KRISHNA SHK
Devops Architect
London,LND
Summary
DEVOPS / SYSTEMS ARCHITECT
An experienced DevOps Specialist, Security Consultant, Cloud Infrastructure Designer, Linux/Open Source and Network Infrastructure specialist with considerable skill in the design, installation and management of high end, high performance, resilient and highly available computer systems.
Possesses expert analytical and problem analysis skills with an exceptional record for delivery. Very strong Linux automation and scripting skills with a calm, methodical approach to implementation and service delivery combined with an excellent ability to present technical information and concepts to a non-technical audience.
Overview
24
24
years of professional experience
7
7
years of post-secondary education
14
14
Certificates
2
2
Languages
Work History
Senior Devops SRE
Gumtree/Ebay
01.2023 - Current
- AWS/GCP Platform
- On-prem openstack to GCP migration projects
- Jenkins automation using groovy
- Python application deployment tools and scripts
- Python application APIs for Netscaler and GCLB
- Terraform and atlantis deployments in GCP
- Migration of container applications to GKE Kubernetes
- Github Actions workflow with Terraform
- CI/CD Deployment to Kubernetes Cluster vig github actions and argod
- ArgoCD application management
- TektonChains configuration and deployments for image signing
- Kubernetes alerts/metrics configuration
- Grafana Python,Nodejs And java application metric dashboards
- Styra OPA Kubernetes deployment
- ArgoCD helm chart deployments on Kubernetes clusters
- Working with Architecture teams for technical reviews and platform design
Senior Devops Engineer
ARM
09.2022 - 12.2022
- AWS/Azure Platform
- AWS EKS Jenkins cloudbees CI deployment
- Jenkins Vault integration and migration from ansible vault
- GCP Cloudrun and CloudComposer deployments
- Terragrunt, Gerritt workflows
- Terragrunt GCP modules
- GCP VPC peerings and VPN transit gateways with BGP
- CloudSQL psc and Cloud composer auth proxy configurations
- Python automation and reporting scripts
Cloud Devops Engineer
Legal & General
01.2022 - 08.2022
- AWS/Azure
- AWS/Azure microservice architecture devops automations
- Terraform and architecture design for Cloudwatch Subscription alerts with Kinesis Firehose
- Solution design Cloudtrail logging for SIEM and terraform deployments
- AWS AMI copy automation across multiple accounts/regions using Python Boto3
- AWS AMI reporting using Python Boto3 and postgresql with Graphana metrics
- ECS tasks and container deployments using terraform
- Azure devops pipelines for docker containers
- Terraform, Packer AMI pipelines and automation across AWS Accounts
- EKS deployments via Terraform
- Azure Mulesoft/Maven pipelines for AKS and cloudhub deployments
- Azure IAM, App registrations and Active Directory configurations
- Azure SAML with AWS and Azure vNet peering across multiple regions
- Azure and AWS Site-to-Site VPN
- Investigate SASE, Zero Trust model for ZScalar
- Microsoft Defender scans for docker images (python scripts)
- Datadog deployment for AWS securityhub notifications
- Python lambda function using datadog triggered by AWS Eventsbridge
- SCP policies for AWS organizations
- Git worksflows in-depth
Cloud Security Engineer
LLoyds Bank
03.2020 - 12.2021
- GCP/Azure Platform
- AWS/Google cloud platform security and design from banking perspective
- WAF – Akamai,Cloud Armor design and implementation
- GCP External Key Management – architecture design and poc
