Mukund Pandey
Cloud Architect
London
Summary
Seasoned Cloud Solution Architect with over 15 years of hands-on experience in designing, implementing, and optimizing cloud solutions across various platforms, including Azure, AWS, and Google Cloud. Pro cient in aligning cloud strategies with business objectives, delivering cost-effective solutions, and optimizing infrastructure for scalability, performance, and security. Demonstrated expertise in architecting solutions that span multiple cloud providers, enabling clients to leverage the best of each platform while maintaining interoperability. Proven track record in crafting robust, scalable, and fault-tolerant cloud architectures, encompassing serverless, microservices, containers, and traditional virtualized environments. Expertise in implementing comprehensive security measures and compliance standards, ensuring data protection and regulatory adherence in cloud deployments. Skilled in implementing CI/CD pipelines, infrastructure as code (IaC), and automation frameworks to enhance agility, reduce downtime, and streamline deployments. Strong problem-solving skills with a history of diagnosing complex issues, optimizing system performance, and implementing solutions to enhance overall reliability. Committed to staying up-to-date with emerging cloud technologies and industry trends, fostering a proactive approach to innovation and knowledge sharing within the team. Pro cient in cost analysis and optimization strategies, helping organizations achieve signi cant savings while maintaining high- performance cloud infrastructures. Adept at leading cross-functional teams, collaborating with stakeholders, and driving projects from conception to successful deployment. Known for fostering a culture of innovation and continuous improvement. I hold several certi cations: TOGAF 9 Certi ed Enterprise Architect, Azure Solution Architect, Data Architect, and Certi ed Kubernetes Administrator (CKA). As a Cloud Solution Architect, I have equipped myself with a diverse skill set and a proven track record of delivering innovative, secure, and cost-effective cloud solutions. My technical mastery, leadership capabilities, and commitment to continuous improvement make me a valuable asset in driving cloud transformations and achieving business success. I look forward to leveraging my expertise to tackle new challenges and contribute to the ever-evolving landscape of cloud computing.
Overview
15
15
years of professional experience
Work History
Vice President - Principal Platform Architect
CITI Bank
05.2023 - Current
- Implementing Azure Migration Services to assess on-premises workloads, create migration plans, and execute migrations, results in seamless and cost-effective transitions to the cloud, including microservices architecture, serverless computing, and cloud application modernization
- Conducted comprehensive architecture design reviews for
- Payment Express, evaluating the alignment of proposed solutions with Azure best practices, scalability, security, and performance requirements
- Designed and implemented intricate Azure cloud architectures for a wide range of projects, encompassing Azure services such as Azure Virtual Networks, Azure Kubernetes Service, and
- Azure SQL Database
- Conducted thorough assessments of on-premises databases, evaluating their compatibility with Azure database services, performance bottlenecks, and security vulnerabilities
- Responded to requests for Proposals (RFPs) and Requests for
- Information (RFIs) by developing comprehensive technical proposals and documentation outlining Azure solution designs, implementation plans, and pricing models
- Successfully secured new projects and clients through persuasive and technically sound RFP and RFI responses
- Collaborated closely with cross-functional teams to re ne and enhance architectural designs based on feedback and identi ed improvements
- Expert in creating well-structured Azure resource groups to logically organize resources and enforce consistent naming conventions and resource tagging for effective management and governance
- Designed and implemented complex Azure Resource Manager (ARM) templates and Terraform for infrastructure as code (IaC) provisioning, enabling repeatable and scalable deployments
- Designed end-to-end Azure solutions, encompassing compute, storage, networking, and security components
- Developed comprehensive architectural diagrams, blueprints, and documentation for client projects
- Streamlined CI/CD pipelines in Azure DevOps and Gitlab for various projects, reducing deployment times by an average of and increasing release frequency, and also designing
- DORA metrics within CTI (Citi Technology Group)
- Con gured and optimized Azure Virtual Networks, including
- ExpressRoute and VPN connectivity, for secure, high- performance hybrid cloud environments
- Implemented role-based access control (RBAC) and single sign- on (SSO) solutions using Azure Active Directory (Azure AD) for enhanced security and identity management
- Engineered solutions for horizontal and vertical scalability using Azure Virtual Machines, auto-scaling, and Azure Load
- Balancers to achieve high availability and exceptional performance
