managed production grade Kubernetes clusters on AWS, AZURE and On-prem (Baremetal servers)
•Implemented centralized monitoring solution for the platform and applications with Prometheus and Grafana.
•Implemented centralized observability solution with ELK/EFK, Splunk, Prometheus, Grafana
•Enforced RBAC policies, PSPs (Pod Security Policies) to manage access controls.
•Managed secrets, token, certificates using HashiCorp Vault.
•Developed & maintained infrastructure as code using tools like Terraform, Azure ARM Templates and CloudFormation for AWS, Azure & GCP incorporating best practices reducing the deployment time and manual configuration efforts.
•Experienced in dockerizing Micro services and writing the docker files.
•Worked on Azure Kubernetes Service (AKS) clusters for deploying microservices based applications and managed Node Pools that run containerized applications.
•Integrated with Azure AD (Active Directory) and RBAC for Identity and Access Management for different types of user accounts.
•Experience in setting up and managing AKS clusters using Azure CLI.
•Good at selecting and managing availability zones and node pools for Azure Kubernetes clusters for High Availability (HA)
•Experienced in Deployments Like Blue Green and Experience in Agile Methodology.
•Exposed Virtual machines and cloud services in the V-Net to the Internet using Azure External Load Balancer.
•Led the team in migration and upgrade activities for the Kubernetes clusters.
•Experienced in setting up and managing VPCs, IAM roles, security groups, and auto-scaling groups.
•Developed web application for a customized internal service using Java Spring-Boot.
•Successfully implemented Kubeflow to deploy machine learning workloads.
•Designed and set up large-scale containerization platforms with Kubernetes clusters on bare metal servers using Kubeadm, integrating crucial infrastructure solutions with CNCF tools like IAM with JBoss Keycloak, Logging & Monitoring with EFK (ElasticSearch, Fluentd, Kibana), Prometheus & Grafana, Databases (Postgres, mongoDB), Secret management with Haschicorp Vault, Load Balancing with Nginx and Content signing with Notary.
•Hands-on experience with Istio, a popular service mesh implementation, to enhance observability, security, and traffic management in microservices environments.
•Written Dockerfiles and Helm charts to containerize and package internal microservice applications, simplifying deployment and ensuring consistency across different environments.
•Proficient in Networking and troubleshooting, including extensive knowledge of TCP / IP, DNS, HTTP, HTTPS, SSH, SMTP, SFTP, routing, switching, firewalls, LAN/WAN, traceroute, iperf, dig, cURL,VPN, IPAM, DHCP and related protocols.
•Proficient in setting user management with Active Directory and LDAP.
•Proficient in integrating Kubernetes cluster with various network (CNI) and storage (CSI) plugins.
•Proficient with traffic and load balancing with Ingress, External Loadbalancers.
•Proficient in certificate management with OpenSSL
•Worked on Kubernetes Operators like Prometheus operator
•Worked on setting up a global loadbalancer like HAProxy to distribute traffic between multi / federal clusters.
•Worked on registries/repositories like Artifactory, Harbor to store artifacts like docker images, Helm charts.
•Worked on Role based (RBAC) and Policy based access controls.
Client: LAHD, Los Angeles, CA May 2023 – March 2024
Sr. DevOps / Cloud Engineer
•Designed AWS Cloud Formation templates to create custom sized VPC, subnets, NAT to ensure successful deployment of Web applications and database templates
•Proficient with deploying and configuring AWS services like Amazon EC2, Amazon S3, Amazon RDS, Amazon DynamoDB, AWS Lambda, SQS, SNS and Amazon API Gateway.
•Experienced in creating EKS cluster, kubectl and minikube clusters using Kubernetes
•Utilized Kubernetes for the runtime environment of the CI/CD system to build, test deploy.
•Creating/Maintaining VPC (and associated infrastructure) using Cloud formation templates.
•Experience with hybrid setup of on-prem and AWS with active data residing on both.
•Experience with Web Services, API Gateways and application integration development and design
•Experience in continuous evaluation of existing stack and infrastructure for optimal performance, cost, availability and security
•EC2, Elastic load balancer, autoscaling groups experience with ECS (elastic container services)
•OnPrem Server migrations VMware and Physical to AWS infrastructure.
•Worked on Automation tool Ansible for deployment and patching.
•Work Shell Scripts for automating tasks.
•Create and maintain fully automated CI/CD pipelines for code deployment using Jenkins.
•Wrote Ansible playbooks and modules to deploy, configure, and manage servers.
•Installed and configured Nagios to constantly monitor network bandwidth, memory usage, and hard drive status.
•Used Docker containers to deploy the application on AWS ECS.
•Used JIRA as ticket tracking in cases, change management.
•Participate in all the release meetings to identify and mitigate potential risks associated with the releases.
•Enhanced shared services across the cloud landscape, optimized costs with AWS Compute Optimizer and Cloudability, monitored with Splunk and Dynatrace, resulting in increased productivity and cost efficiency.
•Ensured seamless operations of global cloud data centers by creating Lambda functions that delete security group rules whenever unwanted port openings are detected.
