PHANINDRA GOWTHAM DANDE

PROJECTS

Client: BELL CANADA

• OpenShift Cluster Management with Monitoring and Microservice Deployment: A fully automated pipeline was designed to build, deploy, and monitor applications in an OpenShift environment. The pipeline utilized Jenkins for CI/CD, Docker for containerization, UDeploy for deployment automation, and Prometheus and Grafana for real-time monitoring of pod health.
• Transforming Jenkins pipeline jobs into Groovy scripts: Jenkins pipeline jobs transformed into Groovy scripts for automating tasks like code cloning, building, scanning, code coverage analysis, Karate automation, Docker image creation, repository management, Urban Code Deploy integration, dev environment deployment, and job status notifications, enhancing software delivery efficiency and reliability.
• GitLab CI/CD pipeline setup using GitOps & ArgoCD: Setting up a CI/CD pipeline using GitOps and ArgoCD enables a fully automated, declarative approach to continuous delivery in Kubernetes environments. In this setup, the pipeline is managed through Git repositories as the single source of truth for application and infrastructure deployment configurations. Prometheus and Grafana are used alongside Distributed Tracing Management (DTM) for comprehensive observability, while SonarQube and Checkmarx handle code quality and vulnerability scanning.
• Deploying a Product on AWS with Terraform: Deploying a product on AWS using Terraform to provision the necessary infrastructure. The infrastructure components include a Kubernetes cluster (EKS), Amazon VPC, Application Load Balancer (ALB), Elastic Container Registry (ECR), EC2 instances, Route 53 for DNS management, and S3 bucket for logging. The product is deployed on the EKS cluster with a custom configuration, and automated deployment using Terraform.
• Vault Integration with GitLab CI: Integrated HashiCorp Vault with GitLab CI to securely manage and inject secrets into CI/CD pipelines. Configured Vault policies, authentication methods (jwt and LDAP)and dynamic secret generation for AWS IAM roles, API keys, and other sensitive data. Automated secret management processes within GitLab CI pipelines, enabling secure access and deployments while adhering to the least privilege access principle

Client: Nokia

• AWS, GCP, and Azure Hybrid Cloud Support: Supported over 400 hybrid cloud accounts as part of the Nokia NHC project, managing infrastructure operations and automating resource creation for on-prem connectivity using Terraform. Responsible for provisioning and maintaining Kubernetes clusters, troubleshooting complex networking issues related to inbound and outbound access, and designing IAM roles, policies, and service accounts in alignment with the Principle of Least Privilege. Performed day-to-day tasks, providing support to users in a hybrid cloud environment, including resource provisioning, troubleshooting cloud infrastructure, security compliance, and user access management, ensuring seamless cloud operations across AWS, GCP, and Azure.
• Private Service Connect: Set up and configured the Confluence Data Center On-premises connector in Google Cloud Vertex AI for custom search applications. Managed authentication, service attachments, and network settings for private destination types, including the use of internal load balancers (ILBs) for traffic routing. Configured Private Service Connect (PSC) for secure connections.
• Security Vulnerabilities Remediation: Remediated critical security vulnerabilities across AWS and GCP environments by addressing misconfigurations, enforcing private access controls, and applying cloud-native security best practices; achieved a reduction in recurring security issues to under 10% month over month.