Senior AWS DevOps Engineer with 6+ years of experience building scalable, secure, and highly available cloud-native systems using Kubernetes, Terraform, CI/CD automation, and enterprise DevSecOps practices.
Built a highly available multi-region Kubernetes platform on AWS EKS using GitOps-based deployments with ArgoCD and Helm. Designed scalable cluster architecture with auto-scaling node groups and high availability across multiple AWS regions. Integrated Istio service mesh for traffic management, secure service-to-service communication, and mTLS encryption. Enabled centralized observability using Prometheus, Grafana, and AWS CloudWatch for monitoring cluster health and performance.
Designed a fully automated CI/CD platform using GitHub Actions, AWS CodePipeline, CodeBuild, CodeCommit, CodeDeploy. Integrated SonarQube for static code analysis and security vulnerability scanning, along with linting tools for code quality enforcement. Achieved zero-downtime deployments using blue/green and rolling deployment strategies with CodeDeploy. Added automated quality gates, security checks, and approval workflows to ensure production-ready releases.
Built a scalable Infrastructure-as-Code platform using Terraform for provisioning AWS VPC, IAM, EKS, and RDS across multiple environments. Designed reusable modules with environment separation for Dev, QA, and Production using workspaces and structured variables. Implemented secure secrets management using AWS Secrets Manager and SSM Parameter Store with no hardcoded credentials.
Built a full observability platform using Prometheus, Grafana, Filebeat, AWS CloudWatch, AWS X-Ray, Elasticsearch, and Kibana. Implemented centralized logging, metrics, and distributed tracing for end-to-end microservices visibility. Streamed logs using Filebeat into Elasticsearch for real-time indexing and troubleshooting via Kibana dashboards. Configured alerting pipelines with Slack notifications and email alerts for real-time incident response and operational awareness.
Designed a scalable serverless architecture using AWS Lambda, API Gateway, SQS, SNS, EventBridge, and AWS SAM. Developed and deployed infrastructure-as-code using AWS SAM templates for serverless application provisioning and versioned deployments. Built event-driven microservices with asynchronous processing and decoupled communication between services. Implemented fault-tolerant workflows with retries, dead-letter queues (DLQ), and idempotent processing for reliable execution at scale.
Built an AWS multi-account Landing Zone using Control Tower with Account Factory (AFT) for automated account provisioning. Implemented AWS IPAM for centralized IP management across accounts and regions. Enabled IAM Identity Center (SSO) for secure, centralized access control. Standardized governance using AWS Organizations, SCPs, and CloudFormation StackSets for consistent multi-account deployments.