Name: Navadheep B

Email: [email protected]
Phone: +1(479) 974-2554
LinkedIn

Summary:
● Sr Cloud DevSecOps engineer with over 9+ year’s experience in Cloud (AWS,
Azure, GCP), DevSecOps, Configuration management, Infrastructure automation,
Continuous Integration and Delivery (CI/CD). Implemented N - Tier application
development strategies in both Cloud and On-premises environments.
● Experience in managing Unix/Linux and Windows server organization.
● Worked on both waterfall and Agile Software Development Lifecycle (SDLC)
processes and methodologies.
● Expert in implementation of Azure Cloud services including ARM templates,
Azure Virtual Networks, Virtual Machines, Cloud Services, Resource Groups,
Express Route, Traffic Manager, VPN, Load Balancing, Application Gateways,
Auto and scaling.
● Experience in Azure Active Directory, ADFS, Azure Active Directory Domain
Service, SSO and MFA and security.
● Configured and managed Azure IAM roles and policies to enforce least privilege
access, ensuring secure and compliant access control for users and services.
● Expertise in AWS services Like EC2, Load Balancer, Lambda, S3, RDS,
DynamoDB, Aurora, SQL, VPC, Route53, IAM, WAF, CloudFormation,
Elastic Container Service (ECS), Elastic Kubernetes Service(EKS), Kinesis,
EBS, Elastic Beanstalk, CloudWatch, CloudTrail, Security Groups, SNS,
SQS, Direct Connect.
● Experience in DevSecOps strategy for security auditing, continuous monitoring
of the entire infrastructure and applied Web Application Firewall (WAF) rules
for blocking the attacks through SQL injection and patterns.
● Designed, implemented, and maintained robust CI/CD pipelines using tools like
Jenkins, GitHub Actions, and GitLab, enabling faster and more reliable code
deployments across multiple environments.
● Experience in version control systems like GIT and used Source code
management tools like Visual SVN, Tortoise SVN, Git Bash, GitHub, Git GUI,
and other command line applications etc.
● Expert in container systems like Docker and multi-cloud orchestration, utilizing
AWS ECS/EKS, Azure AKS, and GCP GKE. Proficient in Terraform for
infrastructure provisioning, ensuring scalable, consistent deployments across
AWS, Azure, and GCP environments for optimal performance and reliability.
● Knowledge of PaaS, SaaS, IaaS & CaaS solutions or technologies, including
Kubernetes, Cloud Foundry, OpenShift, Mesosphere, and Docker Data
Center.
● Administered servers on Amazon Web Services (AWS), Azure & GCP platform
using Ansible,Chef, Puppet configuration management.
● Set up a GCP Firewall rules to allow or deny traffic to and from the VM's
instances based on specified configuration and used GCP cloud CDN (content
delivery network) to deliver content from GCP cache locations drastically
improving user experience and latency.
● Use and build tools that integrate with identity providers (e.g., LDAP, Active
Directory) for seamless RBAC policy enforcement across applications and
services.
● Experience in different log monitoring tools like Nagios, Datadog, Splunk,
ELK ,Grafana, Prometheus Google Cloud Logging , AWS Cloud Watch,
Azure AD logs and Azure Monitor, Dynatrace to see logs information, monitor,
security and get the health notifications from nodes.
● Experience in scripting languages Python, Groovy, Go, Ruby, Perl Scripts,
Power Shell scripts and JAVA Scripts.
● Trouble shoot and resolved Build failures due to infrastructure issues by
stabilizing the build process. Setup and executed process to code review system
effectively.
● Have knowledge on the partition of Kafka messages and setting up the
replication factors in Kafka Cluster
● Experience in working with Tracking Tools like JIRA, Red Mine, and Bugzilla.

