Namdeo Pawar

Senior DevOps & Kubernetes Engineer

AWS EKS On-Prem Kubernetes Terraform · IaC GitOps · ArgoCD · Flux Zero Trust CI/CD Automation

Senior DevOps & Kubernetes Engineer with 5+ years of hands-on experience designing, automating, and securing production-grade infrastructure across AWS EKS and on-premises Kubernetes environments. Deep expertise in GitOps (ArgoCD, Flux), Infrastructure as Code (Terraform, Ansible), and Zero Trust networking (OpenZiti). Delivered 80% reduction in manual operations, maintained 99.99% uptime across multi-cloud migrations, and built end-to-end secure CI/CD platforms for enterprise workloads. Passionate about platform engineering, Kubernetes internals, and security-first automation at scale.

menamdeopawar@gmail.com

+91 8237233307

linkedin.com/in/namdeopawar

github.com/namdeopawar

namacloudops.in

Pune, Maharashtra, India

Core Technical Skills

Kubernetes

EKS (AWS) On-Prem K8s Helm Karpenter Ingress / Gateway API RBAC Network Policies Rancher K3s kubeadm

AWS Cloud

EKS EC2 VPC IAM ECS RDS Route53 ELB / ALB Auto Scaling S3 CloudWatch KMS GuardDuty Azure GCP

GitOps & CI/CD

ArgoCD Flux GitLab CI/CD GitHub Actions Jenkins CodePipeline CodeDeploy

IaC & Automation

Terraform Ansible CloudFormation Packer Bash / Shell Python

Observability

Prometheus Grafana Loki AlertManager ELK Stack OpenSearch CloudWatch

Security & IAM

OpenZiti (Zero Trust) Keycloak (OIDC/SAML) Harbor OPA / Gatekeeper Vault TLS / PKI NACLs

Containers

Docker Containerd Docker Compose BuildKit

Virtualization

Proxmox VMware ESXi Hyper-V KVM

Service Mesh / DB

Istio Consul App Mesh MySQL PostgreSQL DynamoDB Amazon RDS

Professional Experience

Senior DevOps Engineer Current

Ksolves India Limited

Feb 2025 – Present

Pune, India

Designed and managed production-grade Kubernetes clusters on AWS EKS and on-premises infrastructure, supporting enterprise-scale data pipeline workloads with 99.99% uptime.
Implemented GitOps workflows using ArgoCD and Flux for declarative, auditable application delivery — reducing deployment errors and enabling instant rollback across all environments.
Built Zero Trust network architecture using OpenZiti, eliminating all public endpoint exposure for service-to-service communication and remote administration.
Automated full Kubernetes cluster provisioning on AWS EKS using Terraform — covering node groups, IAM roles, OIDC federation, VPC CNI, and Karpenter autoscaler configuration.
Deployed Karpenter for intelligent, cost-optimized node autoscaling — reducing EC2 compute costs while maintaining workload SLAs.
Implemented enterprise SSO using Keycloak (OIDC/SAML) for Kubernetes dashboard, internal tools, and platform services — centralizing identity governance.
Established private container registry (Harbor) with RBAC, image lifecycle management, and vulnerability scanning — enforcing container supply chain security.
Built hardened container and VM images using Packer and Docker for security testing and standardized golden image pipelines.
Delivered centralized observability stack — Prometheus, Grafana, Loki, AlertManager — with custom dashboards and multi-channel alerting, reducing MTTR by >40%.
Developed GitLab CI/CD pipelines with integrated security scanning, semantic versioning, and automated artifact publishing to Harbor.

AWS EKSOn-Prem K8sTerraformArgoCDFluxHelmKarpenterOpenZitiKeycloakHarborPrometheusGrafanaLokiGitLab CI/CDPacker

