Devops Engineer

Mounika Ganimidi Email: ********.*****@*****.***

Phone: 615-***-****

Cloud/DevOps Engineer

SUMMARY

AWS Cloud/DevOps Engineer with 8+ years of experience in designing and automating scalable cloud infrastructure across AWS and Azure. Expertise in CI/CD pipelines, Infrastructure as Code (Terraform, CloudFormation), and cloud security. Proven ability to deliver high-performance, reliable solutions for enterprise environments.

Implemented secure VPC architectures with public/private subnets, NAT Gateways, route tables, and security groups.

Automated infrastructure provisioning using AWS services and improved system reliability and scalability.

Configured IAM roles and policies following least privilege principles to enhance security posture.

Monitored infrastructure using CloudWatch, configured alarms, and improved system performance and uptime.

Implemented auto-scaling and load balancing strategies to handle dynamic workloads efficiently.

Managed backup and disaster recovery strategies using AWS Backup, snapshots, and cross-region replication.

Developed reusable and modular Terraform code to provision and manage AWS infrastructure.

Automated infrastructure deployments using Terraform, reducing manual errors and deployment time.

Implemented remote state management using S3 and DynamoDB for state locking and consistency.

Designed Terraform modules for scalable and consistent environment provisioning across dev, QA, and prod.

Integrated Terraform workflows into CI/CD pipelines for automated infrastructure provisioning.

Performed infrastructure updates using Terraform plan/apply ensuring safe and predictable deployments.

Built and maintained CI/CD pipelines using Azure DevOps/GitHub Actions for automated build and deployment processes.

Integrated version control systems like Git for source code management and collaboration.

Implemented pipeline stages for build, test, security scanning, and deployment to improve software quality.

Reduced deployment time by automating release processes and eliminating manual interventions.

Configured rollback strategies to ensure high availability during failed deployments.

EDUCATION

Bachelor s in Electronics And communication Engineering from Jawaharlal Nehru Technological University 2014

Master s in Electronics And communication Engineering from K L University- 2017

TECHNICAL SKILLS

Operating Systems

Linux (Ubuntu, CentOS), Windows Server

Networking

VPC, Route-53, DNS

Cloud Technologies

AWS (EC2, VPC, S3, Cloud Watch, RDS, Cloud Trail, ELB, EKS, IAM, Cloud Formation), Azure(VM, Storage Containers)

Databases

MySQL, PostgreSQL, SQL Server

Source Control

GIT, ADO

CI/CD tools

GitHub Actions, Azure DevOps, Harness

Containerization & Orchestration

Docker, Kubernetes, Helm, ArgoCD, Azure Kubernetes Service (AKS), Amazon EKS

Scripting & Automation

PowerShell, Bash, Python, Azure CLI, Ansible, Python Automation Scripts, Shell Scripting, YAML, SQL

Infrastructure As Code

Terraform, ARM Templates, Cloud Formation Templates

Monitoring&Logging

Prometheus, Grafana, Splunk, ELK Stack (Elasticsearch, Logstash, Kibana), AWS CloudWatch, Azure Monitor, Log Analytics and App Insights

Security&Compliance

AWS Secrets Manager, Harness Secrets Manager, Azure Key Vault

PROFESSIONAL EXPERIENCE

Client: Southern Glazers Wines & Spirits, Nashville, TN (Remote) Apr 2025- Present

Role: Sr Cloud/DevOps Engineer

Built new AWS accounts and provisioned core network infrastructure (VPCs, subnets, Transit Gateway attachments) and compute services (EC2, Lambda) aligned to best practices.

Hands-On Experience on Networking components such as VPC, EC2, Subnets and Security Groups.

Centralized identity and access management by configuring AWS IAM Identity Center to manage multiple AWS accounts at scale.

Designed and implemented secure, scalable CI/CD pipelines using GitHub Actions and Harness, increasing deployment frequency and reducing release failures by 40%.

Automated end-to-end infrastructure provisioning with Terraform and CloudFormation, reducing manual effort and environment setup time by 60%.

Managed state securely with Terraform remote backends and implemented state locking to prevent configuration drift.

Integrated Terraform with GitHub Actions and Harness CI/CD pipelines to enforce automated plan/apply workflows and policy checks.

Optimized cloud spend by refactoring Terraform configurations, resulting in a 25 40% reduction in unused or over provisioned resources.

Implemented Terraform workspaces to manage isolated dev, test, and production environments.

Managed multi environment deployments using Terraform workspaces to isolate state and ensure consistent provisioning across dev, test, and production environments.

Collaborated with security teams to embed IAM least privilege policies and compliance guardrails directly into Terraform code.

Migrated legacy infrastructure to IaC using Terraform, improving reliability and reducing deployment times from hours to minutes.

Implemented policy as code using OPA / Sentinel to enforce security and compliance at deployment time.

Secrets are managed using Azure Key vault, AWS Secrets Manager and Harness secret manager.

Provisioned resources using automation CloudFormation Templates and Terraform IAC tools.

Used GitHub Actions, and Harness CI/CD pipelines to automate Terraform.

Integrated CloudWatch log streams and metrics for real-time visibility, enabling proactive detection and remediation of production issues.

