Ashrujit Pal, Developer in Kolkata, West Bengal, India
Ashrujit is available for hire
Hire Ashrujit

Ashrujit Pal

Verified Expert  in Engineering

Cloud Architect and AWS Developer

Kolkata, West Bengal, India
Toptal Member Since
March 7, 2023

Ashrujit is a multi-cloud architect (AWS, GCP), DevOps engineer, Kubernetes administrator, and developer with over a decade and a half of experience building enterprise-grade solutions. Specialized in AWS, Kubernetes, Docker, CI/CD tools, and Terraform, among others, Ashrujit has set up many infrastructures from scratch for startups and enterprise-grade companies. He has migrated many large-scale on-premise applications into the cloud in the domain of banking, maritime logistics, and insurance.


Indian MNC
NGINX, Kong, APIs, Docker, Microservices, Terraform, Jenkins, Packer...
IBM Integration Bus (IIB), Mule ESB, Amazon Web Services (AWS), WebSphere MQ...
Tata Consultancy Services
WebSphere Message Broker, WebSphere MQ, Java, SSL, SSL Certificates




Preferred Environment

Serverless Framework,, Google Cloud Platform (GCP), Visual Studio Code (VS Code), Kubernetes, MacOS, Cloud Services, Amazon Web Services (AWS), Spring Boot, Dynatrace

The most amazing...

...artifact I've built is a process for creating custom AMI, provisioning ASG, deploying the code, and refreshing it with new EC2 when the golden AMI is released.

Work Experience

Principal Consultant

2022 - PRESENT
Indian MNC
  • Architected solutions based on the hybrid cloud architecture between AWS public cloud and client on-premise systems. Assessed, designed, executed, and consulted on cloud migration and application modernization.
  • Wrote the HLD for the overall migration to AWS, collaborating with the client's cloud architects on the proposed network architecture, high availability, disaster recovery solution, Amazon EKS provisioning, and ASG creation.
  • Created custom AMI by automating the manual steps followed to configure the VMs for on-premises, including server provisioning and code deployment.
  • Refractured the back-end microservice codebase to make it EKS-ready. Understanding the VM configuration and capacity with the help of AWS Application Discovery Service and AWS Migration Hub, I exposed the workload (EC2 and EKS) using ALB and NLB.
  • Architected various solutions for security and compliance, like firewall rules using NACL and security groups and creating routable and non-routable private and public subnets under VPC, WAF for ALB, and network policy inside Amazon EKS.
  • Created POCs for migration-related requirements like Amazon MSK Serverless and NGINX Ingress solutions. I also worked on monitoring solutions.
  • Created an AWS FIS stress test using Chaos Mesh for the pods deployed in Amazon EKS.
Technologies: NGINX, Kong, APIs, Docker, Microservices, Terraform, Jenkins, Packer, Amazon EKS, Kubernetes, Serverless Framework,, AWS CLI, Git, Visual Studio Code (VS Code), Amazon Web Services (AWS), Cloud Architecture, Cloud Infrastructure, Cloud Services, Cloud Migration, Hybrid Cloud Infrastructure, AWS Well-Architected Framework, Helm, Ingress, Logging, Troubleshooting, AWS HA, AWS ALB, Python, Boto 3, DevOps, CI/CD Pipelines, AWS IAM, Infrastructure as Code (IaC), DevSecOps, AWS DevOps, Amazon RDS, Deployment, Integration Testing, Scripting, Stress Testing, System Integration Testing (SIT), Automation, Bash Script, Integration, Jira, REST APIs, Virtual Machines, Networking, Amazon Elastic Container Service (Amazon ECS), Cost Control, Amazon DynamoDB, AWS CloudFormation, Security Groups, NaCl, AWS NLB, GitHub, SSL, Cloud, Amazon Simple Queue Service (SQS), Consulting, Rancher, Karpenter, Amazon API, GitHub Actions, Let's Encrypt, SSL Certificates, Load Balancers, Amazon EC2 API, Amazon API Gateway, Amazon EC2, Continuous Delivery (CD), Continuous Integration (CI)

