profile-pic
Vetted Talent

Ganesh Shankar

Vetted Talent

Expertise in Cloud engineering, helps clients in area of architecture, design, development, migration & delivery of IT Solutions on Cloud using DevOps methodologies.


Member of the Cloud Engineering Team responsible for automating the provisioning of infrastructure in the AWS cloud using open source software (DevOps toolchain), as well as, work side by side with application development teams to rapidly deploy highly available infrastructure to ensure the success of agile managed business project.


• Experience in DevOps, Build and Release Engineer and Cloud Engineer like Amazon Web Services (AWS) with a major focus on Continuous Integration, Continuous Delivery / Deployment and Infra Automation.

• Managing the Team by assigning the right tasks to the team members and ensuring the right deliverables with proposed ETA with mentioned Standards from both applications and security perspective.

• Experience with Docker, Kubernetes and EKS clustering frameworks. Scripting experience on Terraform, Ansible, Groovy (Jenkins), Helm.

• Experience in building, designing and implementing scalable cloud-based web applications for PaaS, IaaS or SaaS using AWS

• Build and design secure, well-instrumented, highly available, and strictly automated reproducible infrastructure. Optimize infrastructure deployments for speed, cost, availability and scale.

• Working on open source configuration management tools to develop the automated deployment of virtual server instances and environments in AWS by using various DevOps Tool chain such as Jenkins, Terraform, Ansible, ServiceNow, Docker, native AWS tools, etc.

• Conduct research on emerging Cloud and DevOps technologies in support of infrastructure development efforts and recommend technologies that will increase cost effectiveness and infrastructure flexibility.

• Troubleshoot systems, software, failures and make changes to improve current automated performance following established change management practices.

• Assist with defining Implementation schedule on selected products for production rollout. Deploy Governance and monitoring tools to ensure the security and proper use of Cloud resources. Enforce dormancy requirements. Enforce IAM policies.

• Oversee Usage charges and billing accuracy towards eliminating wasteful resources such as developer systems not made dormant when not in use.

• Update and maintain Cloud documentation, including strategy, DevOps engineering documents, change control, trouble tickets, procedures, and other documentation.

• Cost management and optimization in Cloud Environments.

  • Role

    Cloud System Administration

  • Years of Experience

    16 years

Skillsets

  • Jenkins
  • Docker - 4 Years
  • Azure - 1 Years
  • continuous delivery
  • Nexus
  • Helm Charts
  • Ansible Tower
  • YAML
  • Terraform - 6 Years
  • Kubernetes - 4 Years
  • AWS Lambda - 6 Years
  • Groovy
  • EKS
  • DevSecOps
  • DevOps
  • continuous integration
  • CI/CD
  • AWS - 8 Years
  • Ansible
  • Ci/Cd Pipelines - 6 Years

Vetted For

12Skills
  • Roles & Skills
  • Results
  • Details
  • icon-skill_image
    Sr Cloud Infrastructure EngineerAI Screening
  • 51%
    icon-arrow-down
  • Skills assessed :Arm templates, Cloudformation, Databases, Google Cloud, Networking, Cloud Computing, Terraform, AWS, Azure, Docker, Kubernetes, Security
  • Score: 46/90

Professional Summary

16Years
  • Jan, 2017 - Present9 yr 5 months

    Assistant Consultant

    Tata Consultancy Services
  • May, 2011 - Dec, 20165 yr 7 months

    Technology Analyst

    R R Donnelley India outsourcing Pvt. ltd.
  • Jun, 2008 - Jan, 20112 yr 7 months

    Engineer - Technical Support

    Computer Science Corporation India Pvt. Ltd.
  • Jun, 2007 - Jun, 20081 yr

    FMS Engineer

    CMS Computer Ltd.

