Yamar Ba
2080 1st Avenue, New York, NY 10029--
Employment Experience
UpWork
Sept 2024 - Present
Production Engineer / SRE
●
●
●
●
●
●
●
●
●
●
Configured and managed cloud resources in AWS and Azure to support application deployments, including network and security.
Developed scripts in Python and Bash for automating infrastructure tasks and log analysis.
Developed and deployed a scalable e-commerce backend using Go and Python in an AWS leveraging Kubernetes (EKS) for
microservices orchestration.
Managed ServiceNow workflows for incident management, reducing resolution time for critical production issues.
Leveraged Terraform to automate cloud infrastructure provisioning, ensuring consistency across environments.
Managing incidents through ServiceNow and Jira, reducing resolution times with automated workflows.
Collaborated with incident response teams using Jira and ServiceNow to manage and resolve high-priority incidents.
Integrated Splunk for real-time monitoring, centralized logging, and troubleshooting critical production issues.
Developed reusable Terraform modules to provision Cloud SQL instances, user roles, network settings, and failover configurations.
Utilized Linux systems for troubleshooting, application deployment, and performance optimization.
Change Healthcare
April 2023 - July 2024
DevOps/Cloud Engineer
●
●
●
●
●
●
●
●
●
●
Implemented CI/CD pipelines using GitLab for automated Terraform deployments for infrastructure development in AWS.
Leveraged CSPM and PAM resources such as Prisma Cloud, CybersArk to meet client security posture goals.
Leveraged Terraform to design and deploy multiple applications utilizing much of the AWS stack (Including EC2, S3, RDS,
DynamoDB, SNS, SQS, IAM) focusing on high-availability, fault tolerance, and auto-scaling.
Migrated on-prem legacy apps to GCP using Compute Engine and Cloud SQL.
Management of applications on Linux based Operating Systems such as EC2’s and Docker containers, leveraging EKS in AWS.
Oversaw access control management utilizing resources such as IAM, RBAC, Security Groups, NACL, NAT and API Gateway.
Leveraged YAML to create and manage Kubernetes manifests and Helm for package management.
Automated secret rotation, Configured and managed Vault for secure storage and access of secrets.
Integrated Vault with Kubernetes for dynamic secret management.
Configured and managed Splunk for log aggregation and real-time monitoring and other monitoring resources such as Cloudwatch.
RSM US
Feb 2022 - Jan 2023
Production Support Engineer
●
●
●
●
●
●
●
●
●
●
●
ADP
Performed deployments of Docker containers in Azure utilizing Azure DevOps, Helm and Terraform.
Leveraged Prometheus, Grafana and Azure Monitor to configure logging and monitoring Kubernetes clusters.
Leveraged PromQL and LogQL to perform queries and set alerts.
Configured access control by configuring Roles and Rolebindings / RBAC as well as other access policies for Kubernetes clusters.
Configured Nodeport, ClusterIP and Load Balancer, Service Accounts, and Cluster Roles and other kubernetes configs and resources.
Performed API authentication and configuration using Python.
Exposed Kubernetes application on Azure Kubernetes Service (AKS) using ALB Ingress.
Deploying, upgrading, and rolling back Helm releases and Managing dependencies between Helm charts.
Performed SFTP configurations in python, as well as, SSO/SAML for 3rd party customers.
Using Kustomize to customize Kubernetes resource configurations and Ansible for resource deployment automation.
Automated functions and tasks to support native applications with python, bash scripting and cron jobs.
April 2020 - Dec 2021
Cloud Operations Support Engineer
●
●
●
●
●
●
●
●
●
●
Configured Hashicorp Consul for multi-cloud resource management in AWS and Azure.
Performed Jenkins CI/CD pipeline configuration.
Leveraged RQL for policy configuration in Prisma as well as integrations with ServiceNow for alert management and remediation.
Orchestrated multi-cloud deployments using Terraform to ensure high availability and redundancy across AWS and Azure.
Splunk integration and configuration with custom applications including.
Identifying and resolving issues in Terraform configurations and deployments.
Collaborating with cross-functional teams and documenting Terraform configurations.
Implementing Kubernetes security best practices (RBAC, Network Policies, Pod Security Policies).
Configuring Kubernetes networking (Services, Ingress, Network Policies).
Creating and managing Kubernetes resources (Pods, Services, Deployments, StatefulSets, ConfigMaps, Secrets).
Yamar Ba
2080 1st Avenue, New York, NY 10029--
Walgreens
Systems Administrator / Cloud Intern
● Migrating customer’s networks, servers, security infrastructure and Active Directory to Azure.
● Performed DHCP, DNS, Security Group, NACL, IAM configurations.
● Group policy and user access assignment automation with Powershell.
● Performed SQL queries to retrieve user and activity data.
● Assist customers with access and configuration related support issues.
● Performed server certificate renewal updates (SSL/TLS) with Digicerts.
May 2019 - Dec 2020
Education
Hunter College
Master, Statistics
Bachelors, Applied Mathematics & Statistics
Associates, Computer Science
Certifications
New York, NY-
2020
CCNA Issued 2024 * AWS DevOps Prof. Issued 2022 * Microsoft AZ-104 Issued 2023 * Linux Adm./LPIC-1 Issued 2022 *
AWS Security Specialty Issued 2021*AZ-500 Security Engineer 2022*AWS SAA. Issued 2021*Terraform Ass. Issued 2022
Software/ Knowledge Area
AWS, Azure, GCP, Azure AD, Python, Jenkins, Gitlab, Git, Terraform, Kubernetes, EKS, AKS, RDS, RBAC, IAM, Cloud Security, API Gateway, Networking, AWS
Lambda, AWS Cloud Watch, (No)SQL, Linux, Powershell, Git, Zscaler, Prisma Cloud, Splunk, Prometheus, Jira, ServiceNow, FedRamp and more.