Technology Architect

2014 - 2021
  • Assessed, designed, and executed application modernization and infrastructure transformation using the cloud.
  • Architected solutions based on the hybrid cloud architecture between AWS public cloud, AWS Outposts, and client on-premise systems.
  • Provisioned the resources like Amazon EC2, RDS, PostgreSQL, Lambda, NACL, security groups, etc.
  • Designed and implemented message transformation into HTTP, SOAP-based messages using the WIFE parser. Deployed the solution as a Spring Boot application inside Amazon EKS.
  • Refactored the Mule components into microservices, deployed those as Spring Boot applications inside AWS EKS, and exposed those using Kong Ingress Controller.
  • Derived various integration data models based on BIAN and IBM Information FrameWork (IFW).
Technologies: IBM Integration Bus (IIB), Mule ESB, Amazon Web Services (AWS), WebSphere MQ, Google Cloud SDK, Google Vision API, WebSphere, BPMN, Spring Boot, Microservices, REST, Spring Tool Suite (STS), Java,, AWS CLI, Git, Apache Maven, Cloud Architecture, Cloud Infrastructure, Cloud Services, Cloud Migration, Hybrid Cloud Infrastructure, Ingress, Kubernetes, Troubleshooting, Logging, Kong, APIs, Docker, Jenkins, Amazon EKS, AWS IAM, Amazon RDS, Deployment, API Testing, Automation, Jira, REST APIs, Virtual Machines, Cost Control, Amazon DynamoDB, Terraform, Security Groups, NaCl, GitHub, SSL, Cloud, Amazon Simple Queue Service (SQS), Amazon API, SSL Certificates, Load Balancers, Amazon API Gateway, Amazon EC2, Continuous Delivery (CD), Continuous Integration (CI)

Associate Information Technology Consultant

2007 - 2014
Tata Consultancy Services
  • Integrated cloud-based systems like SFDC and legacy mainframe applications developed in Unisure and HPS via WebSphere MQ and WebSphere Message Broker.
  • Implemented SOA as part of the client's digital initiative with integrations between Adobe CQ5, Salesforce, and third-party vendor applications like CBIS and ARC using WebSphere MQ and WebSphere Message Broker.
  • Troubleshot integration-related issues like certificate exchange and firewall network trafficking with different third parties. Implemented services and exposed them in the ESB layer.
  • Maintained the existing application code, conducting deployments in production and nonproduction servers.
  • Coordinated the release deployments with the process owner for issue resolution, fixed defects, and performed unit testing.
Technologies: WebSphere Message Broker, WebSphere MQ, Java, SSL, SSL Certificates

Senior Developer

2006 - 2007
Veloz Software Solutions
  • Analyzed and implemented the requirements within the project after getting them from the onsite coordinator.
  • Wrote adaptors to fetch data from queues, topics, and subscribers of JCAPS.
  • Performed dashboard feature enhancements after studying the JCAPS internal processes.
Technologies: Java, Apache Struts, Spring, Hibernate

Module Lead

2005 - 2006
  • Learned the entire process and preparation of the module.
  • Created reports for different custom requirements.
  • Customized existing modules to match different subsidiary requirements.
Technologies: Java, SQL, Databases

eCommerce Workload Migration into AWS

Migrated the entire eCommerce application into AWS cloud for the biggest maritime logistics company in France. They had 12 VMs running on-premise, hosting five monolith carrier applications and a Kubernetes cluster hosting 60 microservices. The entire infrastructure is now moved into the cloud without any code refactoring.

• Automated the entire server creation process in AWS, including custom AMI creation with Hashicorp Packer and PowerShell, ASG creation, workload exposition using Terraform, etc.
• Deployed the codebase into the ASG using Jenkins and AWSCodeDeploy deployment agent.
• Refreshed the ASG EC2 instances as and when the client released a new custom AMI.
• Created AWS EKS and its various components (like CNI, Fluent Bit, the Dynatrace Operator, Calico, etc.) using Terraform and Helm.
• Installed the NGINX Ingress Controller.
• Exposed the Kubernetes services via ALB outside the AWS EKS so that the front-end application and other business partners can consume the services.
• Reconfigured the existing Jenkins pipelines to AWS EKS for code deployment.

MT101 STP Solution

I designed and implemented the entire solution for SWIFT message processing using the WIFE parser, converting messages from one MT type to another and then posting them to T24 or SWIFT FIN system.

• Created the Spring Boot-based microservice service and deployed it in AWS EKS.
• Created the AWS EKS in AWS Outposts infrastructure.
• Created a VPC interface and gateway endpoints to connect to the various components from AWS EKS.

Kong Installation and POC

To support the customer cloud journey, Kong is used as a multi-tenant cloud agnostics API management tool that can run in AWS, Azure, and the local data center as a containerized ingress controller. I did a full-blown POC on the installation and various implementations, such as throttling, rate monitoring, and SSL connectivity, before it was widely adopted as an ingress controller solution for the customer.

Monitoring Solution Installation for Apache Kafka

Installed Apache Kafka in AWS EKS to fulfill project requirements and Prometheus agent to scrape data from Apache Kafka endpoints configured for Prometheus.