- Pro cient in implementing complex networking solutions, including VNet peering, Network Security Groups (NSG), User-
- De ned Routes (UDR), and ExpressRoute, for optimizing data traf c and ensuring security
- Conducted Azure Security Center assessments and implemented Azure Policy to enforce compliance standards, resulting in a 20% reduction in security vulnerabilities
- Designed and managed Azure Kubernetes Service (AKS) clusters for containerized applications, achieving automatic scaling and high availability
- Architected fault-tolerant solutions with redundancy and failover mechanisms, leveraging Azure Availability Zones, Azure
- Traf c Manager, and Azure Site Recovery
- Led DevOps transformations for ICG and Payment Express, introducing Infrastructure as Code (IaC), automated testing, and continuous integration/continuous deployment (CI/CD) pipelines
- Conducted architecture workshops for stakeholders, aligning technical solutions with business objectives and ensuring comprehensive understanding and buy-in
- Implemented hybrid integration solutions with Azure Logic
- Apps, Azure Service Bus, and Azure API Management, facilitating seamless communication between on-premises and cloud-based systems
- Designed microservice architectures and containerized applications using Docker and Kubernetes, optimizing resource utilization and enabling independent scaling of components
- Deep understanding of Azure AD components, including Azure
- AD Connect, Azure AD B2C, and Azure AD Domain Services, for managing identities and access control
- Incorporated security best practices into architectural designs, including network segmentation, encryption, and identity and access management, ensuring that security is inherent in the solution
- Developed disaster recovery strategies, including backup and restore plans, geo-replication, and data redundancy, to ensure business continuity in case of disruptions
- Utilized Azure Functions and Azure Logic Apps to design serverless architectures, reducing infrastructure management overhead and improving cost ef ciency
- Profound knowledge of Azure data encryption techniques, including Transparent Data Encryption (TDE), Always
- Encrypted, and Data Masking, is needed to maintain data security and regulatory compliance
- Designed and managed complex hybrid cloud solutions, seamlessly connecting on-premises data centers with Azure using Azure Arc and Azure Stack.
Design, architect
10.2017 - 06.2019
- Implement, and develop software for cloud components through auto-provisioning systems, host-to- storage integration, and “zero-touch” installation of software components
- Designed complex and innovative technical solutions leveraging
- Oracle Cloud offerings to address the critical business requirements of our customers
- Ensuring that all new systems (and architecturally signi cant changes to existing systems) have security architecture reviews
- Deploy and con gure a high-performance Oracle DB with a
- Data Guard server in an Oracle OCI environment
- Analysed and resolved architectural problems and worked closely with engineering, data science, and operations teams
- Worked with the central security architecture team to develop the teams' processes and frameworks
- Worked on Oracle SaaS, PaaS, and IaaS products and has experience in designing complex and large-scale cloud projects
- Responsible for carefully supporting complex engagements involving cooperation across teams and products, advising on the usage of Oracle's cloud services and tools
- Working on microservices, Docker, and Kubernetes
- Worked with cloud platforms (OCI, Oracle Cloud Infrastructure) and built automation around their APIs
- Working on Network controls, distributed Denial of Service (DDoS), Web Application Firewall (WAF), API Gateways, and
- Security Information and Event Management (SIEM)
- Working on infrastructure, ensuring high availability, scaling, service discovery, logging, monitoring, and alerting
- Building software/frameworks for infrastructure automation and orchestration
- Worked on Canary and A/B testing that allowed customers to push code multiple times a day during business hours
- Identi ed and delivered improvement opportunities such as
- Manual task automation, performance/throughput improvements, Batch optimization, etc., which ultimately improved the production service and stability
- Worked on in-memory databases like Redis, MongoDB, and
- Cassandra
- Worked on Batch management and Scheduling tools such as
- Control M and Autosys
- Monitored the Kubernetes cluster, containers, and applications with dashboards like Prometheus and Grafana, and identi ed and optimized monitoring parameters
- Worked on API Creation and RESTful services and worked with different stakeholders
- Implemented on-prem and hybrid cloud-based practices, including ef ciency, repeatability, instrumentation, scalability, and security
- Worked on different platform services such as VMs, compute, storage, network, load balancing, DNS, and middleware
- Worked on con guration management and deployment tooling (Jenkins)
- Developed cloud software services, worked on the design for scalability, performance, and reliability, and managed apps on cloud platforms.
