During my career break (Dec 2024 β Present), I focused on deepening my expertise in DevOps, Cloud and DevSecOps automation by building multiple real-world, hands-on projects.
Each repository demonstrates practical implementations of:
- CI/CD Automation β End-to-end pipelines with secure build, test, and deploy workflows.
- Infrastructure as Code (IaC) β Automated infrastructure provisioning using Terraform.
- Containerization & Orchestration β Dockerized workloads orchestrated on Kubernetes (EKS/ECS).
- GitOps Workflows β Continuous deployment and environment management using ArgoCD & Helm.
- Security Automation β Vulnerability scanning, image signing and policy enforcement with Trivy, Cosign and OPA.
π‘ These projects reflect my continuous learning, hands-on problem-solving and automation-first approach to modern DevOps and cloud engineering.
- Cloud Platforms: AWS
- CI/CD: Jenkins, GitHub Actions, ArgoCD, Helm
- IaC: Terraform
- Containerization: Docker, Kubernetes (EKS/ECS)
- Security: Trivy, Cosign, Snyk, SBOM generation
- Observability: Prometheus, Grafana
Below are some of my key projects developed during my career break (2023β2024), each focusing on automating modern DevOps, Cloud, and Security workflows with measurable impact.
Tech Stack: Terraform, Jenkins, ArgoCD, Helm, EKS, Trivy, Snyk, Cosign, SBOM, Slack/Email Alerts
- Architected secure, end-to-end CI/CD pipelines integrating Terraform for IaC, Jenkins for automation, and ArgoCD for GitOps-driven deployment to EKS.
- Implemented container security automation using Trivy (vulnerability scanning), Snyk (dependency scanning), and Cosign (image signing).
- Added SBOM generation and AI-driven alerting via Slack and Email for proactive vulnerability notifications.
- Achieved 40% faster vulnerability detection and improved secure delivery velocity.
π¦ GitHub Repository
Tech Stack: Terraform, AWS, GitHub Actions (OIDC), IAM
- Automated AWS infrastructure provisioning using Terraform with OIDC-based authentication to GitHub Actions (no static credentials).
- Enhanced security, scalability, and reproducibility across environments.
- Reduced provisioning time and human error through fully automated IaC workflows.
π¦ GitHub Repository
Tech Stack: GitHub Actions, Docker, Terraform, ECS, ECR, Trivy, Snyk
- Built secure CI/CD pipelines deploying containerized workloads to AWS ECS via Terraform-managed infrastructure.
- Integrated Trivy and Snyk scans into the pipeline for automated image and dependency vulnerability checks.
- Decreased deployment time by 50% and reduced configuration drift by 35% using infrastructure automation.
π¦ GitHub Repository
Tech Stack: AWS Lambda (Python), API Gateway, DynamoDB, OpenWeather API, IAM, CORS
- Developed a serverless, event-driven architecture fetching live weather data via API Gateway and Lambda.
- Stored results in DynamoDB for real-time retrieval, applying least-privilege IAM roles and
CORS-enabled REST endpoints. - Achieved 40% faster data retrieval and 30% cost reduction via a fully scalable,
zero-maintenance design.
π¦ GitHub Repository
Tech Stack: Kubernetes, Kyverno, YAML, ClusterPolicy, NetworkPolicy
- Implemented Kyverno policies to enforce, mutate, and generate Kubernetes resources using
YAML β no coding required. - Built ClusterPolicies to automatically create and validate NetworkPolicies, ensuring namespace-level security and compliance.
- Designed rules to enforce Pod security standards, auto-generate missing labels, and block insecure configurations.
- Strengthened cluster governance and reduced security misconfigurations through automated
policy enforcement.
π¦ GitHub Repository
Tech Stack: Kubernetes, Stakater Reloader, Helm, ConfigMap, Secret, GitOps
- Implemented automated reload mechanism in Kubernetes to restart pods when ConfigMaps or Secrets are updated β powered by Stakater Reloader.
- Demonstrated how Reloader detects configuration changes and triggers rolling restarts for Deployments, StatefulSets or DaemonSets, ensuring apps always run with the latest configuration.
- Built complete manifests for namespace, RBAC, deployment and reloader setup.
- Enabled zero-downtime configuration rollouts and simplified secret rotation by integrating
with external secret stores.
π¦ GitHub Repository
Visit my GitHub Profile or Portfolio Website for additional projects on:
- Kubernetes Monitoring & Observability
- Multi-Environment CI/CD Pipelines