$$$$
{{ $t($store.state.user.experience_value_in_dollars) }}
Expert
{{ $t($store.state.user.experience_search_name) }}
0
jobs
Cloud Architect covering the 3 major cloud vendors
Jonathan Clement
,
Islington, United Kingdom
Experience
Other titles
Skills
I'm offering
I'm more than enthusiastic about my passion, I always go above and beyond for my passion and am keen and driven to succeed in everything I do. Sorry, did I mention my passion, it's work! But I don't call it work to most people the thought of work makes them roll their eyes. Not for me, it's my passion after all. I'd keep going and tell you how I enjoy self-development and extending my learning but I should keep some of this for my interview I guess.
Markets
United Kingdom
Links for more
Once you have created a company account and a job, you can access the profiles links.
Industries
Language
English
Fluently
Ready for
Larger project
Ongoing relation / part-time
Available
My experience
2019 - 2020
freelance
Cloud Consultant (Cloud & DevOps Security Architect) (Contract)
Virtusa.
Working as part of a project team to the client to migrate applications from Data Centre to the AWS Cloud. Deploying a Landing Zone Style Architecture in-line with AWS Well Architecture Framework and AWS Security best practices through the AWS vending machine deployment strategy.
• Architecture Design & implementation for client consisting of various environments encompassing a Landing Zone Architecture for clients of Virtusa.
• Creating HLD's and LLD's supporting the application migrations.
• Operating in capacity of both Cloud and DevOps Architect to define and build the Cloud platform and implement the DevOps practice, tools and process, Secure Software Lifecycle and Agile framework.
• Incorporate the client IAM solution for PAM (Centrify), with AWS.
• Implement security compliance and testing in accordance to ISO standards - SAST & DAST tools.
• Implementation of Vulnerability Appliance - Qualys for Vulnerability Assessment Scanning.
• Use of SIEM tool - Splunk for Infrastructure logging.
• Perform security hardening in accordance with CIS benchmarks and create custom AMI' - Level 1.
• Implement Security tools Guard Duty, Inspector, Trusted Advisor along with end-client custom tools.
• Architecture Design & implementation for client consisting of various environments encompassing a Landing Zone Architecture for clients of Virtusa.
• Creating HLD's and LLD's supporting the application migrations.
• Operating in capacity of both Cloud and DevOps Architect to define and build the Cloud platform and implement the DevOps practice, tools and process, Secure Software Lifecycle and Agile framework.
• Incorporate the client IAM solution for PAM (Centrify), with AWS.
• Implement security compliance and testing in accordance to ISO standards - SAST & DAST tools.
• Implementation of Vulnerability Appliance - Qualys for Vulnerability Assessment Scanning.
• Use of SIEM tool - Splunk for Infrastructure logging.
• Perform security hardening in accordance with CIS benchmarks and create custom AMI' - Level 1.
• Implement Security tools Guard Duty, Inspector, Trusted Advisor along with end-client custom tools.
Design, AWS, DevOps, Agile, Deployment, Cloud, Compliance, Architecture, Security, Implementation, Infrastructure, Testing, Assessment, Software, Trusted Advisor, Framework
2018 - 2019
freelance
Lead Consultant (DevSecOps Architect) (Contract)
Contino Ltd.
Working on behalf of a Financial client (Payments Industry) of Contino leading a team of DevOps engineers to deliver a bespoke Fraud application in accordance with PCI-DSS standards. Assisted in the build of a PoC environment in GCP.
• Architecture Design & implementation for client consisting of various environments utilising the Transit VPC architecture with peering to various AWS accounts.
• Use of various DevOps tools & scripting CI/CD Pipeline - Terraform, Git, Ansible, Jenkins, Packer.
• Use of AWS Cloud HSM and HashiCorp Vault for secure IAM (keys and credentials).
• Implementation of Vulnerability Appliance - Qualys for Vulnerability Assessment Scanning.
• Splunk & Qualys Security Analysis - Scan, monitor, detect, logs parsed into Grafana for auditing.
• Perform security hardening in accordance with CIS benchmarks - disable ports/services, tightening SG's and ACL's and controlling the use of wide-open ports.
• Perform basic and general penetration testing with Kali Linux - approved tool from AWS Marketplace.
• Generation of CSR's - server/client certs using keytool (Java KeyStores) - RSA 4096-bit keys.
• Implemented Prometheus & Splunk for log monitoring parsing logs into Grafana.
