Eric Nguyen
Cloud DevOps Engineer with over 4 years of experience architecting, automating, and operating secure, scalable, multi-cloud infrastructure on AWS and Azure. Specialist in CI/CD automation, containerization, Kubernetes orchestration, microservices, cloud-native architectures, GitOps (ArgoCD), IaC (Terraform), and enterprise observability. Delivered multiple high-availability platforms with 99.99%+ uptime and 70%+ faster deployments.
CERTS & SKILLS
- AWS Certified Solutions Architect - Associate
- Azure Administrator Associate (AZ-104)
- HashiCorp Terraform Associate
- AWS AI Practitioner
- AWS Certified Solutions Architect - Professional (coming soon)
- Certified Kubernetes Administrator (coming soon)
- Container Orchestration: Kubernetes (EKS/on-prem), Docker, Helm
- IaC & Automation: Terraform, Ansible
- CI/CD & GitOps: GitHub Actions, GitLab CI, ArgoCD
- Monitoring & Observability: Prometheus, Grafana, CloudWatch
- Programming: Python, C#, Go, Bash, YAML
- Security: HashiCorp Vault, AWS Secrets Manager, RBAC, IAM, Zero Trust, Container Scanning (Trivy)
WORK EXPERIENCE
Royal Caribbean
Cloud DevOps Engineer
Sep 2025 - Present
- Managed and monitored enterprise AWS infrastructure (EC2, S3, RDS, VPC, IAM) ensuring 99.9% uptime, optimal performance, and robust security across mission-critical production workloads.
- Provisioned and maintained highly scalable cloud resources while implementing automated backup and disaster recovery solutions including EBS snapshots, RDS automated backups, and cross-region replication to safeguard critical business data and ensure business continuity.
- Collaborated with DevOps teams to deploy and optimize cloud-native applications, streamlining CI/CD workflows and maximizing resource utilization to accelerate delivery cycles.
- Implemented comprehensive security controls including IAM policies, encryption standards, and vulnerability assessments via AWS Control Tower and Identity Center to maintain strict compliance requirements.
- Partnered with cross-functional teams to establish cloud governance frameworks and operational best practices, significantly improving system reliability and long-term maintainability.
- Spearheaded development of 15+ reusable Terraform IaC modules to standardize and automate multi-cloud (AWS, Azure) resource provisioning, driving consistency across enterprise environments.
- Led knowledge-sharing sessions on Terraform best practices and created comprehensive documentation for infrastructure workflows, accelerating team onboarding and reducing configuration errors.
- Revolutionized the company's AWS account creation process by designing custom Terraform modules and integrating multi-stage CI/CD pipelines with Trivy security scanning, reducing provisioning time from 3+ days to 10 minutes (98% improvement).
- Migrated legacy ClickOps workflows to Infrastructure as Code by developing a custom Python tool with matrix build pipelines that imported over 10,000 resources across 170+ AWS accounts into Terraform, eliminating manual errors and enhancing operational consistency.
- Collaborated cross-functionally with security, networking, and application teams to align infrastructure standards, ensure compliance, and optimize cloud resource allocation across enterprise workloads.
Coalfire
Cloud Engineer II
Jan 2025 - Sep 2025
- Designed and managed multi-account AWS infrastructure with AWS Organizations, TGW peering, and Resource Access Manager, achieving 99.9% uptime across production environments.
- Automated provisioning of AWS (EC2, S3, RDS, IAM) and Azure (VMs, VNets, Storage Accounts, Key Vaults) with Terraform, cutting deployment time by 40% and reducing misconfigurations.
- Deployed and configured GitLab on Azure with Entra ID integration, implementing multi-stage CI/CD pipelines with Trivy security scanning that improved developer productivity by 30%.
- Enhanced company-wide Terraform modules, increasing code reusability, consistency, and accelerating infrastructure provisioning across both AWS and Azure projects.
- Partnered cross-functionally with development, security, and operations teams to deliver compliant cloud solutions and streamline deployment workflows.
Hash Studios LLC
Cloud Engineer
Jun 2024 - Dec 2024
- Deployed production containerized applications on Amazon EKS with ArgoCD for GitOps-based continuous delivery, enabling automated deployments and configuration management.
- Implemented comprehensive monitoring and observability stack using Prometheus and Grafana, providing real-time metrics, alerting, and dashboards for production workloads.
- Automated infrastructure with Terraform, reducing deployment times by 50% and eliminating manual errors.
- Architected event-driven serverless solutions with AWS Lambda, API Gateway, and S3 for dynamic workloads, enabling scalable and cost-efficient processing.
- Built multi-stage CI/CD pipelines with GitHub Actions integrating Trivy security scanning and blue/green deployment strategies, reducing release cycles from bi-weekly to weekly with zero-downtime releases.
- Migrated MySQL to AWS RDS, improving reliability and scalability while lowering maintenance overhead.
- Migrated company domain to AWS Route 53 with ACM, enabling secure DNS management and encrypted traffic.
- Collaborated cross-functionally with product and development teams to align infrastructure capabilities with application requirements and business objectives.
I-Payout
System Administrator
Jun 2022 - Oct 2024
- Built secure Site-to-Site VPN between the office and AWS for global employee collaboration.
- Automated onboarding with PowerShell (80% faster setup) and Linux patching with Ansible, laying the foundation for future DevOps practices.
- Developed custom automation tooling using Python and Bash to streamline routine IT tasks, reducing manual intervention and improving operational efficiency.
- Built a C# application that automated mass translations for multiple languages, enabling the call center to deliver multilingual support with significantly reduced turnaround time.
- Spearheaded transition from traditional IT systems to hybrid cloud, supporting Azure migration of 20+ workstations and secure AWS integration.
- Strengthened compliance and security with PCI-DSS, firewall configurations, and vulnerability scans.
- Collaborated cross-functionally with development, finance, and operations teams to support business-critical applications and ensure seamless IT service delivery.
PROJECTS
- Kubernetes Cluster with CI/CD Pipeline: Deployed a Kubernetes cluster on Proxmox using Ansible and Kubespray for orchestration; containerized and deployed a full-stack application including frontend, backend API, and MongoDB. Integrated a CI/CD pipeline with Gitlab CI to automate builds, tests, and deployments, reducing deployment time by 60% and ensuring consistent environments.
- Home Datacenter / Server Rack: Built a home datacenter with a 4-node Proxmox cluster (server rack), each node running DevOps tools & Docker applications with high availability. If one node fails, VMs and workloads automatically migrate to another node. Includes UPS battery backups and a custom router running OPNsense for advanced network management.
- Event-Driven Serverless Application: Built an event-driven serverless application using AWS Lambda, API Gateway, and DynamoDB with Cognito authentication and CloudWatch monitoring — leveraging event-driven architecture for scalable, asynchronous processing while reducing infrastructure costs through pay-per-use compute.
- Helm Chart for Full Stack App: Containerized a full stack application (frontend, Python backend API, and MongoDB database) and packaged it as a Helm chart for streamlined deployment and management on Kubernetes.
- Python Automation: Architected a Python automation system using Selenium for browser tasks, Google Voice for activation, and Twilio for SMS alerts. Secured access with Cloudflare Tunnels. Enabled proactive monitoring and automated responses, eliminating manual processes and reducing downtime.