Applications & Tools Known

  • icon-tool

    Terraform

  • icon-tool

    AWS

  • icon-tool

    EKS

  • icon-tool

    Jenkins

  • icon-tool

    Ansible

  • icon-tool

    Ansible Tower

  • icon-tool

    Nexus

  • icon-tool

    DevOps

  • icon-tool

    DevSecOps

  • icon-tool

    CI/CD

  • icon-tool

    YAML

  • icon-tool

    Docker

  • icon-tool

    Kubernetes

  • icon-tool

    Helm Charts

  • icon-tool

    Amazon RDS

  • icon-tool

    Amazon S3

  • icon-tool

    Amazon Lambda

  • icon-tool

    Amazon VPC

  • icon-tool

    EC2

  • icon-tool

    ArgoCD

  • icon-tool

    Qualys

  • icon-tool

    VMware ESXi

Work History

16Years

Assistant Consultant

Tata Consultancy Services
Jan, 2017 - Present9 yr 5 months
    Leading a team of cloud engineers to design, deploy and maintain AWS Cloud resources for various internal applications. Designed and maintained Jenkins pipelines as code, utilizing Groovy scripting to ensure version-controlled and reproducible builds. Implemented and managed Terraform modules for creating reusable and standardized infrastructure components, resulting in consistent deployments. Designed, deployed, and managed AWS cloud architectures, utilizing services such as EC2, S3, RDS, VPC, and Lambda to create scalable and resilient solutions tailored to client needs. Utilized Amazon Cloud Watch and AWS Trusted Advisor to monitor and optimize resource utilization, cost efficiency, and overall system performance in AWS environments. Developed Ansible playbooks to automate software deployments, reducing manual errors and ensuring consistency in application setups. Utilized Ansible roles and templates to create reusable configurations for various services and applications, streamlining the deployment process. Collaborated with development and operations teams to integrate Nexus repositories into continuous integration and continuous deployment (CI/CD) pipelines. Implemented Ansible Tower (AWX) for centralized orchestration, scheduling, and monitoring of Ansible tasks, improving visibility and control. Migrating the Applications to the EKS Clusters in the AWS Environment. Automated CI/CD pipelines using tools like Jenkins to build Docker images, run tests, and deploy applications using ArgoCD to EKS clusters. Integrated EKS clusters with AWS services such as Amazon RDS, Amazon S3, and Amazon Cloud Watch, ensuring seamless communication and monitoring. Developed Kubernetes manifests and Helm charts to define and manage container workloads, services, deployments, and configurations. Participating in incident response and vulnerability management, collaborating with cross-functional teams to mitigate security breaches and vulnerabilities. Utilized container security tools such as Qualys and AquaSec to scan Docker images and app codes for vulnerabilities and enforce security policies.

Technology Analyst

R R Donnelley India outsourcing Pvt. ltd.
May, 2011 - Dec, 20165 yr 7 months
    As a Server Support Engineer, I am responsible for maintaining and troubleshooting High-end windows servers and VMware ESXi. Experience in providing assistance for network and server-related issues. Experience in providing support to business clients by handling technical profiles with high proficiency thereby achieving greater levels of client satisfaction.

Engineer - Technical Support

Computer Science Corporation India Pvt. Ltd.
Jun, 2008 - Jan, 20112 yr 7 months
    As a Server Support Engineer, I am responsible for maintaining and troubleshooting High-end windows servers. Experience in providing assistance for network and server related issues. Experience in providing support to business clients by handling technical profiles with high proficiency thereby achieving greater levels of client satisfaction.

FMS Engineer

CMS Computer Ltd.
Jun, 2007 - Jun, 20081 yr
    Worked as IT Support Engineer, in the client place. Creating and configuring domain user accounts, group accounts and Assigning User Permissions on Windows Server 2003. Troubleshoot Domain logon problems and grant access to resources throughout the network. Create and manage shared folders, and troubleshoot share permissions. Monitoring and Updating incidents, Change Requests & Service Requests Using HP Open View Service Desk and HP Open view Operations for Windows.

Education

  • B.Tech/B.E.

    Anna University (2006)

Certifications

  • Certified kubernetes administrator (cka) program

  • Aws certified solutions architect associate

  • Microsoft certified azure administrator associate

  • Microsoft certified system administrator

  • Vmware certified professional 6 - data center virtualization (vcp6-dcv)

  • Itil 4 foundation: an introduction to itil 4

  • Hashicorp certified terraform associate

AI-interview Questions & Answers

Yeah. Hi. This is Ganesh. I have 60 total of 16 years of IT experience. And, currently, I'm working at the cloud infrastructure unit. Here, I have my card. I'm working on AWS, a server platform, for around 8 years. Under here, I used to provide

Secure sensitive data. From committing this institute code, we can give in a separate variable d.s like that. We can provide in a separate file.d.f file. We can pass it via the TF variable files separately without committing to VCS. Also, otherwise, for example, if you want to pass the access and security of the AWS in the Jenkins portal, we can use the Jenkins portal as a credential plug-in. By using the credential plug-in, we can upgrade the passwords there. Here, in Terraform, we can fetch those passwords from this plugin with credentials by in the files. Like that, we can secure the sensitive data.

