Deploying applications on my personal Raspberry Pi for hands-on learning and experimentation with IoT (Internet of Things) technologies
KALAIARASAN MUTHUSAMY
Senior DevOps Engineer
Berkeley,CA
Summary
Detail-oriented DevOps Engineer with 10 years of hands on Experience in IT industry comprising of Development, Automation, Systems Administration, Production system operation and troubleshooting.
Extensive Experience with containerization, and related technologies such as Docker and Kubernetes, from creating the initial Development Pipelines through to Production operation, monitoring and security.
Complex problem-solver with analytical and driven mindset. Dedicated to achieving demanding development objectives according to tight schedules while producing impeccable code.
Overview
11
11
years of professional experience
2
2
years of post-secondary education
Work History
Senior DevOps Engineer
SAP Labs
01.2022 - Current
- Proficient in utilizing Helm Charts to deploy and administer Argo CD within Kubernetes. Proficiency includes establishing Argo CD projects, applications/appsets, configuring various settings such as authentication, RBAC (Role-Based Access Control), and repositories.
- Incorporated Hashicorp Vault with continuous integration and deployment tools such as Jenkins to automatically retrieve sensitive secrets for streamlining CI/CD pipelines.
- Implemented secret injection mechanisms in applications using Vault Agent, Vault API, or Kubernetes integration for secure and dynamic secrets retrieval.
- Managed Kubernetes clusters by deploying and overseeing addons like ExternalDNS for efficient DNS management, ExternalSecrets to securely integrate external secret stores, fortifying data protection, and access control, and Cert-manager for automating SSL/TLS certificate management, thereby ensuring secure communication across applications and services.
- Deployed Jenkins on Kubernetes using Helm charts and migrated Jenkins configuration to Jenkins Configuration as Code (JCasC) for improved configuration management, plugin management and reproducibility.
- Utilized GitHub Actions for building Docker images and pushing them to Artifactory for storage and distribution.
- Designed automation workflow for the Jenkins controller to establish connections with a remote Kubernetes cluster using a service account with Kubernetes RBAC permissions, achieved through Helm charts. This setup enables Jenkins to seamlessly provision agents within the remote Kubernetes cluster.
- Implemented a Python Cronjob within Kubernetes via Helm Charts to bolster security measures. Tasked with rotating service account tokens for the remote Jenkins agent namespace and securely storing them in HashiCorp Vault. This initiative facilitates seamless authentication for the Jenkins controller through the Vault Secret Text plugin when establishing connections with the remote Kubernetes cluster.
- Leveraged Gardener to automate the management and orchestration of Kubernetes clusters as a service. Its versatile extensibility framework can be customized to accommodate a variety of cloud or infrastructure providers, guaranteeing thorough validation at every stage.
- Identified and resolved issues regarding HashiCorp Vault generating excessive service tokens with maximum TTL. Developed a Terraform module to automate Vault Kubernetes auth method and AppRole creation with reduced TTL, eliminating manual intervention. Additionally, investigated batch tokens as a potential alternative to service tokens.
- Utilized Ansible to generate dynamic Terraform variables, optimizing the Terraform workflow to accommodate diverse environments.
- Designed a Terraform module tailored for Azure PostgreSQL Flexible Server, enhancing application resilience and availability by optimizing for redundancy.
- Implemented Terraform and Kubernetes rolling updates to automate the upgrade process for Azure Kubernetes Service (AKS) clusters. Collaborated closely with development and operations teams to plan and execute Kubernetes cluster upgrades smoothly, minimizing disruption to production workloads through adjustments such as max surge, node drain timeout, and pod disruption budget.
- Designed and maintained Chef cookbooks to automate configuration management tasks, ensuring consistency and efficiency across infrastructure deployments.
Senior DevOps Engineer
Juvo Mobile
07.2018 - Current
- Designed workflow with AWS Transit Gateway for transitive routing traffic between AWS VPC and on-premises networks.
- Manage containerized applications using AWS ECS, EKS, or Fargate.
- Experience in creating TLS/SSL Certificates using AWS Certificate Manager and Let's encrypt in automated fashion through AWS Route53 for Kubernetes applications.
- Experience in GitOps through Flux enables application deployment and progressive delivery through automatic reconciliation and managed to implement automated container image updates to Git for image patching in Kubernetes manifests
- Installed Apache Airflow in EKS using helm charts and writing dags for Kubernetes executors.
- Worked on Docker-Compose to create Docker containers for Testing applications in QA environment and automated deployments with Jenkins Pipelines.
- Managed to upgrade all AWS Lambda functions from Python 2 to Python 3 prior to the end of support from AWS..
