Home

tejaswi - devops engineer

[email protected]

Location: Remote, Remote, USA

Relocation:

Visa:

Resume file: Sr devOps_resume_1780060329557.docx Please check the file(s) for viruses. Files are checked manually and then made available for download.

Tejaswi Bedadham Senior DevOps Engineer +19802475440 |[email protected] | www.linkedin.com/in/tejaswib1005 PROFESSIONAL SUMMARY Seasoned DevOps Engineer with over 9 years of progressive experience designing, automating, and managing enterprise-scale CI/CD pipelines, cloud-native architectures, and container orchestration platforms across healthcare, banking, fintech, and SaaS product domains. Strong experience with Kubernetes and containerized environments, ensuring scalable, highly available, and resilient application deployments. Experience in infrastructure automation using tools like Ansible, focusing on scalable and consistent environment provisioning. Proven track record of building and maintaining end-to-end CI/CD pipelines using Jenkins, GitLab CI/CD, GitHub Actions, and ArgoCD, enabling rapid, reliable, and auditable software delivery with GitOps-based continuous deployment across distributed engineering teams. Extensive experience with container orchestration using Kubernetes (Amazon EKS) and Docker, including Helm chart development, Kustomize overlays, namespace governance, RBAC policy enforcement, service mesh integration with Istio, and horizontal pod autoscaling strategies for production workloads. Strong background in configuration management and infrastructure automation using Ansible, Chef, and Puppet, automating server provisioning, application deployment, security hardening, and compliance enforcement across hundreds of nodes in regulated environments. Expertise in observability using Prometheus, Grafana, Splunk, and CloudWatch for proactive monitoring and incident detection. Hands-on experience implementing DevSecOps practices including static and dynamic code analysis with SonarQube and Checkmarx, container image scanning with Trivy and Aqua Security, secrets management using HashiCorp Vault, and policy-as-code enforcement with OPA Gatekeeper and Sentinel. Skilled in scripting and automation using Python, Bash, PowerShell, and Groovy, building custom tooling for deployment orchestration, log aggregation, infrastructure health checks, certificate rotation, and self-healing remediation workflows. Experienced in managing database infrastructure and migrations across PostgreSQL, MySQL, Aurora PostgreSQL, and DynamoDB, including automated backup strategies, blue-green schema deployments, read replica configurations, and performance tuning in high-throughput production environments. Hands-on experience with shift-left security practices, embedding automated security testing, vulnerability scanning, and compliance checks early in the software development lifecycle (SDLC). Demonstrated ability to collaborate with cross-functional stakeholders including development, QA, security, and product teams, driving DevOps culture adoption, reducing deployment friction, and establishing engineering standards for release management and change control processes. Well-versed in regulatory compliance frameworks including HIPAA, PCI-DSS, SOC 2, and SOX, ensuring that infrastructure, deployment pipelines, and access controls meet stringent audit requirements in healthcare and financial services environments. Proven ability to lead architecture discussions and drive secure design decisions across cloud infrastructure, CI/CD pipelines, and distributed systems. Adept at incident management, on-call rotations, and blameless post-mortem facilitation using PagerDuty and Opsgenie, with a focus on continuous improvement of system reliability, runbook automation, and service-level objective tracking. Experienced in implementing DevSecOps frameworks with a strong focus on security-first pipelines, integrating security controls across CI/CD workflows and ensuring secure software delivery practices. Experience working with integration platforms and event-driven architectures, supporting API gateways, messaging systems (Kafka, SQS), and service-to-service communication across distributed cloud environments. TECHNICAL SKILLS Category Technologies & Tools Cloud Platforms AWS (EC2, S3, RDS, Aurora, Lambda, EKS, ECS, CloudFront, Route 53, IAM, VPC, CloudFormation, Transit Gateway, GuardDuty, Config, KMS, CloudTrail, CloudWatch), Azure (Fundamentals), GCP (Fundamentals), API Gateway, AWS SQS, Amazon MSK (Kafka), Amazon MQ CI/CD & Automation Jenkins, GitLab CI/CD, GitHub Actions, ArgoCD, AWS CodePipeline, AWS CodeBuild, AWS CodeDeploy, Spinnaker, CircleCI Containers & Orchestration Docker, Kubernetes (Amazon EKS), Helm, Kustomize, Istio, Amazon