- Inspec compliance tests and guardrails against GCP services
- APIgee API security and compliance
- Python platform automation for GCP services
- APIgee shared proxy configuration and automation for backend services
- APIgee OWASP, API security and API development best practices
- Akamai/APigee and Cloud Armor WAF rules
- APIgee component level autoscaling
- APIgee Edge configurations
- GKE security and compliance automation
- Devsecops standards and practices
- Ansible & Packer build pipelines on AWS Jenkins
- EKS cluster deployments on AWS
- Terraform modules for Cloud armor, GCLB, BigQuery & Cloudwatch
DevOps and Cloud Security Architect
Centrica, British Gas
02.2018 - 03.2020
- AWS,Azure
- Design and implement microservices architecture on Kubernetes for British Gas
- Secure Kubernetes CI/CD pipelines on Azure Devops and AWS codepipelines
- Implement Zero trust model via kube2iam, alb-ingress controllers etc
- Aquasec container security implementation
- Network security implementations using Calico, AWS CNI configurations
- Terraform EKS along with basic helm charts for auto-cluster configurations for different environments
- Secrets management using AWS secrets manager for microservices
- Implement AWS cloud security standards on aws resources
- Codepipline devops strategy to deploy microservices
- Openshift deployment and migration to AWS EKS
- Design and Architecturize DevSecOps standards for all the BAU’s including britishGas, HIVE and DirectEnergy(USA)
- Microservice and Cloud architecture design for AKS and EKS
- DevSecOps tools for git-secrets, container scanning and SAST
- Aquasec and SAST devsecops as a service solution for BAUs
- Azure and AWS cloud architecture for cloudcustodian, rapid7 and jfrog
- AKS and EKS Zero trust model microservice architecture design and implementation
- Hashicorp vault, Prometheus, Kune2IAM deployment on EKS
- GCP Cloud Armor and WAF deployments for various applications
- GCP Kubernetes cluster architecture design
- SecDevops Cloud operating model
- Kiuwan SAST centralized deployment for repository scans
- Azure AKS,API Gateway,Data Factory terraform automation
- Azure and AWS VNet/VPC integration and secure hybrid cloud environment
- Nexus,Twistlock and various vendors product reviews and PoCs
- Azure Devops and AWS codepipeline devsecops standards and PoCs
- Centralized SAST,DAST,Container scans for pipelines
- Build devops teams for Azure and AWS projects
- Microsoft Windows Azure environments, ADFS,Identity management, IAM etc
- Azure/AWS packer images for windows/linux machines
- Deploy ADB2C and custom policies with Azure Devops pipelines
- Azure cloud resource configurations ie IAM, APP registrations, Active Directory
Senior Secure Devops AWS Infrastructure Architect
BT
London
03.2017 - 02.2018
- Designed and devloped CI/CD process for web application deployment on AWS and also designed a custom monitoring dashboard using Python
Senior SaltStack Consultant
AstraZeneca
12.2016 - 02.2017
- SaltStack design for hybrid environement ie. AWS and On-Prem with high availability and redundancy and also wrote minion modules for java apps
Big Data Devops Architect
DWP
London
08.2016 - 11.2016
- Openstack baremetal deployment for Hadoop clusters along with postgresql cluster automation and immunatable infrastructure using Packer & Ansible
DevOps Automation Consultant
AWS, Aracadia
London
05.2016 - 08.2016
- AWS infrastructure deployment using Terraform and migration of IBM websphere applications to Tomcat and deployed via Docker, along with Jenkins CI/CD pipeline and Ansible