Associate Director (Solution Architect)
UBS
06.2019 - 05.2019
- I was part of WMAIT (STAAT) and ISE (ICV—Compliance and
- Validation—AM18) during my tenure at UBS
- Cloud Migration and Hybrid Solutions:
- Successfully led and executed numerous infrastructure and application migration projects, including lift-and- shift, re-hosting, and re-platforming strategies utilizing
- AKS and Azure Functions, ensuring minimal downtime and optimized performance during the transition to
- Azure
- Led successful Cloud migration projects starting with
- TDA (Technical Design Authority) and CDDA (Cloud
- Design Deployment Authority), onboarding cloud subscriptions, developing and implementing concluded migration strategies until smooth service transition of applications and workloads to the cloud via TOC (WebHosting Team), and handling the post-migration issue
- Designed and implemented hybrid cloud solutions, integrating on-premises infrastructure with public and private cloud environments for seamless data ow and scalability
- Architecture, Design, and Implementation:
- Designed and implemented complex and scalable cloud architectures for enterprise applications, ensuring high availability, fault tolerance, and performance optimization in alignment with Stream Cloud Champion
- Developed architectural blueprints, reference architectures, and design patterns to guide the implementation of cloud solutions
- Conducted architecture reviews and provided recommendations for improving system performance, security, and cost ef ciency
- Cost Optimization and Governance:
- Developed and implemented cost optimization strategies, leveraging cloud services and tools to right- size resources and eliminate wasteful spending
- Conducted cloud cost assessments, identi ed cost- saving opportunities, and implemented optimization techniques that resulted in signi cant savings
- Established cloud governance frameworks and policies, monitoring resource usage, and enforcing budgetary controls
- DevOps and CI/CD Excellence:
- Worked on Gitlab Migration and DORA Metrics within
- STAAT and ICV
- Worked with containerization technologies like Docker and container orchestration platforms such as
- Kubernetes (AKS)
- Contributed to the AKS Community, Gitlab Community, and Terraform Community within UBS
- Designed and created a complete CI/CD ow to deploy applications on Azure using tools like Azure DevOps
- UBS Deploy, Gitlab, SonarQube FortyFive, and Five Eyes
- Principles
- Cloud Performance Optimization:
- Conducted performance assessments and optimizations to improve the ef ciency and scalability of cloud infrastructure and applications
- Implemented monitoring and alerting mechanisms to proactively identify and address performance bottlenecks
- Collaborated with development and operations teams to optimize application performance through ef cient use of cloud resources
- Cloud Strategy and Roadmap:
- Developed and executed cloud strategies aligned with business goals, driving digital transformation, and optimizing IT infrastructure costs
- De ned the cloud roadmap, outlining milestones and deliverables, and ensuring alignment with the organization's long-term objectives
- Collaborated with senior stakeholders to provide strategic guidance on cloud technologies, trends, and best practices
- Cloud Security and Compliance:
- Ensured the implementation of robust security measures and best practices across cloud environments, addressing data privacy, access controls, and compliance requirements
- Led security audits and vulnerability assessments, implemented remediation plans, and ensured adherence to industry standards
- Implemented Identity and Access Management (IAM) policies, encryption mechanisms, and network security controls to protect cloud resources
- Handled different Risks like VM9, LM4, CM9, AM11, and
- AM18
- Cloud Governance and Best Practices:
- Developed and implemented cloud governance frameworks, ensuring adherence to security, compliance, and operational policies
- Established best practices and standards for cloud architecture design, deployment, and management
- Conducted regular reviews and audits to ensure ongoing compliance with governance policies and standards
- Vendor Management and Relationship Building:
- Managed relationships with third-party vendor Chef, designed complete Chef architecture within UBS (part of
- ICV), and deployed to a shared subscription with
- Deployment if there was no existing formula
- Managed relationships with cloud service providers and vendors, negotiating contracts, and driving cost-effective solutions
- Collaborated with vendors to evaluate new cloud technologies and services, ensuring alignment with business requirements
- Acted as a liaison between the organization and cloud vendors, resolving issues and managing escalations
- Disaster Recovery and Business Continuity:
- Designed and implemented disaster recovery solutions for cloud environments, ensuring high availability and business continuity
- Conducted disaster recovery tests and exercises to validate the effectiveness of recovery plans
- Collaborated with stakeholders to de ne Recovery Time