ECS, Docker Compose, Container Registry (ECR, Docker Hub) Infrastructure as Code Terraform, Terraform Enterprise, Sentinel, CloudFormation, Ansible, Chef, Puppet, Packer, Vagrant Monitoring & Observability Prometheus, Grafana, Datadog, Splunk, ELK Stack (Elasticsearch, Logstash, Kibana), CloudWatch, Nagios, New Relic, PagerDuty, Opsgenie, Jaeger Security & Compliance HashiCorp Vault, Trivy, Aqua Security, SonarQube, Checkmarx, OWASP ZAP, OPA Gatekeeper, Sentinel, CyberArk, AWS GuardDuty, AWS Config, HIPAA, PCI-DSS, SOC 2, SOX Scripting & Languages Python, Bash, PowerShell, Groovy, YAML, JSON, HCL Version Control & Collaboration Git, GitHub Enterprise, GitLab, Bitbucket, Jira, Confluence, ServiceNow, Slack Databases PostgreSQL, MySQL, Amazon Aurora PostgreSQL, DynamoDB, Redis, Amazon RDS Networking & OS Linux (Ubuntu, CentOS, RHEL, Amazon Linux), Windows Server, TCP/IP, DNS, Load Balancers (ALB, NLB, ELB), VPN, VPC Peering, Transit Gateway, Nginx, HAProxy Integration & Messaging Kafka (MSK), AWS SQS, Amazon MQ, RabbitMQ (Concepts), API Gateway, Event-driven architecture, Pub/Sub messaging PROFESSIONAL EXPERIENCE Optum (UnitedHealth Group) Oct 2024 Present Eden Prairie, MN | Domain: Healthcare / SaaS Senior DevOps Engineer Project Overview: Worked with Optum supporting enterprise healthcare applications running on distributed, cloud-based environments. Led the design and implementation of secure, scalable cloud infrastructure and DevSecOps pipelines for mission-critical healthcare systems handling sensitive PHI data under HIPAA and SOC 2 compliance. Focused on integrating security controls into CI/CD pipelines, automating infrastructure provisioning, and improving system reliability, availability, and performance across distributed microservices architectures. Collaborated with development, security, and platform teams to drive secure software delivery, enforce governance standards, and ensure production stability across cloud-native environments. Roles & Responsibilities: Designed and implemented secure cloud infrastructure on AWS using Terraform and Terraform Enterprise, developing reusable modules and enforcing policy-as-code for compliance and governance. Architected and maintained CI/CD pipelines using Jenkins, GitHub Actions, and ArgoCD, integrating automated testing, security scanning, and quality gates into the software delivery lifecycle. Established DevSecOps framework and security-first CI/CD pipelines, integrating security gates, compliance checks, and automated policy enforcement across build and deployment workflows. Integrated DevSecOps practices by implementing static and dynamic code analysis using SonarQube and Checkmarx, container image scanning using Trivy and Aqua Security, and enforcing security policies across pipelines. Implemented shift-left security practices by integrating security controls early in the SDLC, embedding automated security testing, code analysis, and vulnerability scanning into CI/CD pipelines to enable secure software delivery. Implemented secrets management and secure access controls using HashiCorp Vault, enabling dynamic credential generation, encryption, and secure communication across services. Designed and supported event-driven architectures using Kafka (Amazon MSK) and AWS SQS, implementing secure messaging patterns, access control, and high-throughput data processing pipelines. Managed API Gateway implementations, including authentication (OAuth/JWT), rate limiting, throttling, and API lifecycle management for secure service-to-service communication. Developed Infrastructure as Code (IaC) for provisioning cloud resources, including networking, IAM roles, messaging systems, and compute services, ensuring consistency and scalability across environments. Implemented containerized workloads using Docker and Kubernetes (EKS), ensuring secure deployment, workload isolation, autoscaling, and high availability for production applications. Designed and enhanced observability solutions using Prometheus, Grafana, Splunk, and CloudWatch, implementing centralized logging, metrics, and alerting for proactive issue detection. Led incident response and troubleshooting for production systems, performing root cause analysis (RCA) and implementing permanent fixes to improve system reliability and reduce recurring issues. Implemented compliance and security controls aligned with HIPAA, SOC 2, and enterprise governance standards, supporting audit readiness and regulatory requirements. Aligned infrastructure and DevSecOps practices with industry standards including NIST and CIS benchmarks, ensuring secure, compliant, and audit-ready cloud environments. Automated operational tasks using Python and Bash scripts, improving