Senior DevOps Engineer - Cloud, CI/CD, Security Expertise
Resume:
Sridhar Reddy Pabathi
+1-508-***-**** *******************@*****.***
SUMMARY
Senior DevOps Engineer with 5+ years of experience delivering highly secure, compliant cloud platforms across healthcare and consulting domains. Expert in building and automating enterprise-scale CI/CD pipelines, driving faster releases and improving system reliability by 30% using Terraform-based Infrastructure as Code on AWS and Azure. Strong hands-on experience implementing DevSecOps frameworks aligned with HIPAA, SOC 2, and HITRUST, ensuring audit-ready, production-grade environments. Proven ability to harden cloud infrastructure, optimize release velocity, and strengthen monitoring and incident response in regulated, high-availability ecosystems. Brings immediate value in accelerating delivery while maintaining security, compliance, and operational excellence.
TECHNICAL SKILLS
•Cloud Platforms: AWS, EC2, S3, IAM, VPC, CloudFormation, CloudWatch, EBS, RDS, EKS, Step Functions, Direct Connect, Azure, IaaS/PaaS, VMs, VNets, NSGs, Load Balancers, Application Gateway, Azure AD, Key Vault, ASR, Azure Backup, Azure Firewall, Azure Policies, Blueprints, RBAC
•Infrastructure as Code (IaC): Terraform, ARM Templates, Bicep, CloudFormation, Deployment Manager
•CI/CD & DevOps Tools: Jenkins, GitHub Actions, Azure DevOps, Artifactory, Nexus, Maven, Ant, Gradle, GitOps, ArgoCD, Flux
•Containerization & Orchestration: Docker, Kubernetes, Amazon EKS, Azure Kubernetes Service, AKS, Azure Container Apps, Helm, Docker Swarm
•Configuration Management: Ansible, Chef, Puppet, SaltStack, Azure Automation DSC
•Monitoring, Logging & Observability: Prometheus, Grafana, New Relic, Azure Monitor, Log Analytics, Sentinel, Stackdriver, Snowflake Resource Monitors, BigQuery Audit Logs, CloudWatch, Datadog
•Security & DevSecOps: SonarQube, Fortify, OWASP ZAP, Vault, Aqua Security, Snyk, Defender for Cloud, IAM, MFA, PIM, Conditional Access, CIS Benchmarks
•Scripting & Programming: Bash, Python, PowerShell, Ruby
•Networking: VPC, Subnets, Routing Policies, Application Gateway, Load Balancers, VPN, Direct Connect, NAT Gateways, Network Segmentation
•Workflow & Release Automation: AWS Step Functions, CI/CD pipeline automation, Software Release Management, Agile, ITIL Processes
•Version Control & Project Tools: Git, GitHub, Azure Boards, Jira, ServiceNow
PROFESSIONAL EXPERIENCE
DevOps Engineer Azure/AWS/GCP Cigna Healthcare Bloomfield, CT Jan 2024 – Present
•Designed and automated end-to-end CI/CD pipelines using Jenkins, GitHub Actions, and Ansible, reducing deployment time and improving reliability across environments.
•Managed and provisioned scalable AWS infrastructure (EC2, S3, IAM, VPC, CloudFormation) using Terraform for infrastructure as code (IaC), which streamlined environment setup and lowered manual configuration errors
•Monitored data warehouse performance and health using CloudWatch, Stackdriver, Snowflake Resource Monitors, and BigQuery audit logs, enabling early detection of issues and maintaining consistent query performance
•Ensured CI/CD pipelines, infrastructure, and access controls met HIPAA, SOC2, and HITRUST compliance standards for healthcare workloads.
•Designed and managed hybrid cloud environments on AWS, ensuring uptime and auto-scaling capabilities for critical applications.
•Increased infrastructure reliability by 30% by implementing Terraform-based IaC for AWS resources (EC2, S3, IAM, VPC).
•Improved incident response by 25% by implementing proactive monitoring and alerting using Prometheus, Grafana, and CloudWatch across production environments.
•Implemented GitOps-based deployments using ArgoCD/Flux, increasing deployment consistency and reducing configuration drift across environments.
•Designed AWS CloudFormation templates for custom VPCs, subnets, and NAT gateways, and configured CloudWatch alarms, triggers, and auto-scaling policies; used AWS CLI for EC2 and S3 operations, which streamlined resource provisioning and improved system monitoring
•Migrated source control from ClearCase to SVN and switched build tools from Ant to Maven, which standardized version control and accelerated build processes
•Automated infrastructure tasks with Bash, Python, and PowerShell scripts, reducing manual effort and speeding up deployments
•Implemented DevSecOps practices using SonarQube,OWASP ZAP,and Vault to improve compliance and vulnerability detection.
•Optimized AWS networking configurations including VPC, subnets, routing policies for secure communication.
•Managed AWS storage services including S3, EBS, and RDS, ensuring data integrity and availability.
