Hatta H.

DevSecOps Engineer with Extensive Experience in Security and Automation I am a seasoned DevSecOps engineer with a robust background in implementing and managing secure, scalable, and efficient infrastructure. My expertise spans across various facets of DevOps and security, with a particular focus on the integration of security practices into the DevOps pipeline, ensuring compliance, and enhancing operational efficiency. Key Competencies: • ISO 27001 Implementation: I have successfully implemented ISO 27001 standards, ensuring that all processes and systems are aligned with international security standards. This includes risk management, policy development, and audit preparations. • Cloud Infrastructure & Automation: • AWS: Proficient in designing, deploying, and managing cloud environments on AWS, including EC2, S3, RDS, Lambda, and VPC, with a focus on cost optimization and security. • Ansible: Skilled in using Ansible for automating IT tasks such as configuration management, application deployment, and infrastructure as code (IaC). • CI/CD & Orchestration: • Jenkins: Expertise in setting up and maintaining Jenkins pipelines for continuous integration and continuous delivery (CI/CD), integrating security checks into the build process. • ArgoCD & Helm: Experienced in managing Kubernetes deployments with ArgoCD and Helm, ensuring consistent and reliable application updates across environments. • Kubernetes & Service Mesh: • Kubernetes (EKS & On-Prem): Deep knowledge in managing Kubernetes clusters both on AWS (EKS) and on-premises environments, with a focus on scaling, security, and monitoring. • Istio: Proficient in using Istio service mesh for managing microservices, with capabilities in traffic management, security policies, and observability. • Security & Secret Management: • HashiCorp Vault: Adept at implementing HashiCorp Vault for secure storage and management of secrets, ensuring that sensitive data is protected across the entire infrastructure. • Warden Vault: Extensive experience in using Warden Vault for secure password management and enforcing strong access control policies. • Monitoring & Uptime: • Ensured high availability and performance through proactive monitoring using tools like Uptime, enabling quick detection and resolution of issues. With a strong emphasis on continuous improvement and a proactive approach to security, I am committed to delivering solutions that are not only efficient but also secure and compliant with industry standards. I am passionate about leveraging the latest technologies to drive innovation and enhance the overall security posture of the organizations I work with.