Home

Shiva Kumar - Devops Engineer

[email protected]

Location: Fremont, California, USA

Relocation:

Visa:

Shiva Kumar DevOps Engineer Fremont, California [email protected] (562) 784 0023 ______________________________________________________________________________________________ Professional Summary Over 11+ years of experience as a DevOps Engineer, experience working in start-up environments and big enterprise. Proficient in working with both AWS and Azure environments, optimizing performance and resource utilization to meet business needs across multiple cloud platforms.a Extensive experience architecting and deploying applications on AWS, leveraging services such as EC2, S3, RDS, and Cloud Watch. Proficient in implementing security best practices and optimizing cost-efficient operations. Skilled in designing and implementing scalable infrastructure solutions on Azure, deploying VMs, managing Azure SQL databases, and ensuring compliance and security throughout the CI/CD pipeline. Experienced in implementing Continuous Integration (CI) and Continuous Deployment (CD) Processes through Jenkins, Gitlab, and setting up CI/CD pipelines using Jenkins, integrating it with various tools and plugins such as SonarQube, Git, Checkmarx, Maven, Gradle, and Nexus. Proficient in deploying infrastructure as code in AWS using Terraform, CloudFormation, and AWS SDKs like Python, Node.js, and PowerShell. Integrated Kafka with various AWS services like EC2, S3, and RDS databases to enable seamless data ingestion, processing, and storage within the AWS environment. Well experienced in Branching, Merging, Tagging, and maintaining version control across environments using SCM tools like Git on Linux platforms (Red Hat, CentOS, Ubuntu), and involved in creating different branches in the existing workflow process using Git. Administered Windows servers, including installation, configuration, and troubleshooting. Experienced in writing Groovy scripts for building CI/CD pipelines with Jenkins files. Proficient in scripting with Python, Bash, Shell, and YAML to automate daily administrative tasks and testing various Linux environments in the Development/Test stages to improve environment stability. Experienced in creating pods and clusters in Kubernetes and deploying them using OpenShift. Expert in deploying code through web application servers like WebSphere, WebLogic, Apache Tomcat, and JBoss. Proficient in integrating Unit Tests and Code Quality Analysis Tools like JUnit, Cobertura, Checkstyle, and SonarQube, for code review. Managed environments DEV, QA, and PROD for various releases and designed instance strategies. Knowledgeable in various configuration management tools like Chef, Puppet, and Ansible, effectively employing Ansible to automate server configurations. Skilled in Docker for containerization, integrating it with CI/CD pipelines for automated build and deployment processes, and managing Kubernetes clusters. Spearheaded the integration of SAST and DAST tools into enterprise CI/CD pipelines using SonarQube, Fortify, and OWASP ZAP to identify and mitigate vulnerabilities pre-deployment. Experienced in configuring monitoring tools such as Prometheus, Grafana, Datadog, Splunk and ELK stack for proactive alerting and troubleshooting. Managed Active Directory, Group Policy, and user accounts. Proficient in managing version control systems like Git, SVN, GitHub, and Bitbucket. Familiar with all aspects of the software development life cycle (SDLC) such as Analysis, Planning, Developing, Testing, Implementing, and Post-production analysis. Worked on rolling updates using the deployments feature in Kubernetes and implemented BLUE - GREEN deployment to maintain zero downtime. Utilized collaboration tools like JIRA for capturing requirements, prioritizing tasks, and tracking progress collaboratively. Proficient in installing, configuring, and updating Linux machines, specializing in distributions like Red Hat, CentOS, and Suse. Automated routine tasks and system administration processes using configuration management tools like Ansible and Puppet. Involved in projects where Agile, Gitflow, and Scrum Methods were utilized, showcasing a good understanding of their workings. Technical Skills Cloud Environment AWS, Azure Logging and Dashboards ELK, Grafana, Log4j Containerization Tools Kubernetes, Docker, Docker Swarm Configuration Management Tools Chef, Ansible, Puppet Continuous Integration Tools Jenkins, GitLab, Github Actions Build Tools Maven, Ant, Gradle Version control tool Subversion (SVN), GIT, GitHub, Git Lab, Bitbucket Artifactory repositories Docker Hub, Artifactory, Nexus Bug Tracking Tools JIRA, BMC Remedy Monitoring Tools Nagios, Splunk, Datadog, AppDynamics, Prometheus, Zabbix Operating Systems Windows, Linux, Red Hat, CentOS, Ubuntu Network Services SSH, TELNET, TCP/IP, HTTP, SMTP, DNS, DHCP, SCP Web/Application Servers WebSphere, Apache, Tomcat, JBOSS, WebLogic Scripting tools Python, Perl, Bash, Power shell, YAML, Groovy, javascript, HTML, CSS. Databases SQL Server, MY SQL, Postgre SQL, MongoDB, oracle Professional Experience: DevOps and Cloud Engineer State Of MaryLand Aug 2023 Present Responsibilities: Played an integral part in my role by orchestrating the architecture and deployment of multiple