GEORGE MUAMBONG
Katy,Texas
Summary
With over 8 years of experience as a dedicated AWS Cloud Engineer and DevSecOps Engineer, I bring a wealth of knowledge in crafting, deploying, and optimizing cloud solutions, encompassing solutions architecture, DevOps and security best practices, and infrastructure automation. This expertise empowers me to create resilient, scalable, and secure cloud architectures aligned with business objectives, while my proficiency in orchestrating CI/CD pipelines accelerates software delivery and enhances efficiency. My collaborative approach fosters innovation and operational excellence within cross-functional teams, making me well-equipped to drive organizations toward cloud-native success. Additionally, I am a detail-oriented, organized, and diligent employee who excels at working swiftly to meet deadlines, and I am a dedicated team player eager to contribute to a company's achievements. My background also includes a solid foundation in engineering project management and design, along with a successful track record in load and cost calculations and parameter establishment.
Overview
8
8
years of professional experience
1
1
Certification
Work History
AWS Solution Arhhcitech/ DevSecOps Engineer
Centers For Medicare & Medicaid Services(CMS)
Houston, TX
08.2022 - Current
- Developed Infrastructure CI/CD Pipelines includes pre-commit, Code Pipeline, Step functions, Azure Logic Apps, GitHub, TF and The BANDIT to detect security issues in software code with Integration tests which bring error rate below 10% prior deployment.
- Successfully deploy Palo Alto Networks VM-Series firewalls to provide visibility, control, and protection for our applications built on AWS.
- Daily meetings with customers and reviewing customer requirements and understanding their specific needs and pain points, recommend solutions & often conduct product demonstrations and technical presentations to potential customers.
- Implemented Cloud security measures in each phase of Prevention / Detection / Remediation using AWS SCP, Azure Policies, Terraform Sentinel and Custom-built automation also reduce greater risk by auto remediate high severity incidents.
- Designed and Implemented deployment of AWS infrastructure 100% via terraform in application accounts with frequent KT sessions about cloud and terraform best practices with 26+ app teams across organization.
- Orchestrated the provisioning of AWS infrastructures through CloudFormation and Terraform, resulting in a 30% reduction in deployment time.
- Implemented cloud Account, resource tagging and achieved 80% compliance for company line of business chargeback policy by using lambda, CW, CT, terraform automation.
- Designed and implemented threat detection operational automation using Guardduty, Macie, CW and Container threat detection pipeline using Amazon Inspector / Event Bridge / Lambda which reduced overall risk.
- Designed and implemented automation of cloud PAM solution to rotate AWS keys, Secrets, Azure SP secrets, third party tool API Tokens with stored artifacts to reduce 70% of manual process for quarterly sox compliance audits.
- Designed, architected, and implemented a Central logging solution end-to-end for 150+ of AWS accounts in core Logging Account and tier-policies which saved 40k$ per month in consolidated billing.
- Implemented solution Okta SSO SAML deployment along with AD federated groups creation for Single sign-on using AWS Lambda and Azure functions for both AWS and Azure which bring request SLA from 3 days to 10 minutes.
- Primary contributor in building 25+ most used Terraform Modules for company application teams to consume.
- Used containerization platforms like Docker to package applications and their dependencies and Manage container orchestration platforms like Kubernetes for deploying, scaling, and managing containerized applications.
Cloud Architect
Citibank
Houston, TX
01.2019 - 06.2022
- Implemented CloudBees Jenkins, GitHub and Git for version control, code build, testing and release and CI/CD. Monitored end-to-end infrastructure using CloudWatch and SNS for notification.
- Orchestrated the provisioning of AWS infrastructures through CloudFormation and Terraform, resulting in a 30% reduction in deployment time.
- Designed and implemented automation of cloud PAM solution to rotate AWS keys, Secrets, Azure SP secrets, third party tool API Tokens with stored artifacts to reduce 70% of manual process for quarterly sox compliance audits.
- I have used Azure Application Insights monitored performance and detected anomalies and developed a robust incident response plan.
- Identified and remediated single points of failure and security risks, and also Integrated security tools into the CI/CD pipeline. This includes tools for static code analysis, dynamic code analysis, vulnerability scanning, and more.
- Defined cloud architecture for both hybrid and non-hybrid cloud solutions.
- Collaborated with development and operations teams to develop practical automation solutions and custom modules.
- Implemented task automation, service management, and application deployment using Ansible and Jenkins, reducing deployment time by 40%.
- Integrated automated testing frameworks into CI/CD pipelines to validate code changes and promote a culture of quality assurance and testing within the DevOps process.
- Troubleshooting issues to provide support for resolving production issues, including on-call responsibilities. Investigate and resolve incidents promptly to minimize service disruption.