efficiency in deployment, monitoring, and system maintenance processes. Led architecture discussions and decision-making for cloud infrastructure, CI/CD pipelines, and security implementation strategies across distributed systems. Mentored junior engineers and conducted code reviews, promoting best practices in DevOps, security, and infrastructure automation. Maintained runbooks, technical documentation, and deployment procedures to support operational excellence and knowledge sharing. Environment: AWS (EKS, EC2, S3, Lambda, VPC, IAM, API Gateway, SQS, Amazon MSK, CloudWatch, CloudTrail, GuardDuty), Terraform, Terraform Enterprise, Jenkins, GitHub Actions, ArgoCD, Docker, Kubernetes, Prometheus, Grafana, Splunk, SonarQube, Checkmarx, Trivy, Aqua Security, HashiCorp Vault, Python, Bash, PostgreSQL, PagerDuty, Jira, Confluence Capital One Oct 2022 Aug 2024 McLean, VA | Domain: Banking / FinTech Senior DevOps Engineer Project Overview: Worked with Capital One, a Fortune 100 banking and fintech company (McLean, VA), recognized as one of the first major banks to go all-in on AWS, serving over 100 million customer accounts across credit card, consumer banking, and auto lending products. Supported the Digital Banking Platform handling cloud infrastructure and deployment automation for customer-facing mobile and web banking applications processing millions of financial transactions daily, governed by strict PCI-DSS compliance, SOX audit controls, and Capital One s internal cloud governance policies. Roles & Responsibilities: Designed and provisioned multi-account AWS infrastructure using Terraform Enterprise with Sentinel policy-as-code enforcement, implementing VPC architectures, transit gateway peering, EKS clusters, and Aurora PostgreSQL databases with automated compliance validation before every deployment across Capital One s banking platform. Built and maintained Jenkins-based CI/CD pipelines integrated with GitHub Enterprise for branching strategy enforcement, automated unit and integration testing, SonarQube code quality gates, and container image scanning, supporting microservices that power credit card management, account servicing, and mobile banking applications. Managed production Kubernetes clusters on Amazon EKS, implementing Helm chart standardization, pod security policies, network policies for namespace isolation, and Kustomize-based environment overlays for consistent deployments across development, QA, staging, and production environments serving banking workloads. Implemented GitOps workflows using ArgoCD for declarative Kubernetes deployments, enabling automated synchronization between Git repositories and cluster state, with rollback capabilities and deployment health checks for critical credit card transaction processing and online banking applications. Developed infrastructure automation scripts using Python and Bash for automated AMI patching, certificate rotation, log archival, and cost optimization tasks including reserved instance utilization tracking and idle resource cleanup across multiple AWS accounts under Capital One s FinOps governance model. Designed and operated monitoring and alerting infrastructure using Prometheus, Grafana, and CloudWatch, creating custom dashboards for application performance metrics, infrastructure health indicators, and SLO tracking for tier-one banking services including mobile banking, online account management, and payment processing. Designed and supported event-driven architectures using messaging systems such as Kafka (Amazon MSK) and AWS SQS for reliable communication between distributed banking services. Implemented API Gateway solutions to manage routing, throttling, authentication, and versioning for microservices-based applications. Built messaging patterns using pub/sub and queue-based systems to support scalable and loosely coupled application architectures. Supported integration platforms handling high-volume transactional messaging across distributed systems with strong reliability and fault tolerance. Implemented secrets management and encryption practices using HashiCorp Vault integrated with Kubernetes service accounts, managing dynamic database credentials, API keys, and TLS certificates with automated rotation policies in compliance with PCI-DSS requirements for cardholder data protection. Led the migration of legacy deployment pipelines from manual scripted processes to fully automated CI/CD workflows, reducing deployment lead time and standardizing release processes across multiple development teams working on customer-facing financial applications and internal banking tools. Configured AWS CloudTrail, AWS Config, and GuardDuty for continuous security monitoring and audit logging, generating