Amol Bhawari
DevOps Engineer
Pune
Summary
A passionate professional with overall 8.5 years of experience in DevSecOps, SRE, Cloud and in Linux and Windows administration. Highly skilled in source code management, Docker, and developing/maintaining robust and secured CI/CD pipelines. Proficient in utilizing configuration management tools like Ansible to automate daily tasks. Well-versed in administering both Linux and Windows environments, ensuring optimized performance and security across diverse platforms.
Overview
8
8
years of professional experience
4
4
Certifications
Work History
Specialist, Software Development Engineer
Fiserv India Pvt Ltd
01.2024 - Current
- Led DevSecOps initiatives by embedding security controls across CI/CD pipelines for Java, Python, and Node.js applications using GitLab and GitHub Actions, ensuring secure software delivery across the lifecycle.
- Designed and implemented end-to-end DevSecOps pipelines integrating automated security scans, artifact signing, SBOM generation, and policy enforcement.
- Implemented Cortex IDP (Internal Developer Platform) to enhance service cataloging, ownership visibility, and secure developer self-service capabilities.
- Designed and implemented GitHub reusable workflows to standardize CI/CD processes, including stages for code checkout, unit testing, Fortify, Sonatype, SonarQube analysis, SBOM generation, Docker image build, digital artifact signing, vulnerability scanning using Wiz, artifact publishing to Nexus with lifecycle governance, and deployment using Harness.
- Developed reusable GitLab components to streamline workflows, including cloning, unit testing, Fortify, Sonatype, SonarQube scan, SBOM generation, GitLab tagging, Docker image build, digital artifact signing, vulnerability scanning using Wiz, artifact publishing to Nexus with artifact lifecycle management using Nexus tags, and deployment validation using Heimdall (AWS DocumentDB) with releases orchestrated via Harness.
- Built, maintained, and optimized Docker images for applications based on requirements, including hardening base images, reducing vulnerabilities, and ensuring compliance with security standards.
- Administered Nexus Repository Manager for artifact storage and lifecycle management, including repository configuration, version control, cleanup policies, secure artifact promotion across environments, and access control governance.
- Led the implementation of RHTAS (Red Hat Trusted Artifact Signer) to digitally sign Docker images and binaries post-build; enforced signature verification pre-deployment to ensure artifact integrity in production.
- Provisioned infrastructure using Terraform and Terraform Enterprise, enabling scalable, secure, and governed infrastructure as code with centralized state management.
- Administered and managed OpenShift clusters, including deployment configurations, scaling, RBAC, and platform security.
- Built and managed scalable AWS infrastructure to support application deployments, improving reliability and reducing provisioning time.
- Enabled pipeline attestation using in-toto, ensuring end-to-end software supply chain security with metadata stored in AWS DocumentDB.
- Reduced pipeline execution time by 30–40% through optimized runners and modular job design.
- Decreased incident resolution time by 50% by proactively addressing build and deployment failures.
- Automated infrastructure and configuration management using Ansible, reducing manual effort by 60%.
- Implemented Continuous Delivery pipelines using Harness with built-in security and approval gates.
- Administered GitLab projects, users, and runners; managed SSL provisioning with Venafi for secure load balancer configurations.
- Led vulnerability management across Windows and Linux systems, ensuring timely identification, assessment, and remediation of security vulnerabilities.
- Provided L2/L3 production support for CI/CD pipelines and platform infrastructure, troubleshooting build/deployment failures, ensuring high availability, and continuously improving system reliability and developer experience.
BizOps Engineer II
Mastercard XBS Technologies Pvt Ltd
08.2018 - 01.2024
- Ensured high availability and performance of production systems through proactive monitoring, incident response, and root cause analysis; reduced downtime by 25–30%.
- Led the deployment of Ansible and AWX, automating patching and routine tasks across Windows and Linux systems, improving update consistency and reducing manual effort by 60%.
- Designed and maintained Ansible playbooks to automate daily administrative activities, enhancing team productivity and reducing errors.
- Configured and managed GitLab CI/CD pipelines for QA, UAT, and production deployments, ensuring consistent and automated application delivery.
- Provisioned and managed Azure infrastructure (VMs, storage, gateways, network resources), enabling scalable, secure, and compliant cloud environments.
- Administered hybrid infrastructure: managed Windows Server and Linux (RHEL, CentOS, Ubuntu), performed patching, backups, and disaster recovery planning.
- Automated system tasks using PowerShell and Bash, boosting operational efficiency across platforms.
- Managed identity and access control via Active Directory, LDAP, and PAM; configured user accounts, security policies, and group permissions.
- Deployed and configured MongoDB Ops Manager for centralized cluster monitoring, backups, and automation; ensured reliable backup strategies and disaster recovery.
- Configured SSL certificates on IIS, Azure Application Gateways, and Load Balancers to ensure secure communications.
- Managed BAU and incident tickets using Salesforce and BMC Helix, consistently meeting SLA targets.
- Created technical documentation (runbooks, maintenance guides, reports) using Confluence to support operational knowledge sharing
System Administrator Intern (Full Time)
Transfast India Pvt Ltd
12.2017 - 07.2018
- Assisted in Windows and Linux server administration, including regular patching, backup management, and user access control.
- Monitored system alerts using tools like PRTG and Zabbix, leading to a 40% reduction in incident response time.
- Managed Active Directory and Office 365 operations, including user setup, license assignments, distribution list (DL) management, and spam removal using PowerShell scripts.
- Provisioned and maintained Azure cloud resources, as well as VMs, DNS, and backups in Rackspace Cloud, ensuring high availability.
- Created and updated DNS records using Azure DNS and Rackspace DNS for seamless access to production environments.
- Administered Jira users and projects, resulting in a 25% improvement in onboarding efficiency.
Education
Bachelor Of Engineering - Computer Science
Pune Institute Of Computer Technology
Savitribai Phule Pune University 06.2016
HSC - Science
Ferguson College
Pune02.2012
Skills
Cloud Platforms:
Azure Cloud, AWS Cloud
Infrastructure as Code (IaC):
Ansible, Ansible AWX, Terraform
CI/CD Tools:
GitLab CI/CD, Harness CD, GitHub Actions, Jenkins
Containerization:
Docker, Kubernetes
Artifact Management:
Nexus Repository
Scripting & Automation:
Shell Scripting
Operating Systems:
Linux, Windows
Monitoring & Observability:
PRTG, Azure Application Insights
Vulnerability Management:
Fortify, Sonatype, Sonarqube, Wiz, tenableio
Practices & Domains:
DevOps
Site Reliability Engineering (SRE)
Platform Engineering
Linux and Windows Administration
Certification
Microsoft Certified: Azure Administrator Associate from Microsoft.
Timeline
Harness Certified Continuous Delivery & GitOps Developer
11-2024
Specialist, Software Development Engineer
Fiserv India Pvt Ltd
01.2024 - Current
Azure DevOps: Continuous Delivery with YAML Pipelines from LinkedIn.
06-2022
Ansible from Udemy
04-2022
Microsoft Certified: Azure Administrator Associate from Microsoft.
03-2022
BizOps Engineer II
Mastercard XBS Technologies Pvt Ltd
08.2018 - 01.2024
System Administrator Intern (Full Time)
Transfast India Pvt Ltd
12.2017 - 07.2018
Bachelor Of Engineering - Computer Science
Pune Institute Of Computer Technology
HSC - Science
Ferguson College