Manager | Global Infrastructure
2020 - 2022Sequoia Capital- Built an in-house CLI tool for tagging AWS resources in Python 3 and made all 17 AWS accounts 100% tagging compliant.
- Evaluated the CloudHealth control tower by VMWare and integrated it to manage all AWS accounts and GCP projects. Configured policy-based governance for zombie resources, tagging governance, cost, security, container management, and operations.
- Migrated complete Infrastructure and PostgreSQL database from one AWS account to another in the same region using AWS DMS for PostgreSQL. Worked on Shared VPCs, Subnet, security groups, and NACL design.
- Set up containerized Kubernetes EKS infrastructure to deploy new apps for development, test, stage, and production environments with 100% IaC. Used Terraform with best cost and security practices, including Identity and access management (IAM).
- Shared cost and security best practices with teams in different GEOs in Sequoia and reduced the AWS bill by $23,000 per month in two months.
- Performed Well-architected Reviews (WAR) for all Sequoia AWS accounts and multiple portfolio companies. Configured security services, including Macie, Inspector, GuardDuty, configuration, IAM, WAF, SCP, Security Hub, and Cloudflare.
- Provided recommendations on best practices for cloud infrastructure architecture, cost optimization, and cloud security for multiple Asia-based portfolio companies, including Pentester Academy, Checkbox, Enterpret, and FlowAccount.
Technologies: PostgreSQL, Amazon RDS, Amazon Aurora, Cloud Architecture, AWS Cloud Architecture, Terraform, Google Cloud Platform (GCP), Cloud Security, Elasticsearch, Amazon Elastic Container Service (Amazon ECS), Amazon EKS, AWS ELB, Cloudflare, GitHub, Python 3, Boto 3, Linux, DevOps, Cloud, Python, Git, Docker, CentOS, CI/CD Pipelines, Amazon Web Services (AWS), AWS DevOps, Continuous Integration (CI), Jenkins, Amazon EC2, Containerization, HashiCorp, Team Leadership, Management, Infrastructure as Code (IaC), DevSecOps, AWS CodePipeline, Security, Amazon Virtual Private Cloud (VPC), Identity & Access Management (IAM), GitHub Actions, Kubernetes HPA, Kubernetes, Container Orchestration, Continuous Deployment, AWS Elastic File System, PyCharm, Relational Database Services (RDS), AWS CodeCommit, IT Project Management, Project Management, IT Projects, Agile DevOps, Networking, Architecture, Cloud Computing, Amazon API Gateway, CTO, Elastic Load Balancers, Amazon DynamoDB, Linux Server Administration, AWS Transit Gateway, Terragrunt, Service Meshes, Istio, DevOps Engineer, GitLab CI/CD, Monitoring, Automation, Lambda Functions, Network Security, Web Security, Microservices, Enterprise Application Architecture, Enterprise Architecture, Helm, Amazon Elastic Container Registry (Amazon ECR), Amazon Route 53, DNS, Content Delivery Networks (CDN), SSL, Azure, AWS ALB, Flask, System Architecture, APIs, Growth, Amazon Firewall, HTTP, Redis CacheDevOps Consultant
2020 - 2020epiFi- Built a fully automated federated role-based cross-account with IAM access through SAML for all employees, based on their designation, namely developer, lead, and DevOps. Used Terraform, GitHub, Jenkins, and Groovy.
- Created a DevOps dashboard from scratch in Python and Flask to manage the blue-green deployment flow and provide metadata around services.
- Worked on one-click deployment using Packer, Terraform, and Jenkins declarative pipeline for immutable infrastructure for non-production environments.
- Configured blue-green deployment for production and non-production environments using Jenkins and Groovy.
- Automated the deployment of the DevOps dashboard in ECS using Terraform, Jenkins, and Groovy.