Technical skills:
Operating Systems Windows 98/2000/NT/XP/Vista, Windows 8.1, Apache
Mesos, Mac OS, Android
Oracle WebLogic Application Server 8.x./9.x/10.x/11g/12c,
Apache Tomcat 6.x/7.x/8.x, JBoss 4.x/5.x/6.x Oracle RAC,
Middleware
Sun One Webserver 6.x (I Planet 6.0), MS IIS server
4.x/5.1/6.0, IBM MQ-series, MySQL
Cloud services AWS, Azure, GCP
Containerization &
Docker, Kubernetes, OpenShift
Orchestration
Infrastructure as
Terraform, CloudFormation, ARM Templates
Code (IaC)
Configuration
Ansible, Puppet and chef
Management tools
Nagios, Datadog, Splunk, ELK ,Grafana, Prometheus
Monitoring &
Google Cloud Logging , AWS Cloud Watch, Azure AD logs
Logging
and Azure Monitor, Dynatrace
Programming
C, C++, SAS, SQL, Core Java
language
Automation Test
Quality Center (QC), Selenium, JUnit
Tools
Defect Tracking JIRA, HP ALM/Quality center, Bugzilla, Redmine, Junit ,
Tools Test Flight, Test Rail
Internet
HTML, XML, SOAP, WSDL
Technologies
GIT, Bitbucket, Subversion, GitHub, GitLab, Tortoise SVN,
SCM Tool
Perforce, Clear case
Build Tool Ant, Maven, Bamboo
Jenkins, GitLab, GitHub Actions,Travis CI, Circle CI,
CI tools
Hudson, Anthill Pro
Project Management Base Camp, MS Project, Atlassian Tools, Demandware
Tools
SDLC Agile, Scrum, Waterfall
JBOSS, Apache Tomcat, , Oracle Web logic, IBM Web
Servers
sphere, IIS Server
Eclipse2.3, Rational Application Developer7.0, MS Visual
IDE
Studio
Shell, ANT Script, Batch Script, Perl Script, Power Shell,
Scripts & Languages
Python, Java, J2EE
SQL Server 2000/2005/2008, Oracle 9i/10g-PL/SQL, MS
Database Systems
Access, DB2
UNIX, Linux 4/5, Ubuntu, Fedora, Windows
Platforms
98/NT/XP/Vista/7/8, iOS
Others MS Outlook, Informatica, Power Center, Business Objects.

Certifications:
 Credentials - NavadheepBoddu-1885 | Microsoft Learn

Professional Experience

Client: Experian, Costa Mesa, CA

June 2021 – Till Now
Role: Sr DevSecOps Engineer
Responsibilities:

● Provided daily support to agile software development teams using Continuous

Integration (CI) methodologies, resulting in faster deployments and fewer
bottlenecks in the development pipeline.
● Configured private and hybrid clouds with Windows Azure and SQL Azure,
improving deployment efficiency by 25% and following cloud best practices.
● Created JSON-based ARM templates for Azure services to minimize interruption
to current infrastructure during incremental deployments and maintain 100%
system stability for uninterrupted financial data services.
● Used Terraform templates to build and manage stable Azure infrastructure for
staging and production, reducing deployment mistakes by 50%.
● Used Terraform to migrate legacy monolithic systems to Azure, boosting
scalability and allowing cloud-native architecture with zero downtime.
● Implemented Production environment using Terraform with Terragrunt as a
wrapper, enabling DRY code principles.
● Used Terraform to automate DEV and QA infrastructure construction and
deletion, resulting in faster environment setup, more agility, and shorter time-to-
market for data-driven applications.
● Automated Azure infrastructure provisioning with Ansible and Ansible Tower
(AWX), resulting in consistent deployments across environments.
● Automated routine chores in inventory files and YAML scripts, minimizing human
work in development, QA, and production settings and assuring error-free
financial service deployment.
● Successfully deployed Linux Kubernetes clusters utilizing Azure CLI and ACS,
resulting in scalable and flexible environments for application deployments.
