Cloud Infrastructure Security Clearance

Serge Chibango

AWS Cloud Infrastructure Engineer

240-***-**** **********@*****.***

Professional Summary

Certified AWS Cloud Engineer with over 6 years of hands-on experience designing, building, and automating secure, scalable cloud infrastructure using AWS services. Highly skilled in Infrastructure as Code (Terraform), Python scripting, and advanced networking principles including CNE-based designs. Proven success in automating deployments, managing multi-account AWS environments, and collaborating with development teams to integrate APIs and identity providers. Strong background in CI/CD, system hardening, configuration management (Ansible, Terraform), and operational support. Committed to driving efficiency, security, and performance in cloud-native environments. Active Security Clearance.

Core Skills & Technologies

Cloud Infrastructure: AWS (EC2, VPC, IAM, Lambda, RDS, S3, CloudFront, Route 53, Control Tower, Systems Manager, Config, CloudTrail)

Infrastructure as Code: Terraform, AWS CloudFormation, AWS CDK (familiarity)

Programming & Scripting: Python (automation, Lambda), Bash, JSON, YAML, JavaScript (basic), TypeScript (familiarity)

Networking & Security: CIDR, subnetting, Transit Gateway, VPC peering, VPNs, NACLS, Direct Connect, advanced routing

Automation & DevOps: GitLab CI/CD, GitHub Actions, AWS CodePipeline, SSM, Lambda automation

Configuration Management: Terraform, Ansible (transferable skills from IaC and SSM automation)

Identity: IAM roles/policies, SSO, secrets management.

Monitoring & Ops: CloudWatch, ExtraHop, ServiceNow, Confluence

Certifications & Education

AWS Certified Solutions Architect – Associate

CompTIA Security+

Bachelor's in Accountancy, Minor in Computer Science

Active Security Clearance

Professional Experience

Cloud/DevOps Engineer

Judge Group – Client: Petco

Aug 2021 – Present

- Designed and provisioned multi-region AWS infrastructure using Terraform and AFT, enhancing scalability and automation.

- Wrote Python scripts and Lambda functions for infrastructure cleanup (e.g., orphaned EBS volumes), saving thousands in monthly spend.

- Managed IAM roles, policies, and SSO configurations, improving identity and access control.

- Built and maintained CI/CD pipelines with GitLab to automate deployment of containerized applications.

- Integrated Transit Gateways, VPNs, and VPC peering to enable secure communication between AWS and on-prem.

- Documented operational procedures and collaborated with external dev teams to support API integrations and app deployments.

- Implemented CloudWatch dashboards and alarms for monitoring infrastructure performance and security posture.

- Led training on Terraform and AWS best practices for junior engineers.

Solutions Architect

TekGlobal – Client: American Center for Intellectual & Diverse Disorder

Mar 2019 – Jul 2021

- Deployed self-healing architectures using Auto Scaling, ELBs, and RDS with failover and backup plans.

- Administered AWS Control Tower and Organizational Units (OUs) for enterprise-wide governance and cost management.

- Led cloud migration initiatives, designing scalable landing zones and disaster recovery setups.

- Integrated AWS Lambda and API Gateway for serverless applications and API-based workflows.

- Collaborated with developers on API and identity provider configurations for secure user authentication and third-party integrations.

- Used Terraform to standardize infrastructure provisioning across dev, staging, and production environments.

- Conducted regular audits and tuned performance and security settings based on Trusted Advisor insights.

AWS Solutions Architect

TekGlobal – Client: Nestle (Grand Dryer Ice Cream Laurel)

May 2018 – Jan 2019

- Migrated legacy workloads to AWS, redesigning infrastructure for high availability, resilience, and cost-effectiveness.

- Implemented CloudFormation templates and began transitioning to Terraform for modular, repeatable deployments.

- Managed network security, including WAF, DDoS protection, IAM hardening, and encryption at rest/in-transit.

- Oversaw CI/CD improvements, adding security scans and rollbacks in deployment pipelines.

- Delivered technical training sessions and AWS onboarding for internal IT and business teams.

Contact this candidate