Joms Mohan

SENIOR CLOUD INFRASTRUCTURE ENGINEER:
Bluecat and Infoblox DDI Implementation: Successfully implemented Bluecat and Infoblox solutions to enhance network management and DNS services. • Improved network reliability and performance through strategic deployment and configuration.
DNS and DDI Management: Specialized in DNS, DHCP, and IP Address Management (DDI) using enterprise solutions like Bluecat, Infoblox, and AWS Route 53. Expertise in DNSSEC, Anycast, and split-horizon DNS for secure, optimized name resolution. Developed cross-account DNS resolution strategies for complex multi-cloud environments, enhancing reliability and reducing latency.
Anycast Implementation: Led the implementation of Anycast routing to optimize network traffic and reduce latency. • Achieved significant improvements in network efficiency and resilience.
Observability: Proficient in using Logic Monitor and Catchpoint for comprehensive network and system monitoring. • Ensured optimal performance and early detection of issues through effective monitoring strategies
System Troubleshooting: Expert in diagnosing and resolving complex system issues. • Utilized advanced troubleshooting techniques to maintain system stability and performance. • Expertise in diagnosing network latency, DNS resolution issues, and container orchestration challenges.
DNS Traffic Optimization and Security: Skilled in optimizing DNS traffic flow for high availability and low latency using Bluecat Edge and Route 53 traffic policies, and Anycast routing. • Proficient in DNS security practices, including mitigating DDoS, cache poisoning, and man-in-the-middle attacks.
Automation and API Integration: Developed custom automation scripts in Python for DNS and DDI management, leveraging REST APIs for seamless integration with CI/CD pipelines. • Experienced in Infrastructure as Code (IaC) using Terraform and CloudFormation for automated DNS server provisioning and lifecycle management.
Hybrid Cloud DNS Architecture: Expertise in hybrid DNS setups, integrating on-premise and cloud DNS solutions for seamless name resolution across environments. Configured DNS forwarding and resolver endpoints for hybrid AWS and Azure networks.
Disaster Recovery and Resiliency: Designed and tested DNS disaster recovery strategies, including failover configurations, health checks, and automated failback processes for highly resilient systems.

CLOUD INFRASTRUCTURE ENGINEER:
AWS Infrastructure Engineering: • Proficient in AWS services like VPC, EC2, S3, ELB, Auto Scaling Groups (ASG), EBS, RDS, IAM, CloudFormation, Route 53, CloudWatch, CloudFront, CloudTrail. • Experienced in creating multiple VPCs with public and private subnets distributed across various availability zones. • Created NAT gateways and instances to allow secure communication from private instances to the internet through bastion hosts. • Used security groups, network ACLs, internet gateways, and route tables to ensure secure zones for organizational use in AWS public cloud. • Configured elastic load balancers and auto scaling groups to distribute traffic for cost-efficient, fault-tolerant, and highly available environments. • Created S3 buckets for file storage, including static content for web applications. • Extensive experience in launching EC2 instances using AMIs for Linux, Ubuntu, RHEL, and Windows, including writing shell scripts for instance bootstrapping.
Windows Server Administration: • Installing, configuring & administrating Windows Server 2019, 2016, 2012/2012R2, 2008/2008R2. • WDS & deploying Group Policy. • Creating and editing users in Active Directory (AD). • Active Directory management/building knowledge by QARS and native AD. • Management and troubleshooting of Windows clusters.
Disaster Recovery and Resiliency: • Participated in disaster recovery and sustained resiliency events, ensuring planning, pre-checks, and execution are effectively addressed, leading to successful outcomes. • Participated in major datacenter-wide events, ensuring planning, pre-checks, and execution are effectively addressed, leading to successful outcomes.
Security and IAM Management: • Implemented IAM roles, users, groups, and MFA to provide additional security to AWS accounts and resources. • Configured domain name services (DNS) through Route 53 for highly available and scalable applications.
Monitoring and Alerting: • Monitored and alerted on production and corporate servers using CloudWatch. • Familiarity with monitoring tools like SCOM and Logic Monitor.
Virtualization and VMware Administration: • Supported VMware infrastructure installation and management. • Performed VMware capacity planning and housekeeping tasks. • Planned, built, configured, and deployed VMs and templates for ESX hosts. • Experienced in VMware vSphere, datastore, and network configuration.
Automation and Scripting: • Programming skills in PowerShell. • Developed automation scripts to streamline operations and improve efficiency.
System Upgrades and Maintenance: • Evaluated, tested, and deployed software and hardware upgrades to server infrastructure using WSUS and SCCM. • Managed monthly patching and vulnerability fixes.