Chef & Azure Devops & Senior Hadoop Devops Engineer
Hitachi & QuantumBlack
London
01.2016 - 05.2016
- Chef deployment on Azure for .Net applications
DevOPS & Backend Developer, Platform
PropertyFinder.AE
Dubai
10.2015 - 01.2016
- AWS infrastructure provisioning using Terraform with Jenkins CI/CD and Packer for application deployment. Played key role is performance tuning Puppets deployments on EC2 instances
Lead Systems Architect
Digital Catapult London
01.2015 - 01.2016
- Played a key role in the cloud-based Hadoop and Spark infrastructure by directing Ancillary web services throughout the core cluster including multi-tenant Big-Data Hortonworks Kerberized HDP 2.2 platform
- FreeIPA Architecture and Apache SSL Single-Sign on and complete data and network encryption on the Hadoop cluster; all this was done from scratch
Senior DevOps Engineer
DVLA, Kainos – Swansea
06.2014 - 01.2015
- Developed automation suites for VCloud and VAPP/VM deployments through Skyscape with Python; furthermore
- Puppet infrastructure automation with Jenkins and Git workflow
DevOps Big Data Solution Consultant
Intel.com
London
06.2014 - 06.2014
- Accomplished a myriad of tasks including Amazon AWS cloud formation, python fabric and puppet for automated server deployment and development of automation suites for IDH.3 and Cloudera 5.0
DevOps Infrastructure Analyst
WGSN, TRG
08.2013 - 02.2014
- Delivered EMC Greenplum GPHD, DCA Hadoop deployment and configuration; deployed EMC Greenplum Pivotal HD and implemented EMC Isilon HDFS and NAS
- Designed and frame worked Python Django Celery distributed web scraping architecture on AWS
Lead Infrastructure Systems Designer
Wifi, Telefonica
London
02.2012 - 08.2013
- Performed comprehensive systems architecture for O2 Wifi throughout the UK as well as major Zabbix monitoring architecture for core devices as well as for over 10,000 hotspot locations across the UK
- Designed high web caching performance service architecture; and wrote custom c++ content and business logic for squid and safesquid
Unix Systems Engineer
DARE, thisisdare, AWS
London, com
11.2011 - 01.2012
- Managed Centos and Ubuntu Amazon EC2 with over 200 instances and Amazon RDS deployment for a variety of projects; Python automation and Puppet Deployments
Systems Architect ACER
London
01.2008 - 11.2011
- Linux infrastructure deployment of a broad-spectrum of services and used Python scripting for automation; also, deployed Nagios and used Python and checkmklive for plugin scripting and Puppet infrastructure deployments
Senior Systems Engineer
Trendmicro
London
05.2011 - 07.2011
- Played a pivotal role in the maintenance of the Cable and Wireless NHSmail hosting solution and provided advanced postfix configuration for a daily mail server load of 5 million messages
Senior Systems Engineer
Alentus
London
01.2008 - 01.2011
- Designed and developed UNIX/LINUX architecture and DNS architecture for webhosting platform
Tier 3 Unix Systems Engineer
GX Networks
London
01.2007 - 01.2008
Tier 3 Systems Engineer
Viatel
, Surrey
01.2006 - 01.2007
Lead Network Systems Engineer
Specranet Broadband Ltd
01.2003 - 01.2005
Network Operations Engineer
IservIndia Solutions Ltd
01.2002 - 01.2003
Network Administrator
Wiplash Wireless
01.2000 - 01.2002
Education
MSc Network Systems - Computer Networks
Univeristy of Sunderland
Sunderland 02.2005 - 09.2007
Bachelors in Software Engineering - Software Systems
GGSIPU
New Delhi 06.2000 - 09.2004
Skills
