Summary
Overview
Work History
Education
Skills
Timeline
Generic

Kalyanapu Narasimha Rao

Summary

Senior Cloud & DevOps Engineer with over 12 years of experience designing and automating secure, scalable cloud solutions on Azure, and AWS. Skilled in Infrastructure as Code using Terraform and ARM templates, with deep expertise in Kubernetes and Docker for container orchestration. Experienced in building CI/CD pipelines with Azure DevOps, GitLab, GitHub Actions, and Jenkins, and leading efforts in cloud migration, networking, database management, change and release management, and resilient architecture design. Proficient in Python, Bash, PowerShell, and YAML for automation and infrastructure optimization. Strong background in monitoring and observability using Dynatrace, Grafana, ELF, Splunk, and Azure Log Analytics, with a solid focus on security compliance through tools like Snyk, Black Duck, Sonar, JFrog, Checkmarx, and HCL AppScan. Dedicated Site Reliability Engineer committed to improving system reliability, driving automation, and optimizing cloud costs.

Overview

12
12
years of professional experience

Work History

Sr. Software Engineer

Dell
07.2021 - Current
  • Designed, deployed, and maintained complex hybrid cloud infrastructure solutions across AWS and Microsoft Azure environments.
  • Provisioned and configured cloud compute resources including Azure Virtual Machines (VMs), Azure Kubernetes Service (AKS), Azure App Services, Azure Container Instances (ACI), AWS Elastic Compute Cloud (EC2), AWS Lambda, and AWS Elastic Kubernetes Service (EKS).
  • Built and managed AWS Virtual Private Clouds (VPCs) and Azure Virtual Networks (VNet) with subnet segmentation, routing tables, NAT gateways, and security groups for secure and efficient networking.
  • Configured cloud storage services such as Amazon S3, Azure Blob Storage, and managed block storage like AWS EBS and Azure Managed Disks for persistent application data.
  • Implemented load balancing using Azure Application Gateway, AWS Elastic Load Balancer (Classic, ALB, NLB), and configured NGINX as reverse proxy and ingress controller for Kubernetes clusters.
  • Setup and maintained API gateways and traffic routing with Istio service mesh and Azure Front Door for global, high-performance application delivery.
  • Developed reusable, modular infrastructure templates using Terraform, ARM templates, Bicep, and AWS CloudFormation to automate cloud infrastructure provisioning and ensure consistency.
  • Automated configuration management on Linux and Windows servers using Puppet and Ansible through manifests, playbooks, and roles for package management, updates, and service orchestration.
  • Authored PowerShell and Bash scripts for automating routine system tasks, cloud resource cleanup, backups, and deployment workflows.
  • Leveraged GitOps tools like Flux and ArgoCD for declarative Kubernetes cluster state management synchronized with Git repositories.
  • Containerized applications using Docker to ensure portability and consistency across development, staging, and production environments.
  • Orchestrated containers using Kubernetes (AKS, EKS), managing namespaces, deployments, services, ConfigMaps, and Secrets effectively.
  • Developed Helm charts for Kubernetes applications to enable easy packaging, deployment, versioning, rollbacks, and upgrades.
  • Implemented Kubernetes cluster autoscaling, pod scheduling, liveness/readiness probes, and rolling updates to maintain high availability and fault tolerance.
  • Managed ingress controllers including NGINX and Azure Application Gateway Ingress Controller for external traffic routing, SSL termination, and Web Application Firewall (WAF) enforcement.
  • Built and optimized CI/CD pipelines using Azure DevOps Pipelines, GitLab CI, Jenkins, and GitHub Actions to automate build, test, and deployment processes.