applications, utilizing a variety of AWS services such as EC2, Route 53, S3, and RDS databases. Implementing centralized logging with ELK and AWS CloudWatch Logs to ensure thorough monitoring of both application and system activities. Employed cost-efficient AWS operations through resource optimization, strategic use of reserved instances, and leveraging AWS Cost Explorer for in-depth cost analysis and future forecasting. Collaborated with development and cross-functional teams to align application needs with AWS capabilities, offering guidance on best practices for seamless integration. Automated rollback of infrastructure using version-controlled CloudFormation stacks. Designed and maintained a secure CI/CD pipeline with built-in SAST (Checkmarx) and DAST (Burp Suite Enterprise) capabilities. Installed, configured, and maintained RHEL and CentOS systems, contributing to high-performing and stable infrastructure. Deployed and configured Windows-based applications and services. Utilized JIRA boards and reports to capture requirements, prioritize tasks, and track progress collaboratively Configured Kinesis Data Firehose delivery streams to automatically scale and optimize data delivery based on throughput requirements and destination capacities. Managed and administered RedHat and Ubuntu Linux systems, including server provisioning, patching, and troubleshooting. Developed and maintained CI/CD pipelines using Jenkins, GitHub Actions, AWS CodePipeline, and GitLab CI/CD for automated deployment, and integrated SonarQube for continuous code quality checks and security vulnerability scanning. Developed Golang-based internal tools to automate IAM audits and rotate secrets via HashiCorp Vault. Maintain MongoDB clusters with replica sets, sharding, and backups to ensure high availability, scalability, and data integrity. Integrated Kinesis Data Streams with AWS Lambda to enable serverless processing of streaming data, triggering Lambda functions in response to new data records arriving in the stream Developed AWS Lambda functions using Python to automate the process of sending S3 log files to CloudWatch, enhancing monitoring and analysis capabilities. Managed Git hooks and rollback tagging logic to auto-revert code in production. Implemented and configured Disaster Recovery (DR) solutions with AWS storage services such as Amazon S3, Glacier, and EBS Snapshots. Automated deployment processes using Ansible, Puppet, and Chef for configuration management, and troubleshot and resolved complex issues related to CI/CD pipeline failures, container orchestration, and infrastructure provisioning in real-time. Implemented CIS benchmarks and hardening scripts to meet PCI DSS requirements across Linux-based systems. Developed and maintained customized AMIs to streamline the provisioning of EC2 instances, incorporating pre-configured software stacks, security patches, and performance optimizations. Migrated legacy monoliths to microservices on Kubernetes with Helm and ArgoCD, enabling seamless blue/green deployments with automated rollback triggers. Developed internal rollback scripts using Python and Lambda. Developed Golang-based internal tools to automate IAM audits and rotate secrets via HashiCorp Vault. Designed and implemented customized automated infrastructure provisioning workflows with AWS CloudFormation/Terraform templates, enhancing deployment efficiency and maintaining uniformity across environments. Configured Kafka Connect to seamlessly integrate diverse data sources and sinks, facilitating smooth data flow across systems. Implemented AWS S3 and RDS database connectors, ensuring efficient data ingestion and export with minimal latency. Proficiently managed version control systems, such as Git, SVN and GitHub ensuring code integrity, collaboration, and version history tracking. Integrated Jenkins with SonarQube for automated code quality checks triggered by commits/merges, and set up notification alerts in Jenkins to prompt developers on detected issues/vulnerabilities, ensuring timely resolution and enhanced code quality throughout development. Integrated REST API deployment into CI/CD pipelines using Jenkins, enabling automated testing, versioning, and deployment of API changes. Configured authentication and authorization mechanisms for REST APIs using OAuth, JWT, or API keys, ensuring secure access control and data protection. Implementing security best practices in AWS environments, including configuring IAM roles and policies, network security groups, and encryption mechanisms to safeguard data and resources. Experienced in Kubernetes for deploying, scaling, load balancing, and managing Docker containers across multiple namespaces. Possess a strong understanding of the OpenShift Platform for effectively managing Docker Containers and Kubernetes Clusters. Created YAML manifest files for Kubernetes deployments in AWS clusters, including ingress, deployment, and service configurations. Designed and deployed a multi-cloud Kubernetes cluster spanning AWS, Azure, and GCP, improving application resilience and reducing downtime by 99.9%, and troubleshot and resolved issues related to CI/CD pipeline, container orchestration, and infrastructure provisioning. Designed and enforced HIPAA Technical Safeguards including audit