Profile Photo

Shubham Mishra

AWS Cloud Infrastructure Specialist | DevOps Engineer

Specializing in mission-critical, enterprise-grade AWS infrastructure for BFSI and regulated environments

Cloud Solutions Architect

2.8+

Years Cloud Infrastructure Experience

99.9%

Production Uptime Maintained

30%

Cost Optimization Achieved

24x7

Mission-Critical Operations

About Me

AWS Cloud Infrastructure Specialist with 2.8+ years of hands-on experience architecting, implementing, and operating enterprise-grade cloud solutions in mission-critical production environments.

Currently working with Noventiq at Bombay Stock Exchange (BSE), supporting IIRA – a mission-critical exchange risk and regulatory application in a high-availability, high-security production environment where downtime and security breaches are not acceptable.

Strong expertise in AWS cloud architecture, networking, security, automation, and production operations. Proven ability to operate 24x7 critical systems, improve reliability, optimize costs, and enforce security and compliance in regulated environments.

Technical Expertise

AWS Core Services

EC2S3RDS LambdaECS/FargateALB/NLB CloudFrontRoute 53CloudWatch CloudTrail

Networking & Connectivity

VPCTransit GatewayDirect Connect NAT GatewayVPC PeeringVPC Endpoints Security GroupsNACLs

Security & Compliance

IAMWAFGuardDuty InspectorSecurity HubKMS Secrets ManagerOrganizationsCompliance

Infrastructure as Code

TerraformCloudFormation ModulesState Management

Containers & DevOps

DockerECS/ECRJenkins GitHub ActionsCodePipelineCI/CD

Operations & Reliability

24x7 SupportIncident Management Disaster RecoveryBackup & Restore Cost OptimizationPerformance Tuning

Architecture & Engineering Focus

Certifications

✔ Earned
AWS SAA Badge

AWS Certified Solutions Architect – Associate

Amazon Web Services
SAA-C03 Associate
Hover / tap to verify

AWS Certified Solutions Architect – Associate

Issuer: Amazon Web Services Training and Certification
Type: Certification · Associate Level · SAA-C03
Credential ID: c67cf917-45e0-4668-bb22-a4c2bb5857f7
Validates: Ability to design secure, resilient, high-performance, cost-optimised AWS architectures using core services
EC2VPCS3RDSIAM High AvailabilityCost OptimisationWell-Architected
View Badge Verify
✔ Earned
AWS Serverless Badge

AWS Serverless Demonstrated

Amazon Web Services
Microcredential Hands-on Lab
Hover / tap to verify

AWS Serverless Demonstrated

Issuer: Amazon Web Services Training and Certification
Type: Microcredential · Hands-on Exam Lab
Credential ID: 826e5b46-cde9-421f-a147-334627e4f4e9
Validates: Passed timed hands-on challenges in a live AWS environment covering serverless architectures
LambdaAPI GatewayStep FunctionsDynamoDBServerless
View Badge Verify
✔ Earned
AWS Application Networking Badge

AWS Application Networking Demonstrated

Amazon Web Services
Microcredential Hands-on Lab
Hover / tap to verify

AWS Application Networking Demonstrated

Issuer: Amazon Web Services Training and Certification
Type: Microcredential · Hands-on Exam Lab
Credential ID: 9c7fb0a0-aac5-43fa-8226-64e0b8cf7cd3
Validates: Proficiency in application delivery, performance optimisation, and modern application architecture in live AWS environment
ALBCloudFrontAPI GatewayRoute 53App Networking
View Badge Verify
3Earned
1Certifications
2Microcredentials
3Total

Featured Projects

Fintech-Grade Zero-Trust CI/CD Platform on AWS

Production-grade, enterprise-style CI/CD platform built on AWS using GitHub, Jenkins, AWS SSM, Docker, Amazon ECR, Amazon ECS (Fargate), Application Load Balancer, Route 53, and ACM. Zero-SSH, zero-static-credentials security model with fully automated deployments.

VPCEC2Docker JenkinsECRECS Fargate ALBRoute53
View Details

Highly Available Multi-Tier Web Platform on AWS

Designed and deployed a highly available, fault-tolerant multi-tier web application using EC2, RDS, ALB, and Auto Scaling with CloudWatch monitoring for production-grade reliability.

EC2RDSALB Auto ScalingCloudWatch
View Details

Secure Static Website with S3, CloudFront & OAC

Secure static website hosting using private S3 with CloudFront Origin Access Control, ACM SSL, and Route 53 DNS for enterprise-grade security.

S3CloudFront Route 53ACM
View Details

Cloud-Native Vulnerability Detection & Alerting Pipeline

Built an event-driven security monitoring system using Amazon Inspector to detect high-severity vulnerabilities in EC2 instances. Implemented an automated EventBridge → Lambda → SNS pipeline to trigger real-time alerts, improving security visibility and response time.

EC2InspectorEventBridge LambdaSNSSSM
View Details

GuardDuty Root Account Misuse Alerting System

Serverless security automation workflow that detects AWS root account activity using GuardDuty findings and triggers real-time alerts via an EventBridge → Lambda → SNS pipeline. The system parses security findings and sends enriched alerts (source IP, region, timestamp) to administrators via SMS and email for rapid incident response.

GuardDutyEventBridge LambdaSNSPython
View Details

MediConnect – Cloud-Native Healthcare Platform

Modular healthcare web application with decoupled frontend on S3/CloudFront and containerized backend on EC2 demonstrating cloud-native architecture.

S3CloudFront EC2DockerNginx
View Project

Multi-Account Hub-and-Spoke with Transit Gateway

Multi-account hub-and-spoke architecture using AWS Transit Gateway shared via Resource Access Manager for secure, scalable cross-account VPC connectivity.