Environment: AWS (EC2, S3, EBS, RDS, IAM, VPC, CloudFormation, CloudWatch, Auto Scaling), Terraform, Jenkins, GitHub Actions, ArgoCD, Flux, Ansible, GitOps, Bash, Python, PowerShell, AWS CLI, Prometheus, Grafana Snowflake, BigQuery, Stackdriver, DevSecOps (SonarQube, OWASP ZAP, Vault), Git, SVN, ClearCase, Maven, Ant, HIPAA, SOC 2, HITRUST, Hybrid Cloud
DevOps Engineer SRE Azure/AWS/Terraform HCA Healthcare Hyderabad, India Aug 2021 - Jul 2023
•Designed Azure IaaS/PaaS infrastructure-including VMs, VNets, subnets, NSGs, load balancers, and application gateways-and deployed it for production workloads, improving system reliability
•Built reusable Infrastructure as Code (IaC) templates using Terraform, ARM, and Bicep, automating provisioning and governance across subscriptions
•Created and managed Azure Policies, Blueprints,and RBAC roles to enforce enterprise-wide compliance and security baseline.
•Administered Azure Active Directory (Azure AD), enabling Conditional Access, MFA, and Privileged Identity Management (PIM) for secure identity control.
•Configured Azure Backup and Azure Site Recovery (ASR) to support disaster recovery and ensure business continuity across critical systems.
•Built secure CI/CD pipelines in Azure DevOps (YAML-based) integrated with Nexus, SonarQube, Fortify, and WhiteSource to enable automated, policy-driven releases.
•Managed containerized microservices using Azure Kubernetes Service (AKS) and Azure Container Apps, leveraging Docker, Helm, and ACR for image management.
•Deployed Azure Firewall, NSGs, and Application Gateway to secure inbound/outbound traffic with tiered network segmentati
•Automated configuration management using Ansible and Azure Automation State Configuration (DSC) for drift prevention and policy enforcement.
•Enhanced observability with Azure Monitor, Log Analytics, and Sentinel, integrating dashboards into Grafana and Power BI for leadership visibility.
•Implemented cost management and performance monitoring through Azure Cost Analysis and Azure Advisor recommendations, enabling measurable cost savings and improved resource efficiency
•Applied Chaos Engineering principles with Azure Chaos Studio to test system resilience under fault-injection scenarios, uncovering critical failure points and prompting mitigation actions that improved recovery speed
•Tracked deployment metrics and incidents with Azure Boards, Jira, and ServiceNow following ITIL and Agile practices, which increased visibility of issues and helped shorten incident resolution time
Environment: Azure IaaS & PaaS, Azure VMs, VNets, NSGs, Load Balancer, Application Gateway, Azure Firewall, AKS, Azure Container Apps, Docker, Helm, ACR, Terraform, ARM, Bicep, Azure DevOps (YAML CI/CD), Nexus, SonarQube, Fortify, WhiteSource, Azure AD (MFA, PIM, RBAC), Azure Policies & Blueprints, Ansible, Azure Automation DSC, Azure Monitor, Log Analytics, Sentinel, Grafana, Power BI, Azure Cost Management, Jira, Azure Boards, ServiceNow, Agile, ITIL
Junior DevOps Engineer Yash Technologies Hyderabad, India Jul 2020 - Jul 2021
•Implemented rapid-provisioning and life-cycle management for Ubuntu Linux on Amazon EC2 using Chef and custom Ruby/Bash scripts, reducing server setup time and improving system reliability
•Established Gradle tasks to automate security scans with Snyk and Aqua Security, and integrated New Relic insights into Slack for enhanced visibility and quick action.
•Developed and implemented software release management strategies for multiple applications using Jenkins and Artifactory within an Agile framework, enabling faster releases and reducing rollback incidents
•Designed, built, and supported cloud automation workflows and tools that automated CI/CD pipeline deployments to AWS using Jenkins, Artifactory, and Terraform, accelerating deployment frequency and cutting manual errors
•Enhanced operational efficiency by implementing SaltStack for automated scaling and management of resources within Docker Swarm and Mesos clusters.
•Utilized AWS Step Functions to orchestrate complex workflows across multiple AWS services, improving automation and operational resilience.
•Reated microservices applications integrated with AWS services using Amazon EKS, which gave developers full Kubernetes functionality and reduced time to deploy new services
•Designed and implemented hybrid cloud connectivity with AWS Direct Connect and VPN, linking on-premise DXC infrastructure to AWS workloads and improving network reliability
•Wrote Puppet manifests to automate configuration of many services, set up Puppet configuration management, and configured Hudson/Jenkins for continuous integration, which streamlined deployment processes
Environment: AWS (EKS, EC2, S3, CloudWatch), Azure AKS, GCP GKE, Linux (RHEL, Ubuntu, CentOS), VMware, KVM, NFS, Ansible, Terraform, Jenkins, Git, Docker, Prometheus, Grafana, ELK Stack, Python, Bash, PowerShell, IAM policies
CERTIFICATIONS
•AWS Certified DevOps Engineer (DOP-C02)
•AWS Certified Cloud Practitioner Essentials
EDUCATION
Clark University
Masters in Computer Science
Bharath Institute of Higher Education and Research
Bachelor of Engineering (B.E.), Computer Science Engineering (CSE)
Contact this candidate