Close this

Muqtar Ali Khan

Development
TX, United States
Skills
Cloud Computing
About
MUQTAR ALI KHAN's skills align with Consultants and Specialists (Information and Communication Technology). MUQTAR also has skills associated with System Developers and Analysts (Information and Communication Technology). MUQTAR ALI KHAN has 8 years of work experience.
Work Experience

Cloud Engineer

DXC Technology
February 2023 - November 2023
  • (Remote) * Designed and implemented system security and data assurance. * Resolved issues related to LAN, WAN, and voice system operational components. * Defined enterprise processes and best practices and tailored enterprise processes for applications. * Managed the use of various types of databases and configured, installed, and upgraded new ones. * Provided 2nd and 3rd-level technical support and troubleshooting to internal and external clients. * Acted as a Subject Matter Expert across all IAM topics, providing expertise in hybrid and public cloud architectures. * Developed solutions for IAM capabilities for cloud platforms including Microsoft Azure, Google Cloud Platform, and Amazon Web Services (AWS) * Designed effective architecture solutions that aligned with business objectives and strategic vision while ensuring security and scalability. * Reviewed and managed technical security roadmaps related to cloud security and IAM within a cloud security context. * Developed solutions and recommendations for cloud platform-related IAM security controls. * Identified solutions and provided recommendations for automating cloud IAM controls. * Architectured IAM solutions within Microsoft Azure, Google Cloud, and AWS. * Expertise in creating, constructing, and managing software systems on AWS, Azure, or Google Cloud. * Extensive experience in architecting, deploying, and managing Azure environments with a focus on optimizing cost, capacity, monitoring, scaling, and security. * Proficient in Azure Storage, Azure SQL, Azure Cloud Services, Azure Web App, and basic Azure networking technologies. * Strong understanding of Identity and Access Management products including Azure AD, ADFS, Azure AD Connect, Conditional Access, Azure AD Proxy, and SAML. * Proven track record of utilizing PowerShell scripting for automation and efficiency gains. * Solid understanding of enterprise networking principles, including VPN, Express Route, DNS, IP allocation, NSGs, and Azure Firewall. * Experienced in provisioning infrastructure as code using Azure CLI, PowerShell, and ARM templates. * Proficient in integrating, configuring, deploying, and managing various cloud services such as IAM, networking, monitoring, operating systems, VMs, App Services, and DBaaS. * Familiarity with Windows Server administration, including automating deployments, patching, and scripting. * Knowledgeable in implementing security architectures to ensure data security at rest and in transit, application security, key management, identity management, authentication, authorization, and infrastructure security. * She is skilled in implementing monitoring and management infrastructure for both availability and performance management. * Strong mentorship and leadership capabilities, with a passion for supporting team development and growth. * Collaborated with cross-functional teams to architect, design, build, operate, secure, and monitor cloud infrastructure within Microsoft Azure. * Utilized holistic thinking and architectural aptitude to drive requirements gathering, analysis, design, and implementation of solutions in Azure IaaS and PaaS offerings. * Generated documentation as needed, conforming to cloud security and architectural quality standards, while staying current on emerging trends. * Worked closely with Software, Data, and Security teams within the Technology group to ensure alignment and collaboration. * Contributed to the strategy for establishing a secure and well-managed enterprise environment in Azure. * Configured and managed Virtual Networks in Azure, establishing core services in the VNET to enable Azure as part of the organization's network. * Designed and implemented network connectivity to Azure, including VPN, Express Route, DNS, IP allocation, traffic routing, NSGs, and Azure Firewall. * Provisioned Dev, Test, and Prod infrastructure as code using Azure CLI, PowerShell, and ARM templates, automating deployment of resource stacks and configurations. * Integrated, configured, deployed, and managed cloud services such as IAM, networking, monitoring, operating systems, VMs, App Services, DBaaS, and Containers. * Administrated Windows Servers, automating deployments, patching, and scripting. * Utilized native Azure services to meet technology and resiliency requirements, defining and implementing configurations for high availability data redundancy, data loss prevention, site recovery, and resilience. * Implemented security architecture to ensure data security at rest and in transit, application security, key management, identity management, authentication, authorization, and infrastructure security. * Implemented monitoring and management infrastructure for both availability and performance management. * Supported software, data, and security teams on cloud architecture, provisioning, and compliance needs. * Evaluated changes/updates to cloud technologies and made substantiated recommendations for improving solution capabilities. * Supported the engineering of secure technology solutions adopting DevSecOps, Cloud (IaaS, PaaS, SaaS) in the healthcare industry. * Mentored and supported the development of other team members on cloud technology

