Featured Projects

Enterprise Cloud Migration & Platform Modernization

2022 - 2024

Led the enterprise-wide migration from datacenter to AWS, implementing a secure landing zone following the Well-Architected Framework. Built a cloud-native microservice platform with full infrastructure as code implementation, enabling teams to deploy and scale applications efficiently.

AWS EKS KMS S3 PCI Compliance Cloud Native Pulumi IaC

Key Features

  • Multi-account AWS architecture following Well-Architected Framework principles
  • PCI DSS compliant infrastructure design and implementation
  • Cloud-native microservice platform using Amazon EKS
  • Secure key management and encryption using AWS KMS
  • 100% infrastructure as code implementation using Pulumi
  • Automated infrastructure provisioning and management
  • Centralized logging and monitoring solution
  • Successfully executed multiple near zero-downtime migrations from datacenter to AWS

Technical Implementation

  • Designed and implemented AWS landing zone with proper account separation
  • Set up Amazon EKS clusters with proper networking and security configurations
  • Implemented secure storage solutions using S3 with encryption
  • Configured AWS KMS for key management and encryption
  • Established CI/CD pipelines for infrastructure and application deployment
  • Implemented automated compliance checks and security controls
  • Developed comprehensive Pulumi modules for all infrastructure components
  • Designed and executed multiple migration waves using AWS Database Migration Service (DMS)
  • Successfully migrated critical production workloads with near zero downtime
  • Refactored applications to be cloud-native during migration process
  • Implemented automated testing and validation for infrastructure changes

Impact

  • Successfully achieved and maintained PCI DSS compliance
  • Reduced infrastructure provisioning time from weeks to hours
  • Improved security posture and reduced compliance risks
  • Enabled teams to deploy applications faster and more securely
  • Reduced operational overhead through automation
  • Established scalable foundation for future growth
  • Successfully completed multiple migration waves with near zero business impact
  • Improved application performance and reliability through cloud-native architecture
  • Reduced infrastructure management overhead through IaC
  • Proven migration methodology that can be reused for future transitions

Automated Microservice Platform

2020 - 2022

Led the development of a fully automated microservice platform in a datacenter environment, implementing end-to-end automation for deployment, scaling, and management of containerized applications.

Ansible VMware HAProxy Docker Linux Automation

Key Features

  • Complete automation of infrastructure provisioning and configuration
  • Automated deployment pipeline for microservices
  • High availability and load balancing setup
  • Centralized logging and monitoring
  • Automated backup and disaster recovery

Technical Implementation

  • Infrastructure as Code using Ansible for automated provisioning
  • VMware virtualization for resource management and isolation
  • HAProxy for load balancing and high availability
  • Automated container orchestration and scaling
  • Integrated monitoring and alerting system

Impact

  • Reduced deployment time from days to minutes
  • Improved system reliability and uptime
  • Streamlined development workflow
  • Enhanced scalability and resource utilization
  • Reduced operational overhead

Puppet to Ansible Migration

2018 - 2020

Led the migration from a partially managed Puppet configuration environment to a fully automated Ansible-based infrastructure management system, improving reliability and reducing configuration drift.

Ansible Puppet Linux Automation YAML Git

Key Features

  • Complete migration from Puppet to Ansible for configuration management
  • Automated inventory management and host grouping
  • Standardized configuration templates and playbooks
  • Automated validation and testing of configurations
  • Documentation and knowledge transfer to the team

Technical Implementation

  • Analysis and documentation of existing Puppet configurations
  • Development of Ansible playbooks and roles
  • Implementation of automated testing and validation
  • Gradual migration strategy to minimize disruption
  • Integration with existing monitoring and alerting systems

Impact

  • Reduced configuration management complexity
  • Improved deployment speed and reliability
  • Better visibility into system configurations
  • Reduced manual intervention in configuration updates
  • Enhanced team productivity through simplified workflows