Summary
Overview
Work History
Education
Skills
Websites
Accomplishments
Languages
Certification
Work Preference
Work Availability
Software
Timeline
SoftwareEngineer

Simon Uzodinma

Devops Engineer
Vaughan,Canada

Summary

I am a skilled DevOps Engineer with over four years of solid hands-on experience in automating the deployment of mission-critical applications over varying infrastructures and managing IaaS, PaaS, SaaS, and On-Prem. proficient in Source Code Management, Configuration Management using Ansible, Orchestration Management, Infrastructure Management, and CI/CD. Detail-oriented, and possess excellent communication, problem-solving, and decision-making skills. An avid learner who is always discovering and eager to explore new technologies and tools.

Overview

8
8
years of professional experience
1
1
Certification

Work History

Cloud DevOps Engineer

PC Financial
10.2021 - Current
  • Migrated servers, databases, and workloads from on-premises to AWS using services like AWS Server Migration Service, AWS Application Migration Service, and AWS Data Migration Service (DMS).
  • Established and maintained CI/CD pipelines using Jenkins for infrastructure deployment and Java projects, integrating tools such as Terraform, Slack, Checkov ,OWASP scan, Git/GitHub, Maven, SonarQube, Nexus, Ansible, Docker, and Kubernetes for streamlined development, deployment, container orchestration, and security compliance.
  • Migrated servers, databases, and workloads from on-premises to AWS using services like AWS Server Migration Service, AWS Application Migration Service, and AWS Data Migration Service (DMS).
  • Developed and enforced data encryption standards for both data at rest and in transit across cloud environments, utilizing AES encryption and TLS protocols. Established comprehensive access management policies, including multi-factor authentication and least privilege access, to safeguard sensitive information against unauthorized access
  • Led the design and deployment of secure cloud infrastructure, focusing on network segmentation, firewall implementation, and secure API integration. Conducted regular vulnerability assessments and applied timely patches to mitigate risks. Automated configuration management to ensure adherence to security best practices, reducing the potential for misconfiguration-related vulnerabilities.
  • Employed a robust technology stack including New Relic, Prometheus, Grafana, Elastic Suite (Elasticsearch, Kibana, Beats, & Logstash) to proactively identify and resolve operational issues
  • Actively contributed to the development and maintenance of automation tools, including Ansible, Jenkins, and Terraform, to streamline infrastructure management processes
  • Configured continuous vulnerability management program, incorporating automated scanning tools and manual testing techniques to identify and remediate security flaws. Ensured compliance with international data protection regulations (e.g., GDPR, HIPAA ,SOC) by developing and maintaining disaster recovery plans, executing regular data backups, and integrating legal considerations into cloud services deployment.
  • Set up secure and scalable cloud-based Kubernetes clusters with Amazon EKS, Kops, and Kubeadm for automating deployment, scaling, and management of containerized microservices. Utilized Kubernetes objects like Deployments, ReplicaSets, DaemonSets, ConfigMaps, Pods, Secrets, Volumes, and Namespaces
  • Skilled in Bash, Python and YAML scripting to automate tasks and processes for web applications, such as automating installation and configuration on Linux-based systems. Additionally, used scripting for creating and maintaining database tables and scheduling background tasks.