- Implemented AWS Organization to centrally manage multiple AWS accounts including consolidated billing and policy-based restrictions.
- Used containerization platforms like Docker to package applications and their dependencies and Manage container orchestration platforms like Kubernetes, ECS, EKS for deploying, scaling, and managing containerized applications.
- Built and configured Linux servers from scratch with type 1 hypervisors, resulting in 30% faster server provisioning.
- Developed and leveraged baseline and custom guardrails, policies, centralized policy enforcement, tagging policies and a well architected multi account environment.
- Set up virtualization and network components, improving resource utilization by 25%.
- SSL setup for Apache and Nginx application couple with AWS ELB SSL for all http to https thereby maximizing security Network, CPU, Disk and connectivity.
- Designed and deployed high availability environments with auto-scaling and Elastic Load Balancer, achieving 99.99% uptime.
- Securely established MySQL Primary DB and read replica in a private subnet with multi-AZ setup for robust disaster recovery, reducing recovery time by 50%.
AWS DevOps Engineer
Marathon Oil Corporation
Houston, TX
01.2016 - 01.2019
- Built automation tools and applications to deploy next-generation platforms and collaborated closely with product development teams and other stakeholders.
- Automated repetitive tasks and processes to improve efficiency and reduce human error. Also assessed system performance and capacity requirements to ensure that infrastructure can scale to meet the demands of growing applications and user loads.
- Managed testing cycles and coordination of user acceptance testing for software and applications.
- Monitored automated build and continuous software integration process to drive build/release failure resolution. set up and maintain monitoring and logging tools to track the performance and health of applications and infrastructure. This includes creating alerts for potential issues and troubleshooting problems as they arise.
- Worked with cross-functional design teams to create software solutions that improved overall functionality and performance.
- Aide setup for and configured for logs files detail monitoring and alerts notification when changes are made. Performed root-cause analysis of recurring issues, system backup, and security setup.
- Security groups configured and locked down to the various authorized subnet and ip addresses in AWS Automated deployment, configuration and security settings using Ansible.
- Architected and implemented continuous integration and deployment pipelines using Jenkins and experienced in GitHub (cloning a Git repository, creating a branch, pushing to Git from local, making a PR, etc)
- Responded to and resolved incidents, such as system outages or performance issues in other to restore services quickly and conduct post-incident analysis to prevent future occurrences of these issues.
Education
Bachelor of Science - Biochemistry
UNIVERSITY OF BUEA
BUEA12.2014
Skills
TECHNICAL SKILLS
Security Tools and Frameworks: AWS Security Hub, AWS Guard Duty, AWS Shield, AWS Firewall Manager, AWS Inspector, etc Palo Alto, OWAPS, SIEM tools, OKTA, SAST, DAST, Prowler, OWASP ZAP etc ISO 27000, NIST SP 800-53, CIS Controls, NIST SP 800-171
Monitoring & Event Management: AWS CloudWatch (Events & Logs), AWS SNS, AWS S3, SPLUNK, PROMETHEUS, NEW RELIC, ELK Stack
Identity & Access Management: AWS Organization, AWS IAM, AWS AD Connector, Active Directory, AWS Workspaces, AWS Secrets Manager, OKTA
Governance & Compliance: AWS Config Rules, AWS Organization, AWS Control Tower, AWS Trusted Advisor, AWS Well-Architected Tool, AWS Budgets, AWS License Manager, etc
Programming Languages: Python, JavaScripting, JSON, YML
Cloud Orchestration/Automation: AWS CloudFormation, AWS Lambda, AWS Systems Manager, AWS SSM Parameter Store, Ansible, Ansible Tower, Docker, Kubernetes
Application Delivery: Jira, Confluence, Jenkins, Bitbucket, AWS CodePipeline, AWS Code Commit
Data Protection: AWS Certificate Manager, AWS KMS, Snapshot Lifecycle Manager, AWS CloudHSM,
Network: VPC, VGW, TGW, CGW, IGW, NGW etc VPN Tunnels, IPSec
Image & Patch: AWS SSM Patch Manager, AWS Golden AMI Pipeline
AWS Platform: AWS CloudFormation, AWS Lambda, AWS Systems Manager, S3, VPC, EC2, ELB, RDS, SNS, SQS, SES, Route53, CloudFront, Service Catalog, AWS Auto Scaling, Trusted Advisor, CloudWatch etc
Certification
- AWS Certified Solutions Architect – Associate
Timeline
AWS Solution Arhhcitech/ DevSecOps Engineer
Centers For Medicare & Medicaid Services(CMS)
08.2022 - Current
Cloud Architect
Citibank
01.2019 - 06.2022
AWS DevOps Engineer
Marathon Oil Corporation
01.2016 - 01.2019
Bachelor of Science - Biochemistry
UNIVERSITY OF BUEA