● Managed global Kubernetes clusters, optimizing deployments and security,
establishing pods and configuration maps, and assuring scalability and consistent
performance for important services.
● Implemented containerization solutions (Docker and Kubernetes) on Azure
Cloud to automate application deployment on Azure Kubernetes Service (AKS),
resulting in faster deployment and higher application availability.
● Experienced in creating projects in Argo CD and deploying Argo CD in to
Kubernetes cluster from the scratch.
● Implemented Flux to make GitOps happen in the Kubernetes cluster to ensure
that the cluster config matches the one in git and automates the deployments.
● Configured and maintained CI/CD systems, including Jenkins and GitHub
Actions, to provide consistent automated delivery and timely feedback for
corrections.
● Used Run Deck to automate deployments in Jenkins, eliminating manual
involvement and guaranteeing security compliance during each release cycle.
● Managed Azure Container Registry to securely store Docker images and deploy
Angular applications to AKS, resulting in 50% faster updates and enhanced
security.
● Implemented RBAC policies that fit with organizational responsibilities, allowing
users to complete tasks with minimal privileges, improving security compliance
and risk reduction
● Managed RBAC policies for Azure and GCP cloud platforms, generating
customized roles and permissions for each user, group, and service. This
improved access control and streamlined security administration.
● Used SonarQube and Qualys technologies to uncover important vulnerabilities
early in the DevOps lifecycle, resulting in a 40% reduction in security risks.
improved the overall security posture by switching to a DevSecOps paradigm.
● Conducted automated security testing utilizing Azure Security Center and third-
party technologies to discover and mitigate vulnerabilities before production
deployment, resulting in fewer security incidents.
● Developed and administered Azure Automation Runbooks to automate
repetitive processes like patch management and backups, increasing operational
efficiency and decreasing manual intervention.
● Used monitoring technologies such as Azure Monitor and Log Analytics,
Splunk and Nagios to improve system reliability by 25% through log insights.
● Developed and tested disaster recovery plans with Azure Site Recovery,
resulting in a Recovery Time Objective (RTO) of less than 15 minutes for
important services.
● Configured GCP services like Compute Engine, Cloud Load Balancing, Cloud SQL,
Stackdriver Monitoring, and Cloud Deployment Manager to deliver high-
performing and scalable cloud solutions.
● Set up GCP firewall rules to control traffic flow, and used Cloud CDN to deliver
content, which drastically improved user experience by reducing latency.
● Successfully upgraded and decommissioned OpenShift nodes without affecting
services, resulting in seamless cluster operations.
● Developed PowerShell scripts to produce parameter files for Azure Resource
Manager services, increasing efficiency and reducing manual intervention in
configuration management.
● Developed automation and monitoring scripts in Java, Shell and Python to
improve process efficiency and reduce manual workload.
● Actively participated in a 24-hour on-call rotation to ensure timely incident
response and minimize downtime for vital services.
● Configured Azure Virtual Networks, subnets, DHCP, DNS, and security
policies to ensure consistent network performance and compliance with security
standards.

