Linux & Cloud Infra Engineer - Terraform, Kubernetes, AWS Expert
Resume:
Muhammad Zeshan Nisar
Linux & Cloud Infrastructure Engineer 302-***-**** ****************@*****.*** U.S. Citizen Middletown, Delaware
SUMMARY.
Linux & Cloud Infrastructure Engineer with 7+ years of hands-on experience supporting large-scale enterprise production environments across hybrid (on-premises and AWS) infrastructure. Strong expertise in DevOps, Infrastructure as Code (Terraform, Ansible), and cloud automation, with a proven track record of building reusable Terraform modules, managing remote state (S3 and DynamoDB), and integrating CI/CD pipelines for automated deployments. Experienced in production support, incident management, and root cause analysis, ensuring high availability (99.99%) and system reliability. Skilled in Kubernetes, Docker, and AWS services (EC2, EKS, VPC, IAM), with a focus on automation, scalability, and performance optimization in highly regulated environments.
TECHNICAL CAPABILITIES
•Operating Systems: Red Hat Enterprise Linux (RHEL 6/7/8/9), CentOS, Ubuntu, Debian, Oracle Linux, UNIX, Windows Server (2012/2016/2019), Active Directory (AD), Group Policy (GPO), PowerShell.
•Cloud Platforms & Services: Amazon Web Services (AWS): EC2, S3, RDS, EBS, EFS, VPC, Route 53, IAM, CloudFormation, CloudWatch, CloudTrail, Auto Scaling, Elastic Load Balancer (ELB/ALB), Lambda, EKS, ECS.
•Virtualization & Infrastructure: VMware ESXi, vSphere, vCenter (HA, DRS, vMotion, Storage vMotion), KVM, Hyper-V, Oracle VM (OVM), Bare Metal Provisioning, PXE/iPXE, Kickstart, Foreman.
•Containers & Orchestration: Docker, Podman, Kubernetes, Helm, Docker Compose, Containerized Applications, Persistent Volumes, StatefulSets.
•Automation & Infrastructure as Code (IaC): Ansible, Ansible Tower (AAP), Terraform, Configuration Management, Provisioning Automation, GitOps.
•CI/CD & DevOps Tools: Jenkins, GitLab CI/CD, GitHub Actions, ArgoCD, Concourse, CI/CD Pipelines, Continuous Integration, Continuous Deployment.
•Programming & Scripting: Python, Bash, Shell Scripting (KSH), PowerShell, Automation Scripting.
•Networking & Connectivity: TCP/IP, DNS, DHCP, VLANs, VPN, Subnetting, Load Balancing, Firewalls, Network Security, NIC Bonding/Teaming, Network Troubleshooting (netstat, ss, tcpdump, traceroute, Wireshark).
•Security & Compliance: IAM Roles & Policies, KMS, Security Groups, SELinux, SUDO, OS Hardening, Vulnerability Scanning, Patch Management, CIS Benchmarks, STIG, NIST Compliance.
•Monitoring, Logging & Observability: Nagios, Prometheus, AWS CloudWatch, System Monitoring, Logging, Alerting, Performance Tuning, Incident Management, Root Cause Analysis (RCA).
•Storage & File Systems: SAN, NAS, RAID (0/1/5/10), LVM, NFS, File Systems (Ext3, Ext4, XFS), Disk Management (fdisk, gdisk, parted).
•Backup & Disaster Recovery: Veeam, Backup & Restore, LVM Snapshots, Disaster Recovery (DR), High Availability, Business Continuity Planning.
•Collaboration & ITSM Tools: ServiceNow, Jira, Confluence, SharePoint, ITIL Processes (Incident, Problem, Change Management).
EDUCATION
•Bachelor of Science in Computer Science (BSCS) – Punjab University, 2018
CERTIFICATIONS
•Red Hat Certified System Administrator (RHCSA) – Active
•Red Hat Certified Specialist in Containers (EX188) – In-progress
•AWS Certified Solutions Architect – Associate (SAA-C03) – In progress
PROFESSIONAL EXPERIENCE
BANK OF AMERICA Jersey City, NJ
Infrastructure Engineer April 2024 – Present
•Orchestrated the end-to-end lifecycle management of Red Hat Enterprise Linux (RHEL 6/7/8/9) servers, leveraging Kickstart for automated, scalable deployments across hybrid enterprise infrastructure.
•Administered and supported complex hybrid Linux and Windows Server environments (Windows Server 2016/2019), encompassing provisioning, patching, service management, and advanced troubleshooting.
