DevOps Portfolio

Projects

Hybrid AWS + GCP Platform (iMerit)

Secure VPC design, IAM hardening, Terraform + Ansible automation for EC2, S3, EKS/ECS, Kafka, Redis. Result: 45% stronger security posture, 35% lower cloud spend, 55% lower MTTR.

Stack: AWS, GCP, Terraform, Ansible, Jenkins, Docker, Kubernetes, ECR, ELK, CloudWatch

GitHub Actions Standardized CI/CD (Kuvera)

Multi-stage pipelines with testing, security scans, and gated deployments. Standardized Helm/K8s rollouts. Result: 65% faster rollouts, 55% faster incident response, 18% cost savings.

Stack: GitHub Actions, Helm, Kubernetes, ELK, Prometheus, Grafana

Multi-cloud Kubernetes with Terraform (EchoIndia)

Provisioned EKS/GKE with Terraform, unified automation across environments, Kustomize/Helm for manifests. Result: 60% more consistent deployments, 35% higher uptime.

Stack: AWS, GCP, Terraform, Jenkins, Kubernetes, Kustomize, Helm

Secure CI/CD Pipelines & Supply Chain Hardening

Implemented signed artifacts (Cosign), dependency scanning (Snyk/Trivy), and pre-deploy security gates. Result: 50% reduction in vulnerable releases; zero criticals reaching production.

Stack: GitHub Actions, Jenkins, Trivy, Snyk, Cosign, OPA, Docker, Kubernetes

EKS Security Baseline & Network Policies

Hardened clusters with RBAC, Pod Security Standards, and Calico policies; restricted east-west traffic and enforced namespace isolation. Result: 60% fewer lateral-movement risks.

Stack: AWS EKS, IAM Roles for Service Accounts, Calico/NetworkPolicy, Kyverno/OPA

Observability Platform Unification

Unified metrics, logs, and traces with Prometheus/Grafana and ELK/OpenSearch. Introduced SLO dashboards and alerting. Result: 55% MTTR reduction and improved on-call efficiency.

Stack: Prometheus, Grafana, Alertmanager, ELK/OpenSearch, CloudWatch

Disaster Recovery as Code

Automated region failover with Terraform and runbooks; regular DR drills and RTO/RPO validation. Result: Achieved RTO of 30 minutes or less and RPO of 5 minutes or less for tier-1 services.

Stack: Terraform, Route53 health checks, S3 cross-region, RDS snapshots, Runbooks

Zero-Trust Multi-Account AWS Foundation

Established AWS Organizations with SCPs, centralized audit/logging, and least-privilege IAM patterns. Result: 45% stronger security posture and safer developer autonomy.

Stack: AWS Orgs, SCP, IAM, CloudTrail, Config, GuardDuty, Security Hub

GitOps with ArgoCD & Helm

Standardized Kubernetes deployments with GitOps, promoting changes across dev→stage→prod via PRs and policies. Result: 65% faster rollouts with auditable change history.

Stack: ArgoCD, Helm, Kustomize, Kubernetes, GitHub

Secrets Management Revamp

Migrated secrets to AWS Secrets Manager/Parameter Store with rotation and fine-grained IAM. Result: Eliminated plaintext secrets and reduced misconfig incidents by 50%.

Stack: AWS Secrets Manager, Parameter Store, IAM, SSM, CI/CD integrations