  • Integrated code quality and security scanning tools such as SonarQube, Blackduck, Checkmarx, HCL AppScan (DAST), and JFrog Xray into CI/CD pipelines to ensure compliance and reduce vulnerabilities.
  • Managed artifact repositories like Nexus Repository Manager, JFrog Artifactory, and Docker Hub for efficient management of binaries and container images.
  • Handled source control systems including Git, GitLab, GitHub, and SVN, enforcing branch strategies, pull requests, and code review workflows.
  • Implemented monitoring and observability solutions using Azure Monitor, Azure Log Analytics, AWS CloudWatch, Dynatrace, Splunk, Prometheus, and Grafana for real-time system and application insights.
  • Created custom metrics, alerts, and dashboards to proactively detect anomalies, track SLAs, and monitor infrastructure health.
  • Configured centralized logging using ELK stack (Elasticsearch, Logstash, Kibana) and Splunk for comprehensive log aggregation, searching, and troubleshooting.
  • Utilized Azure Service Health and AWS Personal Health Dashboard for cloud service status monitoring and outage mitigation planning.
  • Managed identity and access using AWS IAM roles and policies, Azure Active Directory integration, and Kubernetes RBAC for secure access control.
  • Secured secrets and sensitive data with Azure Key Vault, AWS KMS, and HashiCorp Vault, enforcing encryption and strict access policies.
  • Enforced network security using Azure Network Security Groups (NSGs), AWS Security Groups, Network ACLs, and Azure Firewall to prevent unauthorized access.
  • Conducted vulnerability assessments, patch management, and compliance audits integrating automated scanning tools such as Checkmarx, Blackduck, and HCL AppScan.
  • Designed secure network architectures incorporating VPN gateways, ExpressRoute, AWS Direct Connect, private endpoints, and Private Link for low-latency, secure connectivity.
  • Led database migration projects from on-premises SQL Server, Oracle, and MySQL to cloud-managed databases using AWS Database Migration Service (DMS), Schema Conversion Tool (SCT), and Azure Database Migration Service.
  • Optimized cloud database instances including Amazon RDS, Aurora, Azure SQL Database, and Cosmos DB for performance, backup, and disaster recovery.
  • Designed and configured cloud networking topologies with subnets, routing tables, gateways, NATs, and VPN connections to ensure secure and efficient data flow.
  • Configured Azure Application Gateway and AWS Elastic Load Balancers with SSL termination, session persistence, Web Application Firewall (WAF), and cross-zone load balancing for high availability.
  • Implemented NGINX as a reverse proxy and load balancer for both monolithic and microservices applications.
  • Setup Azure Traffic Manager and AWS Route 53 for DNS-based global traffic routing and failover.
  • Monitored cloud spend and optimized costs using Azure Cost Management, AWS Cost Explorer, and Trusted Advisor, applying auto-scaling, spot instances, and resource tagging policies.
  • Established incident response and on-call rotations integrated with PagerDuty and Opsgenie for rapid issue detection and resolution.
  • Conducted post-incident reviews, root cause analysis, and continuous improvements to reduce mean time to recovery (MTTR).
  • Applied SRE best practices including defining Service Level Indicators (SLIs), Service Level Objectives (SLOs), and managing error budgets to improve reliability and customer satisfaction.
  • Collaborated within cross-functional Agile teams, actively participating in sprint planning, retrospectives, and continuous improvement initiatives.
  • Provided mentorship and technical guidance to junior engineers, fostering knowledge sharing and innovation.
  • Coordinated with security, development, QA, and networking teams to ensure smooth project delivery and compliance adherence.

