Summary
Overview
Work History
Education
Skills
Certification
Timeline
Generic

RAMSEY NDIFOR

Saint Paul,MN

Summary

Detail-oriented Cloud DevOps Engineer with more than 8 years of experience designing and delivering security and network solutions in cloud infrastructure based on AWS cloud security standards- governance and control practices. Advanced knowledge in Information as a Service (IAAS)- Platform as a Service (PAAS) and Software as a Service (SAAS) on AWS technologies and associated components and variations, knowledge of the AWS shared responsibility model and its application- security controls for workloads on AWS-logging and monitoring strategies; -cloud security threat models- patch management and security automation; ways to enhance AWS security services with third-party tools such as Ansible.

Overview

9
9
years of professional experience
1
1
Certification

Work History

DEVOPS ENGINEER

Regions Bank
02.2023 - 03.2024
  • Used Jira to plan, track, support, and close requests, tickets, and incidents
  • Implement Amazon RDS with Multi-AZ for automatic failover servers and created roles for EC2, RDS, S3, and Cloud Watch resources to communicate with each other using IAM
  • Also made use of Content Delivery Service (CloudFront and AWS Global accelerator) to cache company data so that users from different AWS regions can access data at quicker rates due to low latency
  • Implemented maintenance and configuration of users account for Dev, QA and production servers and created roles for EC2, RDS, S3, and cloud watch resources to communicate with each other using IAM
  • Using CloudWatch, and VPC Flow Logs to monitor and retain account activity related to actions across AWS infrastructure
  • Supported CI/CD pipeline running on ECS with the use of terraform
  • Created Task definitions , Task and services for these resources
  • Perform continuous in-depth monitoring of cloud applications (CloudWatch, CloudTrail, VPC Flow logs, Config, etc.) and provide recommendations for minimizing loss and destruction, mitigating exploited or exploitable weaknesses, and minimizing impact to service/returning to normal service as quickly as possible
  • VPC built with Private and Public Subnet coupled with VPNs setup back to on-premises datacenter and corporate offices
  • VPC peering with other Accounts allowing access and routing to service and users of separate accounts to communicate.

CLOUD/DEVOPS ENGINEER

DoorDash
01.2019 - 11.2022
  • Used Lucid Chart to develop architectural diagrams before implementation and to give customers and clients visual workflow of what is required.
  • Used Jira to plan, track, support, and close requests, tickets, and incidents
  • Implemented security best practices in AWS including multi-factor authentication, access key rotation, encryption using KMS and TLS, Firewalls, Security Groups, and NACLs, S3 bucket policies
  • Design & architect self-healing, secured, HA & fault tolerant infrastructure in AWS making use of AWS services like ASG, Elastic Load balancers (NLB and ALB)
  • Used ASG to scale horizontally and vertically based on ingress traffic and CPU utilization, to save on company resources and cost
  • Monitored servers, devices, and applications to identify and rectify potential issues on time
  • Made use of CloudWatch and data dog for intensive monitoring of instances and resources
  • Architect Amazon RDS with Multi-AZ for automatic failover servers and created roles for EC2, RDS, S3, and Cloud Watch resources to communicate with each other using IAM
  • Made use of SSM for automating patching of AMIs by using patch manager
  • Experience in migrating and implementing multiple applications from on-premises to cloud using AWS services, SMS, DBMS, Cloud Formation, S3, Route 53, Glacier, EC2, AURORA, SNS, Lambda, VPC, Cloud Trail, API gateway
  • Also made use of Content Delivery Service (CloudFront and AWS Global accelerator) to cache company data so that our users from different AWS regions can access data at quicker rates due to low latency
  • Implemented maintenance and configuration of users account for Dev, QA and production servers and created roles for EC2, RDS, S3, and cloud watch resources to communicate with each other using IAM
  • Perform continuous in-depth monitoring of cloud applications (CloudWatch, CloudTrail, VPC Flow logs, Config, etc.) and provide recommendations for minimizing loss and destruction, mitigating exploited or exploitable weaknesses, and minimizing impact to service/returning to normal service as quickly as possible.

