Results-oriented director with a proven track record in enhancing process efficiencies and fostering client relationships. Specializes in cloud operations and DevSecOps, implementing solutions that effectively bridge technology and business objectives.
Overview
20
20
years of professional experience
Work History
Director of DevSecOps / IT Infra Cloud Operations
Public Broadcasting Service
Arlington
09.2024 - Current
Managing both DevSecOps & IT Infra Cloud Operations team to support and implement new technologies.
Oversee a large group of DevSecOps Engineers and IT Infra Cloud Operations Team to support DevSecOps and O&M activities, including preventive maintenance, corrective repairs, and troubleshooting.
Managed the O&M budget, evaluate Cost effective strategy and implement solutions to meet finance goals.
Introduced microservices Solutions and migrated services to MicroK8s Platform to make use of Kubernetes platform.
Introduces Agile Methodology based approach to deliver projects and improved overall performance of team.
Implemented a new Media Supply Chain Platform using AWS managed services ie Elastic Bean Stack and EKS container solutions to migrate all the workload to cloud.
Introduced Opensource based monitoring solutions to reduce the cost for IT Operations Support.
Enforced DevSecOps best practices and shifted the culture more towards Agile based approach.
Streamlined deployment workloads and enhanced IT asset security by implementing automation and security policies across laaS, PaaS, and SaaS Layers.
Reduced deployment times by 25% through the DevSecOps Software Factory Orchestration Model, ensuring faster and more secure developments.
Formulated and modernized DevSecOps activities by implementing CI/CD pipelines, incorporating security within SDLC across IaaS, PaaS, and application layers, improving deployment efficiency by {30%}.
Reviewed all the current vendor relationship and terminated unnecessary one.
Reduced the IT Operations budget by re negotiating with various vendors and saved around two million dollars per annum in expenses.
Introduced ServiceNow Platform to mitigate and improve Incident Response time and Change management processes to improve customer satisfactions.
Collaborated with various teams including Development, Digital Platform Engineering, and Information security management service (ISMS) teams to deliver a high level of safety and soundness.
Enforced security practices like Threat Analysis. Threat protection, Information security policies, Zero Trust, NIST, CIS, CJIS Compliant, controls and reporting of any events, forensic analysis, and breaches of compliance.
Ensured rigorous adherence to IT security regulations, implementing cloud security best practices and technologies like IAM, API Security, Encryption, API Gateway, API management, VPNs, and firewalls.
Utilized cloud native containerization and microservices architectures, leveraged managed services such as Azure Kubernetes, and serverless computing frameworks.
Sr. Manager – DevSecOps, SRE & IT Infra Cloud Operations
NEC Corporation of America
09.2019 - 05.2024
Spearheaded a diverse global team of Platform, DevSecOps, Security, SRE, IT engineers, and Architects to grow and support multi cloud infrastructure technologies across the product portfolio.
Managed DevSecOps engineers in Agile scrum teams with strategic collaboration and workflows that align for value stream propositions in automation.
Managed Azure/ AWS/ VMware IT infrastructure for various sites including on-premises/cloud-hosted solutions.
Led and supported go-to-market strategy and priorities of senior leadership leading and supporting RFI, RFP, Solution Architecture/Design, and other growth life-cycle activities.
Architect and developed Kubernetes platform solution for various biometrics (facial, iris, fingerprint).
Implemented process improvement to shape organizational culture, optimize procedures for higher efficiency and help company evolve and grow.
Enforced policies to enhance platform security in applications and at the infra-, code-, and product-level.
Implemented automation policies to streamline and reduce deployment workloads.
Implemented Secured Software Factory Orchestration Model for faster development, security, and deployments.
Provided training for internal and external team members to get familiar with Cloud, Kubernetes (Opensource, AKS, EKS and OpenShift platform).
Helped sales and project teams to propose new solutions and architecture guidance.
Manage the O&M budget, evaluate Cost effective strategy and implement solutions to meet finance goals.
Fostering positive relationships with clients and various stakeholders.
Provides guidance on development teams the importance of security to be incorporated as part of the SSDLC cycle.
Develops new CI/CD pipelines and solutions to automate deployment for IaaS, Platform as a Service (PaaS), and application layers.
