Madhu, Cloud Security Engineer

Experience

Senior Solutions Architect - Oracle OCI/AWS/Azure, Hitachi Consulting, Hyderabad

Dec 18’ 2018 – Till date
Responsibilities: 
Cloud Security Architect – Leading Bank in Vyatnam

• Designing and deploying the highly available, secure infrastructure in AWS and Azure cloud.
• Deploy and configuration of PaloAlto firewalls for traffic inspection.
• Advanced security features design and implementation in PaloAlto firewalls.
• Good hands-on AWS GuardDuty, Inspector, KMS, WAF and Security Hub services.
• Deploy and configuration of Barracuda WAF to inspect the web application traffic.
• Setting up internal load balancers for Web, Application, and database tiers.
• Design and Implement NetSkope CSPM and CASB solution for AWS cloud security, Compliance.
• Automated security compliance and security automation using AWS Config.
• Implement AWS config with auto remediations to intact with baseline configurations and compliance.
• Implementing security policies in both PaloAlto firewall and Barracuda WAF for the critical attacks/alerts.
• Implement the SSO using the Microsoft ADFS.
• Weekly and Monthly security reviews with customer.

Cloud Solutions Architect Advisor – Travel and Finacials customers

• Design Deploy and Manage Scalability, Reliability, Efficiency and Security on public cloud environments.
• Configuring and Managing the AWS Security Hub, Guardduty, Inspector, IAM Analyzer services.
• Deploying the environment using the Terraform. New services deployment using Terraform.
• Designing and Deploying the Zero trust environment in AWS, Azure and Oracle OCI.
• Implement Qualys Guard scans for cloud environments.
• Implementation of Azure Firewall, Key Vaults and security centre and management.
• In collaboration with Leadership team, sales and pre-sales teams, drive revenue growth across a broad set of customers.
• Implement Azure Network watcher, WAF, Application gateways.
• Experience on migrating Oracle E-Business Suite and Other workload to Oracle Cloud. Working closely with customers to plan and implement DB and Application migrations.
• Designed and Implemented Hub-Spoke architectures to meet customer connectivity and security requirements.
• Designed and Implemented Zero trust architecture using PaloAlto firewalls.
• Meet with customers to gather their business challenges and requirements.
• Define cloud network infrastructure to establish network connectivity between on premises to Cloud.
• Design and manage Identity management (IDCS) and Federation between Azure & IDCS for SSO.
• Capacity and cost management on public cloud environments.
• Experience on design and deploying of Monitoring and Log management on public cloud environments.
• Experience on setting up multi compartment architecture solutions with security best practices

Solution and Security Architect – Medical & Pharmaceutical customer

• Designing and deploying the highly available, secure infrastructure in Oracle OCI and Azure cloud.
• Designing and Deploying Hub and Spoke architectures in West Europe and East US locations.
• Configuring Hybrid connectivity between On-premises DC and Azure Cloud Environments using Express route circuits and IPsec VPN tunnels.
• Deploying and configuring Express route Gateways to extend the Extend the express route circuit across various Vnets.
• Deploying and configuring PaloAlto firewalls in Hub virtual networks with various security profiles.
• Deploying and configuring the Spoke Virtual networks and configuring peering connections.
• Setup UDRs to define the traffic path over the PaloAlto firewalls in Hub network.

Cloud Solution Architect - Oracle OCI and Azure, Netenrich Technologies Pvt Ltd

April 2018 to Dec 2018
Responsibilities:
Practice Lead- Cloud Security

• Building capabilities and various offerings around Cloud Security In AWS, Azure and OCI Cloud.
• Cloud Security Automation use cases build.
• Cloud Security best practices and Compliance’s metrics for HIPPA, CIS etc
• POCs on Various Cloud security native tools and third-party tools.
• Market research on latest tools and technologies.
• IAAC template preparations for reuse.
• Building the Cloud network & security offerings with industry best practices.
• Building Use cases for Cloud network and security practice.

Learning Platform Implementation in Oracle Cloud OCI - Oracle Inc

• Designed a highly scalable, highly available architecture using Docker Enterprise Edition.
• Zero touch deployment using Terraform, end to end Platform deployment is using the Terraform code.
• Implemented the platform in Ashburn and Phoenix regions for Production and DR.
• Used Docker Containers for deploying the micro applications.
• Prepare High-Level and Low-Level Architecture Diagrams for Platform, Networking and Security.
• Prepare Naming convention document, Inventory sheets for VM and SKUs, Block Storage, Load Balancers, Networks etc.
• Overseen and help team to deploy and Product Platform using Cloud VMs (Windows and Linux), Internet Proxy, HA Proxy, NFS, Docker Enterprise Edition, Jenkins, Chef and Rethink DB.
• Manage and help operations team to Monitor the environment, troubleshooting issues, implement Bug fixes, Deploy new application stacks etc.
• Implemented backup strategies.

Cloud Infrastructure and Platform Architect

• Managing the Platform on Oracle OCI cloud, AWS and Microsoft Azure.
• Conduct meetings with developer’s, Application owner’s and Infrastructure teams to understand the On-Premises infrastructure and collect requirements.
• Architect the cloud infrastructure and networking for customer workload and application movement.
• Design and Implement customer VPN and Express route connectivity.
• Design and Implement Managing the customer Hybrid environment.
• Assess Hoster and Customer DC and application for Cloud readiness.
• Prepare Dependency report, Risk and mitigation plan and RACI matrix to support the transformation.
• Re-platform legacy workloads to cloud native services.
• Design and implement modern applications using Cloud native services.
• Automating the deployments as much as possible using the ARM templates, PowerShell scripts.

