Vidya.H
Senior Cloud DevSecOps Architect Platform Engineering Lead SRE AWS/Azure Kubernetes AI/ML Ops
Phone: +1-616-***-**** Email: *********@*****.*** work Authorization: Green card
PROFESSIONAL SUMMARY
•10 years of experience in Cloud, DevOps, DevSecOps, Platform Engineering, SRE, Infrastructure Automation, CI/CD modernization, and enterprise transformation across AWS, Azure, and hybrid environments.
•Currently working with Capital Group from June 9, 2025 to till date, focusing on enterprise DevSecOps platform engineering, CI/CD modernization, security automation, and Kubernetes based delivery.
•Hands-on experience designing CI/CD and DevSecOps pipelines using Harness, Jenkins, GitHub Actions, Azure DevOps, Docker, Kubernetes, Helm, ArgoCD, Terraform, SonarQube, Trivy, Snyk, OPA, Prometheus, and Grafana.
•Strong experience building secure golden paths, reusable pipeline templates, IaC modules, onboarding runbooks, release governance, RBAC models, and platform standards for application teams.
•Expertise in AWS EKS, Azure AKS, microservices architecture, GitOps deployments, policy enforcement, vulnerability management, secrets management, observability, and AIOps integration.
•Experience with AI/ML Ops and AI enabled microservices using LangChain, recommendation engines, AWS SageMaker, Airflow, Python APIs, vector search concepts, and cloud-native data/ML workflows.
•Excellent communication, documentation, customer stakeholder engagement, offshore coordination, troubleshooting, and production support skills.
CORE TECHNICAL SKILLS
Skill Area
Tools / Technologies
Cloud Platforms
AWS, Azure, AWS Bedrock, AWS Organizations, IAM, SCP, VPC, EC2, EKS, AKS, Lambda, S3, ECR, CloudWatch, Secrets Manager, Azure DevOps, Azure Key Vault
CI/CD and DevSecOps
Harness, Jenkins, GitHub Actions, Azure DevOps
Kubernetes and GitOps
Docker, Kubernetes, AWS EKS, Azure AKS, Helm, ArgoCD, Istio
Security Automation
SonarQube, Trivy, Snyk, OWASP, OPA, Aqua Security, SAST, DAST, SCA, container image scanning, IaC scanning, policy enforcement
Infrastructure as Code
Terraform, Ansible, Packer,
Observability and AIOps
Prometheus, Grafana, AWS CloudWatch, ELK Stack
AI/ML and Data
LangChain, recommendation engine, SageMaker
Secrets and Compliance
AWS Secrets, Azure Key Vault, IAM, RBAC, KMS, security controls, compliance-driven cloud operations,Hashi crop vaultPROFESSIONAL EXPERIENCE
Capital Group June 9, 2025 - Till Date
Senior DevSecOps / Platform Engineering Consultant Project: Helix - Enterprise DevSecOps,
•Architected enterprise DevSecOps CI/CD solutions aligned with target-state architecture, security standards, and application onboarding requirements.
•Designed and built CI/CD pipelines using Harness, Jenkins, and GitHub Actions for Java, Node.js, Python, and containerized microservices workloads.
•Created reusable pipeline templates and golden path patterns covering build, unit test, code quality, SAST, SCA, image build, vulnerability scan, artifact promotion, approvals, and deployment stages.
•Integrated SonarQube for code quality gates and Trivy/Snyk for container image, dependency, and vulnerability scanning across CI/CD workflows.
•Implemented GitOps based continuous delivery using ArgoCD and Helm Charts for Kubernetes workloads running on AWS EKS.
•Worked on an end-to-end DevSecOps + AI project with CI/CD pipeline, Git repository, Docker Hub/ECR containerization, SonarQube, Trivy, OPA policy checks, AWS EKS, ArgoCD, Helm, Prometheus, Grafana, PostgreSQL, Redis, and AWS Secrets Manager.
•Designed Kubernetes microservices deployment model for frontend, authentication, product, cart, checkout, payment, recommendation engine, and AI assistant services.
•Implemented policy-as-code and security guardrails using OPA, RBAC, namespace controls, secrets management, and cloud IAM best practices.
•Configured observability dashboards using Prometheus and Grafana for application health, deployment status, resource utilization, and service-level monitoring.
•Developed Terraform and Helm based automation for infrastructure provisioning, Kubernetes application deployment, environment consistency, and repeatable release execution.
•Collaborated with application, security, infrastructure, and offshore teams to assess DevOps maturity, define DevSecOps blueprints, and onboard applications onto the core DevOps platform.
•Prepared runbooks, SOPs, onboarding documents, reusable components, and deployment standards to support enterprise rollout and adoption of DevSecOps practices.
•wroked on end-to-end DevSecOps + AI project covering build, secure, deploy, monitor, and automate lifecycle on AWS EKS.