- Installed DataDog agents on EKS cluster to push application and Infrastructure metrics, logs in order to create dashboard for application performance monitoring.
DevOps Engineer
Endless
12.2017 - 06.2018
- Migrated all on-premise servers to AWS with help of Terraform.
- Converted Terraform resources into modules to make it reusable across infrastructure.
- Expertise in integrating Terraform with Ansible, Packer to create and version AWS Infrastructure, designing, automating, implementing and sustainment of Amazon machine images (AMI) across AWS Cloud environment.
DevOps Engineer
ASK
05.2015 - 11.2017
- Installing and configuring of Chef server, Chef-solo and used test-kitchen to automatically test cookbooks across of all platforms and test suites.
- Managed and wrote Chef Cookbooks to automate system operations and installation of Middleware Infrastructure like Apache Tomcat, JDK and configuration tasks for new environments
- Integrated SonarQube with Jenkins for continuous inspection of code quality and analysis with SonarQube scanner for Maven
- Implemented Nexus repository manager for publishing Npm, PyPi and Ruby gems and helps to support Jenkins build system in resilient manner.
- Upgraded Nexus and SonarQube in order to publish docker images and to support GitLab integration.
- Experience in converting Jenkins builds to gitlab-ci.yaml
- Pipelined Application Logs from App Servers to Elasticsearch through LogStash and monitored performance of applications and analyzed log information using ELK.
- Supported applications 24X7 on-call on rotational basis.
Build and Release Engineer
Wells Fargo
06.2013 - 04.2015
- Experience in installing, integrating, tuning and troubleshooting Apache and WebLogic application server. Supported developers for Java based Web Applications.
- Integrated Sub version and Git in Jenkins and AnthillPro for continuous integration and deployment.
- Involved in writing scripts for init Shell Scripts using systemctl and application specific rsyncs / backups.
- Expertise in setting up SSH, SCP, SFTP connectivity between UNIX hosts.
- Experience using Nagios for infrastructure monitoring system and different Bug Tracking Tools like Jira and ServiceNow
- Experience in building and deploying java applications using Maven and Ant in Jenkins.
Education
Master of Science - Electrical Engineering
University of Colorado Denver
08.2011 - 06.2013
Technical Skills
Cloud Environments: Amazon Web Services (AWS) - 5 years, Google Cloud Platform(GCP) -2 Years, Microsoft Azure -2 years
Configuration Management Tools: Chef, Ansible & Packer.
Containerization Tools: Containerd, Docker, Kubernetes, Docker Compose & Openshift.
Operating Systems: Ubuntu, SUSE,RHEL, Centos & Debian.
Infrastructure Automation Tools: Terraform & CloudFormation.
Web / Application Servers: Nginx, Rails, Flask, Apache Tomcat & HAProxy.
Gateway: ISTIO Service Mesh, Nginx Ingress
Databases: AWS RDS, DynamoDB, MySQL & Postgres.
Scripting languages: Python, Bash & shell.
Version Control Systems: GITHUB & GITLAB.
Secret Management: Hashicorp Vault, Azure KeyVault & AWS Secret Manager
Monitoring Tools: Dynatrace, Nagios, Prometheus, Grafana, Cloud Watch, DataDog & ELK.
Build Tools: Jenkins, Rundeck & TeamCity.
GitOps: ArgoCD,& Flux
Security Tools: Qualys, AWS Guard Duty, Tenable, ThreatStack & Lacework.
Interests
Timeline
Senior DevOps Engineer
SAP Labs
01.2022 - Current
Senior DevOps Engineer
Juvo Mobile
07.2018 - Current
DevOps Engineer
Endless
12.2017 - 06.2018
DevOps Engineer
ASK
05.2015 - 11.2017
Build and Release Engineer
Wells Fargo
06.2013 - 04.2015
Master of Science - Electrical Engineering
University of Colorado Denver
08.2011 - 06.2013
Similar Profiles
Saikat BhattacharjeeSaikat Bhattacharjee
Quality Specialist at SAP Labs India Pvt. Ltd. | Project - SAP FieldglassQuality Specialist at SAP Labs India Pvt. Ltd. | Project - SAP Fieldglass
Dhruv MenonDhruv Menon
Associate Developer at SAP LabsAssociate Developer at SAP Labs
Martin ZhekovMartin Zhekov
Backend Developer, Cloud Developer at SAP LabsBackend Developer, Cloud Developer at SAP Labs
Semmalar JSemmalar J
UX Design Manager at SAP LabsUX Design Manager at SAP Labs
Celine ZhongCeline Zhong
Customer Service Representative at State FarmCustomer Service Representative at State Farm