logs, access control, and encryption Configured and managed Kubernetes clusters for performance and resource utilization, utilizing tools such as kubectl and Helm charts. Implemented Ansible to centrally manage server configurations, automating both existing server management and the build/configuration of new servers. Proficient in crafting Ansible playbooks with roles, tasks, handlers, and vault encryption for streamlined automation and enhanced security. Managed migration projects, overseeing the transition from legacy tools to modern solutions, ensuring seamless integration and minimal disruption to operations. Configured monitoring tools like Prometheus, Grafana to monitor deployed applications and infrastructure, enabling proactive alerting and troubleshooting. Implemented scalable infrastructure solutions on Azure, optimizing performance and resource utilization to effectively meet business needs. Automating the deployment, configuration, and management of Azure infrastructure using tools like Azure DevOps, ARM templates, and PowerShell. Implementing CI/CD pipelines for deploying applications to Azure environments. Managing Azure DevOps repositories, build pipelines, release pipelines, and test plans. Collaborating with development teams to optimize application performance and scalability on Azure. Environment: AWS, Azure, CloudFormation, Kubernetes, Docker, Jenkins, Openshift, YAML, Python, Terraform, REST APIs, Ansible, Powershell, JIRA, Kafka, AWS Kinesis, AWS Lambda, Snapshots. Senior DevOps Consultant SECOND NATURE, TEXAS, USA June 2021 July2023. Responsibilities: Designed and implemented scalable infrastructure solutions leveraging Azure cloud services such as VMs, VM scale sets, ALBs, and Azure Traffic Manager. Implemented Infrastructure as Code (IaC) principles using Azure Resource Manager (ARM) templates and Terraform, ensuring reliable infrastructure setups managed through version control with Git. Improved infrastructure and application health monitoring by integrating Azure Monitor and Azure Application Insights. Developed personalized alerts and dashboards for early issue detection and resolution, ensuring optimal performance. Ensured compliance and security throughout the CI/CD pipeline by utilizing Azure DevOps' built-in security features, including role-based access control (RBAC). Proficiently deployed and configured Azure SQL Databases, ensuring seamless integration with Azure services to meet project requirements. Developed a reusable DevSecOps pipeline template that included SAST, DAST, dependency scanning, and SBOM generation for new teams adopting GitLab. Implemented robust data security measures, including encryption, access controls, and auditing, to protect sensitive information within Azure environments. Managed end-to-end CI/CD pipelines via GitLab CI and ArgoCD; reduced deployment time by 40%. Implemented security best practices for Windows environments, including patching, vulnerability scanning, and firewall configuration. Conduct security audits and vulnerability assessments, implementing best practices such as SELinux, firewalls, and patch management. Managed end-to-end CI/CD pipelines via GitLab CI and ArgoCD; reduced deployment time by 40%. Designed and implemented Azure Key Vault solutions for secure storage and management of cryptographic keys, secrets, and certificates, ensuring data confidentiality. Defined access policies and permissions within Azure Key Vault to control user and application access to sensitive data securely, maintaining data integrity. Planned and executed backup and disaster recovery strategies using Azure Backup and Azure Site Recovery, ensuring data protection and business continuity. Managed MongoDB servers, including setting up backups, monitoring, and troubleshooting database performance. Deployed and maintained RHEL and CentOS servers across multiple environments. Streamlined application and service deployments within the Azure CI/CD pipeline by integrating Ansible, minimizing errors and optimizing release processes. Implemented PCI DSS-compliant environments on AWS with full traceability and encrypted logging. Implemented Ansible playbooks to automate configuration adjustments, system updates, and application deployments, enhancing operational efficiency. Enhanced workflow efficiency by developing and executing Perl and shell scripts for automating build and release processes, facilitating seamless workflow management. Managed Docker containers efficiently at scale using Azure Kubernetes Service (AKS), ensuring smooth orchestration and administration for optimal performance. Implemented SBOM generation using CycloneDX in GitLab pipelines to enhance software supply chain visibility and meet Executive Order 14028. Created and managed Helm charts for Kubernetes, facilitating efficient packaging, deployment, and management of applications in cloud environments. Developed Python scripts to automate build and deployment procedures, leveraging the Django framework to streamline web-based application development. Designed and implemented a rollback logic framework integrated into Jenkins pipelines, enabling automated deployment reversion upon failure detection (via health checks, synthetic tests). Integrated Datadog APM to observe application