Cloud Infrastructure
Accomplishments
- OS : Cisco IOS, RedHat, Linux, Centos, Debian, Ubuntu ,FreeBSD, Windows NT/2003/XP, Solaris 10
- Network Hardware: Cisco Routers/Switches/ASA firewall, F5 LTM and Juniper ERX, Foundry Load Balancers
- Routing Protocols: BGP, OSPF, EIGRP, RIP
- Switching: VLAN, STP, RSTP
- Security: Cisco ASA, Checkpoint R71, Iptables,OpenSSL, RSA, DSA, 3DES, AES
- Applications: SNMP, DNS, Sendmail, Qmail, Exim, Postfix, Imail, MySQL, MSSQL, Apache, Microsoft Exchange, RADIUS, Active Directory, Spacewalk, Cobbler, RAID, Squid Proxy, Jenkins, Git, Puppet
- Databases: MySQL, MSSQL, LDAP, PgSQL, Cassandra, MongoDB
- Storage: Veritas Volume Manager, NetApp Data-OnTAP, EMC Celerra, EMC Vnx, Bacula, CA ArcServe, Netvault
- Cloud Virtualization: Amazon AWS, Azure,Google Cloud,OpenStack
- Automation: Puppet, Python Fabric, Celery, Docker, Ansible, Jenkins, ArgoCD, Github Actions
- Monitoring: Zabbix, Nagios
- Scripting: Python, C++, Ruby, GoLang , QT, Node.JS
- Big Data: Hive, Spark & Pig
- Containers: Docker, Vagrant
- Message queue: Redis, Gearman, rabbitMQ
- Search: Elasticsearch, Apache Solr
- Big Data Products: Cloudera 5.5, Hortonworks 2.2, Pivotal Greenplum, Intel IDH
- Web Development: HTML5, CSS3, Javascript,Node.JS, Express.JS,Socket.IO, MongoDB,MEAN Stack
- Amazon AWS: HTML5, CSS3, Javascript,Node.JS, Express.JS,Socket.IO, MongoDB,MEAN Stack
Certification
AWS Certified Solutions Architect – Professional
Timeline
Senior Devops SRE
Gumtree/Ebay
01.2023 - Current
Senior Devops Engineer
ARM
09.2022 - 12.2022
Cloud Devops Engineer
Legal & General
01.2022 - 08.2022
Cloud Security Engineer
LLoyds Bank
03.2020 - 12.2021
DevOps and Cloud Security Architect
Centrica, British Gas
02.2018 - 03.2020
Senior Secure Devops AWS Infrastructure Architect
BT
03.2017 - 02.2018
Senior SaltStack Consultant
AstraZeneca
12.2016 - 02.2017
Big Data Devops Architect
DWP
08.2016 - 11.2016
DevOps Automation Consultant
AWS, Aracadia
05.2016 - 08.2016
Chef & Azure Devops & Senior Hadoop Devops Engineer
Hitachi & QuantumBlack
01.2016 - 05.2016
DevOPS & Backend Developer, Platform
PropertyFinder.AE
10.2015 - 01.2016
Lead Systems Architect
Digital Catapult London
01.2015 - 01.2016
Senior DevOps Engineer
DVLA, Kainos – Swansea
06.2014 - 01.2015
DevOps Big Data Solution Consultant
Intel.com
06.2014 - 06.2014
DevOps Infrastructure Analyst
WGSN, TRG
08.2013 - 02.2014
Lead Infrastructure Systems Designer
Wifi, Telefonica
02.2012 - 08.2013
Unix Systems Engineer
DARE, thisisdare, AWS
11.2011 - 01.2012
Senior Systems Engineer
Trendmicro
05.2011 - 07.2011
Systems Architect ACER
01.2008 - 11.2011
Senior Systems Engineer
Alentus
01.2008 - 01.2011
Tier 3 Unix Systems Engineer
GX Networks
01.2007 - 01.2008
Tier 3 Systems Engineer
Viatel
01.2006 - 01.2007
MSc Network Systems - Computer Networks
Univeristy of Sunderland
02.2005 - 09.2007
Lead Network Systems Engineer
Specranet Broadband Ltd
01.2003 - 01.2005
Network Operations Engineer
IservIndia Solutions Ltd
01.2002 - 01.2003
Bachelors in Software Engineering - Software Systems
GGSIPU
06.2000 - 09.2004
Network Administrator
Wiplash Wireless
01.2000 - 01.2002
Similar Profiles
Darren Hor Wing MunDarren Hor Wing Mun
Growth Account Manager at Gumtree GroupGrowth Account Manager at Gumtree Group
Dibendra ShresthaDibendra Shrestha
Financial Controller at Gumtree Au Pty Ltd, TMHFinancial Controller at Gumtree Au Pty Ltd, TMH
Vikash ChandikaVikash Chandika
Business Development Manager at Gumtree SABusiness Development Manager at Gumtree SA