Livecareer-Resume

Aws Solutions Architect Resume Example

Love this resume?

By clicking Build Your Own Now, you agree to our Terms of Use and Privacy Policy

Jessica Claire
  • , , 100 Montgomery St. 10th Floor
  • Home: (555) 432-1000
  • Cell:
  • resumesample@example.com
Professional Summary

Highly seasoned cloud solutions architect, Network Security Engineer and Firewall administration with in-depth knowledge of cloud computing and practical knowledge of cloud architecture with proven skills in designing fault tolerance, highly scalable and highly available infrastructure with security best practice, vast experience with using multiple firewall vendors like Palo Alto, Checkpoint and Cisco ASA

Skills
  • Proficient in AWS key technologies
  • Hands on experience with CICD pipeline technologies like Jenkins pipelines, Github
  • CloudGuard Dome9, Cloud Passage Halo,
  • EC2
  • IAM/ VPC/NACLS/Security Groups/
  • Kubernates
  • Terraform
  • Cloud Formation
  • Pytty/Puttygen/Github
  • Migration
  • CoudWatch/X-Ray/CloudTrail
  • AWS Security
  • AWS Command Line Interface (CLI)
  • Protocol knowledge of IPSEC, ICMP, TCP/IP, UDP, HTTP(S), DNS, SNMP, TELNET, SSH, RIP, DHCP, LAN/WAN, LDAP, NAT/PAT, SSL, VPN,
  • PAN NGFW IPS and IDS
  • Bluecoat Proxy
  • PAN NGFW High Availability (HA) Deployment and troubleshooting
  • PAN NGFW NAT Configuration and Troubleshooting
  • Zone Protection, Denial of Service (DOS) Protection
  • PAN NGFW Traffic Monitoring
  • SSL Decryption / Certification Management
  • PAN OS 7.0, 8.0 Firewall Administration
  • Access Lists, Network Address Translation
  • Panorama Administration
  • PAN NGFW APP ID, CONTENT ID, USER ID
Certifications

AWS Certified Cloud Practitioner (CCP)

Palo AltoAWS Certified Solution Architecture Associate (In view)

Networks Certified Network Security Engineer (PCNSE)

Checkpoint Certified Security Expert (CCSE)

Checkpoint Certified Security Administrator(CCSA)

Cisco Certified Network Professional (CCNA)

Certified Cloud Security Professional (in view)

