I am a Senior AWS Cloud & DevOps Engineer with extensive experience designing, deploying, and managing production-grade cloud infrastructure using AWS, Kubernetes (EKS), Docker, and VPC networking. I excel at building secure, scalable multi-tier architectures and leading containerized deployments in complex enterprise environments. I focus on automation, CI/CD, and secure networking, with a strong track record of implementing IAM security, monitoring, high availability, and cost-optimized cloud solutions. I enjoy collaborating with engineering and operations teams to deliver reliable systems and continuous improvement.

Ama Tuz Zahra Naqvi

I am a Senior AWS Cloud & DevOps Engineer with extensive experience designing, deploying, and managing production-grade cloud infrastructure using AWS, Kubernetes (EKS), Docker, and VPC networking. I excel at building secure, scalable multi-tier architectures and leading containerized deployments in complex enterprise environments. I focus on automation, CI/CD, and secure networking, with a strong track record of implementing IAM security, monitoring, high availability, and cost-optimized cloud solutions. I enjoy collaborating with engineering and operations teams to deliver reliable systems and continuous improvement.

Available to hire

I am a Senior AWS Cloud & DevOps Engineer with extensive experience designing, deploying, and managing production-grade cloud infrastructure using AWS, Kubernetes (EKS), Docker, and VPC networking. I excel at building secure, scalable multi-tier architectures and leading containerized deployments in complex enterprise environments.

I focus on automation, CI/CD, and secure networking, with a strong track record of implementing IAM security, monitoring, high availability, and cost-optimized cloud solutions. I enjoy collaborating with engineering and operations teams to deliver reliable systems and continuous improvement.

See more

Skills

Experience Level

AWS
Expert
Docker
Expert
Kubernetes
Expert
MySQL
Expert
GitHub
Expert
Google Cloud
Intermediate

Language

English
Fluent

Work Experience

DevOps Engineer at NSOl BPO / HSBC
September 1, 2022 - October 1, 2025
Resolved container orchestration, networking, and security issues within ECS; ensured correct route table propagation to allow EC2 instances, ALBs, and NAT gateways to communicate with external clients. Integrated SonarQube with AWS CI/CD pipelines using CodeBuild, CodePipeline, and Jenkins for automated static code analysis during build stages. Implemented secure IGW rules to prevent misconfigurations exposing internal resources to the public internet. Designed and deployed a fully isolated VPC with custom CIDR blocks enabling secure multi-tier architecture, with public and private subnets for scalable services and internal workflows. Configured Internet Gateways and NAT Gateways to enable secure outbound internet access from private subnets while preventing inbound exposure. Hardened Security Groups and NACLs controlling inter-tier communication. Managed CloudFormation stacks, change sets, and stack updates. Hands-on with Kubernetes deployment workflows on AWS EKS, including node gro
DevOps Engineer at bcdapps/ Volvo
May 1, 2020 - August 1, 2022
Designed secure three-tier VPC architecture with isolated public/private networks for APIs and databases; implemented public subnets only for load balancers and NAT operations. Enforced strict Security Groups to minimize exposure while allowing legitimate communication between shoppers, APIs, and backend systems. Built EKS clusters for high-availability microservices; deployed application containers via Docker images stored in Amazon ECR; wrote production-grade Kubernetes manifests for deployments, services, horizontal pod autoscalers, ingress, and secrets injection via AWS Secrets Manager and Secrets Store CSI Driver. Integrated SonarQube with AWS CodeBuild and Jenkins pipelines for code quality checks; deployed SonarQube on EC2 with RDS. Configured ELB + Route 53 for global routing with ACM SSL termination. Set up CloudWatch dashboards and alarms to monitor pod CPU/memory, node health, and service latency. Implemented multi-tier VPC layouts with NAT Gateways and secure outbound acces
AWS DevOps Engineer at La Dejavu / Vodafone Singapore
August 1, 2018 - April 1, 2020
Designed secure three-tier VPC with isolated private networks; public subnets for load balancers; implemented NAT, IGW, and Route Tables to control data flow between application tiers and the public internet. Enforced Security Groups to minimize exposure. Built EKS clusters for microservices, containerized apps with Docker, and stored images in ECR. Used Kubernetes manifests for deployments, autoscaling, ingress, and secrets injection using AWS Secrets Manager and CSI Driver. Integrated unit tests, code quality checks, and SonarQube analyses into CodeBuild and Jenkins pipelines; deployed SonarQube on EC2 with RDS for reliability. Configured ELB, Route 53, ACM for HTTPS; built CloudWatch dashboards and alarms; implemented multi-tier architecture with public/private subnets, NATs, and restricted routing. Created reusable Terraform modules and CloudFormation templates for scalable provisioning; automated infrastructure provisioning via CLI.
AWS Engineer at La Dejavu / Fire Eye, California United States
September 1, 2017 - January 1, 2018
Managed container deployments with Docker and optimized images; created ECR repositories and integrated with GitHub pipelines. Managed full Kubernetes operations via EKS, including autoscaling, manifest management, and cluster monitoring with CloudWatch. Configured ELB + Route 53 + ACM for hosting secure corporate websites, ensuring HTTPS, domain routing, and global reliability. Designed enterprise-grade VPC architectures with public/private subnets, IGW, and NAT Gateway. Demonstrated EC2 Instance Connect Endpoint for IAM-based SSH access in private networks. Deployed RDS MySQL with automated backups and subnet groups; configured Application Load Balancers to distribute traffic to EKS pods and EC2 instances; used NLB for latency-sensitive workloads. Integrated ALB with Route 53, WAF, and ACM for secure traffic. Built Terraform modules and CloudFormation templates for reproducible infrastructure, and introduced Secrets Manager for secure credential provisioning. Trained in Kubernetes wi
AWS Engineer at La Dejavu / Fire Eye, California
September 1, 2017 - January 1, 2018
Managed container deployments with Docker and Kubernetes (EKS), created ECR repositories, and integrated with GitHub pipelines. Implemented ELB + Route 53 + ACM for secure, globally accessible websites. Built enterprise VPCs with public/private subnets and secure IGW/NAT configurations. Delivered hands-on Kubernetes training (EKS, kubectl, YAML), and enabled secure SSH via EC2 Instance Connect Endpoint. Deployed RDS/MySQL with backups and Secrets Manager integration; configured ALB for load balancing across EKS and EC2.

Education

Bachelor of Science in Computer Science at University of Punjab
January 11, 2030 - January 23, 2026
Bachelor of Science in Computer Science at University of Punjab
January 11, 2030 - January 23, 2026

Qualifications

AWS Certified Solutions Architect – Associate (SAA-C03)
January 11, 2030 - January 23, 2026
AWS Certified Developer – Associate (DVA-C01)
January 11, 2030 - January 23, 2026
AWS Certified Security – Specialty (SCS-C01)
January 11, 2030 - January 23, 2026
AWS Certified Solutions Architect Associate (SAA-C03)
January 11, 2030 - January 23, 2026
AWS Certified Developer Associate (DVA-C01)
January 11, 2030 - January 23, 2026
AWS Certified Security - Specialty (SCS-C01)
January 11, 2030 - January 23, 2026

Industry Experience

Software & Internet, Professional Services, Computers & Electronics, Financial Services, Media & Entertainment

Skills

Experience Level

AWS
Expert
Docker
Expert
Kubernetes
Expert
MySQL
Expert
GitHub
Expert
Google Cloud
Intermediate