Works with various clients gathering requirements and develops platform solutions based on their needs.
Partnered with vendors and suppliers to effectively manage and budget.
Formulated processes to reduce downtime and financial loss.
Established positive and effective communication among unit staff and organization leadership, reducing miscommunications and missed deadlines.
Collaborated cross-functionally to refine procedures, devise best practices, and enforce quality metrics.
Planned and resourced personnel and logistics for operations component exercises resulting in highly trained personnel ready to act quickly in critical roles.
Identified and resolved unauthorized, unsafe, or ineffective practices.
Spearheaded department training to enhance employee performance and boost employee productivity.
Introduced new methods, practices, and systems to reduce turnaround time.
Reviewed operations reports to understand numbers and trends.
Cyber Security / Infra-Technical Lead
GoPro, Inc
02.2019 - 08.2019
Managed IT infrastructure for various sites including remote (VMware, AWS, storage, Linux, and Windows systems).
Automated the provisioning of environments with puppet/ Ansible by deployment of those environments using containers with Vagrant, Docker Container, EC2, S3, Artifact S3 BUCKET, Cloud Trail, and Cloud Watch.
Implemented CI / CD tools: cloud formation, Terraform, Jenkins, SCM tools (GitLab, Git, Bitbucket).
Reviewed security vulnerability reports for applications and databases; analyzed and worked extensively with the development teams for the implementation of mitigating controls.
Implemented and integrated DevSecOps tools as part of CI/CD build process (Nessus, Splunk, Evident.Io).
Developed new data security policies (CIA) triad to protect organization data.
Integrated various applications with OKTA and AD.
Performed security assessments for the client-facing apps such as database management systems, middleware systems, web services (SOA).
Reviewed Architecture Design Documents (ADD) and Solution Overview Documents (SOD) to identify security anomalies in the system architecture and design and provided recommendations to address data security and privacy concerns.
Collaborated with CISO/InfoSec Team to Implement OpenSCAP, OSSEC, SPLUNK to track logs for auditing and compliance.
Migrated various applications from on-premises to AWS Cloud.
Partnered with various IT departments and senior business leadership to influence technology and business investments.
Managed IT and Security Risk Assessment Process (VMware, AWS Cloud and on-premises).
Implemented Nessus scanning agents on systems to capture vulnerability.
Developed strategy to address asset tracking and new system provisioning policies.
Mentored team to develop new standards and policies to manage systems.
Collaborated with vendors for migrating data center to new location.
Implemented incident, problem and change management process for IT support.
Organized system operating procedures to strengthen controls.
Installed system updates to address vulnerabilities and reduce security issues.
IT Infra-Operations Manager
Inova Health Systems
02.2015 - 01.2019
Spearhead and mentored a large group of IT staff includes DevOps engineers, Desktop Engineers, Business Analyst, IT Analyst, systems engineers, and cloud architects.
Reported directly to Chief Data Officer/Chief Technology Officer and work closely with directors of other divisions.
Managed the operations of multiple units and departments by identifying customer and operational needs; analyzing resources, costs, and forecasts, and incorporating them to support business.
Managed and served as an advisory for IT evaluation board member to stay with current industry trends, benchmarks, and best practices.
Implemented key management - privileged account management solutions in the cloud for key management, service account and secrets management, rotation including tools such as Secret Server (Thycotic), Vault (HashiCorp), and Cloud KMS.
Managed vendor relations to negotiate IT contracts and IT operations budget.
Implemented security controls and obtained SOC2 certification to satisfy security requirements and to work with collaborators and other organizations.
Implemented Infoblox Grid Manager solution to manage DNS forward and reverse lookup zones.
Collaborated with digital security team to develop an all-inclusive approach to corporate security and employ advanced technologies for counter surveillance.
Collaborated with various department managers and stakeholders to assess and recommend technologies that support cloud solutions platforms (IaaS, SaaS, PaaS).
Participated in senior management monthly planning and strategy meetings.
Provided strategic direction and insights related to on-premises and hybrid-cloud-based technologies.
Proactively recommended IT insights and guidance contributing to overall company strategy.