Work History
AWS Solutions Architect , 07/2016 to 06/2018
Motion RecruitmentEncino, CA,
  • Handled Cloud Operations (Events, Incidents, and Requests) based on a defined, ticket-driven service catalog.
  • Wrote and modified CloudFormation scripts to provision cloud resources and automate repetitive tasks wherever practical.
  • Acted as primary “face to the customer” during the Manage phase of the customer lifecycle – communicating clearly and concisely to identify, triage, remediate, and resolve infrastructure and solution issues when customer needs are greatest.
  • Implemented and maintained backup and recovery solution for the customers' cloud computing resources.
  • Managed and executed patching for standard infrastructure and fully automated code pipeline environments.
  • Optimized existing and identified new opportunities for monitoring, logging, and management metrics to improve operational effectiveness and customer knowledge.
  • Extensive understanding of solution service offerings across; Infrastructure (including outsourcing best practices, transition, and ITIL).
  • Configured NACL and security groups, thus limiting malicious attacks from blacklisted range IP addresses.
  • Handled potential trade-offs occurring during the implementation phase, make decisions and suggest the right course of action, establish patterns
  • Designed and managed public/private cloud infrastructures, using Amazon Web Services which include EC2, S3, CloudFront, Elastic File System, RDS, VPC, Direct Connect Route53, Cloud Watch, Cloud Trail, Cloud Formation, and IAM roles for several customers.
  • Built VPCs from scratch, creating private and public subnets, creating security groups and network access lists, configuring internet gateways, OpenVPN, creating AMI, understanding of user access management/role based access/multi factor authentication and API access, configuration of auto scaling and elastic load balancer for scaling services if a configured threshold has been exceeded, configuration of SNS to send notifications and Cloud Watch to collect logs and metrics, spinning both Windows and Linux EC2 instances as needed.
  • Excellent customer facing skills with calm professional demeanor necessary to bolster customer confidence when stress is highest.
  • Strong analysis and troubleshooting skills and experience.
  • Proactively monitored resources and applications using AWS CloudWatch including creating alarms to monitor metrics such as EBS, EC2, ELB, RDS, S3, SNS and configured notifications for the alarms generated based on events defined.
  • Third Party Vendor engagement and coordination to customer sites for Demo and POC.
  • Architected and operating solutions built on AWS Platform.
  • Created business continuity/disaster recovery, fail-over and runbook documentation.
  • Ensured security is integrated into all cloud architecture solutions built.
  • Responsible for creating VPCs for Dev/test team, simulating a production environment for web/application servers and database traditional servers in public and private subnets, respectively.
  • Created implementation diagrams and data flow mappings for all projects with current customer.
  • Completed ownership of assignments, actions items and issues, and remain accountable for their completion.
  • Proposed, designed, and implemented Production-ready CI/CD pipelines.
  • Managed enterprise scale solutions that leverage the following AWS Services: EC2, S3, EBS, SSM, Dynamo DB, EMR, CloudFormation, RDS, CloudFront, VPC, Route53, IAM, CloudWatch, Elastic Beanstalk, Lambda, etc.
  • Hands-on experience in performance tuning, including the following: (load balancing, web servers, content delivery Networks, Caching (Content and API).
  • Built Cloud Security Architecture Specifications for multiple Information Security Domains including but not limited to; Cloud, Networking, Endpoint, SDLC, etc.
  • Designed, deployed and monitored infrastructure in public clouds (AWS, Azure) using Infrastructure as Code (Terraform, CloudFormation, Ansible).
  • Proposed, developed and supported automation solutions for source code deployment and configuration management.
  • Developed internal and customer facing cloud services (serverless and container-based) in AWS using AWS ECS.
  • Designed storage solutions for mission critical data in common databases (PostgreSQL) and cloud services (S3, DynamoDB, etc.).
  • Consulted and advised engineers, architects and executives, help define the right choice of technology stack, serve as a leading technical expert on Data.
  • Designed and articulated major aspects of highly scalable, reliable, and performing technical data solutions that leverage AWS cloud platform to automate business solutions.
  • In-depth technical knowledge of networks, storage systems and computing platforms including Amazon AWS, .NET, Windows, and CI/CD pipelines.
  • As a last line of defense against a compromised account, I ensured all IAM users have multi-factor authentication activated for their individual accounts and limited the number of IAM users with administrative privileges.
  • Rotated IAM access keys regularly and standardize on a selected number of days for password expiration to ensure that data cannot be accessed with a potential lost or stolen key.
  • Enforced a strong password policy requiring minimum of 14 characters containing at least one number, one upper case letter, and one symbol.
  • Applied a password reset policy that prevents users from using a password they may have used in their last 24hrs password resets.
  • Ensured that no S3 Buckets are publicly readable/writable unless required by the business.
  • Restricted access to RDS instances to decrease the risk of malicious activities such as brute force attacks, SQL injections, or DoS attacks.
  • Encrypted highly sensitive data such as protected health information (PHI) or personally identifiable information (PII) using customer-controlled keys.
  • Granted the fewest privileges possible for application users.
  • Involved IT security teams throughout the application development life cycle.
  • Inventoried and categorized all existing AWS Resources.
Senior Cloud Engineer/Security Architect , 07/2016 to 06/2018
Salesforce.Com, Inc.Mountain View, CA,

Accelerated innovation by detecting high-impact, repeatable solutions for enterprises, iteratively deploying them.

  • Authorship of technical publications including blog entries, case studies and e-books.
  • Translated architectures into estimates of hours required to deliver the solution and project plans which document how we will execute.
  • Designed and implemented deployment environments for an industrial automation platform.
  • Management of highly distributed and scalable cloud-based systems.
  • Applied best practices for automation, CI/CD, infrastructure-as-code & security.
  • Performed design reviews and provide meaningful feedback to my peers.
  • Handled Cloud Operations (Events, Incidents, and Requests) based on a defined, ticket-driven service catalog.
  • Wrote and modified CloudFormation scripts to provision cloud resources and automate repetitive tasks wherever practical.
  • Acted as primary “face to the customer” during the Manage phase of the customer lifecycle – communicating clearly and concisely to identify, triage, remediate, and resolve infrastructure and solution issues when customer needs are greatest.
  • Implemented and maintained backup and recovery solution for the customers' cloud computing resources.
  • Managed and executed patching for standard infrastructure and fully automated code pipeline environments.
  • Optimized existing and identified new opportunities for monitoring, logging, and management metrics to improve operational effectiveness and customer knowledge.
  • Extensive understanding of solution service offerings across; Infrastructure (including outsourcing best practices, transition, and ITIL).
  • Configured NACL and security groups, thus limiting malicious attacks from blacklisted range IP addresses.
  • Handle potential trade-offs occurring during the implementation phase, make decisions and suggest the right course of action, establish patterns.
  • Handled the strategic vision, align roadmaps and requirements. Build and maintain technical trusted advisor relationships with all levels in an organization, from technical experts to senior executives.
  • Designed, deployed, managed and improved critical security infrastructure services/tools for authentication and authorization, PKI, secrets management, logging, detection, vulnerability management and more.
  • Partnered with teams throughout the customer's departments on technology initiatives to improve security and bring standard methodologies to our products and services.
  • Analyzed the latest attacker techniques and develop approaches to detect them across the company's diverse environments and endpoints.
  • Defined, implemented, and tuned detective capabilities and data sources to detect and remediate malicious activities.
  • Worked with engineering and operations teams to implement threat detection signals, deployed new tooling, and improved response capabilities.
  • Analyzed security data and report on threats and incidents across various platforms and environments.
  • Served as cloud architecture subject matter expert for information security team; coaches peers and constituents on integrating security into strategic and tactical decisions.
  • Proposed changes to application frameworks to enhance security and/or cloud suitability and identifying security gaps in existing architecture and opportunities for improving architectural security posture.
  • Performed systems analysis and design, system modeling, integration planning, and technology and component selection to ensure architectural consistency between technical and business processes.
  • Focused on cloud-native services and optimizing the customer landscape through adoption of these services.
Network Security Engineer, 07/2014 to 08/2016
Cox CommunicationCity, STATE,
  • Managed Palo alto security devices including PA-3000, 4000 and 5000 series
  • Troubleshooting and resolving connectivity issues
  • Configure and implementation of zones, interfaces and virtual routers including rules/changes on PA firewall