automated compliance reports for SOX and PCI-DSS auditors and remediating configuration drift using Terraform state reconciliation across Capital One s multi-account AWS organization. Participated in disaster recovery testing and monthly chaos engineering exercises (GameDays), validating multi-AZ and multi-region failover procedures for Aurora databases, EKS workloads, and S3 data stores, documenting recovery runbooks and refining RTO/RPO targets for critical banking systems. Conducted capacity planning and performance analysis for Kubernetes clusters and AWS infrastructure, implementing cluster autoscaler configurations, right-sizing node instance types, and establishing resource quotas to optimize cost-performance ratios for transaction-heavy banking workloads. Environment: AWS (EKS, EC2, S3, Aurora PostgreSQL, Lambda, VPC, IAM, CloudTrail, Config, GuardDuty, CloudWatch, API Gateway, SQS, Amazon MSK), Terraform Enterprise, Jenkins, GitHub Enterprise, ArgoCD, Kubernetes, Helm, Docker, Prometheus, Grafana, Splunk, Python, Bash Cigna Jan 2020 Aug 2022 Bloomfield, CT | Domain: Healthcare DevOps Engineer Project Overview: Worked with Cigna, a global health services organization (Bloomfield, CT), providing medical, dental, disability, and life insurance services to over 180 million customer relationships worldwide, actively pursuing digital transformation and public cloud migration during this period. Supported the Claims Processing and Member Services platform, handling CI/CD pipeline implementation, cloud migration, and infrastructure automation for healthcare applications managing member enrollment, claims adjudication, and provider network data with sensitive PHI under strict HIPAA regulations. Roles & Responsibilities: Managed AWS cloud infrastructure including EC2 instances, S3 storage, RDS databases, and VPC networking using Terraform and CloudFormation templates, implementing standardized infrastructure patterns for development, testing, and production environments supporting Cigna s claims adjudication and member enrollment systems. Built and maintained CI/CD pipelines using Jenkins and GitLab CI/CD with multi-branch pipeline configurations, automated testing integration, artifact management, and deployment orchestration for Java and Python-based microservices processing healthcare claims and member eligibility verification data. Deployed and managed Docker containers on Amazon ECS and Kubernetes clusters, implementing container health checks, service discovery, load balancing with ALB, and log aggregation for healthcare application workloads handling provider network directories and benefits administration services. Implemented configuration management using Ansible and Chef, automating server provisioning, application deployment, security patch management, and compliance configuration across development and production server fleets supporting Cigna s claims processing and member services infrastructure. Designed monitoring and alerting solutions using CloudWatch, Prometheus, and Grafana for infrastructure metrics, application health monitoring, and custom dashboard creation, integrated with PagerDuty for incident notification and escalation on claims processing and member portal services. Supported integration of microservices using messaging queues and API-based communication patterns for healthcare applications. Managed Git repositories and branching strategies in GitLab and Bitbucket, enforcing code review workflows, merge request approvals, and branch protection rules aligned with Cigna s change management policies for healthcare application deployments handling PHI data. Automated infrastructure provisioning workflows using Python and Bash scripts for recurring tasks including log rotation, database backup verification, SSL certificate monitoring, and environment refresh processes for claims processing and member services environments. Supported cloud migration efforts by containerizing legacy on-premises Java applications used for claims adjudication and member enrollment, creating Docker images with optimized multi-stage builds, and deploying them to AWS ECS with auto-scaling configurations and blue-green deployment strategies. Implemented security best practices including IAM role-based access control, VPC security group management, encryption at rest and in transit using KMS, and integration with CyberArk for privileged access management in HIPAA-regulated environments handling protected health information. Managed MySQL and PostgreSQL database infrastructure on Amazon RDS supporting claims data warehousing and member records, implementing automated backup policies, performance monitoring with CloudWatch enhanced monitoring, and read replica