CLOUD ENGINEER

Rural Sourcing
01.2017 - 01.2019
  • Build and configure virtual data center in AWS Cloud to support Enterprise Data Warehouse hosting including Virtual Private Cloud (VPC), Public and Private Subnets, Security Groups (SG), Route Tables, Elastic Load Balancers ELB), Route 53
  • Deployed CloudWatch unified agents on instances for monitoring system metrics and application metrics and logs
  • Advised and implemented hosting of company applications within Private Subnets and access to those applications were done using bastion host
  • Partook in disaster recovery scenarios for backing up data and utilizing AWS backup and restore tools like AWS storage gateway and developed solutions around pilot light and warm standby
  • Build servers using AWS, importing volumes, launching EC2, RDS, creating SG, auto-scaling, ELBs in defined VPC
  • Established VPC connectivity by making use of Transit Gateway for connecting VPCs and VPN connection to datacenter
  • Automate Compliance Governance by provisioning and leveraging AWS Landing Zone as well as AWS Control Tower for centralized enterprise architecture and centralized managing
  • Recommended AWS SSO on Control Tower for managing user access on multiple platforms.
  • Using CloudWatch, and VPC Flow Logs to monitor and retain account activity related to actions across AWS infrastructure.
  • Created Task definitions , Task and services for these resources.
  • Deployed and managed EKS clusters with using terraform.
  • Created cluster resources like pods , ingress controllers etc.
  • Used Jenkins as continuous integration tool for automation of daily processes.
  • Used Groovy for setting up pipeline jobs for different processes for test, build and code coverage with different plugins.
  • Set up and manage Docker containers running Go and PHP applications for deployment into Kubernetes pods.
  • Proposed and developed solutions for application deployments by making use of AWS code pipelines as compared to native tools for cost management.
  • Worked on Database Migration Project from client's data center to Amazon Aurora.

JR SYSTEMS ADMINISTRATOR

Bavin Corp Consulting
04.2015 - 12.2016
  • Improved system performance by proactively monitoring and maintaining hardware, software, and network components.
  • Streamlined processes for increased efficiency by automating repetitive tasks through scripting.
  • Collaborated with cross-functional teams to ensure seamless integration of new technologies into existing infrastructure.
  • Designed, deployed, and clustered High Availability servers on VMware ESXI using vSphere Client
  • Build and configured Linux servers from scratch with type one hypervisors for virtualization and network components
  • SSL setup for Apache and Nginx applications coupled with SSL for all HTTP to HTTPS thereby maximizing security
  • Experienced in GitHub (cloning Git repositories, creating branches, pushing to Git from local, making pull requests, etc.) Architected and implemented continuous integration and deployment pipelines using Jenkins and other CI.

Education

Associate of Applied Science - Cybersecurity

Century College
White Bear Lake, MN
12.2020

Bachelor of Science - Computer Science

Presbyterian University of Cameroon
Bamenda, Cameroon
06.2014

Skills

  • AWS Cloud: EC2, EFS, VPC, RDS, S3, Glacier, IAM, Kinesis, CloudFront, Cloud Watch, Cloud Trail, Cloud Formation, DynamoDB, Aurora, Memcached, Lambda, Route53, SNS, SQS, API Gateway, Elastic cache, Redshift, ASG, WAF, Shield, AWS Config
  • Monitoring Tools: Data sync, STC, DMS, SMS, AWS Discovery services, DR strategies, Migration Hub
  • DevOps Tools: GitHub, Code Commit, Code Pipeline, Code Build, Code Deploy SSMECR, EKS, ECS, SSM (systems manager)
  • Migration Tools: Data sync, STC, DMS, SMS, AWS Discovery services, DR strategies, Migration Hub
  • Networking Tools: CIDR Block range, VPC Subnets, switches, Routers, LAN, WAN, transit gateway, VPC endpoint, VPC peering, Site to Site VPN, direct connect, VPG, NACLS, Bastion Host, Subnetting
  • Databases: MYSQL, MYSQL 56, T-SQL, MongoDB, Enterprise Oracle, Postgres, Documents DB, Amazon Aurora, Dynamic DB, RDBM, PL/SQL
  • Scripting Languages: Python, YAML, JSON, BASH Scripting, Powershell3
  • AWS Organization user management: SSO with OKTA, Cognito, AWS Organizations, Control Tower, AWS manage AD, STS
  • Programming Language: Bash Shell, JSON, YAML, Python
  • DevOps/CI/CD: Terraform, GitHub, Git, GitLab, GitHub Actions, Bitbucket, Maven, Code Commit, SonarQube, Kubernetes, Code Build, Code Deploy SSM, Docker, etc
  • Ticketing tools: Jira (agile/scrum methodology)
  • Operating Systems: Windows, MacOS, Linux, Ubuntu, RedHat, Centos

Certification

  • AWS Solutions Architect Associates - 2022

Timeline

DEVOPS ENGINEER

Regions Bank
02.2023 - 03.2024

CLOUD/DEVOPS ENGINEER

DoorDash
01.2019 - 11.2022

CLOUD ENGINEER

Rural Sourcing
01.2017 - 01.2019

JR SYSTEMS ADMINISTRATOR

Bavin Corp Consulting
04.2015 - 12.2016

Associate of Applied Science - Cybersecurity

Century College

Bachelor of Science - Computer Science

Presbyterian University of Cameroon

Similar Profiles

CREATE PROFILE
RAMSEY NDIFOR