CV

Senior Cloud & DevOps Engineer with 6+ years of experience in AWS, Azure, GCP. AWS Container Hero and Google Developer Expert.

Basics

Name Ananda Dwi Rahmawati
Label Senior Cloud & DevOps Engineer
Email ananda.dwirahmawati313@gmail.com
Phone (65) 9358-2201
Url https://misskecupbung.github.io/
Summary Senior Cloud & DevOps Engineer with 6+ years of experience architecting, automating, and optimizing public cloud solutions (AWS, Azure, GCP) for mission-critical environments. Proven track record in cost optimization, security, compliance, and leading cross-functional teams to deliver robust, scalable, and secure cloud platforms. Recognized as AWS Container Hero and Google Developer Expert. Expert in IaC (Terraform, Pulumi), CI/CD (GitLab, Jenkins), and cloud-native architectures. Passionate about documentation, process improvement, and mentoring.

Work

  • 2024.10 - Present

    Singapore, SG

    Cloud & DevOps Engineer (Cloud File Transfer Product)
    ACP Group (Outsourced to GovTech Singapore)
    Operated AWS infrastructure across dev, UAT, and production for a government file transfer platform.
    • Migrated legacy infrastructure to AWS using Terraform and Pulumi, reducing provisioning time from days to hours
    • Built observability stack (CloudWatch, X-Ray, ELK, Synthetics), reducing mean-time-to-resolution for production incidents
    • Developed GitLab CI/CD pipelines with drift detection, security validation, and approval gates
    • Deployed ECS clusters with Fargate, implementing auto-scaling and Blue/Green deployments for zero-downtime releases
    • Designed secure traffic architecture using PrivateLink, Transit Gateway, WAF, and CloudFront, improving latency and throughput
    • Eliminated long-lived credentials via OIDC-based IAM role assumption, reducing credential management overhead and security risk
    • Enforced least-privilege IAM policies with continuous compliance validation using AWS Config
    • Automated security controls: VAPT remediation, container hardening, patching, log retention, and KMS encryption
    • Built compliance scoring automation, streamlining audit preparation and evidence collection
    • Enforced ECR vulnerability remediation through pipeline-driven image rebuilds, reducing pre-production security gaps
    • Served as Scrum Master, driving sprint delivery and cross-team alignment
  • 2023.10 - 2024.09

    Singapore, SG

    Cloud & DevOps Engineer
    Activate Interactive Pte Ltd
    Cloud and DevOps Engineer supporting multi-cloud infrastructure and automation.
    • Automated Linux/Windows provisioning using Ansible and PowerShell DSC, ensuring CIS compliance and reducing manual configuration drift
    • Architected Alibaba Cloud infrastructure (ECS, VPC, ApsaraDB) to support high-availability application workloads
    • Built multi-AZ Data Lake ETL platform on AWS (ECS, RDS, Lambda, Glue, DataPipeline) using Terraform, enabling scalable and reliable data processing
    • Implemented Azure infrastructure including Virtual Networks, Firewall, AD integration, and Azure DevOps pipelines
    • Designed CI/CD pipelines (GitLab, AWS CodePipeline, Proton) enabling self-service deployments with integrated security scanning
    • Implemented monitoring, logging, and alerting (CloudWatch, X-Ray, Azure Monitor, SNS) to support zero-downtime deployments
    • Built cost tracking dashboards (AWS Cost Explorer, Azure Cost Management), enabling proactive budget management
    • Produced architecture documentation, integration guides, and RCA reports for stakeholder transparency
  • 2021.01 - 2023.12

    Indonesia, ID

    Freelance Trainer
    Part-Time / Freelance
    Delivered technical training on cloud, DevOps, and security topics.
    • Delivered technical training to professionals in banking, government, and private sectors on cloud, DevOps, and security topics
    • Developed hands-on curricula for Mastercard Academy 2.0 and Google Bangkit Academy covering GCP, AWS, Kubernetes, CI/CD, and ELK Stack
    • Designed and facilitated workshops on GCP infrastructure, security, architecture, and DevOps practices
    • Led certification preparation programs for CompTIA Linux+ and Security+
    • Created training materials, assessments, and lab exercises for practical learning outcomes
  • 2019.07 - 2023.09