Established a risk reduction policy as it related to IT systems and cybersecurity (informally ISO27002).
Conducted security assessments for various applications: web applications infrastructure such as IBM WebSphere, Oracle E Business Suite, NGINX, Apache Tomcat.
Led as technical security and made recommendations on network security, operating system security, web security, MacAfee (DLP) data loss prevention, Symantec IPS, MFA authentication, SIEM, anti-malware, NMAP.
Introduced tools (Splunk, Nessus, AWS Guard Duty, Endpoint Security), methods, processes, and systems, improving clients' threat and intelligence collection and analysis.
Oversaw and executed the following initiatives: Active Directory (AD) Hardening, Forensic Analysis, Vulnerability Management, Data Classification/IP Protection, Risk Management (Security Exceptions and Compensation Controls), Auditing, and Compliance.
Developed strategies to secure SSO/MFA solutions such as Secure AUTH, RSA & OKTA, SAML 2.0, OAuth, OpenID.
Partnered with various IT departments and senior business leadership to influence technology and business investments.
Managed Enterprise Hybrid/Cloud data center management consisting of Windows desktop, RDS, Oracle Database Administration, UNIX/Linux, storage, and backup infrastructure.
Designed and implemented hybrid cloud and high-performance computing infrastructure that includes big data, AWS cloud, Hadoop Clusters, servers, Cisco networks, NetApp, workstations, backup, and data storage in a hybrid environment.
Managed IT budgeting, assets, purchasing, technology improvement and project cost tracking.
Managed full design, installation, implementation, support, training, administration, inventory, and management authority for LAN network services, application systems, PC desktop systems support, database administration, AS/400 system administration and JIRA help desk operations.
Reduced annual operating costs through overall IT infrastructure transformation including server virtualization, hybrid cloud computing and improved efficiencies by introducing automation process.
Developed business plan to run IaaS model using AWS cloud services for bioinformatics collaborators to get ROI.
Collaborated with various universities and organizations on data management and content delivery globally.
IT Infrastructure Manager
Pension Benefit Guaranty Corporation
01.2013 - 01.2014
Managed a group of IT Infrastructure platform team members who supported daily operations.
Reduced annual IT budget cost by migrating from physical to virtual after extensive evaluation of existing IT environment.
Enforced Policy guide with FISMA, NIST, CIS, CVSS, FIPS compliance and POA&Ms.
Fostered expense reduction culture savings on annual IT operating costs during tenure by challenging team to save annually through a registry, including cost reduction initiatives as part of a performance plan by each team member.
Represented member of SIEM security advisory group to address security-related issues and vulnerabilities identification.
Developed various reference architectures for infrastructure service delivery or servers, storage, server processing, and transaction processing.
Developed standards for enterprise applications/integration development and hosting across the corporation, including recommendations on development standards and approaches, security, automation, content management, configuration control, testing, rollout, and training.
Enforced ITIL standards, procedures, documentation to align with organization goals.
Developed knowledge base for security vulnerabilities related to UNIX, Linux, backup and storage environment.
Designed and setup data replication using Exagrid devices to copy the data from remote sites to HQ device and vaulted to tape for data recovery.
Implemented and executed migrating data from USPVM SAN to HUSVM SAN using host-based mirroring on Solaris and Red Hat Linux servers.
Managed and provided production support for a 24x7 environment across multiple data centers.
Provided onboarding and mentoring of newly hired employees, offering positive reinforcement.
Sr. Infrastructure System Engineer
Pension Benefit Guaranty Corporation
01.2006 - 01.2012
Managed server hardware installation, maintenance, problem resolution, and failure.
Deployed patch for various applications on different OS levels.
Designed and implemented Connect Secure SFTP file transfer with BlackRock.
Configured and administered web services/applications on Solaris, Linux, and Windows.
Coordinated with various application teams to set up the environment.
Performance tuning for the better performance of the applications.
Implemented and hardened OS level based on NIST and CIS compliant guidelines.
Implemented day-to-day tasks in Red Hat Linux, including upgrading RPMS, kernel tuning, HBA, LUNS configuration, multipathing and LVM file system creations.
Participated and migrated SAN Storage from Hitachi 9900 to USP_VM Storage.