MOHAMMAD SHAJIBUJJAMA
Ashburn,VA
Summary
WWW: Bold Profile
20 Years of experience in IT as a Software Engineer, Reliability Engineer, DevSecOps Engineer, and SRE with Leadership abilities. Experience developing and Infrastructure as Code in an Agile environment using complex tools and techniques. Comprehensive knowledge of Defense Health-Care Solution (Cerner Millennium), Military HR system (PeopleSoft), GitOps (BigBang), State Department Task Orders (IRM), and Naval and Vessel Microservice Communication System. Proven expertise in analyzing, improving, and creating Requirements, System Development Specifications (SDS), Installation Guides (IG), Release Notes, Development Notes, Use Cases, User Stories, Epics, Spikes, Acceptance Criteria, Architectural Diagrams, and Business Workflows. Demonstrated expertise in developing single-page applications utilizing HTML, CSS, TypeScript, and JavaScript frameworks like Angular and ReactJS, along with extensive knowledge in building infrastructure using Docker, Kubernetes (EKS), Ansible, and Terraform. Proficiency in setting up AWS Control Tower for both multi account management, disaster recovery, scale environment, and security using Terraform Scripts. Possessing extensive knowledge of AWS cloud migration, I ensure platform, security, and operational process adaptation using AWS CAF. I have managed and configured cloud services such as EC2, S3, Security Groups, RDS, EBS, Auto Scaling, AMI, Elastic Search, and IAM through the AWS console and API integration. Managed and designed cloud infrastructure like Cloud Front, Elastic File System, VPC, Route53, Cloud Watch, Cloud Trail, Cloud Formation and IAM which allows automation operations. Experience Linux shell, Jenkins, Git, Ansible, and OpenShift to deploy development and infrastructure code and provision docker. Experience in implementing the RMF process within the defense acquisition process, starting with the six steps: Categorize System, Select Security Controls, Implement Security Controls, Assess Security Controls, Authorize System, and Monitor Security Controls. Demonstrated knowledge in infosec fundamentals, including threat modeling, penetration testing, incident response, network security, physical security, and encryption standards is also essential. Worked towards customer satisfaction and process efficiency, process improvement with strong communication skills and pleasing personality.
Overview
20
20
years of professional experience
1
1
Certification
Work History
LEAD DEVSECOPS ENGINEER
Guidehouse Federal
Ashburn, VA
10.2021 - Current
- Understand and analyze business requirements and technical specifications and collaborate with stakeholders to gather and clarify requirements
- Utilized Helm charts and Terraform scripts for automating deployment and configuration of Istio and applications, while integrating Istio configuration updates into Gitlab pipelines
- Create technical architectural diagrams using PowerBI to identify and recommend AWS services that align with solution requirements
- Extensive knowledge of AWS cloud migration to ensure the platform, security, and operational process adaption using AWS CAF
- Used CloudFormation to define and manage infrastructure as code and automate the deployment and management of infrastructure using AWS tools and scripts
- Configure Identity and Access Management (IAM) for least privilege access and ensure that cloud architectures comply with industry standards and regulations
- Adopted GitOps principles to standardize infrastructure and application delivery pipelines
- Maintained source-of-truth repositories for declarative configurations (IaC + Kubernetes manifests)
- Integrated GitOps with Terraform, Helm, and Kubernetes CRDs to manage hybrid environments
- Mplemented automated reconciliation between Git repositories and live cluster state via pull-based deployment model
- Enabled version-controlled rollbacks and auditable change management through Git commit history
- Established branching and environment promotion models (feature → dev → stage → prod)
- Enhanced team collaboration with GitOps-driven review and approval workflows using merge requests
- Installed and maintained logging cluster using Logstash, Elasticsearch and Kibana as a centralized solution to parse logs from docker containers
- Select and configure appropriate database services (e.g., Amazon RDS, DynamoDB, Postgress), Implement data security, backup strategies and Optimize data retrieval and access patterns using Rancher and Keycloak
- Ensured continuous compliance and security through the implementation of tools like AWS Config, AWS Security Hub, and AWS CloudTrail, in addition to using AWS Organizations and IAM for centralized security policy management
- Set up message queues, event-driven architectures, and APIs and Implement and manage API Gateway using AWS Lambda function for exposing and securing APIs
- Enhanced ansible feature to collect logs across firewalls, IDS (intrusion detection system), analyze historical security events and detect threats
- Experience in security automation to perform recurring IT security tasks such as endpoint scanning, incident response using Crowdstrike
SENIOR DEVOPS/AWS ENGINEER
Raytheon
Colorado Springs, CO
04.2019 - 10.2021
- Used AWS CloudFormation to create new account through AWS Control Tower's account artifactory for Landing Zone