Cloud Security Engineer

Intact Insurance
01.2019 - 10.2021
  • Designed and implementedanautomated system to detect and stop malicious exposure of corporate data on cloud services (S3 Bucket ACL Policies, Security Group lockdown using Dome9, AWS Security Hub, and leveraging AWS Guard Duty and VPC Flow logs).
  • Applied a password reset policy that prevents users from using a password they may have used in their last 24hrs password resets.
  • Analyzed network security, gathered component-level metrics, and conducted security audits on the network.
  • Managed network infrastructure and infrastructure security for a global, distributed, cloud-based data center, set up and maintained systems to minimize risk for data loss and threats, and performed network monitoring and vulnerability assessments.
  • Became a key contributor to multi-account/inter-region multi-cloud solutions with focus on strong governance compliance and security best practices including the design, translation, and implementation of security controls mapped to industry standards and regulatory frameworks (e.g., NIST 800-53, AWS Foundational, CIS, PCI DSS, SOC2, HiTrust, etc.).
  • Established process to remediate vulnerabilities, deployed defense in depth strategies, and educated clients on security best practices.
  • Worked on several assessment, development, implementation, optimization, and documentation of a comprehensive and broad set of security technologies and processes (secure software development, application security, OWASP), data protection, cryptography, key management, identity, and access management (IAM, OAuth, OpenID, Okta, etc.), network security (NGFW, WAF, IDPS) within SaaS, IaaS, PaaS and other cloud environments for the customer.
  • Built expertise and eye towards finding suspicious activities (threat modeling, identification of layered security and compliance controls (directive, detective, preventative, and corrective) and their applicability to a variety of cloud services guided by the customer's business strategy.
  • Developed and implemented a security framework to enable secure architectural components and architectures, including the development and integration of security controls such as network segmentation, DMZs, traffic monitoring, monitoring/filtering, logging, patch management, intrusion detection, vulnerability patching, and so forth.
  • Managed enterprise scale solutions that leverage the following AWS Services: EC2, S3, EBS, SSM, Dynamo DB, EMR, CloudFormation, RDS, CloudFront, VPC, Route53, IAM, CloudWatch, Elastic Beanstalk, Lambda, etc.
  • Built VPCs from scratch, creating private and public sub-nets, creating security groups and network access lists, configuring internet gateways, OpenVPN, creating AMI, understanding of user access management/role based access/multi factor authentication and API access, configuration of auto scaling and elastic load balancer for scaling services if a configured threshold has been exceeded, configuration of SNS to send notifications and Cloud Watch to collect logs and metrics, spinning both Windows and Linux EC2 instances as needed.

Site Reliability Engineer

Telus Mobility
04.2016 - 10.2019
  • Utilized Terraform for managing infrastructure through terminal sessions and executed scripts in creating alarms and notifications for EC2 instances using AWS Cloud Watch
  • Automated SOC 2 compliance processes using Vanta to streamlineevidence collection and continuous monitoring, ensuring adherenceto security controls and standards, significantly reducing manual effort which enhanced audit readiness
  • Help in identifying and assess operational and security risks by logging and monitoring account activity across our AWS infrastructure by detecting unusual activity that may indicate security vulnerability or breach using CloudTrail
  • Reduced downtime for critical applications by proactively addressing potential issues through regular maintenance and updates.
  • Performed security monitoring, security event triage, and incident response; coordinate with other team members and management to document and report incidents
  • Collaborated with development teams to identify and resolve system bottlenecks, improving system performance and scalability through optimization of code and infrastructure
  • Install, configure and manage LAM ( Linux/Apache/MySql/PHP) Stacks
  • Managing system routine backups, scheduling jobs like disabling and enabling cron jobs, system logging, and network logging servers.
  • Enabled access logging for Cloud Trail S3 bucket so that you can track access requests and identify potentially unauthorized or unwarranted access attempts

Education

Bachelor of Science in Computer Science - Computer Science

Landmark Metropolitan University

National Diploma in Business Administration - Software Systems Development

Institute of Management And Technology

Skills

CI/CD & Automation: GitHub Actions, GitOps and Jenkins, Maven, SonarQube, Nexus, Ansible, Terraform, CloudFormation

Version Control: Git/GitHub, Gitlab

Containerization & Orchestration: Docker, Docker Swarm, Kubernetes, Amazon EKS, Azure AKS, Helm

Repositories: Docker Hub, Amazon ECR, Azure Container Registry

Monitoring & Alerting: Prometheus, Grafana, CloudWatch, Graphite, Elasticsearch, Logstash, Filebeat, Kibana, Telegraf

Security & Compliance: Snyk, Amazon GuardDuty, AWS Security Hub, AWS CloudTrail

Cloud Services & Migration: AWS, AWS Server Migration Service, AWS Application Migration services, AWS Data Migration Service (DMS), AWS Instance Scheduler, AWS Lambda, Redis

