It looks like you are in United States. Would you like to go to https://onsiter.com/us/ instead?
Saattaa olla saatavilla
(Päivitetty 2023-03-23)Senior Cloud Architect
Stockholm, Sweden
Äidinkieli English, Keskitasoinen Svenska
- 7+ years of experience in public cloud architectures
- Hands-on experience with infrastructure as code and automation.
- Expert knowledge of cloud infrastructure, governance and security.
Taidot (22)
AWS
Cloud Migration
Cloud Governance
Cloud Best Practices
Zero-Trust Security
Microsoft Azure
AWS IAM
Infrastructure as code
Cloud Security
Azure Active Directory
Cloud Networking
Terraform
AWS Cloudformation
Cloudformation
Cloud Landing Zones
Amazon Web Services
Kubernetes
Automation
Serverless
SOFTWARE DESIGN
Cloud FinOps
Docker
Työkokemus
Freelance Cloud Architect
Floccus AB
2023-03 - Nykyhetki
Offers consultancy services around cloud architecture, governance, security and FinOps.
Senior Cloud Architect
Storebrand
2021-11 - 2023-03
As a member of the Cloud Center of Excellence team, implemented the cloud best practices and governance policies on Azure; educated and supported the application teams on cloud migration.
* Created landing zones for application workloads, managed Azure firewall and security policies.
* Contributed to the development of a reference cloud architecture for container workloads.
* Reviewed all workloads to comply with the zero-trust security model.
* Built a proof-of-concept to secure the most sensitive workloads by using the emerging confidential computing technologies.
Working Group Two, Sweden
* Created landing zones for application workloads, managed Azure firewall and security policies.
* Contributed to the development of a reference cloud architecture for container workloads.
* Reviewed all workloads to comply with the zero-trust security model.
* Built a proof-of-concept to secure the most sensitive workloads by using the emerging confidential computing technologies.
Working Group Two, Sweden
Cloud Infrastructure/Security Engineer
2020-04 - 2021-11
As part of the infrastructure team, designed and automated the cloud infrastructure.
* Reduced time to deploy proof-of-concept environments from several days to 15 minutes by automating AWS infrastructure and Kubernetes cluster deployments.
* Developed Terraform modules to create reusable infrastructure code.
* Detected and fixed issues with the IAM policies, which prevented possible privilege escalation attacks.
* Hardened cloud security further by implementing identity federation, service control policies and encryption at rest.
* Established Key Management Service (KMS) best practices by using least privilege and separation of duty principles and managed the key policies accordingly.
* Setup AWS network backbone for customer integrations using multiple Transit Gateways and created routes and policies to minimize network-based attack risks.
* Reduced time to deploy proof-of-concept environments from several days to 15 minutes by automating AWS infrastructure and Kubernetes cluster deployments.
* Developed Terraform modules to create reusable infrastructure code.
* Detected and fixed issues with the IAM policies, which prevented possible privilege escalation attacks.
* Hardened cloud security further by implementing identity federation, service control policies and encryption at rest.
* Established Key Management Service (KMS) best practices by using least privilege and separation of duty principles and managed the key policies accordingly.
* Setup AWS network backbone for customer integrations using multiple Transit Gateways and created routes and policies to minimize network-based attack risks.
Co-founder & Principal AWS Solutions Architect
Buzzcloud AB
2018-04 - 2020-04
Developed long-term strategies for growth and supported pre-sales and recruitment activities.
Kindred Group
2019-07 - 2020-03
* Rearchitected customer's hybrid cloud architecture by leveraging AWS Transit Gateway, Direct Connect Gateway and Route 53 Resolver, which reduced the time to add new VPCs significantly.
* Created least-privilege IAM and KMS key policies for the development teams.
* Contributed to building a centralized Cloud Center of Excellence team.
* Helped the finance team with cloud cost allocation by enforcing tagging policies and improving account structure.
* Created least-privilege IAM and KMS key policies for the development teams.
* Contributed to building a centralized Cloud Center of Excellence team.
* Helped the finance team with cloud cost allocation by enforcing tagging policies and improving account structure.
FirstVet AB
2019-01 - 2019-04
(January 2019-April 2019) * Designed a scalable and secure AWS architecture that would scale with the customer's growth.
