Summary
Overview
Work History
Education
Skills
Accomplishments
Work Availability
Timeline
Generic

HANS N. NKFUNKOH

Ottawa,Ontario

Summary

AWS ENGINEER / DEVOPS ENGINEER Talented Linux Systems/DevOps Engineer with over eight years of substantial Linux and AWS cloud engineering experience in a highly distributed environment. Experienced in architecting/automating and optimizing mission critical deployments over large scale infrastructure. Proficient with Configuration management tools and developing CI/CD pipelines. Looking forward to excelling in a company environment with the opportunity to advance in IT technical skills while achieving company goals and objectives.

Overview

7
7
years of professional experience
3
3
years of post-secondary education

Work History

Technical Capabilities

  • Cloud Orchestration / Automation: AWS CloudFormation, AWS Lambda, AWS, , AWS SSM Parameter Store, Ansible, Docker, Jenkins, ECS, EKS, Terraform
  • Cloud Migration: DMS/SCT, Cloud Endure, AWS Migration Hub
  • Governance and Compliance: AWS Config Rules, AWS Organization, AWS Control Tower, AWS Trusted Advisor, AWS Well Architected Tool
  • Data Protection: AWS Certificate Manager, AWS KMS, Snapshot Lifecyle Manager
  • AWS Platform: AWS CloudFormation, AWS Lambda, AWS Systems Manager, S3, VPC, EC2, ELB, RDS, SNS, SQS, SES, Route53, CloudFront, Service Catalog, AWS Auto Scaling, Trusted Advisor, CloudWatch
  • AWS Security: AWS Security Hub, AWS Guard Duty, AWS Shield, AWS Firewall Manager, AWS Inspector

Cloud System Administrator

Best Theratronics
Ottawa, ON
11.2020 - Current
  • Developed terraform modules and CloudFormation templates to provision infrastructures in cloud
  • Leveraged AWS Control Tower to set up and govern a secure, multi-account AWS environment
  • Eliminated single point of failure in production architecture designs by deploying service instances (e.g., EC2 or RDS) across two or more isolated AZs based on actual resiliency and availability requirements
  • Life cycle configuration for data to live and cycle within buckets in accordance with how often it can be accessed thereby minimizing cost
  • Ensured data recoverability by implementing systems snapshot, AMIs, RDS Replicas, and application-level backup to S3
  • Optimized cost through reserved instances, selection and changing of EC2 instance types based on resource need, S3 storage classes and S3 lifecycle policies, leveraging Autoscaling, DLM
  • Used AWS budget to set up alert threshold for spending
  • Provided private connectivity between VPC and On-premise network using aws private link
  • Configured CloudWatch alarm rules for operational and performance metrics for AWS resources and applications
  • Leveraged different design principles for security in the cloud and implemented various AWS services to improve our security posture for Authentication, Authorization, Monitoring, Auditing, Encryption and Data path security
  • Implemented and managed Ansible Tower to scale automation and handle complex deployments
  • Automatically remediated Trusted Advisor findings using Amazon CloudWatch events and AWS Lambda
  • Responsible for building high-performing, resilient, and efficient infrastructure for applications, and performed reviews for architecture
  • Successfully leveraged Auto scaling groups to right-size EC2 pools to match the level of demand and helped to manage costs by eliminating excess capacity to maintain optimal level of resources
  • Applied security best practices in AWS including multi factor authentication, access key rotation, role-based permissions, enforced strong password policy, configured security groups and NACLs, S3 bucket policies and ACLs
  • Used EC2 LifeCycle Manager to create snapshots of EBS Volumes on scheduled intervals for backup and define a retention period as a cost saving measure
  • Developed CI / CD to standardize the infrastructure and automate the DevOps processes, to rapidly build, test, and release code while minimizing errors
  • Built CI/CD pipelines for applications Jenkins, maven, Docker, Nexus, SonarQube, and ansible for complete automation from commit to deployment
  • Created domains and sub-domains using Route53
  • Automated backup schedules and retention management
  • Speed up distribution of static and dynamic web content leveraging AWS cloudfront
  • Provisioned, released, and deployed software using git, Jenkins, terraform
  • Analyze new and changing SaaS and PaaS solutions, technology, and market trends, and determine their potential impact on the enterprise
  • Extended end users' single sign-on (SSO) access to applications and systems outside the firewal designing and implementing solutions to leverage a Kubernetes cluster, configuring hardware, peripherals, and services, managing settings and storage, deploying cloud-native applications, and monitoring and supporting a Kubernetes environment
  • Used Ansible for infrastructure management
  • Generated and managed SSH keys (public and private keys) to ensure ssh bidirectional or one-way access from one server to another
  • Deployed resources in aws using terraform
  • Defined best practices and strategies regarding application deployment, infrastructure maintenance.