•Pipeline toolchain included Git repository, Harness, SonarQube, Trivy, OPA, Helm, ArgoCD, Prometheus, Grafana, PostgreSQL, Redis, AWS Secrets Manager, and LangChain, AWS Bedrock
•Microservices scope included frontend web, auth service, product service, payment service, shipping service, recommendation engine, and AI assistant.
•Deployment flow used CI/CD for build and security checks, GitOps for continuous delivery, Helm for packaging, and ArgoCD for Kubernetes sync and rollback.
•Observability included service dashboards, deployment visibility, infrastructure health, application metrics, and alerting using Prometheus and Grafana.
•Security implementation included code quality gates, vulnerability scanning, policy enforcement, RBAC, secrets management, and controlled release approvals.
•
Vanguard March 2024 - June 2025
Sr. Cloud and DevOps Engineer Project: Data Modernization and Kubernetes Platform Engineering
•Evaluated existing services running on EKS/AKS and identified dependencies, configurations, resource requirements, and modernization opportunities.
•Deployed and managed microservices on AWS EKS and Azure AKS Kubernetes clusters using Docker, Helm Charts, and CI/CD automation.
•Integrated Istio into CI/CD processes to automate deployment of microservices and improve release reliability.
•Implemented observability using Prometheus, Grafana, AWS CloudWatch, and Azure monitoring services for unified platform visibility.
•Worked on AWS serverless and data engineering services including Lambda, Step Functions, DynamoDB, Glue, Athena, Redshift, and EKS.
•Developed Terraform modules and templates for cloud infrastructure provisioning and environment standardization.
•Implemented AWS security controls including IAM policies, AWS Organizations, SCPs, Config Rules, and secrets management.
•Prepared Ansible playbooks, shell scripts, and PowerShell scripts for infrastructure and operational automation.
•Documented configurations, procedures, troubleshooting steps, and knowledge base articles for support and onboarding.
Alcatel-Lucent Enterprise (ALE) Feb 2021 - March 2024
Sr. Cloud and DevOps Engineer Project: AWS Cloud Migration and DevSecOps Platform
•Designed, implemented, and maintained CI/CD pipelines using Azure DevOps, Jenkins, and GitHub Actions to automate build, test, and deployment processes.
•Applied GitOps principles to manage infrastructure and application deployment configurations using Git repositories, FluxCD, and ArgoCD.
•Configured and managed AWS EKS Kubernetes clusters and deployed applications using Helm Charts.
•Integrated SonarQube, OWASP, and Trivy for static code analysis, security checks, and continuous code inspection.
•Implemented DevSecOps solutions including SAST, DAST, and SCA integrations in automated delivery pipelines.
•Prepared AWS Golden AMIs using HashiCorp Packer and shared standardized images across multiple AWS accounts.
•Built and supported end-to-end machine learning pipeline automation using Jenkins, Docker, Kubernetes, Apache Airflow, AWS SageMaker, Prometheus, and Grafana.
•Collaborated with development teams to streamline release processes, improve code quality, and increase deployment reliability.
Bank of Ireland (BOI) Jan 2018 - Feb 2021
Senior Cloud and DevOps Engineer Project: Application Service and Data Migration
•Evaluated Azure/AWS services and assessed dependencies, configurations, and resource requirements for Kubernetes migration.
•Containerized applications using Docker and deployed workloads on Kubernetes using deployment manifests and Helm Charts.
•Provisioned Kubernetes environments with networking, security, storage, and platform components.
•Designed CI/CD and deployment strategies including rolling updates, rollbacks, A/B testing, blue-green deployment, and cutover planning.
•Implemented ELK Stack based centralized logging, monitoring, alerting, and disaster recovery mechanisms.
•Worked on cost optimization initiatives and achieved approximately 20% savings in monthly cloud billing.
•Developed automation frameworks using Terraform, scripts, and cloud-native services for repeatable infrastructure delivery.
Kantar Inc. August 2016 - Dec 2017
Cloud and DevOps Engineer Project: Cloud Infrastructure Automation and Kubernetes Platform
•Designed and implemented Jenkins based CI/CD pipelines for application build, test, and deployment automation.
•Managed AWS infrastructure including EC2, RDS, EBS, IAM, Route 53, CloudWatch, KMS, S3, and networking services.
•Implemented Kubernetes and Docker based microservices deployments and operational automation.
•Implemented HashiCorp Vault for secrets management and SSH certificate based authentication.
•Implemented AWS Landing Zone, Terraform modules, automation scripts, tagging strategies, and cost optimization processes.
•Supported enterprise cloud migrations including SAP workloads, cross-account encrypted storage transfers, and HA proxy solutions.
EDUCATION
•Bachelor of Computer Science – Shrikrishnadevaraya University- 2013
•Masters of computer Science-chatrapati sahuji maharaj university-2015
CERTIFICATIONS
•AWS Certified Solutions Architect - Associate
•Kubernetes CKA
•AWS Certified DevOps Engineer - Professional