System Analyst

UST Global
10.2020 - 07.2021
  • Architected and automated secure, scalable Azure infrastructure supporting mission-critical applications using services like AKS, App Services, Azure SQL, Azure Functions, and Storage Accounts.
  • Implemented Infrastructure as Code (IaC) using Terraform, Bicep, and ARM templates for consistent and repeatable cloud resource provisioning across environments.
  • Automated end-to-end CI/CD pipelines in Azure DevOps and GitHub Actions, integrating Repos, Pipelines, Artifacts, and Test Plans for seamless application delivery to App Services and Kubernetes clusters.
  • Designed and maintained robust networking setups using Azure Virtual Networks, subnets, Network Security Groups (NSGs), User-Defined Routes (UDRs), Route Tables, and Private Endpoints to ensure secure communication across services.
  • Enabled hybrid connectivity and secure access to PaaS services using Azure Private Link, VPN Gateways, and ExpressRoute for production-grade environments.
  • Managed internal and external routing with Application Gateway (WAF-enabled), Azure Front Door, and NGINX ingress controllers to ensure secure, scalable, and globally distributed traffic flow.
  • Containerized and deployed microservices using Docker, Helm, and Kubernetes (AKS), with fine-tuned workload orchestration leveraging KEDA-based event-driven autoscaling and resource quotas.
  • Configured Azure Service Bus namespaces and queues/topics for decoupled, asynchronous communication between distributed services.
  • Established secure secret and key management practices using Azure Key Vault with RBAC and Key/Secret versioning to manage certificates, tokens, and sensitive application data.
  • Integrated and monitored APIs and services using Azure API Management, enabling throttling, authentication policies, and seamless backend integration.
  • Enabled end-to-end observability through Azure Monitor, Application Insights, Log Analytics, and integrations with Splunk and Dynatrace for real-time diagnostics, KPIs, and performance insights.
  • Built and enforced enterprise-wide compliance and security policies using Azure Policy, Microsoft Defender for Cloud, and Activity Logs with Azure Monitor Alerts for threat detection.
  • Designed automated disaster recovery and backup strategies using Azure Site Recovery, Backup Vaults, and region-paired architecture for high availability and business continuity.
  • Orchestrated blue/green and canary deployments using deployment slots in App Services and rolling update strategies in AKS with zero-downtime deployments.
  • Embedded DevSecOps by integrating security scanning tools like SonarQube, Blackduck, Checkmarx, and DAST tools directly into CI/CD pipelines to ensure early vulnerability detection.
  • Conducted cost optimization reviews using Azure Cost Management and Advisor, implementing tagging policies, auto-shutdown schedules, reserved instances, and budget alerts.
  • Provisioned and optimized Azure SQL, Cosmos DB, and Azure Database for PostgreSQL with backup policies, scaling configurations, and firewall rules for secure and performant data access.
  • Implemented central logging pipelines with Azure Diagnostic Settings, Event Hubs, and Log Analytics Workspaces, enabling unified alerting, dashboards, and auditing.
  • Maintained source control best practices using GitHub and Azure Repos, enforcing PR workflows, branch protection, code reviews, and version tagging for traceable changes.
  • Collaborated in Agile teams with developers, testers, and product owners, participating in sprint planning, retrospectives, and daily stand-ups to ensure continuous delivery of high-value features.
  • Delivered internal knowledge transfer, mentoring sessions, and documentation to upskill peers and ensure long-term maintainability of Azure infrastructure and CI/CD practices.
  • Configured Application Gateway with custom probes, path-based routing, SSL offloading, and session affinity for secure, intelligent load balancing across applications.
  • Enabled centralized identity and access management using Azure Active Directory (AAD), Managed Identities, RBAC, and Azure AD groups for fine-grained access control across Azure services.
  • Implemented governance structures with Management Groups, Subscriptions, and custom RBAC roles for compliance, isolation, and delegated resource administration.
  • Led incident response and root cause analysis (RCA) with Azure Advisor, Monitor Alerts, and ITSM integrations with tools like PagerDuty and OpsGenie for minimal downtime and faster recovery.
  • Supported production releases, monitored post-deployment metrics, and coordinated rollback strategies where required to ensure reliable go-lives with minimal disruption.