  • Experience with Wireshark / general TCPIP Networking and Network tools
  • Support and implemented end user VPN access solutions such as Global Protect
  • Handle day to day network related ticket
  • Configuration and deployed multiple Palo Alto firewalls in multiple data center
  • Configure Firewalls to perform dynamic updates by schedule
  • Configured source and destination NAT on Palo alto firewalls
  • Managed multiple Palo Alto firewalls centrally through the Palo Alto Panorama M-500 managed multiple firewalls using Panorama
  • Leveraged Palo Alto Networks Wildfire inspection engine to prevent Zero-Day attacks.
  • Performed filtering based on user identity, URL and device
  • Participate in an established on-call rotation to respond to service tickets every 2 weeks
  • • Worked on the implementation of Palo Alto Networks application security platform in the cloud to secure the cloud infrastructure.
    • Managed a team of security engineers, providing end-to-end network security services focused on the Palo Alto Networks solutions.
    • Constructed a custom operating system for a network security appliance to enable monitoring, analysis and managing of a network.
    • Performed security assessments against endpoints, mobile devices, servers, and networks.
    • Conducted penetration testing on Palo Alto Networks customer sites, providing recommendations to mitigate vulnerabilities and secure networks.
    • Created a secure network with an emphasis on security, performance and stability.
    • Researched and identified reporting and design issues for a network security system
TECHINICAL SUPPORT ENGINEER, 01/2013 to 04/2014
State FarmCity, STATE,
  • Use TCP/IP networking skills to perform network troubleshooting to isolate and diagnose common network problems.
  • Creating objects in active directory
  • Participating in hiring, training and development of others.
  • Design, develop and deploy Active Directory solutions for clients
  • Deployment, Installation, Configuration of Windows server 2016 at branch Offices and administration of Microsoft Active Directory Systems.
  • Worked as a team member with other technical Staffs to ensure connectivity and compatibility between systems
  • Collaborate with other teams to design and implement delegated administration and support of Active Directory and associated services
  • Created and maintained network topology documentation as new branch offices were created.
  • Delegating active directory object, managing group permissions and fixing account issues, lockouts, and perform password resets.
Education
Bachelor of Science: Computer And Information Systems Security, Expected in
Western Governors University - Salt Lake City, UT
GPA:
Bachelor of Science: Mathematics And Statistics, Expected in
University of Lagos - ,
GPA:

By clicking Build Your Own Now, you agree to our Terms of Use and Privacy Policy

Disclaimer
Resumes, and other information uploaded or provided by the user, are considered User Content governed by our Terms & Conditions. As such, it is not owned by us, and it is the user who retains ownership over such content.

How this resume score could be improved?

Many factors go into creating a strong resume. Here are a few tweaks that could improve the score of this resume:

72Average

Resume Strength

  • Formatting
  • Personalization
  • Strong Summary
  • Target Job

Resume Overview

School Attended
  • Western Governors University
  • University of Lagos
Job Titles Held:
  • AWS Solutions Architect
  • Senior Cloud Engineer/Security Architect
  • Network Security Engineer
  • TECHINICAL SUPPORT ENGINEER
Degrees
  • Bachelor of Science
  • Bachelor of Science