- Objectives (RTO) and Recovery Point Objectives (RPO) for critical applications
- Stakeholder Engagement and Communication:
- Engaged with stakeholders at all levels of the organization to understand business requirements and align cloud strategies with organizational goals
- Communicated complex technical concepts to non- technical stakeholders, facilitating understanding and decision-making
- Presented cloud solutions and recommendations to executive leadership and provided regular project updates
- SAD Documentation (Solution Architecture Document):
- Created detailed Solution Architecture Documents (SADs) that provided comprehensive blueprints of Azure solutions, outlining design decisions, component interactions, data ows, security measures, and compliance requirements
- Ensured SADs were comprehensive references for development and operational teams, facilitating a shared understanding of the solution's architecture
- Prepared an architecture design review (ADR) for presenting different options for a problem and concluding with a solution for implementation
- SERA (Software Enterprise Requirement Assessment):
- Conducted Security and Enterprise Risk Assessments (SERA) to identify potential security risks and vulnerabilities in Azure solutions and implemented mitigation strategies to enhance their security posture
- Collaborated with cybersecurity experts to ensure that
- Azure solutions met industry-speci c compliance requirements and adhered to security best practices
- MERS (Minimum Enterprise Requirements): Onprem and Cloud
- MERS
- Leveraged the Minimum Enterprise Requirements (MERS) to assess UBS STAAT (WMA) environments' readiness for Azure adoption, identify areas for improvement, and formulate remediation plans
- Assisted WMA (STAAT) in achieving Azure-ready status by addressing technical and operational gaps and ensuring seamless cloud onboarding
- Infrastructure Provisioning:
- Led infrastructure provisioning efforts, including the creation of Azure Resource Manager (ARM) templates
- Terraform, Azure PowerShell scripts, and Infrastructure as Code (IaC) pipelines, to automate and streamline the deployment of resources and applications
- Ensured rapid and consistent infrastructure provisioning, reducing manual errors and accelerating project timelines
- Leadership and Team Management:
- Successfully led and mentored a team of ve cloud architects and engineers, fostering collaboration and achieving project milestones
- Demonstrated strong leadership skills by effectively delegating tasks, setting clear expectations, and providing guidance to team members
- Facilitated cross-functional communication and coordination between teams, ensuring seamless collaboration and knowledge sharing
- Client Relationship Management:
- Acted as a trusted advisor to the SMART Team in service transitions to TOC (the web hosting team), building strong relationships and collaborating on their cloud transformation initiatives (on-prem-cloud)
- Liaise with different teams within UBS (AKS Engineering
- Gitlab, Central Monitoring, Cloud Ops, and Cloud
- Engineering)
- Conducted workshops and presentations to educate clients on cloud technologies, bene ts, and best practices
- Provided technical guidance and consultation to clients, addressing their unique business needs and helping them achieve their cloud objectives
- Con gured data replication and synchronization between on- premises databases and Azure, ensuring real-time data access and minimizing data latency
- Data pipeline creation and management using Azure
- Databricks, Azure Data Factory, and Azure Synapse
- Assisted WMAIT (STAAT) for SMART Application in selecting the most appropriate Azure database services, including Azure
- SQL Database, Azure Cosmos DB, Azure Database for MySQL, and Azure Database for PostgreSQL, based on workload requirements
- Developed and executed database migration strategies encompassing database lift-and-shift, replication, and data transformation to ensure data integrity and minimize downtime
- Of Technical Sta
- Oracle
Assistant Manager
Macquarie Group
07.2015 - 10.2017
- Working on Entire DevOps Lifecycle - Continuous
- Development, Continuous Testing, Continuous Integration
- Continuous Deployment, Continuous Monitoring
- Ensured non-functional requirements (e.g
- Performance, MI
- Volumes, Service Levels, etc.) are fully de ned, thought through, and documented
- Architecting Security Management in AWS (IAM, Managing
- Permissions with Groups, IAM Policy and Its Elements, and
- Creating a Role for an Application to Access S3), Auto-Scaling and Route 53
- Designing Database Services and Analytics (Architecting different database services to handle structured and unstructured data)
- Worked with the relevant CTO Architects to support the creation of an appropriate technology strategy and roadmap for the relevant business area
- Working on AWS Services (Compute, Containers, Storage
- Database, Security, Identity and Compliance, Migration
- Networking, and Content Delivery)
- Majorly worked on migrating on-prem infrastructure to Cloud (AWS)
- Worked on Hybrid model (Google Cloud and AWS).