AWS Engineer

FOX IT
Ottawa, ON
08.2020 - 11.2020
  • Built high-performing, resilient, and efficient infrastructure for customer applications, and performed reviews for architecture and infra builds
  • Developed CI / CD to standardize the infrastructure and automate the DevOps processes, allowing customers to rapidly build, test, and release code while minimizing errors
  • Managed provisioning of AWS infrastructures using CloudFormation and Terraform
  • Designed for high availability and business continuity using self-healing-based architectures, fail-over routing policies, multi-AZ deployment of EC2 instances, ELB health checks, Auto Scaling, and other models based on customer’s functional and non-functional requirements
  • Integrated
  • Jenkins deployments and sonarQube to provide a solution that can be used to report issues as they happen for our CI/CD pipeline build jobs
  • Developed and implemented DDoS-resilient architectures
  • Eliminated single point of failure in production architecture designs by deploying service instances (e.g., EC2 or RDS) across two or more isolated AZs based on our customer’s actual resiliency and availability requirements
  • Leveraged Auto scaling groups to right-size EC2 pools to match the level of demand and helped to manage costs by eliminating excess capacity to maintain optimal level of resources
  • Democratized advanced technologies in our architecture patterns including leveraging ECS, EKS, Lambda functions, parameter store, DynamoDB etc
  • Planned, architected, and built large-scale data processing systems; orchestrated the successful implementation of data movement, transformation, analytics, and reporting solutions with the AWS cloud
  • Managed users , group and gpo account using Active Directory
  • Ability to design, build, manage and operate cloud infrastructure and configuration environment with a focus on automation and infrastructure as code (Terraform, Yaml, Json).

AWS CLOUD ADMINISTRATOR

DHL Express Partners
Charlotte, NC
12.2017 - 12.2018
  • Manage Amazon Web Services
  • IAM, EC2, S3, RDS, SNS, Cloudwatch
  • Setup and managed EBS Volumes and EIP to EC2 Instances
  • Create S3 buckets and their managing policies
  • Designed AMI images of EC2 Instances by employing AWS CLI and GUI
  • Created and Managed User Accounts, profiles, security
  • Responsible for Troubleshoot various network problems with servers on difference platform
  • Infrastructure Development on AWS by employing services such as EC2, RDS, Cloud Front, Cloud Watch, VPC, etc
  • Worked with Management frameworks and Cloud Administration tools
  • Monitored the availability and measured the extent of performance
  • Established metrics and carefully monitored the health/utilization of AWS resources on a wide scale by making use of highly sophisticated Amazon CloudWatch

INFORMATION SECURITY ANALYST

BB&T
Raleigh, NC
11.2015 - 11.2017
  • Provision and de-provision access to Oracle databases,
  • Ensure compliance with existing IT security policies are met and develop new policies
  • Create, drop, alter, grant, and revoke accounts, roles, privileges, and security labels to users
  • Provisioning and de-provisioning database access through Services Now Request and Incidents for users and services, using tools like Identity Manager and SQL Develope

Education

Diploma - Cyber Security Analyst

Willis College of Business, Technology

Bachelor of Science - Public Administration / Political Science

University of Buea
South West Region
10.2004 - 12.2007

Skills

Engineering support

undefined

Accomplishments

  • Operating Systems: Rhel5/6/7, CentOS5/6/7, Ubuntu14/16/18, SuSe Linux10, Windows Servers 2008/2012/2016
  • Software: VMware ESXi, Vcenter, Nessus, BoKS FoxT, Splunk, GitLab, GitHub, Jenkins, Ansible, Nexus, SonarQube, Maven AWS Public
  • Networking: AWS (VPC, VGW, TGW, IGW, NGW), NACLs, Security Groups, Route tables and Routes, HTTP/HTTPS, SSH, TELNET, SFTP/FTP, SSL/TLS, TCP/IP
  • IAM Solutions: AWS Organization, AWS IAM, SAML SSO, ISAMs
  • Monitoring tools: Splunk, AWS CloudWatch, Grafana, Kibana, javamelody, Lens
  • Ticketing Tools: Remedy | JIRA | Service Now
  • Programming Languages: Terraform, Yaml, Bash, JSON, SQL, Python, Powershell

Work Availability

monday
tuesday
wednesday
thursday
friday
saturday
sunday
morning
afternoon
evening
swipe to browse

Timeline

Cloud System Administrator

Best Theratronics
11.2020 - Current

AWS Engineer

FOX IT
08.2020 - 11.2020

AWS CLOUD ADMINISTRATOR

DHL Express Partners
12.2017 - 12.2018

INFORMATION SECURITY ANALYST

BB&T
11.2015 - 11.2017

Bachelor of Science - Public Administration / Political Science

University of Buea
10.2004 - 12.2007

Technical Capabilities

Diploma - Cyber Security Analyst

Willis College of Business, Technology

Similar Profiles

CREATE PROFILE
HANS N. NKFUNKOH