Ram G.

• Migrated the Monolithic Application running on On-premise Environment to Google Cloud Platform by Con - tainerizing the application and Deploying on Kubernetes Cluster as a Pod. • Implemented New-relic for application performance monitoring. Also monitoring the time taken to call the database in-order to improve the performance of the response time. • Used Kubernetes an open source platform for automating deployment, scaling, and operations of application containers across clusters of hosts, providing container centric infrastructure. • Provided design recommendations and thought leadership to improved review processes and resolved technical problems. • Deployed and managed applications running on a mix of Kubernetes, GCP, and introduced optimization; resulted in a $15k savings per month. • Re-architected 5 web applications from bare metal servers to Kubernetes Orchestration Engine, resulting in a 35% reduction of company cost. • Developed a team of five that smoothed communication bumps, which resulted in a 45% efficiency increase in image deployment, security. • Analyzed, revised, and finalized the specification for tools installation, build, and deployment automation for 110 services. • Created Airflow Cluster's and made them available to Business analysts for successful Run of the Customer Reports.Optimized CI/CD with Bitbucket Pipelines by automating Docker image builds and pushing to Amazon ECR on each code push, ensuring rapid and reliable deployments. • Automated deployments using Flux CD for Kubernetes clusters, integrating Bitbucket to maintain seam - less, environment-specific (dev, staging, prod) releases across AWS EKS clusters. • Architected and maintained a distributed monitoring setup with Loki and Grafana on Kubernetes, diagnosing performance issues and enhancing stability by addressing restart and query failures in logging. • Deployed Kafka on Kubernetes clusters to streamline data streaming and message handling across appli - cations, ensuring efficient real-time communication aligned with high-availability requirements. • Managed AWS IoT Core and IoT Greengrass for deployment and management of Docker containers on edge devices, ensuring secure, automated updates and remote administration of IoT infrastructure. • Designed end to end MLOps pipelines on AWS SageMaker for real-time ML deployment, incorporating Python-based preprocessing, inference, and post-processing workflows in an agile, DevOps-oriented environment. • Created robust Kubernetes configurations using YAML for deployments, ingress, autoscaling, and services, providing a scalable foundation for cloud-native applications. • Configured and optimized IAM roles and policies for secure inter-service communication, leveraging best practices in AWS resource access and cost control through automated resource shutdowns. • Developed infrastructure as code (IaC) solutions with CloudFormation and Terraform, contributing to platform automation and efficient cloud resource management. • Troubleshoot and optimize application performance using tools like Grafana and Prometheus on Kuber - netes, ensuring system stability and scalability for production workloads. • Redesigned and stabilized distributed monitoring architecture by resolving issues in Loki and Grafana deployments on Kubernetes, addressing frequent restarts, and ensuring reliable log query performance for con - sistent application monitoring. Designed and implemented secure hybrid infrastructure by integrating on-prem IaaS with leading Cloud Service Providers (AWS) , ensuring high availability and scalability. • Configured and hardened network security systems including firewalls, VPNs, and routers, in alignment with NIST and CIS benchmarks. • Automated infrastructure provisioning and security policies using tools like Terraform, Ansible, and CI/CD pipelines (GitHub Actions, GitLab CI) • Led DevSecOps initiatives to embed security into the SDLC, including static/dynamic code analysis SAST/DAST and container scanning using tools like Trivy, AquaSec, and SonarQube. • Managed cloud security posture by integrating identity and access management (IAM) , VPC/networking, and infrastructure-as-code (IaC) security checks. • Established continuous compliance pipelines to enforce security controls in alignment with NIST 800-53, CIS Controls, and organizational policy. • Monitored infrastructure with security logging and alerting through SIEM tools e.g., Splunk, ELK, AWS CloudWatch and automated incident response playbooks. • Collaborated with cross-functional teams to improve DevSecOps maturity, reduce manual intervention, and deliver secure applications faster.