Randika Munasinghe

• Company Overview: https://www.ac3.com.au/about-us
• Projects:
• - VicRoads (RLS)
• - LifeLink (BDM’s digital platform)
• - PTV Shared services
• - Performed EKS version upgrades with minimal downtime while enhancing API endpoint security through private access
• - Classic load balancer to Alb migrations (HTTPS listeners, enforcing TLS 1.2)
• - Implemented secure authentication and authorization using AWS Cognito with MFA, federated identity, and token-based access control.
• - Implemented automated AMI baking for AWS-managed Windows servers and performed Linux AMI upgrades to streamline patching and enhance OS-level security compliance. (Ec2 Image builder, Code Pipeline, Cloudformation, Code deploy)
• - Terraform Infrastructure as Code for infrastructure provisioning.
• - Led AWS Organization restructuring initiatives to align with the AWS Well-Architected Framework, optimizing for security, performance, reliability, cost-efficiency, and operational excellence.
• - Managed BAU tasks including software releases, incident management, certificate updates, change management, on-call support, and patching to maintain system stability and compliance.
• Responsibilities:
• Identifying API dependencies tied to EKS versions and led upgrade planning by assessing deprecations, validating workloads, and coordinating version-compatible rollouts
• Designing and implementing Docker containers to encapsulate application components, dependencies, and configurations for streamlined deployment and portability.
• Maintained high security posture by proactively addressing findings in AWS Security Hub and Trusted Advisor, ensuring compliance with best practices and minimizing security risks.
• Designing and implementing Terraform modules and configurations to define ECS clusters, task definitions, and services in AWS, leveraging Infrastructure as Code (IaC) principles for repeatable and consistent deployments.
• Reorganizing AWS organizations according to well architectural recommendations
• Optimizing ECS configurations for performance, scalability, and cost-effectiveness, including resource allocation, auto-scaling policies, and networking settings.
• Implemented CI/CD pipelines using GitLab and AWS CodePipeline to automate build, test, and deployment workflows, improving release efficiency and reducing manual errors.
• Documented migration processes, architecture diagrams, root cause analyses, deployment runbooks, and best practices to support future initiatives and cross-team knowledge sharing.
• Identified, analyzed and resolved infrastructure vulnerabilities and application deployment issues.
• Provided technical support to internal stakeholders, diagnosing and resolving complex issues related to the organization''s cloud environment.
• Collaborated closely with cross-functional teams during major incident response efforts, ensuring timely resolution of critical issues affecting business operations.
• Reduced server downtime by proactively monitoring cloud resources and addressing potential issues before they escalated.
• Enhanced cloud infrastructure efficiency by implementing advanced automation techniques and tools.
• Worked with teams of talented software engineers to define, build and maintain cloud infrastructure.
• Ensured high availability and scalability of cloud services, leading complex migrations to cloud environments.

Company Overview: www.cloudmarc.com.au

Projects:

• - Kubernetes Services Migration to Application Load Balancers
• Led the migration of Kubernetes services from classic load balancers to AWS Application Load Balancers (ALBs) for improved performance, scalability, and enhanced application-level routing capabilities.
• - Kubernetes Nodes and Cluster Upgrades
• Guided the strategizing and implementation of Kubernetes node and cluster upgrades, aiming to enhance the dependability, security, and efficiency of containerized applications deployed across Kubernetes environments.
• Responsibilities:
• Orchestrated containerized applications using Kubernetes, ensuring high availability and scalability.
• Implemented CI/CD pipelines with Kubernetes for automated deployments.
• Managed Kubernetes clusters on AWS EKS, optimizing resource utilization and cost efficiency.
• Designed and executed a migration plan to transition Kubernetes services to application load balancers while minimizing downtime and ensuring uninterrupted service availability.
• Performed architectural reviews and provided recommendations for optimization, improvement, and compliance with industry standards and best practices in Google cloud and AWS environments.
• Managed the deployment and administration of Docker containers using Amazon EKS and ECS.
• Configured CI/CD pipelines in Github for automated deployments by configuring workflows to deploy ECS.Defining Github branching strategies and approval process.
• Implemented, Fine-tuned python and bash scripts to automate regular manual tasks.
• Performed regular cost analysis of AWS resources and identifying opportunities for optimization, rightsizing resources, implementing Reserved Instances (RIs), Savings plans and leveraging Spot Instances.
• Designed and developed Terraform configurations to define, provision, and manage infrastructure resources in AWS.
• Implemented scalable and reliable cloud infrastructure architectures using Terraform code and CloudFormation templates, ensuring infrastructure consistency and repeatability across environments.
• Implemented security best practices in Aws cloud and collaborated with cross-functional teams to establish security policies, procedures, and guidelines for AWS environments, provided training and guidance on AWS security best practices. (VPN setup, IAM identity provider, Security hub)
• Conducted thorough risk assessments for complex engineering projects, minimizing potential hazards while maximizing resource utilization.
• Collaborated with stakeholders to gather requirements and develop tailored engineering solutions that met business needs.

Company Overview: www.syscolabs.com

Responsibilities:

• Managed multi cloud environments: inspecting health notifications , open issues in AWS and Google cloud environments.
• Provided mentorship and training to team members on DevOps tools, processes, and best practices, fostering a culture of automation, collaboration, and continuous improvement.
• Created and maintained fully automated CI/CD pipelines for code/database deployment using github Workflows.
• Conducted code reviews and implementing best practices for IaC development, including version control, modularization, and reusability, to ensure code quality and maintainability.
• Research and Development on GCP new services and documented configuration steps after implementation : Network Security , Big data analytics
• Assisted in creating visually appealing designs that adhered to strict building codes and safety regulations.

Company Overview: www.madmobile.com

Responsibilities:

• Proactively monitored and maintained the stability and performance of production environments, ensuring high availability and reliability of critical systems and applications. Nagios, Grafana, Prometheus and Cloud watch alerts been used.
• Designed and implemented auto-scaling policies based on demand patterns, ensuring optimal resource utilization and cost efficiency. Also ensuring high availability of database cluster using RDS features.
• Performed regular cost reviews and provided recommendations for optimization to ensure alignment with organizational goals and budget constraints.: Right sizing resources by analysing usage. Purchasing Reserved instances and Savings plans
• Terraform code implementation to provision ECS environments and related resources.
• Conducted the planning and execution of migrating legacy on-premises applications to the public cloud, ensuring successful and seamless transitions with minimal disruption to business operations.
• Configuring SNS alerts to monitor IAM changes and firewall rule changes.
• Participated PCI evaluations from infrastructure perspective.
• Worked with cross-functional teams, including developers, QA engineers, and system administrators, to address infrastructure-related challenges and improve system reliability and performance.
• Integrated Atlassian tools with CI/CD pipelines (e.g., Jenkins, GitLab CI/CD) for automated build, test, and deployment processes, improving development efficiency and quality.