Cloud Engineer

ValueLabs
January 2019 - September 2022
  • TS, IND * Deploying new Virtual Machines, Virtual disk management issues, troubleshooting VM issues for Microsoft Enterprise Clients * Working with product engineers to resolve operations issues, create bug fixes and patches * Resolving and escalating Classic and New portal issues and Role Based Access control (RBAC) * Configuration and support of ARM Resources like VM, Storage, NSG, VNET and extensions * Collecting Guest OS logs and investigating intermittent issues like unexpected reboots and deployment and configuration failure issues * Designed secure, cost-optimized, and highly available AWS infrastructure. * Configured AWS environments (VPC, subnets, security groups, EC2 instances, etc.) for Dev/Stage/QA. * Implemented AWS security best practices, including multi-factor authentication and role-based permissions. * Optimized costs through reserved instances, EC2 instance type selection, and S3 storage management. * Used EC2 CreateSnapshot API for scheduled EBS volume snapshots. * Set up CloudWatch alarms for operational and performance metrics. * Configured logs for detailed monitoring and alerts for changes. * Addressed operational and availability issues, including deployment and performance problems. * Monitored runtime systems using NewRelic for CPU, bandwidth, disk space, and log files. * Deployed and configured infrastructure with Cloudformation and Ansible. * Implemented continuous integration and deployment pipelines using Jenkins. * Enabled identity federation using freeIPA for seamless user connections to multiple services. * Managed High Availability servers on VMware ESXi and performed Linux server administration. * Configured network components, Apache, NFS, FTP, SMB, and Autofs on Linux servers. * Automated tasks, managed services, and deployed applications using Ansible and Jenkins. * Architected high availability environments with auto-scaling and Elastic Load Balancer. * Deployed secure MySQL DB with read replicas in private subnets for disaster recovery. * Migrated web servers and databases to AWS EC2 and RDS with minimal downtime. * Built VPCs with private and public subnets, VPNs, and peering for on-premise communication. * Set up SSL for Apache and Nginx applications, maximizing security.Monitored network, CPU, disk, and connectivity with CloudWatch and configured alarms. * Conducted root-cause analysis, system backups, and security configurations. * Configured security groups and automated deployment using Ansible. * Experienced in GitHub operations, including cloning repositories, creating branches, pushing changes, and making pull requests.

Cloud Engineer

Cognizant Technology Solutions
April 2017 - March 2019
  • TS, IND * Developed and used basic and custom rules, policies, and centralized policy enforcement for a well-organized multi-account environment. * Set up a Machine Image Pipeline and incorporated Patch Management for migrating legacy applications to the AWS cloud. * Utilized Docker for building, testing, and deploying applications in various environments. * Created Low-Level Designs (LLDs) for migrating applications, covering aspects like network sizing, instance types, names, and tags. * Developed tagging reference documents for automation, compliance, and consolidated billing. * Designed a baseline VPC and Network, including VPN connectivity and Direct Connect. * Implemented baseline AWS account security with endpoint protection, vulnerability scanning, and intelligent threat detection. * Built a serverless architecture using Lambda integrated with SNS, CloudWatch logs, and other AWS services. * Configured CI/CD Pipelines using Jenkins connected to Github for different environments (Dev, stage & Prod). * Implemented IAM best practices and role-based access control. * Established AWS Organization for central management, including consolidated billing and policy-based restrictions. * Implemented Control Tower Preventive and Detective guardrails and used Account Factory integrated with Lambda for new AWS account setup. * Configured Ansible control and slave nodes, developing playbooks for server configuration automation. * Managed AWS infrastructure provisioning using CloudFormation and Terraform.Designed for high availability and business continuity with self-healing * architectures, fail-over routing policies, multi-AZ deployment, ELB health checks, Auto Scaling, and other disaster recovery models. * Implemented patch management using Systems Manager automation for multi-region and multi-account execution. * Set up preventive guardrails using Service Control Policies (SCPs) and detective guardrails using Cloud Custodian policies and AWS config. * Designed for elasticity and scalability using ElastiCache, CloudFront - Edge locations, RDS read replicas, and instance sizes. * Implemented security best practices in AWS, including multi-factor * authentication, access key rotation, encryption using KMS, firewalls, S3 bucket policies, and ACLs, and mitigating DDoS attacks. * Utilized Jenkins, GitHub, and Git for version control, code build, testing, and release in CI/CD. * Monitored end-to-end infrastructure using CloudWatch and SNS for notifications. * Employed AWS System Manager to automate operational tasks across AWS resources.

Technical Support Engineer

Wipro Technologies
November 2015 - March 2017
  • TS, IND * Designed secure, cost-optimized, and highly available AWS infrastructure. * Configured Dev/Stage/QA environments in AWS, including VPC, subnets, security groups, EC2 instances, load balancer, RDS, Redis, and Route53. * Implemented AWS security best practices, including multi-factor authentication, access key rotation, role-based permissions, strong password policy, security * groups, NACLs, S3 bucket policies, and ACLs. * Optimized costs through reserved instances, selection of EC2 instance types, S3 storage classes, and lifecycle policies. * Leveraged Autoscaling and EC2 CreateSnapshot API for EBS Volumes. * Configured CloudWatch alarm rules for operational and performance metrics. * Set up detailed monitoring and alerts for runtime systems using NewRelic. * Deployed and configured infrastructure with Cloudformation and Ansible. * Implemented continuous integration and deployment pipelines with Jenkins. * Implemented identity federation using freeIPA for seamless user connection to multiple services. * Designed and deployed clustered High Availability servers on VMware Esxi using vSphere Client. * Installed, upgraded, patched, troubleshooted, and maintained Linux servers. * Configured network settings, Apache, NFS, FTP, SMB, and Autofs. * Automated tasks, managed user accounts, and implemented security using Ansible and Jenkins. * Architect high availability environments with auto-scaling and Elastic Load Balancer. * Securely deployed MySQL Primary DB and read replica in a private subnet with multi-AZ for disaster recovery. * Migrated web servers and databases to AWS EC2 and RDS with minimal downtime. * Set up VPC with Private and Public Subnets, VPNs, and VPC peering for communication. * Implemented SSL setup for Apache and Nginx applications along with AWS ELB SSL. * Monitored network, CPU, disk, and connectivity using CloudWatch with alarms and notifications. * Conducted root-cause analysis, system backups, and security setup. * Configured security groups in AWS and automated deployment using Ansible. * Experienced in GitHub operations such as cloning repositories, creating branches, pushing to Git, and making pull requests. * Architected and implemented continuous integration and deployment pipelines using Jenkins and other CI tools.
Education

Trine University

Master's of Science In Information Studies

Bachelor of Science