Livecareer-Resume

Senior Cloud Engineer Resume Example

Love this resume?

By clicking Build Your Own Now, you agree to our Terms of Use and Privacy Policy

JC
Jessica Claire
Montgomery Street, San Francisco, CA 94105 (555) 432-1000, resumesample@example.com
Professional Summary

A fun interactive Senior Cloud Engineer / Solutions Architect, with lots of hands-on cloud engineering experience implementing several cloud technologies like Azure, AWS, Oracle and Google Cloud, with more than six (6+) years of experience working as a consultant to fortune 500 customers, managing server infrastructures, Information Security, Risk Management, Compliance, implementation/Migration and data center operations. Implementing upgradable, scalable, Hyper-converged infrastructure and micro-services across multiple platforms (Linux, Windows, AWS, Oracle) to help customers achieve business agility and flexibility,

Certifications
  • AWS Certified Cloud Practitioner - Certified
  • AWS Certified Solutions Architect Associate - Certified
  • AWS Developer Associate - Certified
  • AWS Certified Security Specialty - (In-View)
  • Certified Scrum Master (CSM) - Certified
  • ITIL Foundation - Certified
  • Certified Authorization Professional (CAP) - Certified
Skills

Database Querying Languages; PostgreSQL, MySQL, SQL server, NOSQL/DynamoDB. Jenkins, Puppet, Chef, Terraform, Ansible. AWS Inspector, AWS Shield, Macie, Guard Duty, AWS Secret Manager, Cloud Passage, Qualys, Nessus, OpenVAS, Symantec DLP. (IDS/IPS) SIEM (AlienVault).

Firewalls & Log Analysis, SIEM, etc. Orchestration Services ECS, Docker Containers, Elastic Beanstalk – Amazon Web Services (EC2, EBS, S3, IAM, AMI, VPC, VPC Peering, NACL, Security Groups, Route53, Auto Scaling, ELB, SNS, Cloud Watch and Cloud Formation).

