Professional Summary

Senior DevSecOps Cloud Engineer/Architect with 15+ years of IT experience, including 8+ years specializing in AWS Cloud/GovCloud and DevSecOps. Expert in designing secure, scalable cloud solutions, optimizing CI/CD pipelines, and aligning architecture with business goals for continuous improvement. Strong advocate of a "security-first" mindset, leveraging expertise in cloud-native architectures, Linux/Windows/Mac operating systems, and cloud security best practices to enhance efficiency and protect critical systems. Extensive hands-on experience in both on-premises and cloud environments, with multi-vendor bare-metal and virtualized systems to build resilient, highly available infrastructures. Proven in designing and managing complex environments with a focus on automated security, continuous monitoring, and proactive risk mitigation.

Professional Experience

Senior DevSecOps Engineer

Chenega Corporation, Stafford, VA | Client: Department of Defense (DoD) — Sept 2021 – Present

  • Led the design and implementation of CI/CD pipelines, incorporating security best practices throughout the software development lifecycle. This initiative ensured secure, frequent, and efficient deployment processes, resulting in a 95% reduction in deployment time and a 45% decrease in overall development costs. By minimizing testing and debugging time, developers received immediate feedback on their changes, enabling quicker bug detection and faster resolution.
  • Automated and optimized CI/CD pipelines using tools and services such as AWS EC2, S3, CloudWatch, Grafana, Atlassian Jira, Confluence, Jenkins, Docker, FitNesse, Marklogic, and Appian, while integrating OWASP Zap for security testing and vulnerability scanning, and enabling automated alerting via Mattermost and Slack to enhance security awareness and response.
  • Worked with various teams, including development, qa, product/project management, and government, to assess the impact on processes and business value for enterprise strategies, while developing implementation plans and success objectives.
  • Led the infrastructure operations and monitoring teams in transitioning from Splunk to AWS CloudWatch, realizing a 90% reduction in licensing costs while enhancing system monitoring and scalability.
  • Worked closely with DoD government teams to prepare and review contract and technical documents, along with architecture, ensuring compliance with FedRAMP and NIST SP 800-53 frameworks. This collaboration enhanced customer service, satisfaction, and confidence, as reflected in the Service Level Agreement (SLA).
  • Developed and managed CI/CD pipelines with integrated security scanning (SAST, DAST, dependency checks)
  • Prepared cost analysis and budget estimate documents, which were submitted to the management team for approval prior to purchasing and implementing the necessary infrastructure resources to enhance IT infrastructure and software development processes.
DevSecOps Cloud Architect

ITC Defense Corp, Arlington, VA | Client: Department of Defense (DoD) — June 2017 – Aug 2021

  • Led the design, architecture, and provisioning of secure AWS environments from scratch, using tools like AWS EC2, S3, VPCs, IAM, ALB, Route 53, CloudWatch, GuardDuty, Security Groups, IAM roles, policies, and CloudFormation, ensuring security and scalability.
  • Designed and provisioned data center infrastructure at client sites, reducing costs by 90% by managing tasks internally, led the migration from Google Maps API to Open Maps API (reducing costs by 95%), and assisted in preparing technical documents for FedRAMP and ATO compliance.
  • Developed and implemented DevSecOps CI/CD pipelines from the ground up with tools like Jira, Docker, Jenkins, AWS ECR, EKS, Ansible, Terraform, CloudFormation, and Kubernetes, incorporating security scanning with SAST and DAST tools such as SonarQube and OWASP ZAP.
  • Provided technical support to the Business Intelligence Engineering team in managing SQL/NoSQL databases (PostgreSQL, MySQL, MongoDB), and delivered expertise in Tableau, Talend Big Data, ETL (Extract, Transform, Load) processes, and reporting services.
  • Implemented security monitoring tools (AWS CloudTrail, GuardDuty, CloudWatch) to proactively detect, alert, and respond to potential security incidents in real time.
  • Deployed AWS WAF and Shield to defend applications against DDoS attacks and web-based security threats, ensuring high availability and uptime.
  • Designed secure network architectures using AWS VPC, NFS, EFS, IAM roles, policies, and groups, enforcing least-privilege access, NACLs, and VPNs to protect network traffic and ensure robust security posture.
Senior DevOps Engineer

Deloitte, Lake Mary, FL | Client: Internal Revenue Service (IRS) — Dec 2016 – April 2017

  • Deployed server instances and set up CI/CD pipelines in AWS (dev, QA, staging, production), leveraging EC2, ECS, EKSVPC, EBS, and CloudFormation for scalable, efficient deployments.
  • Mentored junior DevOps engineers to improve team skills in build, release, and configuration management, driving continuous improvement in development processes.
  • Developed and implemented monitoring solutions that give greater visibility into performance and reliability of cloud environments.
  • Collaborated with Development, Network and Security groups and integrate their requirements in all environment build plans.
  • Utilized DevOps tools (Jenkins, Ansible, SonarQube, GitLab) to optimize workflows and deployed scalable CI/CD pipelines and server instances on AWS (EC2, VPC, CloudFormation) for efficient deployment across environments.
Data Center Systems Administrator

BAE Systems., Herndon, VA — Mar 2015 – Sept 2016

  • Assisted in migrating physical data center assets to a cloud environment, enhancing scalability while managing hardware and network infrastructure to ensure high availability and performance.
  • Collaborated with DevOps teams to integrate hybrid cloud services, delivering strategic virtual solutions to improve operational efficiency.
  • Worked closely with Project Management, IT, and Security Engineering teams to coordinate data center administration and migration projects, ensuring alignment with organizational goals and security requirements.
Network Engineer

Cablevision Systems Corporation, Hicksville, NY — Feb 2014 – Feb 2015

  • Coordinated with ISP, network, and server teams to troubleshoot data center and location issues, while providing specialized support for VOD and MRDVR to resolve outages and ensure seamless content delivery, service continuity, and improved performance.
  • Provided specialized technical support for Video on Demand (VOD) and MRDVR, resolving complex issues to ensure seamless content delivery and service continuity.
  • Managed open tickets with NOCs and ISPs to address outages and customer issues, troubleshooting VOD, QAM, and Node Service Group problems to enhance service reliability.
Network & Systems Administrator

Softheon Inc., Stony Brook, NY — Oct 2012 – Jan 2014

  • Administered and maintained DNS, DHCP, Active Directory (Windows 2003/2008/2012 servers), Exchange Server 2010, and Sonicwall firewall configurations, ensuring secure and reliable operations.
  • Monitored infrastructure with Microsoft System Center Operation Manager (SCOM), troubleshot FTP, SFTP, and IIS issues, and ensured compliance with HIPAA security policies to maintain data integrity and availability.
Field Service Engineer

WorldWide Tech Services, New York, NY — Dec 2005 - Sept 2012

  • Installed and configured desktop/server operating systems, hardware, and server racks, ensuring optimal setup and performance across diverse environments.
  • Diagnosed and resolved complex hardware, software, and network issues, executing repairs, upgrades, and modifications to improve system functionality.

Technical Skills

Certifications

Education