HAMMAD TARIQ

• Company Overview: Client: McKinsey & Company/DPWorld
• Architected and deployed secure, scalable greenfield Azure infrastructure using Terraform.
• Designed segmented network with VNets, Subnets, NSGs, UDRs, and peering across Dev, UAT, and Prod.
• Provisioned AKS with Azure CNI, Pod Identity, RBAC, and dedicated node pools.
• Integrated Azure Key Vault with managed identities across AKS, APIM, and databases.
• Configured Azure PostgreSQL (Flexible Server) with HA, private endpoints, and automated backups.
• Deployed Azure APIM for centralized API routing, versioning, and OAuth2/JWT enforcement.
• Enabled secure Blob Storage with private access, lifecycle rules, and geo-replication.
• Established DR/BCP strategy with geo-redundancy, RPO/RTO targets, and tested failover runbooks.
• Created detailed infra documentation including network diagrams and IaC blueprints.
• Enabled observability with Azure Monitor and New Relic for proactive full-stack alerting.
• Built Azure DevOps pipelines for multi-environment deployments with controlled automation.
• Developed Helm charts with rolling updates (Dev/UAT) and blue-green deployment (Prod).
• Injected secrets via Key Vault in pipelines to prevent credential exposure.
• Applied SonarQube for code quality checks and Veracode for SAST/DAST in CI/CD.
• Enforced secure SDLC with quality gates, gated releases, and audit-ready pipelines.
• Managed versioned Docker images and Helm charts in ACR and Azure Artifacts.
• Documented CI/CD workflows, rollback plans, and onboarding guides for Dev and QA teams.
• Client: McKinsey & Company/DPWorld

Role Progression:
Consultant - Sr. Engineer (Lead) – Dec 2023 – Apr 2025
Technical Lead (via HCLTech) – Dec 2022 – Dec 2023

• Started as a consultant via HCLTech and was converted to a permanent role at NAB after successful performance.
• Led cross-functional teams and facilitated Scrum ceremonies to drive agile delivery.
• Provisioned and managed ECS, EKS, and AKS clusters on AWS and Azure using Terraform for scalable and resilient infrastructure.
• Standardized Kubernetes deployments across SIT and Prod with optimized YAMLs and Helm charts.
• Executed rolling and canary deployments to ensure high availability with minimal downtime.
• Developed and optimized CI/CD pipelines across multiple environments, reducing build failures and improving deployment efficiency.
• Defined DevOps best practices and documented processes for cross-team collaboration.
• Migrated workloads to Graviton instances, enabling NAB to claim $1.5M in AWS credits.
• Integrated security tools (SonarQube, Twistlock, Checkmarx) into CI/CD pipelines to ensure secure software delivery.
• Enhanced observability and incident response using Splunk alerting and dashboards.
• Automated workflows and infrastructure tasks using Python, Groovy, and Shell scripting.
• Delivered production support with consistent SLA adherence and high service uptime.
• Conducted internal training and documentation to support team knowledge transfer.
• Automated infrastructure configuration using Ansible playbooks to boost operational efficiency.
• Led Disaster Recovery (DR) drills and established BCP readiness for critical services.
• Audited microservice architecture pre-launch, resolving issues for seamless rollout.
• Performed major version upgrades of RDS PostgreSQL with minimal downtime and full data integrity.

• Company Overview: (A PAYMENTUS COMPANY)
• Built and deployed Docker containers for microservices using Docker Compose, ensuring seamless multi-container orchestration.
• Managed and deployed in-house Kubernetes clusters, enhancing performance and reliability of containerized workloads.
• Developed and maintained Helm charts and Kubernetes YAMLs for consistent deployments.
• Migrated monolithic EMS application to a microlithic architecture for better scalability and maintainability.
• Automated infrastructure management using Ansible playbooks (e.g., cluster patching) to reduce manual overhead.
• Imported legacy infrastructure into Terraform, enabling IaC and streamlined provisioning.
• Automated CI/CD pipelines in Jenkins integrated with GitLab and Bitbucket, improving deployment efficiency.
• Wrote Python, Shell, and Groovy scripts to automate Jenkins tasks like instance restarts and tagging.
• Managed secrets via Vault and automated token generation for secure deployments.
• Handled Git workflows: branching, commits, PRs to support collaborative development.
• Troubleshot K8s, Jenkins, Docker, and app stack issues (Oracle, Tomcat, Nginx, Elasticsearch).
• Documented workflows and cases on Confluence for team enablement.
• Worked on Jira and OpsGenie tasks, ensuring SLA-compliant resolution.
• Performed routine system housekeeping and supported local development using Eclipse and Vagrant.

Client: InterContinental Hotel Group

Tenure: Dec 2017 to May 2021

Role: DevOps Engineer

• Implemented Jenkins pipelines to enable seamless Continuous Integration and Continuous Deployment (CI/CD) across multiple environments.
• Created Docker and Docker Compose files for running applications in a containerized environment, ensuring portability and scalability.
• Performed AWS console operations, deploying and managing cloud infrastructure like to meet project requirements.
• Troubleshot issues related to Docker containers and Jenkins pipelines, minimizing downtime and ensuring smooth deployments.
• Developed Jenkins pipelines using Groovy, Shell, and Python to automate manual tasks, improving efficiency and reducing human error.
• Resolved client and internal team cases on Jira within SLA, ensuring prompt resolution and maintaining service standards.
• Created and updated SITs (System Integration Testing) environments as required, supporting testing processes and deployment readiness.
• Utilized Bitbucket for version control, managing code repositories and ensuring smooth collaboration between teams.
• Moving infrastructure to terraform and enabling IAC practice for the project.

Client: CBIC (Central Bureau of Indirect Taxes and Customs)

Tenure: Nov 2016 to Nov 2017

Role: System Engineer

• Managed server provisioning, maintenance, and configuration of web servers to ensure high availability and performance.
• Implemented new security standards to mitigate vulnerabilities, securing servers and websites from external threats.
• Developed a custom monitoring dashboard using shell scripting to track key metrics such as connection count, CPU and memory utilization, and hit count, improving system visibility.
• Generated SSL certificates and hosted websites on secure servers, ensuring data integrity and encryption.
• Deployed static content, patches, and WAR files on servers to maintain up-to-date and secure web applications.
• Utilized ticketing systems like HP Service Manager and monitoring tools such as Nagios for incident management and system monitoring.
• Conducted Disaster Recovery (DR) drills, ensuring readiness for system failures and minimizing downtime.
• Improved code deployment efficiency by automating processes with CI/CD pipelines.
• Provided 24/7 on-call support for critical systems, ensuring high availability and rapid issue resolution.