* Migrated FirstVet's application to Elastic Beanstalk (PaaS) and automated application deployments by using AWS DevOps services.
* Migrated FirstVet's application to Elastic Beanstalk (PaaS) and automated application deployments by using AWS DevOps services.
simplify the management
Assa Abloy AB
2018-08 - 2019-01
of the customer's AWS organization.
* Automatically generated cross-account IAM policies and implemented time-limited user access functionality to simplify identity and access management.
* Created solutions to simplify cloud governance, such as automatic tagging and IAM policy generation.
* Automatically generated cross-account IAM policies and implemented time-limited user access functionality to simplify identity and access management.
* Created solutions to simplify cloud governance, such as automatic tagging and IAM policy generation.
Internet Foundation of Sweden
2018-05 - 2018-08
* Optimized the customer's cloud architecture and reduced their monthly bill by 40%.
* Hardened the security of the AWS accounts by refining IAM policies and network policies.
* Hardened the security of the AWS accounts by refining IAM policies and network policies.
Klarna
2018-04 - 2018-07
Migrated legacy on-premises servers running Nginx, Python and PHP to AWS.
Cloud Architect/Consultant
Nordcloud AB
2017-01 - 2018-04
Assa Abloy AB
2017-08 - 2018-03
Provided technical pre-sales consultancy for customers including cloud migration, cost estimations and cost optimizations.
Completed the following consultancy assignments on time: Assa Abloy AB (August 2017-March 2018) * Migrated the customer's mission-critical application servers and databases to AWS.
* Designed a highly available and fault-tolerant cloud architecture to minimize downtime.
Completed the following consultancy assignments on time: Assa Abloy AB (August 2017-March 2018) * Migrated the customer's mission-critical application servers and databases to AWS.
* Designed a highly available and fault-tolerant cloud architecture to minimize downtime.
Tandem Bank
2017-05 - 2017-08
Developed a continuous delivery pipeline to setup a batch process to analyze data by leveraging AWS Batch with spot instances.
Azure AD
Aritco Lift AB
2017-01 - 2017-05
(January 2017-May 2017) * Migrated customer's legacy application to Azure App Services platform in multiple regions, where users were geographically routed to a server by using the Traffic Manager service.
* Configured Azure AD Connect to synchronize users and groups from Active Directory to Azure AD.
* Configured Azure AD Connect to synchronize users and groups from Active Directory to Azure AD.
Ericsson AB
2009-08 - 2016-12
Cloud Engineer / Scrum Master
2016-01 - 2016-12
* Developed solutions for managing and orchestrating hyperscale datacenters.
* Facilitated team activities as a part-time Scrum Master.
* Facilitated team activities as a part-time Scrum Master.
Software Architect / Agile Product Owner
2009-08 - 2016-01
* Chosen as one of the high performing employees globally in 2014.
* Performed feasibility studies for the upcoming 3G and 4G features to determine architectural impacts and to estimate initial costs.
* As a product owner, managed the scope and backlog of a large-scale software improvement.
* Performed feasibility studies for the upcoming 3G and 4G features to determine architectural impacts and to estimate initial costs.
* As a product owner, managed the scope and backlog of a large-scale software improvement.
Software Design Engineer
Ericsson LMI
2008-01 - 2009-08
Redesigned radio access bearers component of 3G Radio Network Controller, which reduced the complexity of the existing implementation and shortened time to deliver new features by 70%.
Software Engineer
Vodafone
2002-01 - 2006-01
Demonstrated the shortcomings of SS7 protocol stack on Linux, which was replaced, resulting in more robust and reliable products.
Koulutus
MSc in Computer Engineering
Gebze Technical University
2023-03 - 2006-01
BSc in Computer Engineering
Yeditepe University
2023-03 - 2002-01
Sertifikaatit
Microsoft Certified: Azure Solutions Architect Expert
AWS Certified Solutions Architect, Professional
CCSK, Certificate of Cloud Security Knowledge
AWS Certified DevOps Engineer, Professional
Microsoft Cybersecurity Architect
AWS Certified Solutions Architect
AWS Certified Security Specialty
Microsoft Azure Administrator
Microsoft Certified