Work History
06/2017 to 06/2020 Senior Cloud Engineer Deloitte | Bristol, TN,
  • Researched, designed and developed automation method to support the platform provisioning, maintenance and operations of large-scale products and services.
  • Designed and develop high-performance and highly available groups of servers for resource-intensive network applications in cloud-based infrastructure.
  • Worked on DevOps processes and tools supporting agile application development teams leading to continuous integration, test, and deploy methods.
  • Assisted with application integration and troubleshooting in this infrastructure for a complex application environment, including management of dependencies on services, platforms, and other applications within the cloud infrastructure.
  • Delivered end-to-end data and analytics platforms and capabilities, including requirements assessment, architecture determination and documentation, prototyping, comparative analysis, design and solution implementation.
  • Defined data platform architecture and design, with hands-on capability to review and make required changes.
  • Responsible for the overall quality of project deliverables and the successful implementation of defined solution for the customer.
  • Analyzed latest Big Data Analytic technologies and their innovative applications in both business intelligence analysis and new service offerings, bring these insights and best practices to architect and implement complex big data solutions.
  • Provided expertise in big data technology space including cloud architecture, security, data storage, data ingest, data processing, data science, data visualization, etc.
  • Supported project engagements, work collaboratively with other team members, communicate effectively, and foster team success.
  • Clearly documented findings and recommendations that can be shared both internally and externally.
  • Built, maintained, and scaled infrastructure for Production, QA, and Dev environments.
  • Comfortable briefing internal and external stakeholders on findings and solutions.
  • Analyzed client data and existing systems architecture to determine whether requirements can be met.
  • Financially mindful and considered the customer’s best interests while selecting the tools and technologies for the project.
  • Created DevOps process automation and tooling to implement standards and boundaries in a way that empowers our application development teams to help themselves for their infrastructure and deployment needs.
  • Planned and implemented system security configuration, to include access control, host and client access, file permissions, and user accounts.
  • Deployed over 300 Amazon workspaces for customers end users due to Covid-19 to support work from Home initiatives.
  • Put together configuration hardening documentation for both AWS and Azure environment stakeholders.
  • Deployed Palo Alto Prisma Access, Prisma Cloud, Cortex and VM-Series 1 & 2, Panorama in AWS, Microsoft Azure, and on-premise VM environments.
  • Engaging engineering and other teams in meetings to resolve deployment issues.
  • Creating AWS and Azure test environments to test Dome9, Barracuda Guardian Security and Aviatrix Transit Gateway.
  • Proactively monitor resources and applications using AWS CloudWatch including creating alarms to monitor metrics such as EBS, EC2, ELB, RDS, S3, SNS and configured notifications for the alarms generated based on events defined.
  • Built Cloud Security Architecture Specifications for multiple Information Security Domains including but not limited to; Cloud, Networking, Endpoint, SDLC, etc.
  • Built VPCs from scratch, creating private and public sub-nets, creating security groups and network access lists, configuring internet gateways, OpenVPN, creating AMI, understanding of user access management/role based access/multi factor authentication and API access, configuration of auto scaling and elastic load balancer for scaling services if a configured threshold has been exceeded, configuration of SNS to send notifications and Cloud Watch to collect logs and metrics, spinning both Windows and Linux EC2 instances as needed.
  • Collaborated with solution architecture to devise infrastructure solutions most suitable to meet system requirements.
  • Developed best practices, operational procedures and design documentation.
  • Planned and coordinated system utilization, and performs growth analysis and capacity planning.
  • Experience supporting mission critical, 24x7 systems; ensured secure, efficient, tightly managed and optimized, and rigorously monitored storage solutions in a multiple-technology environment.
  • Ensured reliable, available, high-performance, and rigorously monitored server solutions in both server-farm and clustered-server environments.
  • Ensured high availability and high-performance enterprise storage solutions.
  • Experience designing and supporting public/hybrid cloud infrastructures, disaster recovery design and implementation to public cloud.
  • Experience implementing security best practices for private and public cloud environments.
  • Ability to collaborate effectively with peers, leads and department managers.
01/2014 to 05/2017 AWS Solutions Architect Wavicle Data Solutions | Chicago, IL,
  • Designed and implemented system security and data assurance.
    Hands-on experience writing Production-ready automation code to implement solutions with Puppet, Ansible, CloudFormation or similar - e.g.: Chef, Terraform.
  • Strong interpersonal, organizational, and communication skills with the ability to work effectively across internal and external organizations and virtual teams.
  • Reviewed design to make sure design is aligned with Architecture.
  • Proven experience in systems and cloud network design and development.
  • Strong understanding of information processing principles and practices.
  • In-depth technical knowledge of networks, storage systems and computing platforms including Amazon AWS, .NET, Windows, and CI/CD pipelines.
  • As a last line of defense against a compromised account, I ensured all IAM users have multi-factor authentication activated for their individual accounts, and limited the number of IAM users with administrative privileges.
  • Rotated IAM access keys regularly and standardize on a selected number of days for password expiration to ensure that data cannot be accessed with a potential lost or stolen key.
  • Enforced a strong password policy requiring minimum of 14 characters containing at least one number, one upper case letter, and one symbol.
  • Applied a password reset policy that prevents users from using a password they may have used in their last 24hrs password resets.
  • Ensured that no S3 Buckets are publicly readable/writable unless required by the business.
