PROFESSIONAL SUMMARY
DevOps-focused Computer Science graduate with hands-on experience in AWS cloud infrastructure, CI/CD security automation, Kubernetes orchestration, and Infrastructure as Code (IaC). Proficient in integrating SAST/DAST security gates using SonarQube, Trivy, OWASP Dependency Check, and policy-as-code tools into Agile SDLC pipelines.
Experienced in IAM least-privilege implementation, secret management, container security, vulnerability management, and observability practices in cloud-native SaaS environments. Skilled in automating security remediation workflows using Python and Shell scripting.
Capable of supporting enterprise-grade IT infrastructure and cloud environments for banking systems, financial services, and insurance companies with a strong focus on security, compliance, uptime, and operational reliability.
Strong understanding of secure transaction environments, disaster recovery practices, system monitoring, compliance-driven infrastructure, and high-availability architectures for mission-critical business applications.
TECHNICAL SKILLS
Cloud & Security: AWS (EC2, S3, VPC, IAM Least Privilege, Security Groups, EKS, ELB, CloudWatch, CloudTrail, RDS)
DevSecOps & Security Tools: SonarQube, Trivy, OWASP Dependency Check, Checkov
Secret Management: AWS Secrets Manager, HashiCorp Vault (Basic), IAM Roles & Instance Profiles
Containers & Orchestration: Docker, Kubernetes (Deployments, Rolling Updates, RBAC, Readiness/Liveness Probes, Network Policies)
CI/CD & GitOps: GitHub Actions, Jenkins, Argo CD, GitLab CI, Ansible
Infrastructure as Code: Terraform (Modules, Remote State, VPC, EC2, S3 Backend), Ansible Playbooks
Observability & Monitoring: Prometheus, Grafana, AWS CloudWatch, CloudTrail, Alerting, SLO/Uptime Monitoring
Scripting & Development: Python, Bash/Shell Scripting, SQL, MySQL
Networking & Operating Systems: NGINX (Reverse Proxy, Load Balancing), Linux (Ubuntu)
Version Control: Git, GitHub, Branching Strategies, Pull Requests, Merge Conflict Resolution
EXPERIENCE
AWS & DevOps Intern — Infoz IT Solutions, Hyderabad
**Nov 2025 – Feb 2026**
* Integrated SonarQube static analysis and Trivy container image scanning as mandatory security gates in GitHub Actions and GitLab CI pipelines.
* Blocked deployments on critical vulnerabilities and enforced security compliance before production releases.
* Automated Terraform IaC security checks using Checkov to detect insecure S3 bucket policies, exposed security groups, and overly permissive IAM roles.
* Implemented IAM least-privilege access controls across AWS services including EC2, EKS, S3, and RDS.
* Configured AWS Secrets Manager for secure secret injection into Kubernetes pods, eliminating hardcoded credentials.
* Provisioned and maintained AWS infrastructure using Terraform with S3 remote backend and modular architecture.
* Supported cloud infrastructure monitoring, log analysis, and incident troubleshooting to improve uptime and reliability.
* Collaborated in Agile development environments to improve deployment automation and infrastructure security posture.
* Worked on enterprise-grade cloud infrastructure practices applicable to banking systems and insurance platforms requiring high availability and secure access management.
PROJECTS
##DevSecOps Platform on AWS EKS
**AWS EKS | Terraform | Jenkins | Kubernetes | Argo CD | SonarQube | Trivy | Prometheus | Grafana**
1- Designed a production-style DevSecOps CI/CD pipeline on AWS EKS embedding security at every stage.
2- Implemented SonarQube SAST, Trivy image scanning, and OWASP Dependency Check to block insecure deployments.
3- Integrated Checkov policy-as-code scanning for Terraform configurations to detect IAM over-permission and insecure infrastructure.
## Cloud-Native CI/CD Platform on AWS EKS
**AWS | EKS | GitHub Actions | Docker | Helm | Kubernetes | NGINX Ingress**
1- Built a complete CI/CD workflow from source commit to Kubernetes deployment using GitHub Actions.
2- Containerized applications using security-hardened Dockerfiles with non-root users and minimal base images.
3- Configured zero-downtime rolling deployments on Kubernetes clusters hosted on AWS EKS.
## Automated Container Deployment Pipeline with Security Gates
**Docker | Jenkins | Python | Bash | NGINX | Trivy**
1- Automated application deployment workflows using GitHub Webhooks integrated with Jenkins pipelines.
2- Developed Python automation scripts for CVE severity parsing, policy violation detection, and Slack/email alerting.
3- Improved deployment reliability, security visibility, and operational efficiency through automation.
LOOKING FOR OPPORTUNITIES IN
* Cloud Engineer
* AWS Engineer
* DevOps Engineer
* DevSecOps Engineer
* Infrastructure Engineer
* Site Reliability Engineer (SRE)
Available in saudi Arabia with transferable iqama for immediate joining and relocation within Saudi Arabia.