•Managed and optimized VMware ESXi and vCenter environments, including VM provisioning, High Availability (HA), Distributed Resource Scheduler (DRS), snapshots, lifecycle operations, and performance tuning for critical banking applications.
•Automated configuration management and system deployments using advanced Ansible playbooks, ad-hoc commands, and robust shell scripting, significantly reducing manual intervention.
•Designed, configured, and managed resilient AWS infrastructure, including VPC, EC2, IAM roles, security groups, Elastic Load Balancers (ELB), Auto Scaling, and CloudWatch monitoring, ensuring adherence to stringent financial regulations.
•Developed and maintained Infrastructure as Code (IaC) using Terraform to provision and manage AWS resources, including EC2 instances, VPC networks, IAM roles, and EKS clusters.
•Created reusable Terraform modules to standardize infrastructure deployment, promoting consistency and accelerating project delivery across multiple development and production environments.
•Managed Terraform state using remote backends (S3 and DynamoDB) with state locking, ensuring data integrity, consistency, and seamless team collaboration in a multi-developer environment.
•Automated infrastructure provisioning and updates, resulting in a quantifiable reduction of manual effort by 40–60% and minimizing deployment errors.
•Integrated Terraform workflows with CI/CD pipelines (e.g., Jenkins, GitLab CI/CD) to enable automated, reliable, and version-controlled infrastructure deployments.
•Troubleshot and maintained critical infrastructure services including DNS, NTP, SSH, LDAP, Kerberos, HTTP/HTTPS, TLS/SSL, FTP, SNMP, and SMTP across diverse Linux and Windows systems, ensuring continuous operation.
•Supported large-scale server deployments, upgrades, and infrastructure migrations across on-premises data centers, colocation facilities, and public cloud platforms.
•Monitored system health, logs, and performance metrics using advanced tools, proactively troubleshooting network, storage, virtualization, and OS-level issues to prevent outages.
•Implemented proactive monitoring and alerting solutions utilizing AWS CloudWatch and enterprise monitoring platforms to ensure 99.99% high availability of critical systems.
•Deployed and managed Docker containers and Kubernetes clusters (EKS) to support scalable, resilient, and fault-tolerant application deployments.
•Performed comprehensive Root Cause Analysis (RCA) and meticulously documented incidents and resolutions using ServiceNow, contributing to continuous service improvement.
•Maintained up-to-date technical documentation, architecture diagrams, and operational runbooks, facilitating knowledge transfer and operational efficiency.
•Collaborated effectively with application development, network engineering, and security teams to support production systems within a highly regulated banking environment.
HEWLETT PACKARD ENTERPRISE Spring, TX
Linux Administrator II April 2021 – March 2024
•Administered and maintained a robust fleet of Linux servers and virtual machines across development, QA, and production environments, ensuring optimal performance and stability.
•Configured and managed essential network services including NFS, AUTOFS, DNS, DHCP, and NTP, critical for enterprise operations.
•Executed advanced disk and storage management operations utilizing LVM, RAID, fdisk, and gdisk to ensure data integrity and optimal storage utilization.
•Configured NIC teaming and intricate network settings to ensure high availability and maximized network performance for critical services.
•Applied OS patches and updates using Red Hat Satellite, strictly adhering to change management processes and minimizing system downtime.
•Enforced stringent security controls using SELinux, sophisticated firewall rules, and granular access policies, safeguarding sensitive enterprise data.
•Developed a comprehensive suite of Bash scripts to automate routine administrative and operational tasks, significantly enhancing efficiency and reducing manual errors.
•Monitored system health and performance metrics using Zabbix, proactively responding to alerts and resolving potential issues before impact.
•Created detailed technical documentation and Root Cause Analysis (RCA) reports, contributing to improved operational efficiency and knowledge sharing.
FEDEX Buffalo, NY
Junior Linux Administrator October 2018 – March 2021
•Provided continuous support and maintenance for Linux-based systems, ensuring 24/7 uptime and peak performance for critical logistics operations.
•Managed physical server infrastructure, including racking, stacking, and precise replacement of faulty components in high-density data center environments.
•Administered user accounts, permissions, and secured SSH access, upholding strict access control policies.
•Executed reliable system backups and secure data transfers using TAR and SCP utilities, ensuring data integrity and availability.
•Provided 24/7 on-call support, efficiently resolving production incidents and minimizing service disruption.
•Maintained accurate system and operational documentation, ensuring comprehensive records for audit and operational continuity.
Contact this candidate