  • Turned on Redshift audit logging in order to support auditing and post-incident forensic investigations for a given database.
  • Encrypted data stored in EBS as an added layer of security.
  • Encrypted Amazon RDS as an added layer of security.
  • Enabled require_ssl parameter in all Redshift clusters to minimize the risk of man-in-the-middle attack.
  • Restricted access to RDS instances to decrease the risk of malicious activities such as brute force attacks, SQL injections, or DoS attacks.
  • Encrypted highly sensitive data such as protected health information (PHI) or personally identifiable information (PII) using customer-controlled keys.
  • Granted the fewest privileges possible for application users.
  • Involved IT security teams throughout the application development life-cycle.
  • Inventoried and categorized all existing custom applications deployed in AWS.
  • Assisted with designed and security oversight of next-generation firewalls, intrusion prevention systems, DDoS solutions, SSL-terminating load balancers, WAF, security groups and NACL.
  • Recommended and managed transmission protection requirements for all environments (systems, applications, containers, etc.) such as VPC peering best practices, SSL certificate management, key pairs, etc.
  • Designed and implemented monitoring and protection capabilities to help identify and protect against DoS attacks, MITM, EC2 instance compromise, secret compromise, etc.
  • Created and maintained comprehensive documentation related to Continuous Support and Incident Response.
  • Reviewed alerts and data from systems/networks and respond accordingly, including documentations and escalation.
    Developed tactical response procedures for security incidents.
  • Performed security monitoring, security event triage, and incident response; coordinate with other team members and management to document and report incidents.
  • Operational experience with network security appliances with a clear understanding of the architecture behind secure networks, DMZ's, NAT's, rule placement, VPN setup, and system maintenance.
  • Led root cause analysis, debugging, support, and postmortem analysis for security incidents and service interruptions.
  • Enabled Cloud Trail across all geographic regions and AWS services to prevent activity monitoring gaps.
  • Turned on Cloud Trail log file validation so that any changes made to the log file itself after it has been delivered to the S3 bucket is traceable to ensure log file integrity.
  • Enabled access logging for Cloud Trail S3 bucket so that you can track access requests and identify potentially unauthorized or unwarranted access attempts.
  • Turned on multi-factor authentication (MFA) to delete Cloud Trail S3 buckets, and encrypt all Cloud Trail log files in flight and at rest.
  • When creating IAM policies, I ensured that they're attached to groups or roles rather than individual users to minimize the risk of an individual user getting excessive and unnecessary permissions or privileges by accident.
  • Interfaced with cross-functional team of business analysts, developers and technical support professionals to determine comprehensive list of requirement specifications for new applications.
  • Researched, designed and implemented scalable applications for information identification, extraction, analysis, retrieval and indexing.
  • Worked closely with software development and testing team members to design and develop robust solutions to meet client requirements for functionality, scalability and performance.
11/2010 to 11/2013 Information Security Consultant Paypal | Texas, AL,
  • Worked calmly under pressure in the face of adversity and threat activity.
  • Possessed strong communication skills in oral and written form.
  • Ability to establish positive working relationships and garner influence with other functions.
  • Project management experience for full security system lifecycle and security tool upgrades, including business case development.
  • Self-motivated to own and solve difficult challenges and ability to motivate others to higher levels of performance and engagement.
  • Strong technical competence up and down the technology stack - user interface, applications, communications, infrastructure, database, network, storage, etc
  • Researched and developed new computer forensic tools.
  • Encrypted data and erected firewalls to protect confidential information.
  • Monitored use of data files and regulated access to protect secure information.
  • Reviewed violations of computer security procedures and developed mitigation plans.
  • Monitored computer virus reports to determine when to update virus protection systems.
  • Engineered, maintained and repaired security systems and programmable logic controls.
  • Recommend improvements in security systems and procedures.
  • Developed plans to safeguard computer files against modification, destruction or disclosure.
  • Performed risk analyses to identify appropriate security countermeasures.
  • Conducted security audits to identify vulnerabilities.
  • Drove operational improvements which resulted in savings and improved profit margins.
  • Managed quality assurance program, including on-site evaluations, internal audits and customer surveys.
  • Devoted special emphasis to punctuality and worked to maintain outstanding attendance record, consistently arriving to work ready to start immediately.
  • Monitored social media and online sources for industry trends.
  • Resolved problems, improved operations and provided exceptional client support.
  • Provisioned PKI Certificates for Internal Host and DigiCert Certificates for External Host.
Education
Expected in 05/2014 Bachelor of Science | Communications University of Maryland - College Park, College Park, MD GPA:
Expected in 06/2019 Certificate of Completion | Cloud Security Architecture And Operations The SANS Technology Institute, Washington, DC, GPA:

By clicking Build Your Own Now, you agree to our Terms of Use and Privacy Policy

Disclaimer
Resumes, and other information uploaded or provided by the user, are considered User Content governed by our Terms & Conditions. As such, it is not owned by us, and it is the user who retains ownership over such content.

How this resume score could be improved?

Many factors go into creating a strong resume. Here are a few tweaks that could improve the score of this resume:

78Average

Resume Strength

  • Personalization
  • Strong Summary
  • Target Job

Resume Overview

School Attended
  • University of Maryland - College Park
  • The SANS Technology Institute
Job Titles Held:
  • Senior Cloud Engineer
  • AWS Solutions Architect
  • Information Security Consultant
Degrees
  • Bachelor of Science
  • Certificate of Completion

Similar Resume

View All
Senior Cloud Engineer
Senior Cloud Engineer
Senior Cloud Engineer