Environment: Azure, GCP, Kubernetes, Terraform, Argo CD, AllFusion

Harvest, OpenShift, CVSNT, Chef 14.x, Red hat 6.x/5.x, VMware, vSphere,
vMotion, Windows IIS, Mcollective, Oracle DB, ANT, Apache Mesos,
Jenkins,AKS, Splunk, run deck, GitHub, SVN, Ansible.

Client: Merck, Austin, TX

Dec 2019 -May 2021
Role:DevSecOps Engineer
Responsibilities:

 Configured Azure cloud architecture for PaaS/IaaS resources, including App

Service, Kubernetes Service, API Management, App Gateway, SQL
Managed Instances, Key Vault, Redis Cache, and Virtual Machines, using
ARM templates to improve scalability and security.
 Worked with operations teams to improve security processes in Azure cloud
environments, implementing best practices for remediation and achieving 25%
compliance efficiency.
 Analyzed customer requirements to implement security measures in existing
applications, ensuring full compliance with norms and regulations.
 Developed, validated, and reviewed solutions for converting workloads from
classic to ARM-based Azure Cloud settings, resulting in faster migration and
optimized resource utilization.
 Successfully migrated on-premises virtual machines to Azure Resource
Manager Subscription via Azure Site Recovery, resulting in seamless,
downtime-free transitions.
 Optimized RDS performance with CloudWatch metrics and database monitoring
tools, resulting in higher system availability.
 Integrated Ansible with Jenkins to provide automation, continuous integration
& Continuous Deployment through Jenkins and wrote Playbooks to automate
Ansible servers using YAML scripting.
 Used Jenkins Workflow and Plugins to automate deployments of multi-tier
applications, artifacts, and services to Docker.
 Created PowerShell scripts and JSON templates to automate Azure service
remediation, enhancing operational efficiency and minimizing human tasks.
 Used PowerShell to backup Azure services (e.g. SQL Database, Key Vault) for
effective disaster recovery.
 Configured Deploy and Release for all applications from scratch. Once build
package is available, promote with easy enable settings to deploy on selected
servers.
 As build and release engineer, deployed the services by VSTS (Azure DevOps)
pipeline. Created and Maintained pipelines to manage the IaC for all the
applications.
 Applied security best practices in Infrastructure as Code (IaC) using ARM
templates and Terraform, securing Azure resource configurations and
enhancing security posture.
 Configured Elasticsearch index patterns, mappings, and analyzers to improve
data storage and retrieval efficiency by 25%.
 Managed containerization platform using OpenShift, Docker, and Kubernetes.
 Deploying Kubernetes (K85) cluster with Azure Container Service (ACS) from
Azure CLI and creating Kubernetes applications with Helm charts, expertise in
creating Kubernetes config maps and services.
 Worked with Terraform Templates to automate the Azure Iaas virtual machines
using terraform modules and deployed virtual machine scale sets in production
environment.
 Managed Azure infrastructure, including Web Roles, SQL, Storage, AD
Licenses, and Virtual Machines. Conducted backups and recoveries using
PowerShell and the Azure portal to enhance disaster recovery readiness.
 Implemented RBAC policies at the group and user levels to improve access
management and ensure HIPAA compliance for services such as Automation
Account, Scheduler, Notification Hub, IoT Hubs, and Batch Services.
 Developed and developed a scalable and high-performance search application
utilizing Node.js and Cassandra.
 Automated configurations using Chef for server management, Puppet for
infrastructure configuration, and Ansible for streamlined deployment, resulting in
faster setup times.
 Successfully migrated apps from on-premises to cloud platforms, including
OpenShift and Kubernetes.
 Developed Terraform templates for Azure infrastructure as code (IaC),
integrated Azure Log Analytics for monitoring and tracking, and improved system
observability to reduce issue reaction time.
 Automated MySQL database backups using bespoke scripts to ensure data
integrity and availability.
 Utilized shell scripting to automate processes like file transfers, backups, and
core file removal across several servers.
 Developed automation scripts in Python and Java for infrastructure and
application administration, streamlining procedures and decreasing manual
intervention.
Environment: Azure, PCF, Office 365, Terraform, Maven, Jenkins, OpenShift,
Ansible, Azure ARM, Azure AD, Azure Site Recovery, Kubernetes, Python,
Ruby, XML, Shell Scripting, PowerShell, Nexus, JFrog Artifactory, Git, Jira,
GitHub, Ansible, Docker, Windows Server, TFS, VSTS, LDAP, Nagios.

Client: Macy’s, Atlanta, GA

Apr 2017-Nov 2019 Role: Cloud DevOps Engineer

Responsibilities:

 Involved in designing and deploying a multitude of applications utilizing almost all

