About

I design, build, and operate resilient cloud platforms on Azure and AWS. My focus areas include IaC (Terraform/Bicep), Kubernetes (EKS/AKS), CI/CD automation (Jenkins and Azure DevOps), and robust monitoring with CloudWatch, Azure Monitor, and ELK.

Skills

A focused set of tools I use regularly.

Azure, AWS
Kubernetes, EKS, AKS, Helm
Terraform, Bicep, CloudFormation
Docker, CI/CD, Jenkins, Azure DevOps
Azure Monitor, CloudWatch, ELK, Grafana, SigNoz, Prometheus
Linux, Bash, PowerShell, Nginx, Tomcat, IIS

Experience

Highlights from roles where I delivered impact.

Leapwork Pvt LtdJun 2025 - Present · Gurgaon
  • Own Azure foundations for Leapwork SaaS using hub-and-spoke with shared services, secure routing, and central policy.
  • CI/CD with Azure DevOps: YAML pipelines, environments, approvals, gated releases, and repo governance policies.
  • Operate platform components: Application Gateway (WAF), VMSS, Storage Accounts, SQL Server, Key Vault with MI.
  • IaC with Bicep modules; parameterized, repeatable deployments across dev to prod with drift detection and guardrails.
  • Ops excellence: blue-green and canary, backup-restore, DR runbooks, cost visibility and budget alerts in pipelines.
Gedu Services Pvt LtdJul 2024 - Jun 2025 · Noida
  • Built Azure landing zones; standardized Bicep modules for APIM, App Service, Functions, and AKS across all envs.
  • Designed multi-stage YAML pipelines with approvals, variable groups, and Key Vault integration for zero-touch deploys.
  • Hardened with Azure Policy, Defender, private endpoints, managed identity, and WAF; least-privilege RBAC.
  • Observability via Azure Monitor, Log Analytics, and action groups; SLO-driven alerts with runbook remediation.
  • Cost optimization through rightsizing, autoscaling, and schedules; authored runbooks and knowledge transfer.
Racloop Services Pvt LtdJul 2023 - Jun 2024 · Gurgaon
  • Provisioned AWS with Terraform; operated EKS (multi-AZ, IRSA, autoscalers) for microservices.
  • Implemented Bitbucket to AWS CodePipeline/Build/Deploy; blue-green rollouts with smoke tests and automated rollback.
  • Telemetry with CloudWatch, Prometheus, and Grafana; centralized logs with retention and cost controls.
  • On-call ownership; postmortems, SLOs/SLIs, and MTTR reduction with automation and better runbooks.
  • Image supply chain: base images, vuln scanning, and signing to improve security.
LegalEx Services LLPAug 2019 - Jul 2023 · Delhi
  • Owned daily ops for customer apps; introduced incident management and on-call with SLAs.
  • Migrated VMs to containers on AWS/Azure; standardized Jenkins build-test-deploy pipelines.
  • Centralized logging with ELK and dashboarding; tuned alerts and escalation to reduce noise.
  • Backup-restore and DR drills; secrets management, TLS everywhere, OS hardening and patching.
  • Automated repetitive ops with scripts and config mgmt to cut manual work by 40% plus.

Projects

Selected work across cloud, DevOps, and SRE.

Leapwork Automation Testing Tool

Multi-tenant SaaS-ready automation platform. Hub-and-spoke landing zones with Bicep modules; App Gateway with path routing; Azure DevOps YAML templates for build-scan-deploy; PowerShell and Bash runbooks for day-2 ops including scaling, patching, and DR validation.

AzureVMs and VMSSApplication Gateway (WAF)PowerShellBashAzure DevOps YAMLBicep (IaC)Storage AccountSQL Server
Global Banking Service (UK)

Automated Azure infra with Bicep; CI/CD via Pipelines; centralized monitoring and alerts; ADF data pipelines; autoscaling and security improvements.

AzureBicepAPIMAzure PipelinesADF
Ayushman Bharat

Multi-env management for Dev, Stage, Sandbox, and Prod; Jenkins pipelines; ELK observability; autoscaling; hardened Nginx and microservices.

KubernetesJenkinsDockerELKSonarQube
JioMart - Telos

Infra via Terraform; DB clusters with replicas; CI/CD to GKE; Helm-based deploys; service gateway; SigNoz alerts to Teams.

GCPAzure DevOpsHelmTerraformPostgreSQLCassandraRedisMongo
Whilter AI

GPU EKS for ML; Nginx ingress and RBAC; Jenkins CI/CD to build and push to ECR and deploy; CloudWatch metrics and tracing.

AWSEKSECRDockerJenkinsTerraform

Architecture

Typical reference patterns I work with.

Azure hub-and-spoke
Central hub with shared services (firewall, DNS, identity) and spokes per workload or env. Private endpoints, UDR, and policy at the hub.
AKS multi-tenant
Namespaces, network policies, Azure CNI, ingress controllers, HPA/VPA, and secret management with Key Vault CSI driver.
Zero trust entry
WAF-enabled App Gateway, per-path routing, private link backends, conditional access, and managed identities everywhere.

CI/CD

Pipelines and release practices I use.

Azure DevOps YAML
Reusable templates, environments, approvals, multi-stage, deployment gates, variable groups, and Key Vault integration.
Quality gates
Static and dependency scans, container image scanning, smoke tests, and automated rollback on failure.
Strategies
Blue-green, canary, and ring-based rollouts with observability hooks and SLO checks before promoting to prod.

SRE

What I measure and improve.

99.9%+
Availability
-40%
Manual ops
-30%
Infra cost
<15m
MTTR

Tools and Platforms

Pipelines
Azure DevOpsJenkinsGitHub Actions
IaC and Config
TerraformBicepARMHelmAnsible
Data & Compute
SQL ServerPostgreSQLMySQLCassandraArangoDBRedisApache Spark
Messaging & Streaming
Azure Service BusKafka
Observability
GrafanaPrometheusElasticsearchLogstashKibanaSigNoz
Quality & Scanning
SonarQube
Security
Key VaultDefenderIAM/RBACWAFSAST/DAST

Writing

Notes from the field. Placeholders you can replace with real posts.

Designing hub-and-spoke on Azure for SaaS
Architecture - 2025-08-10
Production-ready YAML templates in Azure DevOps
CI/CD - 2025-07-25
From MTTR to MTTD: Observability that matters
SRE - 2025-06-14

Contact

Open to roles, gigs, and collaborations.

EmailCallLinkedIn

Prefer a quick message? Email me and I will reply soon.