Software Engineer

IBM
02.2016 - 10.2020
  • Designed, managed, and optimized hybrid cloud environments across AWS and Azure, ensuring secure, high-performance infrastructure tailored to development, testing, and production workloads.
  • Provisioned and configured Linux servers (Ubuntu, RHEL, CentOS) across cloud platforms, applying hardening practices using CIS benchmarks, and built hardened AMIs and custom Azure VM images for reuse across environments.
  • Created robust and isolated cloud networks using AWS VPCs, Azure Virtual Networks, subnets, NSGs, route tables, private endpoints, peering, and network gateways, ensuring high availability, traffic control, and secure inter-service communication.
  • Built scalable, fault-tolerant infrastructure using AWS EC2, ALB/ELB, S3, IAM, EBS, SQS, and their Azure counterparts such as Azure Virtual Machines, Azure Load Balancer, Blob Storage, Azure RBAC, and Azure Service Bus.
  • Architected and implemented Infrastructure as Code (IaC) using Terraform across multiple AWS accounts and Azure subscriptions, promoting environment parity and consistent deployment practices.
  • Automated infrastructure provisioning and configuration using Puppet (modules, manifests), Python, Bash, PowerShell, AWS CLI, and Azure CLI, enabling full-stack deployment automation and post-deployment configuration.
  • Orchestrated cloud-based Kubernetes workloads on Amazon EKS and Azure AKS, using Helm charts for deployment management, KEDA for event-driven scaling, and fine-tuned autoscaling for optimized resource usage.
  • Led on-prem to cloud database migrations using AWS Database Migration Service (DMS), Schema Conversion Tool (SCT), and Azure Database Migration Service, including schema assessment, planning, and execution phases.
  • Instrumented detailed monitoring and alerting using Amazon CloudWatch, Azure Monitor, Log Analytics, and custom metrics, with alerting and auto-remediation workflows for CPU/memory thresholds, failed deployments, and service outages.
  • Integrated third-party observability tools such as Dynatrace, Splunk, and Grafana, enabling unified dashboards, end-to-end tracing, log correlation, and proactive root cause analysis.
  • Implemented secure access controls using AWS IAM policies, Azure RBAC, Managed Identities, and Key Vault, enforcing least privilege access, rotating secrets, and managing encryption keys with customer-managed keys (CMKs).
  • Conducted security auditing and compliance enforcement using AWS Config, AWS GuardDuty, Azure Policy, Defender for Cloud, and vulnerability scanners like Qualys, OpenVAS, and SonarQube.
  • Developed and maintained robust CI/CD pipelines using GitLab CI, Jenkins, and Azure DevOps, integrating SonarQube for static code analysis, Checkmarx for SAST, and Trivy for container vulnerability scanning.
  • Integrated cloud-native serverless computing using AWS Lambda and Azure Functions to automate infrastructure housekeeping tasks, cost tagging, log processing, and support ticket auto-responses.
  • Deployed and managed containerized MVPs and workloads with Docker, establishing a secure image pipeline with Harbor, JFrog Artifactory, and ECR, backed by automated vulnerability scans and signed images.
  • Streamlined release management using Azure DevOps Releases and GitLab pipelines, incorporating approval gates, blue-green deployments, canary rollouts, and post-deployment smoke testing for stable production releases.
  • Designed and implemented cost-optimization strategies, including right-sizing compute, setting budgets and alerts, using reserved and spot instances, enforcing auto-shutdown policies, and tagging resources for better accountability.
  • Enabled multi-region failover and disaster recovery (DR) strategies using AWS Route 53 failover policies, Azure Traffic Manager, geo-redundant storage, and cross-region replication for critical systems.
  • Built API-driven integrations with ServiceNow, JIRA, and custom ticketing platforms using serverless functions and webhooks to automate alerts, change tracking, and infrastructure operations.
  • Enforced GitOps principles by integrating infrastructure changes with Git version control, pull requests, branch protection rules, code reviews, and release tagging to ensure auditable and traceable change management.
  • Regularly engaged in capacity planning, performance tuning, and root cause analysis (RCA) meetings, driving continuous improvement and aligning cloud architecture with evolving business needs.
  • Delivered comprehensive runbooks, architecture diagrams, knowledge base documentation, and internal knowledge-sharing sessions to onboard team members and align cross-functional teams.
  • Participated in Agile ceremonies (daily standups, retrospectives, sprint planning), working closely with development, QA, and product teams to deliver cloud-native features on time and within SLAs.