This one, but by using the stateful set, we can do a distributed application. That's what Here, we are using the Argo CD. By using the Argo CD, it will be continuous deployment. There, we can manage the state from the GitOps code. Using that, we can manage the state of those applications. The same state will be available throughout, without any deployments, it will not change the application state.

How did you choose Azure Blob storage mobile Azure file? Sure about Azure. I do have knowledge on that. Azure Blob storage is like a file system, similar to an S3 bucket in AWS. It's a storage system for storing objects in the cloud, similar to an S3 bucket. There is no limitation for Azure Blob storage or file storage. It will be file storage is nothing more than we can connect with these Azure machine instances. I'm not familiar with Azure, mostly. I used to work on the AWS cloud.

Here for when we can consider choosing one second. One second. Sorry. Then, what would be the consideration for choosing between AWS Fargate and EC2 instances. Sorry about that. AWS Fargate and the EC2 instances. Here, we can use EC2 instances, it's like a dedicated machine kind of application we can run. Here, Fargate is what we feel if you want to know, for example, if you want to run cron jobs in EKS, on the jobs on EKS, that time we can use the Fargate. We will create instances on demand, it will create an instance, execute the jobs, and then terminate it. For that type of situation, we can use Fargate. An EC2 instance is dedicated for applications running continuously on the server, meaning we can choose between these two instances.

Generation with Docker enhanced application deployment in the cloud. So how does containerization enhance application deployment in the cloud? It simplifies application deployments and we can maintain the image in one artifact. From there, we can pull out the major Docker images and build an application anywhere in EKS or any Docker Swarm or like that orchestration tools.

So, the URL is down here. Maybe the Git clone will not work. So we need to have a separate command for Git clone.

Security groups, we need to check which voice it is. If it's for a Windows bench, we need to allow the RTP port protocol. In the same way, we need to allow application port numbers. If it's a Linux machine, we need to access and then access application. The security folks, we need to download specific port requests.

Teleform multi-tier web application using AWS services. Multi-tier application, in the sense that we can use a three-tier application, three-tier services. Okay? Here, we can have an ALP. ALP in place of accessing EC2. We can have a three-tier application like EC2, where there is a when the user tries to access our application, it will hit the ALP, which is in the application load balancer. From there, it will go to the EC2 instances, where we can design two EC2 instances, a target group. In the target group, we can assign a port number, such as port 80, for accessing the web application. Behind the web application, we can enable another load balancer with application awareness using the API. And behind that API, we can access the databases. Like that, you know, we can decide to enter a formula. We're going to build that application by using AWS services. Like, what are the AWS services if you want to create things? What application load balancer, easy to insert security groups, and security groups. If anything needs to be attached to that EC2 instance, we need to create IAM permissions, policies.

If required to build a CICD pipeline, which tool is the Kubernetes ecosystem review recommends. The CICD pipeline we're using, we can use Jenkins orchestration tool. From that, we can build the Docker image, and we can do scanning of those images. Some security tools, and then we can push that after building the image and push that image through any repository like Nexus repository. From there, we can use a CD tool like Argo CD. By using the CD, we can do a continuous deployment to the Kubernetes clusters. That way, we can build a CICD pipeline for Kubernetes applications.

Which AWS service would you use to create a centralized routing solution? If this is for a security purpose, you can have a control tower. In the control tower, you can set default audit logging tools. A logging tool will be created automatically. By using that logging tool, you can have a centralized logging solution. The control tower will be useful for security purposes and the AWS organization. Inside the control tower, you can have an AWS organization. Once you enable the control tower, you have a separate audit account and logs. It contains a centralized view of all the accounts, what accounts are created via control. This is the service we are using. We can use AWS Organizations for this purpose. There are multiple security services available, like CloudWatch.