Scripting Languages: Bash shell, Groovy, YAML, Python

Databases: Amazon RDS, Azure SQL, MySQL, Postgres, ELK, DynamoDB, MongoDB

Streaming Data & Analytics: Apache Kafka, Debezium, Pentaho Mondrian

Frameworks & Languages: Python, Java, Spring WebFlux,

Collaboration & Documentation: Slack, Jira, ServiceNow, Confluence

Threat Modeling and Risk Assessment

Incident Response and Monitoring

Agile and DevOps Methodologies

Communication and Collaboration

  • Disaster Recovery Planning
  • Version Control Systems
  • Atlassian JIRA
  • Compliance with Security Requirements
  • Configuration and Management
  • UNIX Shell Scripting
  • Process Integration
  • Image Building
  • Solutions Deployment
  • Building Automation Systems
  • Teradata Database
  • Computer-Aided Drafting (CAD)
  • Windows Servers
  • Business Continuity
  • Architecture Improvements
  • Maintenance Organization and Development
  • Training Junior Team Members
  • Web Traffic
  • System Design and Implementation
  • Solution Implementation
  • Server Improvements
  • Data Center Environments
  • Operational Support
  • Storage Virtualization
  • Hosting Functions
  • Continuous Deployment
  • Amazon DynamoDB
  • Technology Support
  • Cloud Computing
  • Video Streaming
  • Image Optimization
  • Application Deployment
  • SNMP Monitoring
  • Application and Server Monitoring
  • Configuring Interfaces
  • Local Area Network (LAN)
  • Network Load Balancing
  • Systems Implementations
  • Technology Best Practices
  • Network Intelligence
  • Configure Servers
  • Backup Procedures
  • Architecture governance
  • Backup Recovery
  • Multi-Factor Authentication
  • Application Acceleration
  • Technical Support and Assistance
  • Firewall Functionality
  • CI/CD & Automation: GitHub Actions, GitOps and Jenkins, Maven, SonarQube, Nexus, Ansible, Terraform, CloudFormation
  • System Architecture Design
  • IP Services
  • Application Administration
  • DevOps Processes
  • Private Cloud Security
  • JBoss Application Server
  • Agile Work Processes
  • Engineering Team Support
  • Storage Network Design
  • Code Development
  • Green Strategy
  • Computer Engineering
  • Application Stacks
  • Computer Architecture
  • Troubleshooting
  • Tomcat
  • Database Consolidation
  • Active Listening and Communication

Accomplishments

  • Automated deployment through Infrastructure as Code, accelerating provisioning speed by 30% and enhancing system availability by 10%.
  • Revamped CI/CD pipelines, reducing deployment failures by 20%, and accelerating release cycles by 25%, resulting in a 5% increase in overall system reliability.
  • Improved monitoring and incident response, achieving 40% faster detection, 10% quicker resolution, and 5% more uptime.
  • Migrated critical applications to the cloud, optimizing costs by 15%, and implemented auto-scaling for a 5% increase in system efficiency.

Languages

English
Native or Bilingual

Certification

AWS Certified Cloud Practitioner

AWS Certified Solutions Architect

AWS Certified DevOps Engineer

Work Preference

Work Type

Full TimeContract Work

Location Preference

RemoteOn-SiteHybrid

Important To Me

Company CultureCareer advancementTeam Building / Company RetreatsWork from home optionPaid time offPaid sick leavePersonal development programs

Work Availability

monday
tuesday
wednesday
thursday
friday
saturday
sunday
morning
afternoon
evening
swipe to browse

Software

Software Development

Timeline

Cloud DevOps Engineer

PC Financial
10.2021 - Current

Cloud Security Engineer

Intact Insurance
01.2019 - 10.2021

Site Reliability Engineer

Telus Mobility
04.2016 - 10.2019

Bachelor of Science in Computer Science - Computer Science

Landmark Metropolitan University

National Diploma in Business Administration - Software Systems Development

Institute of Management And Technology
Simon UzodinmaDevops Engineer