Lakshmikiran Jasthi

Infrastructure as Code and Cloud Automation:

• Designed, implemented, and maintained Infrastructure as Code (IaC) using Terraform to provision AWS resources, including EKS clusters, RDS databases, S3 buckets, EBS volumes, and IAM roles.
• Automated the deployment and scaling of Kubernetes clusters and worker nodes on EKS to ensure high availability and scalability.
• Managed and automated the configuration of persistent storage solutions using EBS volumes and EFS for diverse application needs.

Disaster Recovery and High Availability:

• Implemented disaster recovery (DR) strategies and high-availability solutions for critical services, including EKS, RDS, and AWS storage resources, minimizing downtime during failures.
• Designed multi-region and multi-AZ setups to ensure redundancy and fault tolerance for critical applications and data.
• Automated backups for RDS databases, S3 data, and other critical resources with regular restore procedure testing to ensure data integrity.

Monitoring and Observability:

• Deployed and configured monitoring tools, including Prometheus, Grafana, and New Relic, to monitor infrastructure, application performance, and Kubernetes metrics.
• Set up log aggregation using tools like AWS CloudWatch, ElasticSearch, and Grafana Loki to track logs from EKS, RDS, S3, and IAM.
• Designed and implemented comprehensive alerting systems to proactively monitor infrastructure health, performance, and security events.

Security and Compliance:

• Conducted security audits and implemented IAM role policies to enforce least privilege access for AWS resources.
• Performed vulnerability assessments and implemented remediations for EKS clusters, RDS instances, and S3 buckets.
• Integrated security scanning tools, including Checkov, TFLint, and SonarQube, to identify vulnerabilities in Terraform configurations and Dockerfiles.
• Ensured secure management of secrets using AWS Secrets Manager, AWS Systems Manager Parameter Store, and HashiCorp Vault.

CI/CD and Automation:

• Integrated Terraform and Ansible into CI/CD pipelines to automate infrastructure provisioning and application deployments.
• Automated code and infrastructure changes with Jenkins, GitLab, or Bitbucket, triggering deployments with FluxCD for Kubernetes applications.
• Implemented rollback strategies and continuous delivery using Helm charts and FluxCD to ensure smooth application updates.

Incident Management and Root Cause Analysis:

• Responded to and resolved production incidents by troubleshooting infrastructure issues related to EKS clusters, RDS performance, and storage systems.
• Led Postmortem and Root Cause Analysis (RCA) investigations to identify incident causes, propose long-term solutions, and document findings.
• Collaborated with development teams to enhance SLO/SLA tracking and improve incident resolution times.

Cost Optimization and Resource Management:

• Monitored resource utilization on EKS clusters, RDS instances, and AWS storage to ensure efficient capacity planning and resource usage.
• Proposed and implemented cost optimization strategies, including reserved instances, auto-scaling, and resource right-sizing.
• Regularly analyzed cost trends and recommended strategies to improve cloud infrastructure efficiency.

Collaboration and Knowledge Sharing:

• Led cross-functional collaboration with Development, DevOps, and Business teams to ensure smooth deployment and operation of production applications.
• Conducted knowledge-sharing sessions on cloud infrastructure, containerization, security best practices, and incident management.
• Created detailed documentation for infrastructure setup, deployment processes, and troubleshooting, supporting transparency and operational efficiency.

Continuous Improvement and Innovation:

• Enhanced monitoring, logging, and alerting systems based on team feedback and evolving requirements.
• Experimented with new tools and technologies to improve automation, performance, and system reliability.
• Stayed updated with the latest AWS services and Kubernetes advancements to enhance overall infrastructure performance and security.

On-premises Migration and Automation:

• Led the migration of critical workloads from AWS to an on-premises data center, ensuring minimal downtime and optimized performance.
• Developed and maintained Ansible playbooks for seamless deployment and configuration management of on-premises infrastructure.
• Designed and implemented CI/CD pipelines to automate build and deployment processes for on-premises applications.

Build and Deployment Optimization:

• Created and managed DSL jobs in Jenkins to support the secure build pipelines for React and Angular applications, incorporating build security, vulnerability scanning, and static code analysis.
• Migrated Jenkins from AWS to on-premises using Configuration as Code (CasC) to standardize configurations and simplify infrastructure as code practices.

Containerization and Artifacts Management:

• Built and optimized Dockerfiles for deploying on-premises containerized applications to enhance portability and scalability.
• Conducted a proof-of-concept (PoC) for migrating ECR (Elastic Container Registry) to JFrog Artifactory, establishing a strategy for artifact management.

Kubernetes and Performance Assessments:

• Performed a PoC for migrating Kubernetes-based services to on-premises clusters, evaluating feasibility, scalability, and cost efficiency.
• Supported weekly performance runs to assess system performance metrics and ensure SLA compliance.
• Collaborated on monthly penetration testing (PEN Test) runs to identify and remediate vulnerabilities, enhancing system security.

Operational Support and BAU:

• Delivered comprehensive support for business-as-usual (BAU) issues, ensuring smooth operation of critical systems and services.
• Troubleshot and resolved performance bottlenecks and security vulnerabilities across the on-premises environment.

Kubernetes and Infrastructure Automation:

• Provisioned Kubernetes clusters using Amazon EKS and Terraform, enabling scalable and resilient containerized application environments.
• Developed and managed Kubernetes manifest files for deploying application services, ensuring optimal configuration and seamless operations.
• Deployed and managed services in Kubernetes clusters, including setting up EFS volume mounts for stateful workloads.
• Created and configured user/service accounts to enable secure access for users and services across clusters.

CI/CD and Application Deployment:

• Designed and implemented CI/CD pipelines using Jenkins and Spinnaker to automate the deployment of applications and infrastructure changes.
• Extensively utilized Terraform to provision infrastructure, deploy web applications and microservices, and manage configurations using Kubernetes and Helm providers.
• Built and deployed Docker images using optimized Dockerfiles, enabling rapid and secure deployment to Kubernetes clusters.

Monitoring and Observability:

• Deployed and configured Prometheus and Grafana using Helm charts to monitor infrastructure and application performance.
• Created custom dashboards and alerts in Grafana to visualize critical metrics and ensure proactive incident management.

Security and Automation:

• Configured OSSEC for Intrusion Detection and Prevention (IDS/IPS) to bolster system security, automating build processes using Jenkins pipeline scripts for enhanced efficiency.
• Developed Python scripts to automate routine tasks, including backups, and created Shell scripts for additional automation needs.
• Performed application hardening on local and production servers to improve security posture and minimize vulnerabilities.

Containerization and Kubernetes:

• Containerized services for deployment in Kubernetes clusters, integrating automated build and deployment pipelines using Jenkins.
• Monitored containerized services using Grafana, Sumo Logic, and the ELK stack, ensuring system health and enabling proactive incident response.

Cloud Infrastructure and Configuration Management:

• Set up and configured environments in Azure for microservices deployments, leveraging plugins like Cloudstor for optimized storage.
• Automated infrastructure and application configurations with Ansible playbooks to streamline deployment processes and reduce manual efforts.

Collaboration and Release Management:

• Coordinated cross-functional teams, including Development, QA, Support, and Business Analysts, to align on goals and ensure timely delivery throughout the release cycle.
• Actively planned and organized the release cycle, maintaining thorough documentation to promote transparency and knowledge sharing.

Performance Optimization and Monitoring:

• Optimized production maintenance processes and monitored system changes to ensure continuous performance improvements.
• Utilized monitoring tools and dashboards to proactively identify and address performance bottlenecks and incidents.