Technologies: Python 3, Terraform, AWS IAM, Jenkins, AWS ELB, GitHub, Groovy, Packer, Amazon Cognito, Linux, DevOps, Cloud, Python, Git, CI/CD Pipelines, Docker, Amazon Web Services (AWS), AWS DevOps, Continuous Integration (CI), Amazon EC2, Management, Infrastructure as Code (IaC), DevSecOps, Security, Amazon Virtual Private Cloud (VPC), Identity & Access Management (IAM), Continuous Deployment, PyCharm, Agile DevOps, Architecture, Cloud Computing, Elastic Load Balancers, Web Applications, Webhook, DevOps Engineer, GitLab CI/CD, Automation, Microservices, Amazon Route 53, DNS, Continuous Delivery (CD), AWS ALB, System Architecture, APIs, Growth, Data Analytics, HTTP, Shell, Bash ScriptEngineering Manager | DevOps
2018 - 2020Housing.com- Worked as head of DevOps for Housing.com, PROPTIGER, and Makaan, reducing the AWS bill by 45% for all three platforms. Improved average uptime from 99.86% to 99.99% in a year and led AWS Aurora migration using AWS DMS with a rollback strategy.
- Managed Kubernetes migration, logging, monitoring, alerting, security, cost, CI/CD, automation, uptime of all platforms, and beta and production environment issues. I took infrastructure to the next level.
- Planned and scaled infrastructure for Housing.com to suddenly handle ten times more traffic through some marketing campaigns with minimal cost in one week. Implemented observability through ELK stack, Jaeger, and OpenTelemetry.
- Built centralized logging using ELK with ElastAlert and Search Guard. Set up ELK APM for Java-based APIs in beta and production environments. In this activity, we re-architected how the logging part was being managed earlier.
- Set up disaster recovery (DR) for Housing.com and implemented AWS WAF and Cloudflare WAF for different platforms.
- Migrated PROPTIGER and Makaan's 40 APIs from EC2 to the Kubernetes platform with Kubernetes Operations (Kops), Prometheus, and Grafana in AWS.
- Worked with key stakeholders in tech to get their requirements related to dependencies on DevOps, prioritize them, and implement them for smooth project completion by all the tech teams. PoC on HashiCorp Vault implementation for secret management.
- Resolved all security group issues reported by the trusted advisor in AWS for the three platforms. Troubleshot various production issues related to infrastructure and provided root cause analysis (RCA) and resolution.
Technologies: Kubernetes, Microservices Architecture, Cloud Security, Ansible, Apache Solr, OpenStack, Amazon CloudFront CDN, Cloudflare, ELK (Elastic Stack), Grafana, Prometheus, Kibana, Kubernetes Operations (Kops), OpenTelemetry, RabbitMQ, SaltStack, Vault, Linux, DevOps, Cloud, Python, Git, Docker, CI/CD Pipelines, Amazon Web Services (AWS), AWS DevOps, Continuous Integration (CI), Terraform, Jenkins, WordPress, Amazon EKS, Amazon EC2, GitHub, Jira Administration, Jira, Containerization, Bash, HashiCorp, Team Leadership, Management, Infrastructure as Code (IaC), DevSecOps, Security, Amazon Virtual Private Cloud (VPC), Identity & Access Management (IAM), Kubernetes HPA, Container Orchestration, JavaScript, Continuous Deployment, AWS Elastic File System, PyCharm, Relational Database Services (RDS), IT Project Management, Project Management, IT Projects, Agile DevOps, Networking, Architecture, Cloud Computing, DNS Debugging, CTO, Redis, Load Balancers, Elastic Load Balancers, Web Applications, Linux Server Administration, Webhook, Apache Kafka, SonarQube, DevOps Engineer, Unit Testing, MySQL, Amazon CloudWatch, Monitoring, Automation, Lambda Functions, Shell Scripting, Network Security, Web Security, System Administration, Microservices, Enterprise Application Architecture, Enterprise Architecture, Django, Helm, Amazon Elastic Container Registry (Amazon ECR), Node.js, Amazon Route 53, Docker Hub, DNS, Content Delivery Networks (CDN), SSL, Continuous Delivery (CD), AWS ALB, Flask, Scaling, Gunicorn, System Architecture, Scalability, Large Scale Distributed Systems, Growth, Data Analytics, Amazon Firewall, HTTP, Shell, Bash Script, Redis CacheSenior DevOps Engineer
2017 - 2018Delhivery Pvt- Designed, standardized, and implemented the VPC architecture, directory structure for IaC with Ansible and Terraform, and DevOps best practices for cost, security, and architecture across projects and organizations.
- Built a model project to be followed by other projects with a new design that was created. Managed the infrastructure and deployment automation for 15 microservices, including new and old services.