Implemented AWS Secrets Manager for centralized secret storage and automated secret rotation using Lambda.

Established fine-grained access controls and RBAC by developing and assigning IAM Identity Center permission sets across AWS accounts.

Managed S3 storage with secure bucket policies, access controls, and lifecycle configurations to support compliance and cost optimization.

Enabled encryption across AWS workloads by creating and managing KMS keys and applying them to S3 buckets and other services.

Provisioned, secured, and maintained EC2 instances, ensuring proper networking, patching, logging, and IAM role configurations.

Performed manual patching of EC2 instances by applying OS updates, security fixes, and kernel upgrades to maintain system stability and reduce vulnerabilities.

Created IAM users, groups, and roles in the central account, and deployed cross-account IAM roles to all target accounts using CloudFormation StackSets for consistent access governance.

Provisioned service-account IAM users with least-privilege policies and automated lifecycle management.

Configured VPC interface endpoints to enable secure, private connectivity to AWS services without public internet exposure.

Participated in the on call rotation to proactively monitor production incidents, triage alerts, and drive timely resolution to maintain high system availability and customer satisfaction.

Performed Site Reliability Engineering (SRE) operations by implementing controlled changes in the production environment, creating detailed Change Requests, and securing CAB approvals to ensure safe and compliant deployments.

Investigated recurring incidents and contributed to root cause analysis (RCA) efforts, documenting findings and recommending long term fixes to reduce operational noise.

Automated provisioning AWS cloud Infrastructure using IAC tools Terraform and CloudFromation.

Automated Terraform using CI/CD pipelines such as Github Actions, and Harness.

Provisioning AWS cloud Infrastructure such as compute and storage services EC2, S3, ALB, EKS and IAM roles and IAM policies using Terraform.

Provisioned IAM roles and policies from the AWS management account using CloudFormation StackSet s and deployed to all the member accounts.

Managed AWS multi accounts using control tower landing zone and management accounts and IAM identity centers.

Deployed service account IAM users and managed Access and secret keys using AWS Secret manager.

Client: Change HealthCare, Nashville, TN (Remote) May 2022- March 2025

Role: Sr Cloud/DevOps Engineer

Designed and implemented scalable, secure CI/CD pipelines using Azure DevOps and GitHub Actions, improving deployment frequency and reducing release failures by 40%.

Automated infrastructure provisioning with Terraform and ARM templates, reducing manual errors and setup time by 60%.

Led migration of monolithic applications to AWS Kubernetes Service (EKS), improving scalability and reducing downtime.

Integrated AWS CloudWatch for real-time monitoring and proactive issue resolution.

Developed serverless applications using AWS Lambda, integrating with API Gateway, S3, DynamoDB, SNS/SQS, and CloudWatch.

Optimized Lambda memory and execution time, reducing costs by up to 40%.

Implemented Lambda Layers to share common dependencies and reduce deployment package size.

Automated deployment of Lambda functions using Terraform, and CI/CD pipelines.

Built event-driven architectures using Lambda triggers (S3 events, DynamoDB Streams, EventBridge).

Implemented secure Lambda networking by running functions inside private subnets using VPC Integration.

Designed and configured VPC architectures including subnets (public/private), NAT Gateways, Internet Gateways, and route tables.

Implemented secure network segmentation using Security Groups, NACLs, and custom routing.

Built highly available architectures using multi-AZ VPC designs for production workloads.

Implemented VPC Peering, Transit Gateway, and hybrid connectivity using VPN and Direct Connect.

Troubleshot VPC connectivity issues using VPC Reachability Analyzer and flow logs.

Deployed Lambda, EC2, and RDS resources within private VPC subnets for enhanced security.

Managed identity governance using IAM Users, Groups, Roles, and AWS SSO.

Created custom IAM policies with fine-grained permissions to secure access to AWS services.

Integrated IAM roles with EC2, Lambda, ECS, and RDS for secure cross-service communication.

Enabled multi-factor authentication (MFA) and enforced password policies for enhanced account security.

Audited and monitored IAM activity using CloudTrail, identifying and mitigating high-risk permissions.

Client: Qualcomm, Banaglore, India. Aug 2017 March 2022

Role: Cloud Engineer

Provisioned and managed AWS IaaS/PaaS resources including S3, EC2, CloudTrail, VPC.

Built and configured VPC environments with public and private subnets, route tables, Internet Gateways, and NAT instances.

Utilized Elastic Load Balancers (Classic/ALB) to distribute traffic and improve application availability.

Implemented Auto Scaling Groups to dynamically scale EC2 instances based on workload demand.

Created and managed IAM users, roles, and policies to enforce secure access control across AWS resources.

Automated infrastructure provisioning using CloudFormation templates for consistent environment setup.

Configured CloudWatch metrics, logs, and alarms to monitor system performance and trigger alerts.

Managed application data storage using S3 buckets with versioning, lifecycle policies, and access controls.

Supported database deployments using RDS (MySQL/Oracle/SQL Server) with backup and multi-AZ configurations.

Performed system patching and configuration management using tools like Chef/Puppet.

Implemented basic disaster recovery strategies using snapshots, AMIs, and cross-region backups.

Assisted in migration of on-premises applications to AWS cloud infrastructure.

Contact this candidate