Provide design guidance, technical leadership, and advice to technical staff with a focus on Azure infrastructure deployments using the open-source version of terraform by Hashicorp and Azure DevOps YAML pipelines. Provide hands-on proof-of-concept, simulation, and production-ready automation solutions. Devise build-automation, test-automation, and release-automation strategies as needed.
Client Portfolio
[Confidential] - Global Retailer / TekSystems
- Spearheaded the design and implementation of YAML pipelines in Azure DevOps, leveraging Terraform with custom modules stored in GitHub for deploying scalable and secure Azure infrastructure, aligning with the Cloud Adoption Framework and Well-Architected Framework.
- Served as the principal consultant, guiding the enterprise's strategic direction in the adoption and utilization of Terraform frameworks, ensuring adherence to enterprise design principles and security best practices.
- Mentored and trained multiple teams on leveraging the Terraform frameworks developed, fostering a culture of knowledge sharing and technical excellence across the organization.
- Successfully migrated legacy Infrastructure as Code (IaC) technologies to a modern, streamlined Terraform framework, enhancing operational efficiency and infrastructure reliability.
- Pioneered the creation of Terraform configurations for existing Azure resource groups, enabling seamless integration and management of legacy and cloud-native resources.
- Developed and maintained Azure DevOps pipeline templates for Terraform configurations, abstracting complexity with predefined stages for validation/linting, planning, and applying, enabling seamless infrastructure deployment processes.
- Created Docker images for deploying Terraform across supported versions, managing and maintaining these images in Azure Container Registries to ensure consistency and reliability in deployment environments.
[Confidential] - Big Four accounting firm
- Provide technical architecture guidance, implementation, and support for the software release-automation process using Azure DevOps (a.k.a. VSTS)
- Support and work with international teams on deployments of global Azure-based software applications using Azure resources (App Services, Sql Servers / DBs, CDN, Cosmos DB, Storage accounts, Service Bus, and Application Insights)
- Designed and implemented secure release-automation processes for deploying Azure infrastructure using distributed, hierarchical ARM templates using Azure DevOps build pipelines with Git, task & variable groups, SAS tokens, release pipelines, etc
- Create custom PowerShell scripts for use in custom release pipeline tasks
- Created architecture diagrams using Microsoft Visio
- Manage Azure DevOps team projects, including teams, permissions, security, TFVC / Git repositories, service endpoints and integration components
- Manage Azure RBAC / permissions using Powershell for resource group and subscription access using Azure Active Directory (AAD) groups and users, creating and assigning custom roles, creating app registrations with required delegation, etc
- Contribute to global Git repositories of scripts and abstracted ARM templates for knowledge sharing and participate in meetings with international teams to share experiences and avoid the "Stone Soup" scenario common in large organizations
- Work with InfoSec teams to validate the security posture of the deployed environments, use organizational best practices and standards, and implement all available security features according to least privilege and security baselines
[Confidential] - Large Healthcare Organization
- Lead the organization in the adoption of modern practices and a DevOps-centric culture using Microsoft's cloud (Azure) as the default platform
- Developing innovative solutions using VSTS, Azure, and Powershell with a goal to deliver continuous, incremental and rapid value to the business
- Developing terraform module hierarchies to support deployment and maintenance of Azure Kubernetes Service (AKS) instances for multiple environments using hashicorp azurerm, azuread, tls, kubernetes, and null resource providers
- Creating strategies to introduce information security configuration and deployment mechanisms into the CI/CD process using Azure Active Directory, KeyVault, & the latest features of VSTS
- Designing simple, robust, and secure infrastructure deployment constructs utilizing Azure Resource Manager (ARM), KeyVault and VSTS
- Providing architectural guidance for utilizing the bleeding edge of Microsoft Azure infrastructure
- Configuring build and release automation tooling to PaaS and IaaS infrastructure targets in Microsoft Azure
- Developing integration strategies for combining infrastructure deployments with code deployment pipelines using ARM & VSTS
- Creating and using VSTS Teams / Kanban boards for work tracking and other custom dashboards to increase project progress transparency
- Coordinate updates to public DNS and routing to our cloud resources, and designing HA / DR cloud strategies
- Manage portfolio of time-saving Powershell command line tools, including real-time Powershell dashboards for harvesting information about our cloud resources
- Creating proof-of-concepts for potential improvements to the platform and preseting to the larger organization
- Creating archtecture diagrams of current and future states of environments & supporting infrastructure
SmashFly Technologies
- Serve as resident authority for .Net software and Azure infrastructure deployment automation
- Revamp the Release Management 2013 server back-end PowerShell engine via heavy script modifications, and decreased the number of RM-caused failed deployments by 100%
- Design the cloud migration strategy to Microsoft Azure infrastructure-as-a-service (IaaS) using the lift-and-shift cloud migration model
- Implement the Azure infrastructure-as-code model utilizing the VSTS RM, Azure Automation Service, PowerShell Desired State Configuration (DSC), and Chocolatey using Azure Resource Manager (ARM) APIs.
- Devised a strategy for using Azure DevTestLabs as a self-service portal for development teams using custom formulas, and modified the release process to provide for continuous delivery of build-automation artifacts to new DevTestLab virtual machines.
Eversource Energy
- Served as resident authority and architect for Microsoft Azure design and implementation
- Designed and documented a highly-available web application project built on Azure exclusively using Platform-as-a-service (PaaS) resources
- Built upon the TFS 2015 RM platform to support the infrastructure-as-code continuous-deployment model of Azure infrastructure defined in hierarchical ARM deployment templates and parameters files
[Confidential] Big Four accounting firm
- Provided technical architecture guidance, implementation, and support for the software release-automation process using Release Management 2013.
- Worked with foreign teams on deployments to over 30 global data centers.
- Designed and implemented release-automation processes from development to production using Microsoft Release Management 2013
- Created custom PowerShell library functions for backup, restore, install, and supporting functions
- Add customization and extensibility to RM release templates by leveraging custom PowerShell-based actions
- Implemented and maintained a security model for the Release Management 2013 server using role-based access control
- Create PowerShell scripts to solve complex problems using PowerShell Remoting for things such as integrating the post build process with Azure storage account deployments from build machines without internet access
- Create administrative PowerShell scripts to query the RM database to provide insight into releases
- Install & configure Jenkins, manage plugins and jobs that find configuration errors, server status, and application-specific deployment history per environment using PowerShell scripts against the RM database
- Coordinate production infrastructure deployments with operations teams and infrastructure architects
- Led technical effort to migrate scripts for managing Azure resources from Azure Service Management APIs to Azure Resource Manager (ARM) APIs
- Devised strategy to utilize the lift-and-shift model for the migration of on-premises infrastructure to Azure infrastructure-as-a-service (IaaS)
- Created architecture diagrams using Microsoft Visio
- Created proof-of-concepts for deploying Azure environments using different methods including RDFE PowerShell providers, variables files, and hash tables, ARM PowerShell providers, and ARM template deployments
- Create proof-of-concepts for new and improved versions of release templates and deployment paradigm shifts such as Windows PowerShell Desired State Configuration (DSC)