Joe Nunez

After decades of achieving excellence in my career, I determined it was time to unplug and focus on personal projects, family, and hobbies.

I worked on home projects, boating and fishing. This time was used to rejuvenate and prepare for the next era of innovation, and determine the next steps of my career.

I am now ready to return to the workforce, feeling fully replenished, and raring to go.

• Continuously improved cloud infrastructure and services to maintain high availability, security, and performance
• Developed Reference Documentation, providing patterns for teams to develop secure, scalable, SOX compliant deployments
• Authorized purchase orders and vendor payments for various contracts
• Enhanced collaboration between development, operations, and business teams, by engaging at project onset
• Successfully promoted the adoption of modern DevOps practices across the company to achieve faster time-to-market and increased productivity
• Collaborated with other architects providing reviews and technical feedback for new products and features.
• Led AWS accounts migration to multi-region Control Tower accounts, providing best practice security constructs, like guardrails, SCPs and Account Factory for Terraform (AFT). Migrated key applications, providing High Availability and Disaster Recovery to secondary region.
• Implemented solutions enforcing InfoSec compliance and security policies via SCPs, guardrails, GuardDuty, Turbot, and by limiting credential hand offs to intended users via Secrets Manager,Hashicorp Vault, and Thycotic (Delinea) Secret Server, to name a few.
• Adopted and integrated multiple security products (EH Reveal(X) Ultra Sensors, Darktrace, Netskope, Turbot, Wiz, Onetrust), and monitoring tools (New Relic, Sumo Logic, Dome9 Checkpoint, Nutanix Beam) via Terraform, CloudFormation, Bash and Python.
• Worked closely with AWS Enterprise Support and their SMEs to deliver best practice solutions, well-architected reviews (WAR), and cloud optimizations.
• Technical leader managing deployments and architectural/design changes on over 135 AWS accounts.
• Instrumental in restoring and improving Cloud Infrastructure Services team after nearly 100% attrition.
• Provided Level 3 support and consultation services to 20 application teams.
• Designed various ServiceNow workflows to automate AWS User Access Requests and Account Vending requests, to manage the operation, maintenance, and construction functions of the service center
• Established coding standards.

Designed infrastructure-as-code rollout for two separate development pipelines to support migration of monolithic software applications to microservices in the cloud. Security, monitoring and safeguarding of Personal Health Information (PHI) was paramount in all aspects of architecture, design, and implementation, as borne by PEN testing results of "No findings relating to infrastructure, orchestration, and monitoring systems". In addition, both generations of pipelines earned similar comments from security firms stating it was the cleanest security initial rollout they had seen to-date.

** First generation pipeline technology - Responsible for implementing/coding/deploying the following:

AWS:

• Management: AWS Organizations, Managed Services, Service Catalog, CloudFormation, CloudFront, CloudWatch, CloudTrail, Cost Explorer, Trusted Advisor
• Networking: ADFS, API Gateway, BIND servers on EC2, ELB (classic), Route53, VPC, VPN
• Security: IAM, ACM, KMS
• Storage: S3, EBS, Glacier
• Tech Stack: ECR, ECS, SES, DynamoDB, RDS (MySQL)

3rd Party: Docker, Consul, Elasticsearch, Kibana, Kafka, nginx, CloudCheckr, Jenkins, Bitbucket

** Second generation pipeline technology - Designed, participated in the implementation, and managed the DevOps team's activities in deploying

AWS:

• Management, Security and Storage: Same
• Networking: Replaced ELBs with ALB & NLBs, Replaced BIND servers with Route53 Resolver, and MySQL with PostgreSQL. Added SNS, SQS, ElastiCache (Redis)

3rd Party: Terraform, Docker, SonarQube, Grafana, CloudCheckr, Jenkins, Bitbucket

InfoSec: CrowdStrike, DarkTrace

Staffed and managed the HP IT Service Manager CM team, driving policies, automation, continuous integration, and process improvements for a global development team in CA, China, India, Germany and Israel.

• Managed and motivated employees to be productive and engaged in work.
• Accomplished multiple tasks within established timeframes.
• Maintained professional, organized, and safe environment for employees.
• Resolved staff member conflicts, actively listening to concerns and finding appropriate middle ground.
• Designed and developed build, installation and upgrade systems for HP Service Anywhere (SaaS) v1 and v2 to HP Private Cloud, in under 7 months.
• Migrated from Perforce SCM to Subversion (SVN).
• Automated CI/CD using Jenkins, Bash and Perl, among others.

Successfully established and staffed the GA-ASI ASG SCM department responsible for managing the Software for all Predator and Sky Warrior UAVs. Designed physical and VMware virtual build systems, SCM Portal, and initial Build Automation System.

• Contributed ideas and suggestions in team meetings and delivered updates on deadlines, designs, and enhancements.
• Built databases and table structures for web portal application.
• Authored code fixes and enhancements for inclusion in future code releases and patches.
• Developed DoD accepted methods for controlling Pre-release software, Limited Availability releases, and General Availability releases, each with differing levels of rigor and speed.
• Managed team of 5 Software Developers working on SCM utilities and distribution systems, as well as team of 10 SCM Specialists concentrating on managing, documenting and safeguarding software configurations for customers.
• Obtained Intermediate CMMI certificate from the Software Engineering Institute.