- Compute & Storage - EC2, Lambda, ECR, ECS, S3, EFS
- DynamoDB, RDS, Identity & Access Management (IAM)
- Migration - Application Discovery Service, Migration Service
- Database Migration Service, CloudFront,
- Networking - Route53, Load balancing, VPC, Route Tables
- NaCl.
IT Senior Consultant
Oracle
05.2014 - 07.2015
- Migration of on-prem to Cloud.
- Working as part of an elite PDIT team with ample apps for growth
- Creating entirely automated high-performance infrastructure.
- Build support and manage Red Hat Enterprises Linux server’s version 5 and 6 environment and Solaris version 8 and 9 servers
- Weblogic Administration, Installation, Con guration, HA environment setup
- Jira / Con uence setup and Manage domains, accounts, servers, and their permissions.
Senior Product Consultant
Adobe
10.2013 - 05.2014
- Worked on Middleware Technology and their tools like -
- Weblogic, Jboss, Tomcat, Websphere, Apache
- Worked on Adobe Product - Live cycle, AEM, Acrobat.
Senior Professional Analyst
IBM
11.2011 - 10.2013
- Worked on Middleware Technologies.
- Managing oracle database 10g, database monitoring, and tuning and resolving database issues and also support to developers
- Managing and providing at various levels support for Wintel core servers, applications server and SAN and VMware infrastructure.
Software Engineer
Mphasis an HP
11.2008 - 11.2011
Education
Master of Science - Machine Learning
Liverpool John Moors University
PG Diploma - AI/ML
IIIT
PG Diploma - Business Administration
SCDL
B.Tech -
IIIT
Skills
- Data Warehousing
- NoSQL
- PostgreSQL
- SQL
- Cassandra
- Distributed Applications
- Implementation Experience
- Snowflake
- Technical Enablement
- Web Application Firewalls
- Data Lakes
- Cloud Hosting
- Solution Implementation
Accomplishments
- SnowPro Advanced Certification
- Microsoft Certified Data Engineer
- Microsoft (Azure) Certified Solution Architect
- Certified Kubernetes Administrator (CKA)
- TOGAF 9 Certified Enterprise Architect
Timeline
Vice President - Principal Platform Architect
CITI Bank
05.2023 - Current
Associate Director (Solution Architect)
UBS
06.2019 - 05.2019
Design, architect
10.2017 - 06.2019
Assistant Manager
Macquarie Group
07.2015 - 10.2017
IT Senior Consultant
Oracle
05.2014 - 07.2015
Senior Product Consultant
Adobe
10.2013 - 05.2014
Senior Professional Analyst
IBM
11.2011 - 10.2013
Software Engineer
Mphasis an HP
11.2008 - 11.2011
Master of Science - Machine Learning
Liverpool John Moors University
PG Diploma - AI/ML
IIIT
PG Diploma - Business Administration
SCDL
B.Tech -
IIIT
Similar Profiles
Senthilkumar SSenthilkumar S
Service Delivery Manager at Citi Bank USA, The Citi BankService Delivery Manager at Citi Bank USA, The Citi Bank
null null
Service Delivery Manager at Citi Bank USA, The Citi BankService Delivery Manager at Citi Bank USA, The Citi Bank
Suman PanigrahiSuman Panigrahi
Assistant Vice President at Citi BankAssistant Vice President at Citi Bank
Zakary O'BrienZakary O'Brien
Compliance AML Execution Analyst at Citi BankCompliance AML Execution Analyst at Citi Bank
Muhammad SamiMuhammad Sami
Door supervisor at Blink Security ServicesDoor supervisor at Blink Security Services