AWS Cloud Admin

Administration of AWS cloud infrastructure (Time Allocation 60%):
Administration of full AWS Lifecycle, Provisioning, Automation and Security. Follow architectural best practices for designing and operating reliable, secure, efficient, and cost-effective systems in the cloud. Create and manage VPC’s, VPN and Bastion hosts. Automating cloud infrastructure deployment with AWS Cloud Formation. Operating, Deploying AWS systems with features such as availability, high-scalability, and fault tolerance Configure, implement, maintain system security strategies, policies, and procedures. Identifying appropriate AWS operational best practices for application deployment. Implementation of disaster recovery processes and backups for different AWS services and applications Identifying the performance of bottlenecks and implementing the remedies. Support on-prem and cloud servers, including security configurations, patching, and troubleshooting. Ensure the cloud environments in accordance with company security guidelines. Establish metrics, monitor the utilization of AWS resources by using sophisticated Amazon CloudWatch and AWS governance, compliance, and operational using Cloud trail. Troubleshoot incidents, identify root cause, fix problems, and provide RCA implement preventive measures Estimating AWS costs and identifying operational cost control mechanisms. 

Linux System Administration and SOC Operations (Time Allocation 40%):
Maintaining availability, integrity, and confidentiality for all computing environments and information assets. Vulnerability assessments and vulnerability Reporting/Management/Remediation, Server Configuration Compliance. Implement and maintain SOC tools (Qualys Agent, Tanium, Splunk) and security controls. Responsible for internal, external audits and address the security issues identified. Manage cloud service providers (AWS Azure GCP) automated compliance, monitoring, optimization, and governance with Accenture Cloud Platform. Data Security Management with failover for Vormetric Data Encryption. Deployment of servers and fine tuning as per Center for Internet Security (CIS) Benchmarks for system security protection and hardening. Administration the RedHat satellite server, promoting new Content view, Repos required for the latest security and Kernel patches. Vulnerability and Patch Management, applying latest Security, Kernel patches on Windows using SCCM and Non-Windows environment using AWX & Ansible. Working collaboratively with different teams for the Remediation of External and Application Vulnerabilities. Support Incident Change and Problem Management. Monitoring the Server Alerts, tickets & Change Implementation requests once approved by Change management team. 

SPECIAL REQUIREMENTS
Cloud Platforms – AWS (Amazon Web Service), Hands on Azure Cloud. Cloud Security – Accenture Cloud Platform (ACP), Prisma Cloud. Operating System – Red Hat Linux (RHEL), CentOS, Ubuntu, Debian, Solaris & Windows. Patch Management – Red hat satellite server, Ansible, AWX, SCCM. SOC Tools – Qualys Agent, Qualys Scanner, Tanium, Splunk. Vulnerability Management – Nexpose, Qualys Cloud. Data Encryption – DSM (Data Security Management) for Vormetric. Ticketing Tools -- Service Now, JIRA, Co-desk.