    Bogor, Indonesia

    Cloud Infrastructure Engineer
    PT Boer Technology
    Architected and managed private and hybrid cloud infrastructure for enterprise clients.
    • Architected multi-region OpenStack and Ceph private cloud with high availability using KVM and Kubernetes, serving enterprise clients
    • Developed infrastructure automation (Python and Bash), reducing manual provisioning effort
    • Built monitoring pipelines (Prometheus, Grafana, Alertmanager), maintaining platform reliability and rapid incident detection
    • Integrated VMware vSphere/vSAN/NSX with OpenShift for hybrid-cloud scalability
    • Built CI/CD pipelines (GitLab, Azure DevOps) with security scanning (OWASP ZAP, Burp Suite)
    • Managed MySQL and PostgreSQL clusters with failover, recovery, and query optimization for high-throughput workloads
    • Automated provisioning (Terraform, Ansible, ARM templates), accelerating environment setup
    • Maintained observability stack (ELK, Grafana Loki) for log aggregation and root-cause analysis
    • Containerized legacy PHP/Django apps into Kubernetes microservices, reducing deployment cycles from weekly to daily
    • Led multi-cloud migration (AWS, GCP, Alibaba Cloud), optimizing workloads for cost and performance
    • Developed internal automation tools for reporting and documentation, reducing manual toil
    • Contributed to cloud platform R&D, evaluating emerging virtualization and security technologies

Education

Awards

Skills

Hardware & Operating Systems
Server, Storage, Network
Enterprise Linux (RHEL, Ubuntu, SUSE, Oracle Linux)
Windows Server
VMware vSphere, vSAN, ESXi
Networking & Security
Subnetting, TCP/IP, VLANs, Routing & Switching
Firewalls (Cisco, Mikrotik), VPN, SD-WAN, Zero Trust
AWS VPC, Transit Gateway, PrivateLink, Direct Connect, AWS WAF
Azure Firewall, Cloud Armor, Private DNS, Route 53
Compute & Containers
AWS ECS, Fargate, Lambda, EC2 Auto Scaling
Kubernetes (EKS, K3s, GKE), Docker, Podman, CRI-O, Containerd
OpenShift, Docker Swarm, Helm
Storage & Databases
S3, EBS, EFS, FSx, Glacier
RDS (PostgreSQL, MySQL), Aurora, DynamoDB, MariaDB, Cloud SQL
Ceph, GlusterFS, Rook
AWS Athena, AWS Glue
Backup & Disaster Recovery
AWS Backup, Azure Backup
GCP Persistent Disk & Cloud SQL snapshots
Velero
Observability & Monitoring
AWS CloudWatch, CloudTrail, X-Ray, Trusted Advisor
Prometheus, Grafana, ELK, StackOps, Datadog
Azure Monitor, GCP Operations Suite, CloudWatch Synthetics
OpenTelemetry, Grafana Loki
CI/CD & Automation
Jenkins, GitLab CI/CD, GitHub Actions, ArgoCD
AWS CodePipeline, CodeBuild, CodeDeploy, CodeStar
AWS CDK, Pulumi, Terraform, CloudFormation, Ansible, Puppet
Azure DevOps, Azure Pipelines, Azure Repos, Azure Artifacts
Security & DevSecOps
IAM, KMS, Secrets Manager, Security Hub, GuardDuty
CodeSCAPE, CloudSCAPE, VAPT remediation, SAST/DAST
Container image scanning, vulnerability management
Service Mesh & API Management
Envoy, Istio, Linkerd, AWS App Mesh
API Gateway (AWS, Azure)
Windows Administration
Active Directory, File & Storage Services, IIS, RDP, WSUS
Programming & Scripting
Python
Bash
Go
Java
GovTech Singapore Stacks
GCC 1.0/2.0/+, CStack, StackOps, CloudSCAPE, CodeSCAPE
TechBiz, TechPass, IM8, SGTS tools, CAM, Splunk

Languages

English
Fluent
Indonesian
Native speaker