behavior and set rollback thresholds via metrics alerts. Collaborated with cross-functional teams to configure and customize Atlassian tools such as JIRA, supporting Agile development methodologies for seamless project management and issue tracking. Actively participated in cross-functional collaboration and knowledge-sharing initiatives within the organization, fostering continuous learning and improvement in Azure cloud services management and security practices. Environment: Azure, AKS, Azure Key Vault, Azure SQL databases, ARM templates, Jenkins, Maven, Nexus, Kubernetes, Django, Python, Perl, shell, Docker, Git, Helm charts, JIRA, YAML Senior Devops Consultant Wunderman Thompson, NY, USA Jan 2017 May 2020 Responsibilities: Leveraged a suite of AWS compute services including EC2, Security Groups, ELBs, S3, RDS databases, and CloudWatch to deploy and monitor diverse web applications. Enhanced security measures by configuring settings within AWS Identity and Access Management (IAM), strengthening authentication processes. Automated deployment workflows using Jenkins and seamlessly integrated Jenkins with Ansible for efficient provisioning and configuration management. Configured Jenkins jobs to trigger SonarQube scans upon code commits or merges, ensuring thorough code quality checks at every stage of the development process. Engineered secure infrastructure-as-code (IaC) using Terraform to deploy HIPAA- and FedRAMP-compliant environments on AWS and Azure. Led 24x7 on-call support rotation; resolved P1 issues with root cause and rollback within defined SLA. Built internal dashboard using Python + React to track SBOM coverage and software dependencies in all projects. Created internal tooling to automatically generate and store SBOM artifacts in compliance with internal risk governance. Developed microservices health-check utilities using Golang, improving uptime diagnostics by 25%. Implemented Docker to containerize applications, ensuring portability and consistency across various environments. Integrated Docker with CI/CD pipelines to automate build, test, and deployment processes, improving development efficiency. Managed private container registries using AWS ECR to securely store and distribute Docker images, adhering to best practices in image management. Orchestrated Kubernetes clusters, overseeing version upgrades and updates to maintain optimal performance and leverage new features. Implemented a continuous integration and continuous deployment (CI/CD) pipeline using Jenkins, GitHub Actions, AWS CodePipeline, and GitLab CI/CD, and ensured automated testing and deployment of applications. Managed Kubernetes resources such as pods, deployments, services, and ingresses, ensuring seamless operation of containerized applications. Administered Linux-based servers (Red Hat, Ubuntu) in a large-scale environment, ensuring high availability and optimal performance. Utilized Kubernetes debugging tools like kubectl, kubeadm, and kubelet to troubleshoot cluster issues and optimize performance. Implemented Kubernetes Persistent Volumes (PVs) to provide reliable storage solutions for stateful applications and databases. Configured and administered API gateways like AWS API Gateway, proficiently managing REST APIs traffic for scalability and reliability. Seamlessly integrated REST APIs deployments into CI/CD pipelines, facilitating efficient management and delivery of services. Set up monitoring and alerting systems such as Prometheus and ELK stack to monitor applications, track usage metrics, and detect anomalies for proactive issue resolution. Collaborated with infosec to design and enforce HIPAA-compliant data handling across services. Ensured Kubernetes cluster security and data integrity through meticulous configuration of Role-Based Access Control (RBAC) settings, maintaining robust access controls. Developed a Flask-based microservice for reading large volumes of data from PostgreSQL database, enhancing data processing capabilities. Integrated with CycloneDX and Anchore APIs to auto-populate SBOM metadata. Implemented a continuous integration and continuous deployment (CI/CD) pipeline using Jenkins, GitHub Actions, Azure DevOps, and GitLab CI/CD, and ensured automated testing and deployment of applications. Automated AWS infrastructure creation by configuring Jenkins jobs to pull Terraform code from GitHub repositories, streamlining infrastructure provisioning processes. Environment: AWS, S3, EBS, Elastic Load balancer (ELB), Auto Scaling groups, VPC, IAM, ECS, Cloud Watch, Glacier, Elastic Search, Kibana, PostgreSQL database, MongoDB, shell scripts, GIT, API Gateways, Docker, Maven, Jenkins, Python, Apache Tomcat, SonarQube, Terraform. Systems/Cloud Engineer Jireh software Solutions, Bangalore. Sep-2014 to Aug-2015. Responsibilities: Managed Git repositories adeptly, overseeing branching, merging, and tagging processes to facilitate seamless collaboration and version control among development teams. Ensured codebase integrity and smooth code collaboration by proficiently managing source code repositories like Git, GitHub, and Bitbucket. Enhanced build scripts utilizing Ant, Maven, and MS Build, thereby optimizing build processes and enhancing build reliability. Deployed and managed virtualization