Transit GatewayAWS RAM OrganizationsVPC
View Details

Multi-Region Active-Active Survey Application

Globally distributed, fault-tolerant web application across multiple regions using Global Accelerator, ALB, Auto Scaling, and Aurora Global Database.

Global AcceleratorAurora Global DB ALBAuto Scaling
View Details

GitHub

Shubham Mishra

AWS Cloud Infrastructure Specialist · DevOps Engineer · Open Source Contributor

Visit GitHub Profile
15+Public Repositories
IaCTerraform & CloudFormation
SecurityAutomation Scripts
CI/CDPipeline Blueprints

Featured Repositories

fintech-zero-trust-cicd
Production-grade Zero-Trust CI/CD platform on AWS ECS Fargate with Jenkins, SSM, and no static credentials.
Python Infrastructure
CI CD pipeline fintech grade using jenkins
Implemented CI CD pipeline using git github jenkins docker.
Terraform HA Architecture
 View All Repositories on GitHub

Professional Resume

Professional Experience

Cloud Infrastructure Engineer | Noventiq (Client: Bombay Stock Exchange)

November 2025 – Present | Mumbai, India

  • Architected and operate enterprise-grade AWS infrastructure supporting high-availability exchange trading systems with complex VPC networking, multi-tier security architecture, and controlled routing through firewall inspection zones for regulatory compliance
  • Manage AWS core services including EC2 compute clusters, VPC network segmentation, security groups, IAM role-based access controls, CloudWatch monitoring, and automated backup solutions ensuring operational resilience and audit readiness
  • Orchestrate production deployments, change management processes, and validation testing across production and UAT environments while maintaining zero unplanned downtime through rigorous testing protocols
  • Lead incident response and root cause analysis (RCA) activities, implementing preventive measures that reduced incident recurrence by 40% through infrastructure hardening and automated monitoring alerts
  • Coordinate cross-functional collaboration with BSE network teams, application teams, and security operations during critical releases, maintenance windows, and security audits
  • Maintain exchange connectivity architecture involving Direct Connect links, secure network segmentation, and firewall policies meeting SEBI regulatory requirements

Cloud & DevOps Consultant | Quinnox Consultancy Services (Client: Prudential Financial)

August 2022 – October 2025 | Mumbai, India

  • Architected enterprise-grade AWS networking infrastructure using VPC, Transit Gateway, Direct Connect, and NAT Gateway to establish secure hybrid cloud connectivity supporting 500+ users and mission-critical workloads
  • Executed large-scale cloud migration project, migrating 25+ applications and 50TB of data from AWS RDS to GCP CloudSQL using AWS DMS with zero data loss and minimal downtime
  • Implemented comprehensive disaster recovery strategy using automated EBS snapshots, RDS backups, and cross-region replication, improving RTO from 8 hours to 45 minutes and RPO from 24 hours to 1 hour (90% improvement)
  • Optimized cloud costs by 30% ($45K annual savings) through VPC Endpoints for S3/DynamoDB, rightsizing EC2 instances, and consolidating NAT Gateway usage
  • Built production-grade Infrastructure as Code using Terraform modules for repeatable environment provisioning, managing 100+ resources across dev, staging, and production
  • Designed and deployed containerized microservices on AWS ECS Fargate with ALB routing, ECR image registry, and RDS PostgreSQL backend serving 10,000+ daily users
  • Engineered automated CI/CD pipelines using Jenkins, AWS CodePipeline, and GitHub Actions reducing deployment time from 2 hours to 15 minutes
  • Strengthened security posture implementing IAM RBAC, AWS WAF, GuardDuty threat detection, and Security Groups achieving 100% compliance in quarterly security audits
  • Automated operational tasks using Python and Bash scripts including Lambda functions for EBS snapshots, S3 lifecycle policies, and CloudWatch log aggregation
  • Maintained 99.9% uptime SLA through proactive monitoring using CloudWatch dashboards, CloudTrail audit logs, custom metric alarms, and on-call incident response

Key Projects & Achievements

  • Multi-Cloud Migration: Led AWS to GCP database migration using DMS for 50TB data transfer with zero data loss, comprehensive validation testing, and detailed runbook documentation
  • Hybrid Cloud Architecture: Designed enterprise network architecture integrating AWS Transit Gateway, Direct Connect circuits, and VPN connections for secure multi-VPC connectivity
  • Cost Optimization Initiative: Achieved 30% infrastructure cost reduction through strategic use of VPC Endpoints, Reserved Instances, and automated resource scheduling ($45K annual savings)
  • Disaster Recovery Implementation: Architected and tested DR solution with automated backup orchestration and cross-region replication, improving RTO/RPO by 90%

Certifications

AWS Certified Solutions Architect – Associate

Earned | Amazon Web Services · Credential ID: c67cf917-45e0-4668-bb22-a4c2bb5857f7

AWS Serverless Demonstrated — Microcredential

Earned | Amazon Web Services · Credential ID: 826e5b46-cde9-421f-a147-334627e4f4e9

AWS Application Networking Demonstrated — Microcredential

Earned | Amazon Web Services · Credential ID: 9c7fb0a0-aac5-43fa-8226-64e0b8cf7cd3

Education

Bachelor of Engineering in Computer Engineering

Mumbai University | Graduated: June 2022

Recognition & Awards

  • Spot Team Award for Outstanding Performance in Project Delivery and Client Satisfaction at Quinnox Consultancy Services (2023)
Request Full Resume via Email

Get In Touch

LinkedIn

Connect with me

Email

shubham22mishra2@gmail.com

GitHub

github.com/Shubham4227mishra