DevOps Engineer

DemandFarm

Aug 2021 – Jan 2025

Pune, India

Managed and automated operations across 1,000+ Linux servers and AWS EC2 instances, building self-service automation for provisioning, patching, and log archival (10TB+/month to S3).
Designed and deployed multi-environment Kubernetes clusters (dev/staging/prod) on AWS, implementing namespace isolation, resource quotas, and network policies.
Provisioned and maintained AWS EKS clusters using Terraform and CloudFormation — including managed node groups, Cluster Autoscaler, ALB Ingress Controller, and VPC design.
Built and maintained CI/CD pipelines (Jenkins, CodePipeline, CodeDeploy) for microservices deployments to Kubernetes, cutting release cycle time significantly.
Reduced infrastructure provisioning time by 60% through Terraform module standardization and Ansible playbook automation across all environments.
Executed complex multi-cloud workload migrations (AWS ↔ on-premises ↔ GCP) maintaining 99.99% uptime with zero customer impact.
Implemented IAM least-privilege, GuardDuty, AWS Inspector, and AWS Config rules — achieving and maintaining full compliance posture.
Led production database migrations (MySQL, PostgreSQL) with zero data loss, and orchestrated Ubuntu 18→22 fleet upgrade program eliminating all EOL security risks.
Delivered 80% reduction in manual operational workload through systematic IaC adoption, automation, and runbook engineering.

AWS EKSKubernetesTerraformAnsibleJenkinsCodePipelineCloudFormationCluster AutoscalerALB IngressGuardDutyMySQLPostgreSQL

Cloud Infrastructure Intern

CloudInfomatic Pvt Ltd

Mar 2021 – Jul 2021

Bangalore, India

Assisted in cloud environment setup and configuration, gaining hands-on experience with cloud infrastructure provisioning and automation tools.
Configured automation workflows and implemented secure access controls using RBAC and role-based permission models.

Cloud InfrastructureRBACAutomation

Key Projects

Production Kubernetes Platform — AWS EKS + On-Prem Terraform · Helm · ArgoCD · Flux · Karpenter · Prometheus · Grafana

Designed and operated multi-cluster Kubernetes platform spanning AWS EKS and on-premises nodes — unified management, consistent GitOps delivery via ArgoCD and Flux.
Implemented Karpenter for dynamic, topology-aware node provisioning; Cluster Autoscaler for on-prem — achieving cost efficiency without compromising SLA.
Full observability stack: Prometheus federation, Grafana dashboards, Loki log aggregation, and PagerDuty-integrated AlertManager for 24/7 incident response.
Ingress layer using NGINX Ingress Controller + AWS ALB with TLS termination, rate limiting, and WAF integration.

Zero Trust Security Platform OpenZiti · Keycloak · Harbor · OPA/Gatekeeper · TLS/PKI

Replaced VPN-based access with OpenZiti Zero Trust overlay network — all service-to-service and admin access controlled via cryptographic identity, no public IPs exposed.
Centralized identity with Keycloak (OIDC/SAML) integrated into Kubernetes, CI/CD, and all internal tools — single SSO layer across the entire platform.
Enforced policy-as-code using OPA/Gatekeeper admission controllers — blocking non-compliant workloads at deploy time.

Automated CI/CD & Image Build Platform GitLab CI/CD · Packer · Docker · Harbor · ArgoCD

Built end-to-end pipeline from code commit → security scan → image build → Harbor push → ArgoCD deploy — fully automated with zero manual steps.
Generated hardened golden VM and container images using Packer (AMI + qcow2) for reproducible, auditable deployments across all environments.

Certifications

AWS Certified DevOps Engineer

Amazon Web Services · Professional

✓ Certified

AWS Certified Solutions Architect

Amazon Web Services · Associate

✓ Certified

Red Hat Certified System Administrator

Red Hat · RHCSA

✓ Certified

Red Hat Specialist in Ansible Automation

Red Hat · Automation

✓ Certified

Certified Kubernetes Administrator

CNCF / Linux Foundation · CKA

⏳ In Progress

HashiCorp Certified: Terraform Associate

HashiCorp · Infrastructure

⏳ In Progress

Impact & Achievements

80%ops workload reduction via IaC, automation & runbook standardization

99.99%uptime maintained across multi-cloud migrations and cluster upgrades

60%faster provisioning through Terraform module standardization

40%+MTTR reduction via Prometheus/Grafana observability and proactive alerting

1000+servers managed with full automation, patching, and compliance coverage

0data loss across MySQL & PostgreSQL production migrations

Education

Master of Computer Application (MCA)

Government College of Engineering, Aurangabad

2018 – 2021 · Aurangabad, India

Bachelor of Science in Computer Science

Savitribai Phule Pune University

2015 – 2018 · Pune, India