DevOps Engineer | Cloud Architect | Automation Specialist
"Automating today for a scalable, reliable tomorrow."
CKA and CKAD-certified DevOps Engineer with practical experience designing and deploying cloud-native infrastructure, secure CI/CD pipelines, and comprehensive observability solutions. Focused on implementing Infrastructure as Code (IaC), GitOps methodologies, and DevSecOps frameworks to deliver resilient, production-ready systems.
| Domain | Technologies |
|---|---|
| Cloud Infrastructure | AWS (EC2, VPC, S3, IAM, Lambda, SNS) |
| Containerization & Orchestration | Kubernetes, Docker, Helm, EKS |
| Infrastructure as Code & Configuration | Terraform, Ansible |
| CI/CD & GitOps | Jenkins, GitLab, ArgoCD |
| Observability & Monitoring | Prometheus, Grafana, CloudWatch |
| Security & Compliance (DevSecOps) | SonarQube (SAST), Trivy (Container Scanning) |
| Scripting & Automation | Python, Bash/Shell Scripting, Linux Systems |
An automated, centralized audit and logging solution architected on AWS to secure cloud assets and ensure continuous compliance.
- Infrastructure as Code: Provisioned the entire multi-service AWS infrastructure using reusable, custom Terraform modules to guarantee deployment consistency.
- Threat Mitigation: Configured custom CloudWatch Metric Filters paired with AWS Lambda to track unauthorized S3 bucket access attempts, successfully cutting threat detection and alerting latency to under 60 seconds.
- Real-time Alerting: Integrated CloudWatch Alarms with Amazon SNS to route instant security notifications to administrative endpoints.
- Tech Stack: AWS (CloudTrail, CloudWatch, SNS, Lambda), Terraform.
A secure, automated software delivery pipeline implementing a Zero-Trust deployment pattern for containerized applications.
- Pipeline Automation: Built a resilient Jenkins CI/CD pipeline automating code checkout, compilation, containerization, and final deployment to AWS EKS.
- Shift-Left Security: Enforced strict quality gates by integrating SonarQube (SAST) and Trivy vulnerability scanning directly into the lifecycle, automatically blocking non-compliant builds from advancing.
- Site Reliability & Observability: Designed custom Prometheus and Grafana dashboards tracking the four Golden Signals (Latency, Traffic, Errors, Saturation) to drive down Mean Time to Resolution (MTTR).
- Access Control: Implemented secure Role-Based Access Control (RBAC) within the application layer to enforce the principle of least privilege.
- Tech Stack: Kubernetes (EKS), Docker, Jenkins, Prometheus, Grafana, Trivy, SonarQube, Java/Spring Boot.
I deep-dive into container mechanics, optimization, and deployment strategies used at scale. Read my latest guides on Hashnode:
📖 Deep-Dive: Docker Best Practices & Container Optimization
A comprehensive architectural guide on image layer minimization, multi-stage builds, and enterprise-grade security hardening patterns used by modern tech organizations.
- Email: iamvishwajeet412@gmail.com
- Professional Network: LinkedIn
- Technical Blog: Hashnode
- Updates: X / Twitter
Determined to eliminate manual overhead through clean, declarative code.