• Installed AWS-managed Prometheus and managed Grafana.
• Configured Amazon Managed Grafana for federated user access and dashboard creation.
• Created Terraform scripts and deployed them using a Jenkins pipeline for the production and non-production environments.

Custom Developer Portal for APIs

Hosted an in-house built custom developer portal in Google Cloud Platform (GCP) for the largest bank in the United Arab Emirates to help developers test the bank's APIs by interacting with their sandbox environments. I used Google Cloud Build, GCR, and Google Kubernetes Engine (GKE) to build and deploy the codebase and VPNs to connect between a GCP public region and on-premise hosted sandbox servers.

Hosted a Dining-related Web Application in AWS

The client is a North Virginia-based reputed meals and dining company that hosted their two critical applications into AWS.

• Created ECS Fargate clusters using CloudFormation and Azure DevOps pipelines.
• Deployed the codebase into ECS clusters using the Azure DevOps pipeline.
• Configured Dynatrace OneAgent to send the metrics to Dynatrace Managed clusters installed into a different VPC and a different account.
• Configured Splunk to send the application logs deployed in ECS.
• Configured Elasticsearch to share the logs and metrics to Elastic using Filebeat and Metricbeat.


Java, SQL, Python, Bash Script


AWS HA, Serverless Framework, Apache Struts, Spring, Hibernate, Spring Boot


REST APIs, Amazon API, Google Vision API, Amazon EC2 API


AWS CLI, Terraform, Jenkins, Amazon EKS, NGINX, Amazon CloudWatch, Amazon Virtual Private Cloud (VPC), Boto 3, AWS IAM, Amazon Simple Queue Service (SQS), Spring Tool Suite (STS), Git, Apache Maven, Helm, Logging, Kong, Packer, Amazon CloudFront CDN, Dynatrace, AWS CodeDeploy, AWS Key Management Service (KMS), Jira, Amazon Elastic Container Service (Amazon ECS), AWS CloudFormation, Grafana, Google Kubernetes Engine (GKE), GitHub,, WebSphere Message Broker, MongoDB Atlas, Let's Encrypt, AWS Fargate, Splunk, AWS Glue


Microservices, REST, DevOps, Automation, Continuous Delivery (CD), Continuous Integration (CI), BPMN, DevSecOps, Stress Testing, Azure DevOps


Google Cloud Platform (GCP), Amazon Web Services (AWS), Kubernetes, Docker, WebSphere, AWS Lambda, Amazon EC2, MacOS, Visual Studio Code (VS Code), Mule ESB, WebSphere MQ, Google Cloud SDK, AWS NLB, AWS ALB, Apache Kafka, Rancher


Amazon S3 (AWS S3), Amazon DynamoDB, Databases, PostgreSQL, Elasticsearch, Amazon Aurora


Cloud Architecture, Cloud Infrastructure, Cloud Services, Cloud Migration, Hybrid Cloud Infrastructure, AWS Well-Architected Framework, Ingress, APIs, IBM Integration Bus (IIB), NaCl, Security Groups, Web Application Firewall (WAF), AWS Cloud Architecture, AWS Certified Solution Architect, Amazon RDS, Deployment, Integration Testing, API Testing, Integration, Virtual Machines, Cost Control, Google Container Engine, Cloud, Karpenter, GitHub Actions, Amazon API Gateway, Orchestration, Scheduling, Windows Network Load Balancing (NLB), Serverless, Troubleshooting, CI/CD Pipelines, Infrastructure as Code (IaC), AWS DevOps, System Integration Testing (SIT), Networking, Prometheus, SSL, Consulting, Load Balancers, SSL Certificates, T24, Scripting, ECS

2002 - 2005

Master's Degree in Computer Science

Kalyani Government Engineering College - Kalyani, West Bengal, India


Google Cloud Certified Professional Cloud Architect

Google Cloud


Well-Architected Proficient

Amazon Web Services Training and Certification

AUGUST 2021 - AUGUST 2024

Certified Kubernetes Administrator

The Linux Foundation

MARCH 2021 - MARCH 2024

AWS Certified Solutions Architect Professional

Amazon Web Services Training and Certification

JULY 2020 - JULY 2023

AWS Certified Solutions Architect – Associate

Amazon Web Services Training and Certification

Collaboration That Works

How to Work with Toptal

Toptal matches you directly with global industry experts from our network in hours—not weeks or months.


Share your needs

Discuss your requirements and refine your scope in a call with a Toptal domain expert.

Choose your talent

Get a short list of expertly matched talent within 24 hours to review, interview, and choose from.

Start your risk-free talent trial

Work with your chosen talent on a trial basis for up to two weeks. Pay only if you decide to hire them.

Top talent is in high demand.

Start hiring