environments using technologies like KVM and VMware, maximizing resource utilization and scalability. Implemented Jenkins pipeline rollback stages conditioned on monitoring thresholds and error codes. Maintained secure VPN tunnels and access controls for HIPAA-sensitive applications. Developed and maintained shell and Perl scripts for automated deployments, minimizing manual errors and streamlining release processes effectively. Created reusable rollback modules using Python and integrated them with Slack alerting and GitHub Actions. Created scripts in Go and Python to automate patch management and compliance checks. Built internal dashboard using Python + React to track SBOM coverage and software dependencies in all projects. Configured Jenkins pipelines to automatically trigger builds and deployments based on code commits, ensuring rapid feedback and seamless integration of code changes. Integrated JIRA with Bitbucket, GitLab and Jenkins, establishing seamless communication and automation across the development lifecycle. Integrated unit testing frameworks and conducted code quality analysis using tools like SonarQube, Selenium, and JUnit, ensuring the delivery of high-quality software products. Edited existing ANT/MAVEN files to accommodate project changes and rectify errors, ensuring project stability and adherence to specifications. Deployed, maintained, and provided troubleshooting support for various .NET applications and web services hosted on IIS web servers, SQL Server databases, and other cloud environments. Prepared release schedules based on release plans and collaborated with Test Leads and Managers to coordinate activities in testing and production environments, ensuring timely and successful deployments. Facilitated release retrospectives to gather feedback and identify areas for improvement in release processes and tooling. Provisioned and managed development, testing, staging, and production environments, ensuring alignment with project requirements and scalability needs. Implemented configuration management tools like Ansible or Puppet to automate configuration tasks and enforce consistency across infrastructure components. Managed RPM and YUM package installations to maintain system integrity and security. Successfully launched and managed web servers such as Apache Tomcat and WebLogic, prioritizing optimal performance and reliability. Implemented monitoring solutions such as Nagios or Zabbix effectively to proactively identify and address system issues, ensuring high availability and performance. Collaborated with cross-functional teams to review and prioritize problem tickets in BMC Remedy, coordinating resolution efforts to minimize downtime and service disruptions. Ensured alignment with SDLC processes, particularly in post-development environments, by collaborating with Architects to maintain consistency and compliance with architectural standards. Designed canary release and blue-green deployment strategies across hybrid environments with rollback scripts for multi-tier .NET and Java applications. Maintained comprehensive documentation for build and release procedures, ensuring knowledge transfer and continuity in the event of personnel changes. Environment: RedHat Enterprise Linux, Jenkins, GitLab, SVN, BMC Remedy, ANT, Maven, MS Build, Python, .NET, Python, SonarQube, Selenium, JUnit, Bitbucket, shell, Perl, Ansible, Puppet, IIS webserver, Apache Tomcat, Nagios, Zabbix, YUM, RPM. Environment: Java, HTML, CSS, JavaScript, REStful APIs, MVC, Hibernate, Oracle database, SQL, JUnit, JVM, Log4j. Linux Admin Emids Technologies, Bangalore June- 2012to Aug - 2014 Responsibilities: RHEL OS Installation & VMware ESXI Installation. Configuring Bonding with VLAN tagging in Linux. Firmware upgrade for HP DL Servers, Blade server, OA and VC Flex. BIOS tuning in HP servers for obtaining max performance. Configuration of HP Servers ILO (Integrated Lights-Out), RAID Disk Smart Array configuration. Provisioning and commissioning of HP Servers at Data centers. Data centre infra related work. Shell Scripting for automating backups and routine jobs. Installation and up gradation of Packages. Configuring systems with RAID 0, 1, 5 on Linux Operating systems. Configuring NIC Bonding & IP aliasing In Linux. Experience in Linux OS installation, Software and Patch management. General System Administration expertise. Familiar with the configuration and maintenance of server and network hardware and peripherals. Creating LVM in redhat & Centos servers. Monitoring all servers CPU, RAM, Memory, Disk utilization. Providing Internet access through squid proxy server. Vendor Coordination & Management, Working with Vendors for backup tool issues. Managing technical issues, server maintenance, Incident management that includes Application and Database servers. Monitoring Network and server health using PRTG Network Monitoring Tool. Environment: VMware ESX/ESXi servers, HP, Dell and IBM servers, EMC, HP and IBM storage arrays. Education: Bachelors in Information Technology (2012) from BIES, Jntu Hyderbad. Masters in Computer science in 2016 from NPU CA. Keywords: continuous integration continuous deployment quality analyst javascript sthree information technology golang hewlett packard microsoft California New York