- Experienced in define and manage guardrails and OU, setting up infrastructure component using AWS CloudFormation for Landing Zone
- Experience developing CI/CD Pipeline, release pipeline, build pipeline, deployment pipeline and scan/vulnerability test pipeline using Jenkins and CodeDeploy
- Designed and maintained end-to-end CI/CD pipelines in GitLab for containerized microservices
- Mplemented multi-stage pipelines for build, test, security scanning, artifact publishing, and deployment
- Integrated GitLab Runners on Kubernetes and EC2 for scalable and secure pipeline execution
- Configured GitLab CI variables, secrets management, and Docker registry authentication
- Integrated SAST, DAST, Dependency Scanning, and Trivy image scans for DevSecOps compliance
- Leveraged GitLab environments and review apps for dynamic testing and previews
- Automated deployments to Argo CD using GitLab CI triggers, enabling end-to-end GitOps automation
- Experienced in importing, exporting, and maintaining art factories from Nexus, ECR, Docker, and ProGet
- Work with internal teams and clients to ensure systems are effectively integrated, configured, managed, and supported in pre-production and production
- Implemented Nagios for Real-time Server, Infrastructure, and Application monitoring for maintenance requirements and maximized application uptime to maximize platform reliability
- Utilized private endpoints, VPC peering, and AWS PrivateLink to enable secure communications while protecting resources from the internet
- Design architectures for high availability and fault tolerance and Implement disaster recovery plans and backup strategies
- Develop infrastructure as code (IaC) templates using tools like AWS CloudFormation or Terraform and leverage AWS Elastic Beanstalk, AWS OpsWorks, or custom scripts for application deployment
- Develop Lambda functions to automate incident response actions and Enable AWS CloudTrail to capture API calls and log events across your AWS infrastructure
- Set up CloudWatch Alarms to monitor key AWS resources (e.g., EC2 instances, S3 buckets) for unusual activities and Create custom CloudWatch Events rules to trigger Lambda functions in response to specific events
- Utilized helm charts to deploy Cassandra, Redis, MongoDB, HBase and Elasticsearch enterprise in Rancher labs
- Performed server migrations on Linux/Unix and Windows servers, ensuring seamless transition of clients, data, and configurations with zero downtime
- Designed and implemented Cassandra containers and stateful sets based on contributed Kubernetes Cassandra examples
- Implemented POC using weave to create a mesh pod network between two K8s clusters and configured docker pods, dockerhub, docker registry and docker network
SOFTWARE ENGINEER III
Intellect Solutions
Herndon, VA
04.2017 - 04.2019
- Troubleshoot and analyze system issues, delving into hardware, networks, application, and storage/DB layers as neededUtilize LogRhythm to automate NIST CSF to reduce risk and improve overall application security
- Expertise in building data dictionary, functions, and synonyms for NoSQL (Elasticsearch and Mongo)
- Created stored procedures to import data and work closely with application teams and support on various performance and configuration issues on daily basis
- Worked independently with the remote or onsite client, gathered requirements that were transformed into technical language with the team, and worked closely with the product support team and project manager during go-live, production mode of product, and handshake period
- Worked as an OpenShift Engineer to migrate various applications from OpenShift 2X to the newer 3X platform for some significant applications already existing in the V2 environment
- Secure and optimize big data infrastructure, including Hadoop, Kafka, Hive, and Cassandra and Implement access controls, encryption, and auditing for big data solutions
- Implemented and automated Veracode security scanning tool for static code analysis, while managing artifact repositories through Sonatype Nexus
- Created a docker-registry and router pods in the OpenShift environment to serve user requests
- Utilized Docker and Kubernetes to develop, package, and deploy restful services within a microservice architectural framework
- Implemented CI/CD pipeline for app deployment in production using Docker
- Contributed to the management of automated deployments and sustainability of Kubernetes control plane components including kubelet, Kube-APIServer, ETCD, and Kuben-proxy
- Developed and designed the highly available and dynamic application using spring cloud angular framework and used DynamoDB and Amazon Web Service Relational Database
- Collaborated with business developers and utilized Power BI tools to generate dynamic resource capacity data for federal proposals, supporting bidding efforts
- Identify key stakeholders and their roles during an incident and Define incident severity levels and criteria for each level
- Set up logging and monitoring in GCP using services like Cloud Monitoring, Cloud Logging, and Cloud Audit Logs and Create alerts for specific events or anomalies that may indicate a security incident
- Drive strategy, patterns (and working code) for how we apply Cloud-native development & test automation practices across the TIOCA (Travel Issuance and Overseas Citizen Assistance)