Tata Consultancy Services, India May 2016 – March 2023
Technical Architect/ Operations Engineer – Kubernenetes Architect
•Led and designed a cloud based managed environment for deploying containerized applications which comes with high performance general file-, block-, and object storage infrastructure for distributed processing and data storage with centralized governance, RBAC, SSO, Multi tenancy.
•Worked as Operational Engineer for the Kubernetes Platform to perform critical admin activities and cluster management/ maintenance.
•Promoted from Operations to Technical Architect based on strong performance and technical initiative.
•Designed a platform (NSC (Network scale compute)) for Data scientists to provide them an environment as well as the analytical applications customized based on user requirements.
•Successfully executed the proof of concept (PoC) on Multi and hybrid cloud for Smart Manufacturing requirement and got approval for multiple datacenter (Tallinn, Scondal, Nanging, Brazil) deployments.
•Designed Hybrid and multi cloud architecture using Google Anthos with AWS, GCP, Bare metal and VMware on-prem for KaaS (Kubernetes as a Service) implementation.
•Managed multiple Kubernetes clusters like GKE, AKS, EKS, RKE
•Deployment and management of Kubernetes applications by using templates called Helm charts and customized the deployments with values.yml based on user requirements.
•Used helm cli for the updates and repo release management.
•Used Ingress controllers like NGINX, HAProxy and cert manager for TLS encryption.
•Implemented Ingress and egress control tools for in bound and out bound traffic management.
•Traffic routing through ingress controller by reducing the cost of external load balancer for each service.
•Working with kubectl commands to check the pod IP and log details, and node details (list, describe, top)
•Expertise in troubleshoot and debugging the deployment failure ( pod crashloopbackoff, imagepullback, OOM Killed, etc ) and cluster issues (control plane component issues) using kubectl commands as an admin and from the logs and metrics collected.
•Developed and maintained Kubernetes-based infrastructure for managing virtual machines using KubeVirt, including implementing CRDs, automation of VM lifecycle management, cloud provider integration, and securing VM communication.
•Have hands-on experience on kubevirt custom resources and virtctl cli.
•Provided VM as a service on Kubernetes cluster based on end user requirements.
•Deployed and managed VM-based applications alongside containers, ensuring unified scaling and orchestration using KubeVirt.
•Created Linux based images and successfully launched VMs using Kubevirt.
•Integrated with Ceph to provide block and shared storage for the persistent volumes of kubevirt VMs.
•Worked on installing NVIDIA drivers and added NVIDIA GPU nodes to the production clusters for ML / AI training workloads using Ansible Playbooks.
•Used Rook operator to manage Ceph clusters to achieve highly scalable and distributed storage system.
•Used Nginx Ingress controller for path and host-based routing, SSL termination, Load Balancing and also to include auth annotations with the keycloak SSO.
•Integrated with DNS and signed certificates for the ingress created to access applications.
•Led the successful migration of on-premises environment to cloud platforms, resulting in increased scalability, cost-efficiency, and improved business agility.
•Worked on service mesh to achieve service to sevice communication using Istio on Kubernetes Cluster.
•With istio, we achieved traffic management with secured connection using Mutual TLS (mtls)
•Using service mesh concept, observability of the platform is improved with tracing, metrics and logging data.
•Worked on Istio Ingress gateway as an ingress controller for the services in the cluster with metalLB solution.
•Used Gloo mesh to achieve multi cluster observability with federation of different end points
•Developed robust CI/CD pipelines for deploying Java-based web applications.
•Worked on Openshift Kubernetes (OKD) on Baremetal, GCP, AWS
•Successfully resolved critical service issues promptly (Server Management), reducing service disruptions and implementing preventive automation measures to prevent reoccurrences.
•Led initiatives to improve delivery orchestration, proactive monitoring, self-healing automation, and operations validations, resulting in an increase in productivity and reduction in system downtime.
•Practiced Agile methodologies (Jira, Scrum, Atlassian) to drive collaboration, adaptability, and iterative delivery, resulting in increased team productivity and improved project outcomes.
•Demonstrated comprehensive understanding of the end-to-end SDLC (Software Development Life Cycle) process, from requirement gathering and analysis to deployment and maintenance.
•Proficient in using Microsoft tools Excel, PowerPoint and Word.
•Proficient with Linux and Windows Operating Systems.
•Proficient with PaaS, IaaS and SaaS.
•Deployed Machine Learning (ML) workflows using Kubeflow.
•Orchestrated seamless collaboration within diverse teams, provided effective leadership as a project lead, established rapport with clients, and facilitated successful team-building activities during company retreats.
ACHIEVEMENTS:
•On the Spot Award Awarded “On the Spot Award” for effectively handling client issues and resolving them during the peak hours at TCS.
•“Certificate of Excellence” Received from the client for my contribution towards the work on Kubernetes and designing Monitoring and alerting setup for the containerized platform
•Best Team Award-Received “Best Team Award” for the on-time delivery and support for the Smart Manufacturing Business I4.0 requirements.
CERTIFICATIONS:
•Gone through learning on various online educational platforms and cleared Microsoft Certified: Azure Fundamentals, and completed certifications in Udemy on AWS, GCP fundamentals, Kubernetes and Docker, Postgres for Data science.
Contact this candidate