- Designed, standardized, and managed S3 bucket and CloudFront infrastructure automation using Terraform and deployment using Jenkins for 30 front-end dashboards. Deployed using Jenkins for almost 100 Lambda functions using serverless.
- Reduced cost of AWS by 30% using a combination of reserved instances (RIs), spot servers using Spot.io, cleanup of unused resources, and right-sizing of EC2, ElastiCache, and Relational Database Service (RDS).
- Defined policies for onboarding new joiners and access management for DevOps tools, including AWS, CloudAMQP, Cloud MongoDB, New Relic, Sentry, BitBucket, and Jenkins.
- Designed and managed the Jira integration for all projects and handled URL monitoring, including SLA and response time, using Zabbix for internal and external URLs.
- Troubleshoot various production issues related to Lambda and EC2 and provided RCA and resolution to those.
Technologies: Amazon CloudFront CDN, Amazon EC2, Amazon Elastic MapReduce (EMR), AWS ELB, AWS IAM, AWS Lambda, Lambda Architecture, Amazon RDS, Cloud Architecture, Jira Administration, PostgreSQL, RabbitMQ, Amazon S3 (AWS S3), Serverless, Terraform, Site Reliability Engineering (SRE), Linux, DevOps, Cloud, Java, Python, Git, Docker, CentOS, CI/CD Pipelines, Amazon Web Services (AWS), AWS DevOps, Jenkins, GitHub, Jira, Bash, HashiCorp, Team Leadership, Management, Infrastructure as Code (IaC), DevSecOps, Security, Amazon Virtual Private Cloud (VPC), Identity & Access Management (IAM), Serverless Architecture, Continuous Deployment, PyCharm, Relational Database Services (RDS), IT Project Management, Project Management, IT Projects, Agile DevOps, Networking, Architecture, Cloud Computing, DNS Debugging, Amazon API Gateway, CTO, Redis, Load Balancers, Elastic Load Balancers, Amazon DynamoDB, Linux Server Administration, Bitbucket, SonarQube, DevOps Engineer, MySQL, Amazon CloudWatch, Monitoring, Automation, Lambda Functions, Shell Scripting, Network Security, Web Security, System Administration, Microservices, Django, Amazon Route 53, DNS, Content Delivery Networks (CDN), API Gateways, SSL, Continuous Delivery (CD), AWS ALB, Flask, Scaling, Gunicorn, System Architecture, Scalability, Large Scale Distributed Systems, Growth, Amazon Firewall, HTTP, Shell, Bash Script, Redis CacheDevOps Engineer
2015 - 20171mg- Migrated the production infrastructure from a Java-based monolith application to a microservices-based architecture. Set up staging, QA, and development environments for 1mg.com and 1mglabs.com and managed them perfectly.
- Redesigned the infrastructure orchestration using Ansible to deploy over 50 microservices on different environments and set up load balancing using ELB and Autoscaling in just three days.
- Monitored the complete app infrastructure using CloudWatch and set up notifications using SNS. I was the single point of contact for day-to-day tasks regarding automation, Nginx web server, SSL, staging, QA, and development environment issues.
- Wrote many Shell and Python scripts to automate our day-to-day tasks using AWS SDK Boto3. Used Python's library, Troposphere, to automatically build our CloudFormation scripts for different environments.
Technologies: Python 3, Python 2, Boto 3, PostgreSQL, Microservices Architecture, Linux, Ansible, Amazon EC2, Database Architecture, Site Reliability Engineering (SRE), AWS IAM, NGINX, Amazon S3 (AWS S3), DevOps, Cloud, Java, Python, Git, CentOS, Amazon Web Services (AWS), AWS DevOps, Jenkins, GitHub, Bash, Infrastructure as Code (IaC), Amazon Virtual Private Cloud (VPC), PyCharm, Relational Database Services (RDS), Agile DevOps, Architecture, Cloud Computing, DNS Debugging, Elastic Load Balancers, Web Applications, Linux Server Administration, DevOps Engineer, Unit Testing, Amazon CloudWatch, Monitoring, Telemetry, Chef, Automation, Shell Scripting, System Administration, Microservices, Django, Amazon Route 53, DNS, Content Delivery Networks (CDN), SSL, Continuous Delivery (CD), AWS ALB, Flask, Scaling, Gunicorn, System Architecture, Scalability, Growth, Amazon Firewall, HTTP, Shell, Bash Script, Redis Cache