the AWS stack (Including EC2, Route53, S3, EBS, RDS, SNS, SQS, IAM etc.,)
 focusing on high-availability, fault tolerance, and auto-scaling in AWS Cloud
Formation.
 Launching and configuring of Amazon EC2 (AWS) Cloud Servers using AMI's
(Linux/Ubuntu) and configuring the servers for specified applications.
 Build application and database servers using AWS EC2 and create AMIs as well as
use RDS for Oracle DB.
 Configured AWS IAM roles and Security Groups in Public and Private Subnets
in VPC.
 Build expertise in Workflow for Amazon Web services including Security Groups
in public and private subnets in VPC, IAM , Security Policy, Docker, Kubernetes,
Cloud Formation, Chef, Jenkins, Apache, and Git.
 Migrated On-Premise VM's to AWS using AWS Direct Connect Service and
defined comprehensive strategy around security as part of AWS migration
strategy.
 Created AWS Route53 to route traffic between different regions.
 Migrated on-premises Linux environment to AWS/RHEL Linux environment and
used auto scaling feature. Involved in Remediation and patching of Unix/Linux
Servers.
 Enabled streams and created Lambda function on AWS to trigger changes made.
 Involved in writing Java API for AWS Lambda to manage some of AWS services.
 Implemented new ELK cluster for enterprise logging and maintained
ElasticSearch, Logstash and Kibana.
 Implemented continuous integration and deployment solutions to target
environments. Responsible for the Continuous Delivery pipeline given to all
application teams as they on-board to Jenkins as a part of migration.
 Created monitors, alarms, and notifications for EC2 hosts using CloudWatch.
 Experience in managing multi-tenant Cassandra clusters on a public cloud
environment - Amazon Web Services.
 Created Microservices using AWS Lambda and API Gateway using REST API.
 Used ANT and MAVEN as build tools on java projects for the development of
build artifacts on the source code.
 Deployed Puppet, Puppet Dashboard and Puppet DB for configuration
management to existing infrastructure.
 Integrated puppet open source with foreman and Mcollective to automate the
different feature of infrastructure as well as development.
 Implemented SonarQube across staples for code coverage, analysis, and for
gating the quality.
 Integrating Jenkins with GitLab using secure SSH authentication via private and
public key pair for source control polling in Jenkins and creating Cron jobs for
scheduling frequent automated builds in Jenkins.
 Manage AWS EC2 instances utilizing Auto Scaling, Elastic Load Balancing,
and Glacier for our QA and UAT environments as well as infrastructure servers for
GIT.
 Resolved update, merge, and password authentication issues in Bamboo and
JIRA.
 Implemented Continuous Delivery framework using GitLab, Jenkins, Terraform,
and Maven in a Linux environment.
 Utilized Amazon IAM to grant fine-grained access to AWS resources to users.
Also, manage roles and permissions of users to AWS accounts through IAM.
 Automated RabbitMQ cluster installation and configuration using Python/Bash.
 Administered Terraform Enterprise to provision multi-platform virtual machine
configurations across multiple platform environments Servers dedicated to
 building, and deploying as well as for development, testing, and production
systems.
 Configured Nginx as a reverse proxy and load balancer with fine performance
tuning to the Nginx variables for high performance.
 Designing and implementing container orchestration systems with Docker
Swarm and Kubernetes.
 Worked on Docker container snapshots, attaching to a running container,
removing images, managing directory structures, and managing containers.
 Experience working on several Docker components like Docker Engine, Hub,
Machine, Compose and Docker Registry.

Environments: Linux, Jenkins, Maven, ANT, Nginx, Docker, Kubernetes,

WebLogic Server, Apache Tomcat Server, Python, Shell, Chef, Terraform,
AWS, Grafana, Prometheus, Puppet, Subversion, GitHub, JIRA, ELK, Ansible,
Java, RDS, MongoDB, MySQL, VPC, S3, PostgreSQL .

Client: Pace Infotech, INDIA

Jun’15-Mar’17
Role: Linux Administrator
Responsibilities:
 Release Engineer for a team that involved different development teams and
multiple simultaneous software releases.
 Experience working with EMC SAN disk on Linux and HP-UX servers and
performed multipath using EMC power path.
 Configuration and administration of LVM and Veritas Logical Volume
Manager.
 Writing shell scripts to accomplish day-to-day system administration tasks.
 Troubleshooting Hardware and Operating system-related issues.
 Administer and configure various FS like JFS, ext2, ext3, and ext4.
 Setting limit parameters and handling the job schedulers. Experience in writing
technical documentation for regulatory and compliance procedures, policies, and
various other activities involved.
 Worked on HDS SAN like XP 9500s and NAS environment connected using Cisco
and Brocade Switches.
 Requesting, scanning partitioning, and mounting the SAN and NAS storage disks
during the server build.
 Knowledge of mounting the file systems using Autos and configuring the fstab file.
 Manage VMware Infrastructure/vSphere5 clusters on Production
Test/Development environments.
 Involved in configuring network bonding and troubleshooting networking
issues. Installation, Maintenance, Administration, and troubleshooting of red hat
AS 3.0 servers on various hardware platforms that include V480, 280R, 4500,
3500, Dell 6400, 2400, 1800, etc.
 Performed automated installations of the Operating System using Jumpstart for
Solaris and Kickstart for Linux.
 Extensively worked on hard disk mirroring and stripe with parity using RAID
controllers. Performed Kernel and memory upgrades on Linux servers in a
Virtual environment and managed the swap memory.
 Setting up the NIC bonding for the servers with critical information. Maintained
Firewall rules and configured the port numbers of the services and enabled
communication with applications.
 Performing installation, configuration, upgrades, Package administration and
support for Linux systems on client side using RPM and YUM.

Environment: EMC SAN, NAS, Linux, HP-UX Server, Cisco, Brocade

Switches, VMware, VERITAS Cluster, Bash, LAN/WAN.

Education:

● Bachelors from Acharya Nagarjuna University, Guntur, 2015.