Senior Cloud Platform Engineer - Oracle OCI and Azure, Sysgain Inc

Jan 2017 to Aprl 2018
Responsibilities:
Migration Tools Validation – Microsoft

• Deploy and configure various Azure Cloud Migration tools.
• Run the assessments and prepare the reports.
• Run POCs to migrate workloads and Applications to Azure cloud.
• Test various database tools to migrate the database and schema and other functions to cloud.
• Prepare a overview document summarizing all tools, their Pros and Cons.

Cross Cloud Platform Migration – Oracle OCI and Azure

• Design and deploy the connectivity between Oracle OCI and Azure.
• Configured Express route configurations at Oracle Cloud environment.
• Configured connectivity between AWS and Oracle BMCS with a Juniper switch and Megaport.
• Provisioned Oracle 12c Virtual machines for Database migration between Azure and Oracle BMCS.
• Configured BGP routing and advertised routes from Azure and Oracle BMCS.
• Helped the Oracle Teams during the engagement with connectivity testing.
• End to end documentation and handover.

Cloud Tower Lead- Migrations, Networking and Security

• Building capabilities and various offerings around Oracle Cloud networking and security.
• End to end handling of the Datacenter migration to Cloud.
• Customer Datacenter VMs, applications, network and security assessment and designing the cloud environment.
• Planning and migrating the customer Data Centres to public cloud like Oracle OCI, AWS and Azure.
• Understand the industry requirements and building the Cloud network & security offerings.
• Building Use cases for Cloud network and security practice.
• Training and demo for sales team to sell our solutions and services.
• Help Sales/Marketing team with kick-off content, BDM and TDM discussion materials etc.
• Conduct Training / KTs for the Teams.

Team Lead – Cloud & Networking, Rimini Street Inc

Sep 2013 to Dec 2016
Responsibilities:

• Virtual Datacenter build outs in Azure and AWS cloud for various customers with standard architecture.
• Designing and deploying PaloAlto firewalls in Azure and AWS.
• Managing the firewalls across all data centers and remote office locations.
• Physical Datacenter Migration from Pleasanton to Las Vegas Switch3, USA.
• Design and deployment of Cloud Datacenter in AWS & Azure Cloud.
• Setup Highly Available and Hybrid Cloud solution using OpenSwan on AWS.
• Migrated the On-Premises bluecoat proxy solution to the new cloud-based solution.
• Designed the Cloud security architecture with PaloAlto firewalls, various approaches to enhance security at various stages that protects the applications hosted in cloud.
• Build S2S tunnels from OnPrem to Cloud for extending the LAN connection.
• Build Global Secure Internet Policy for Multi Cloud and Multi Regions.
• Setup of new offices in London, Lavages, Tokyo and Bangalore, UK and Israel locations.
• Managing the On-premises and cloud Infrastructure for day-to-day operations.
• Managing a team of 9 members.

Senior Network Security Engineer, Tech Mahindra

May 2008 to Sep 2013
Responsibilities:

• Planning, designing of Corporate Firewalls architecture and implementing in distributed environment.
• Designing and implementing resilient, reliable, and highly available Network topologies.
• Maintaining Corporate Firewalls & Analysis of firewall logs using various tools Firemon and Tufin security analysers.
• Designing and implementing different connectivity solutions to various customers with S2S VPN and Remote site VPN across the globe.
• Designing and testing Business Continuity Plan (BCP) and Disaster Recovery.
• Installation and Administration of various Operating server systems like Linux(RHCE), Windows Server 2000,2003,2008 and Windows server 2008R2, in Physical and Virtual (Hyper-V, VMware ESX) environments.
• Consolidating and migrating the underutilized servers to Virtual environment to reduce the number of physical servers and cost.
• Active Directory installation, Administration & Management, Creating and managing Active Directory GPOs, OS & Security Patch Deployment, Servers Security Management and User Policies.
• Effectively managing the physical and Virtual entities by improving the efficiency of time, cost and resources.
• Radius authentication management across all network devices.
• Internal and External Network security auditing.

Certificates

• Certifications & Trainings
• AWS Certified Security – Specialty
• Microsoft Certified: Azure Security Engineer Associate (AZ-500)
• Palo Alto Certified Security Engineer (PCNSE)
• Checkpoint Certified Security Administrator (CCSA)
• Oracle Cloud Infrastructure 2019 Certified Architect – Professional Level
• Oracle Cloud Infrastructure 2019 Certified Architect – Associate Level
• Oracle Cloud Infrastructure 2019 Certified Cloud Operations – Associate Level
• Oracle Autonomous Database Cloud 2019 Certified Specialist
• Microsoft Certified: Azure Administrator Associate (AZ-104)
• AWS Certified Solution Architect – Associate Level
• Redhat Certified Engineer (RHCE)
• ITIL V3 Foundation Certified

Awards

• Most Valuable Professional (MVP) in Rimini Street.
• Pat on Back (POB) in Tech Mahindra
• Cloud Champion Award by CTO in Tech Mahindra.