Software Associate

PERFEXION
03.2013 - 02.2016
  • Created dashboards and set alert thresholds for critical system performance and availability metrics.
  • Maintained system logs using Syslog and Event Viewer, and forwarded logs to SIEM platforms like Splunk and Graylog.
  • Supported auditing and incident response through effective log management.
  • Automated OS patching and service restarts using cron jobs, Ansible playbooks, and PowerShell scripts. Reduced manual tasks and maintained consistency across environments.
  • Developed and maintained CI/CD pipelines with Jenkins, integrating Git for source control and Maven for builds. Used custom shell and batch scripts for deployment automation.
  • Supported version control systems including Git, GitLab, Bitbucket, and SVN.
  • Set up repositories, managed merge conflicts, and enforced commit and branch policies.
  • Improved build efficiency by configuring Nexus and Artifactory artifact repositories to cache dependencies and speed up Maven builds.
  • Conducted performance tuning at the system and network levels, including kernel parameter tuning and resource limit adjustments.
  • Optimized network stack settings to enhance application throughput.
  • Implemented role-based access controls (RBAC) and integrated two-factor authentication (2FA) for sensitive systems.
  • Managed secure credentials using KeePass, Azure Key Vault, and encrypted vaults. Collaborated with developers and QA teams in Agile environments.
  • Maintained development, test, and UAT infrastructure aligned with sprint schedules and deployment timelines. Participated in disaster recovery planning by creating and testing VM snapshots and backup policies.
  • Used tools like Veeam, Azure Backup, and AWS Backup for backup and bare-metal recovery planning.
  • Created detailed standard operating procedures (SOPs), infrastructure diagrams, and internal documentation. Supported smooth operations by reducing knowledge silos within the team.
  • Managed ticket-based operations with platforms like ServiceNow, JIRA, and ManageEngine.
  • Prioritized incident response, service requests, and change management workflows effectively.
  • Assisted with security audits and compliance initiatives for ISO 27001, SOC 2, and internal ITGC controls.

Education

Bachelor of Engineering and Technology - Electrical and electronics engineering

Bomma Institute of technology and science

Skills

Cloud platforms: Azure, Amazon Web Services (AWS)

Infrastructure as Code (IaC): Terraform, Azure Resource Manager (ARM), Cloud Formation

Build tools: Maven, ANT, MS Build

Configuration management tools: Ansible, Helm

DevOps tools: Jenkins, GitLab, Azure DevOps (ADO), GitHub Actions, Docker, Kubernetes

Scripting languages: Python, Bash, Shell, YAML

Application servers: Apache Tomcat, JBOSS, IIS

Databases: MySQL, DynamoDB, MongoDB

Version Control Systems: Git, GitHub, TFS/SVN, Azure DevOps, GitLab

Bug tracking and monitoring tools: JIRA, Nagios, SonarQube, Checkmarx, SNYK

Security and vulnerability scanning tools: HCL AppScan, Bugcrowd (penetration testing)

Monitoring and log analytics tools: Dynatrace, Splunk, Azure Monitor, Azure Log Analytics, ELF, Cloud Watcher

Operating systems: UNIX, RHEL Linux, Ubuntu

Timeline

Sr. Software Engineer

Dell
07.2021 - Current

System Analyst

UST Global
10.2020 - 07.2021

Software Engineer

IBM
02.2016 - 10.2020

Software Associate

PERFEXION
03.2013 - 02.2016

Bachelor of Engineering and Technology - Electrical and electronics engineering

Bomma Institute of technology and science

Similar Profiles

CREATE PROFILE
Kalyanapu Narasimha Rao