configurations for high-availability requirements. Participated in on-call rotations and incident response processes, documenting troubleshooting procedures, creating runbooks for common infrastructure issues affecting claims processing pipelines and member portal availability, and contributing to post-incident reviews for continuous improvement. Environment: AWS (EC2, S3, RDS, ECS, VPC, IAM, KMS, CloudWatch, CloudFormation, ALB, Route 53), Terraform, Ansible, Chef, Jenkins, GitLab CI/CD, Docker, Kubernetes, Prometheus, Grafana, Splunk, ELK Stack, Python, Bash, Groovy, MySQL, PostgreSQL, CyberArk, Bitbucket, Jira, Confluence, PagerDuty Zoho Corporation May 2017 Oct 2019 Chennai, India | Domain: SaaS / Product DevOps Engineer Project Overview: Worked with Zoho Corporation, a global SaaS company headquartered in Chennai, India, delivering a multi-tenant product suite including Zoho CRM, Zoho Desk, and Zoho Projects to over 100 million users worldwide. Supported the Platform Infrastructure team, handling AWS cloud infrastructure, CI/CD automation, and deployment pipelines for production SaaS workloads with strict SLA requirements for uptime, performance, and tenant data isolation. Roles & Responsibilities: Managed AWS infrastructure including EC2 instances, S3 buckets, RDS databases, Elastic Load Balancers, and VPC configurations using CloudFormation and Terraform, ensuring high availability and scalability for Zoho s multi-tenant SaaS workloads serving Zoho CRM, Zoho Desk, and Zoho Projects products. Built and maintained CI/CD pipelines using Jenkins with declarative Groovy-based Jenkinsfiles, integrating automated builds, unit testing, artifact publishing to Nexus repository, and deployment orchestration across staging and production environments for rapid SaaS feature delivery. Implemented Docker containerization for application workloads, creating optimized Dockerfiles with multi-stage builds, managing images in Amazon ECR, and deploying containers on Amazon ECS with task definitions, service auto-scaling, and health check configurations for Zoho s customer-facing platform services. Automated server provisioning and configuration management using Ansible playbooks and roles, managing web server configurations, application deployments, and security hardening across Linux-based infrastructure supporting Zoho s multi-tenant application tiers and backend services. Designed and implemented monitoring solutions using Nagios and CloudWatch for infrastructure health monitoring, setting up custom metrics, alerting thresholds, and dashboards for CPU, memory, disk, and application-level performance indicators across the SaaS platform serving global customers. Managed centralized logging infrastructure using ELK Stack (Elasticsearch, Logstash, Kibana), configuring log shipping from application servers, creating index patterns, and building Kibana dashboards for log analysis and troubleshooting across Zoho s product microservices and backend APIs. Administered Git repositories in Bitbucket, establishing GitFlow branching strategies, enforcing pull request review workflows, and managing webhook integrations for automated build triggers in Jenkins for Zoho s product engineering teams across multiple product lines. Developed automation scripts using Python and Bash for operational tasks including automated deployments, log cleanup, database backup verification, environment provisioning, and infrastructure health check routines for the multi-tenant SaaS platform. Managed MySQL and PostgreSQL database instances on Amazon RDS, configuring parameter groups, automated snapshots, minor version upgrades, and monitoring slow query logs for performance optimization across Zoho s multi-tenant database clusters serving concurrent customer workloads. Supported production deployment activities including release coordination, rollback procedures, and post-deployment validation, maintaining deployment checklists and release notes documentation for each product release cycle across Zoho CRM, Zoho Desk, and Zoho Projects product lines. Configured Nginx as a reverse proxy and load balancer for application tiers, implementing SSL termination, rate limiting, and caching strategies to optimize application response times and handle traffic spikes during peak usage periods for Zoho s global customer base. Environment: AWS (EC2, S3, RDS, ECS, ECR, VPC, IAM, CloudWatch, CloudFormation, ELB, Route 53), Terraform, Ansible, Jenkins, Docker, Nagios, ELK Stack (Elasticsearch, Logstash, Kibana), Nginx, Python, Bash, Groovy, MySQL, PostgreSQL, Bitbucket, Nexus, Jira, Confluence Keywords: continuous integration continuous deployment quality analyst message queue sthree golang Arizona Connecticut Minnesota Virginia