- Designed and created a secure active directory for OKTA using windows server 2016; coded for multi-factor authentication and integrated with single-page Angular Application
SENIOR DEVOPS ENGINEER
Unisys Incorporation
Reston, VA
11.2014 - 10.2017
- Automated the provisioning of on-premises virtual machines, network resources, and load balancers with Kubernetes CRDs and custom controllers
- Built a user-friendly interface and GitOps pipelines that concealed the complexity of the underlying Kubernetes platform and allowed for baked-in best practices and enforcement of security policies
- Participate in the lifecycle management of the Linux OS platform and applications, including Puppet, Red Hat Satellite, Red Hat Cloud Forms, and OpenShift, as well as future applications
- Designed and implemented IT security automation utilizing ansible for verification with OpenSCAP
- Install and support in-house, open-source, and 3rd party applications throughout the technology stack
- Hand-on experience creating a dashboard using Splunk, Dynatrace, and CloudWatch for debugging and log monitoring purposes
- Administer the management of security appliances, tools, products, and aspects of the information system and perform the system's day-to-day security operations and maintenance (O&M)
- Demonstrated knowledge in writing ansible-playbook in yml formats and map host using JSON, used AWS Rest API, Access Management, and Storage Gateway
- Created docker volume to store data in a relational or nonrelational database, used curl command to install dockercompose to manage other containers, ran docker registry from an original registry, and used docker networking to communicate with microservices
- Implemented various Validation Controls for form validation and implemented custom validation controls with JavaScript validation controls
- Delivered cloud environments as code via Terraform, operationalized Kubernetes with logging, monitoring, security, and service mesh capabilities, and built GitOps-powered continuous delivery pipelines for application deployments
- Guided and mentored the team, assisting in the migration of a legacy VM-based architecture to a Docker and Kubernetesbased modern architecture
- Conducted user provisioning, instant setup, EBS volume snapshot, generating reports, disaster recovery scripts of
DEVOPS ENGINEER
CSRA
Washington, D.C.
11.2005 - 07.2014
- Investigate root causes of failing test cases and rebuild test scripts quickly using experience and proper skillset and also deep understanding of XML, HTML, CSS, and Web-Services
- Utilized HTML, CSS, and Java Scripts to develop a single sign-on application that met complex business requirements and UX prototypes
- Integrated client applications with the server-side framework, such as Apache Struts 1 under Java 1.6
- Developed secure JSP files, Restrict Access, Disable Dev Mode, UFT-8 encoding, and used Strut tags for security and protect application from any malicious attacks
- Initializing the POS machines with the ON files created by the WIMS application and backend integration on the ODS database for proper updates from the WIMS application
- Verifying the ON files data created using the WIMS application against the CWS (Corporate Workstation) installed on all the POS machines
- Testing the PeopleSoft (HR) applications by creating sales transactions with different payment methods and verifying the OFF files for tallying inventory balances
- Conducted meetings with the Project Manager and various user groups to obtain status reports and establish project dependencies
- Maintained the dev code and libraries in source controls like SVN over time for improvements and organized real teamwork and extensive use of JIRA for logging defects and tracking them to closure
- Used Object Oriented programming concepts and SDLC to develop JavaServer Faces (JSF) application to support World Health Organization (WHO) Used validation controls in Java Script for validation purposes and extensively used Database validations
- Implemented Java Naming/Directory Interface (JNDI) and JDBC connection pooling to retrieve product information from database tables
- Conducted application design, development, and support using Core Java, J2EE (EJB, Servlets, JSP, JDBC, JNDI, JMS), Struts Framework, Spring Framework, and Java Beans
- Developed Activation Layer system using FSM framework, executed maven build files and facilitated deployment with pom.xml
- Developed Stateless Session beans and MDB utilizing EJB2.0 API, JMS Hornet Ques, and JBoss application server; maintained source code version control systems including GIT and SVN repositories
Education
MASTER'S - SCIENCE
Grand Canyon University
April 2022
Skills
- Process Control Documentation
- Root Cause Analysis
- Docker
- AWS
- Kubernetes
- Terraform
- Ansible
- Itsio
- SecurityHub
- Splunk
- Complex Problem-Solving
- Security Clearance
- Design development
- Process Improvement
Certification
CISM (Certified Information Security Manager)
CompTIA Security+
AWS DevOps Professional
AWS Solution Architect Professional
CSM (Certified Scrum Master)
TSSCI DoD CAF Verified 2022
Timeline
LEAD DEVSECOPS ENGINEER
Guidehouse Federal
10.2021 - Current
SENIOR DEVOPS/AWS ENGINEER
Raytheon
04.2019 - 10.2021
SOFTWARE ENGINEER III
Intellect Solutions
04.2017 - 04.2019
SENIOR DEVOPS ENGINEER
Unisys Incorporation
11.2014 - 10.2017
DEVOPS ENGINEER
CSRA
11.2005 - 07.2014
MASTER'S - SCIENCE
Grand Canyon University