Peut être disponible
(Mis à jour 2023-03-23)Senior Cloud Architect
Stockholm, Sweden
Natif English, Intermédiaire Svenska
- 7+ years of experience in public cloud architectures
- Hands-on experience with infrastructure as code and automation.
- Expert knowledge of cloud infrastructure, governance and security.
Compétences (22)
AWS
Cloud Migration
Cloud Governance
Cloud Best Practices
Zero-Trust Security
Microsoft Azure
AWS IAM
Infrastructure as code
Cloud Security
Azure Active Directory
Cloud Networking
Terraform
AWS Cloudformation
Cloudformation
Cloud Landing Zones
Amazon Web Services
Kubernetes
Automation
Serverless
SOFTWARE DESIGN
Cloud FinOps
Docker
Expérience professionnelle
2023-03 - Actuel
2021-11 - 2023-03
* Created landing zones for application workloads, managed Azure firewall and security policies.
* Contributed to the development of a reference cloud architecture for container workloads.
* Reviewed all workloads to comply with the zero-trust security model.
* Built a proof-of-concept to secure the most sensitive workloads by using the emerging confidential computing technologies.
Working Group Two, Sweden
2020-04 - 2021-11
* Reduced time to deploy proof-of-concept environments from several days to 15 minutes by automating AWS infrastructure and Kubernetes cluster deployments.
* Developed Terraform modules to create reusable infrastructure code.
* Detected and fixed issues with the IAM policies, which prevented possible privilege escalation attacks.
* Hardened cloud security further by implementing identity federation, service control policies and encryption at rest.
* Established Key Management Service (KMS) best practices by using least privilege and separation of duty principles and managed the key policies accordingly.
* Setup AWS network backbone for customer integrations using multiple Transit Gateways and created routes and policies to minimize network-based attack risks.
2018-04 - 2020-04
2019-07 - 2020-03
* Created least-privilege IAM and KMS key policies for the development teams.
* Contributed to building a centralized Cloud Center of Excellence team.
* Helped the finance team with cloud cost allocation by enforcing tagging policies and improving account structure.
2019-01 - 2019-04
* Migrated FirstVet's application to Elastic Beanstalk (PaaS) and automated application deployments by using AWS DevOps services.
2018-08 - 2019-01
* Automatically generated cross-account IAM policies and implemented time-limited user access functionality to simplify identity and access management.
* Created solutions to simplify cloud governance, such as automatic tagging and IAM policy generation.
2018-05 - 2018-08
* Hardened the security of the AWS accounts by refining IAM policies and network policies.
2018-04 - 2018-07
2017-01 - 2018-04
2017-08 - 2018-03
Completed the following consultancy assignments on time: Assa Abloy AB (August 2017-March 2018) * Migrated the customer's mission-critical application servers and databases to AWS.
* Designed a highly available and fault-tolerant cloud architecture to minimize downtime.
2017-05 - 2017-08
2017-01 - 2017-05
* Configured Azure AD Connect to synchronize users and groups from Active Directory to Azure AD.
2009-08 - 2016-12
2016-01 - 2016-12
* Facilitated team activities as a part-time Scrum Master.
2009-08 - 2016-01
* Performed feasibility studies for the upcoming 3G and 4G features to determine architectural impacts and to estimate initial costs.
* As a product owner, managed the scope and backlog of a large-scale software improvement.
2008-01 - 2009-08
2002-01 - 2006-01
Parcours scolaire
2023-03 - 2006-01
2023-03 - 2002-01