• Implement AWS Inspector and Shield with AWS WAF.
• Assisted in the build of GCP environment for a Client (migrating their environment from AWS).
• Architecture Design & implementation for client consisting of various environments utilising the Transit VPC architecture with peering to various AWS accounts.
• Use of various DevOps tools & scripting CI/CD Pipeline - Terraform, Git, Ansible, Jenkins, Packer.
• Use of AWS Cloud HSM and HashiCorp Vault for secure IAM (keys and credentials).
• Implementation of Vulnerability Appliance - Qualys for Vulnerability Assessment Scanning.
• Splunk & Qualys Security Analysis - Scan, monitor, detect, logs parsed into Grafana for auditing.
• Perform security hardening in accordance with CIS benchmarks - disable ports/services, tightening SG's and ACL's and controlling the use of wide-open ports.
• Perform basic and general penetration testing with Kali Linux - approved tool from AWS Marketplace.
• Generation of CSR's - server/client certs using keytool (Java KeyStores) - RSA 4096-bit keys.
• Implemented Prometheus & Splunk for log monitoring parsing logs into Grafana.
• Implement AWS Inspector and Shield with AWS WAF.
• Assisted in the build of GCP environment for a Client (migrating their environment from AWS).
Architecture, Basic, CI / CD, Waf, Server, Penetration testing, Assessment, Testing, Monitoring, Implementation, Security, Design, CSR, Controlling, Cloud, Scripting, DevOps, Jenkins, AWS, Linux, Git, Java
2018 - 2018
temp
AWS Solutions Architect
Clckwrk Ltd.
As part of the team working for the end-client, my role included but not limited to acting as the Technical lead for the build and implementation for the Project team on multiple projects with various clients.
• Amazon Core Resources - VPC, EC2, S3, IAM, Glacier, AWS CLI, Cloud Watch, Cloud Trail, Lambda.
• Architecture Design & implementation for client consisting of various environments - Prod, DEV, DEV-UAT.
• Deployed customised builds of Oracle EDQ, SOA and EBS with CI/CD pipeline through Puppet & Ansible with initial deployments initiated with CloudFormation.
• Cloud Formation to automate building of the environment consisting of DevOps Pipeline - Puppet & Git.
• Implement PAM360 - IAM/PAM solution for the end-client.
• Scripting using Python for Puppet & Git, with variation of json for CloudFormation.
• Undertaking Security analysis using Qualys Vulnerability Assessments.
• Implementing IAM and Security features securing the Cloud environment.
• Perform basic and general penetration testing with Kali using Nmap in accordance with the ToE mapped with the 8 security domains referred to in the CIA Triad of the CISSP.
• Implemented Guard Duty with AWS WAF & Inspector.
• Built PoC Website in GCP for Client in comparison with their current Project in Azure.
• Built the Agile work processes - Confluence and Jira.
• Amazon Core Resources - VPC, EC2, S3, IAM, Glacier, AWS CLI, Cloud Watch, Cloud Trail, Lambda.
• Architecture Design & implementation for client consisting of various environments - Prod, DEV, DEV-UAT.
• Deployed customised builds of Oracle EDQ, SOA and EBS with CI/CD pipeline through Puppet & Ansible with initial deployments initiated with CloudFormation.
• Cloud Formation to automate building of the environment consisting of DevOps Pipeline - Puppet & Git.
• Implement PAM360 - IAM/PAM solution for the end-client.
• Scripting using Python for Puppet & Git, with variation of json for CloudFormation.
• Undertaking Security analysis using Qualys Vulnerability Assessments.
• Implementing IAM and Security features securing the Cloud environment.
• Perform basic and general penetration testing with Kali using Nmap in accordance with the ToE mapped with the 8 security domains referred to in the CIA Triad of the CISSP.
• Implemented Guard Duty with AWS WAF & Inspector.
• Built PoC Website in GCP for Client in comparison with their current Project in Azure.
• Built the Agile work processes - Confluence and Jira.
Architecture, Basic, CI / CD, Processes, Waf, Tech lead, Penetration testing, Lambda, Amazon, Testing, Implementation, SOA, Confluence, Security, Design, Website, Cloud, Scripting, Agile, DevOps, JSON, Azure, Oracle, Jira, AWS, Git, Python
2018 - 2018
temp
AWS Cloud Architect/Engineer
Capgemini Consulting.
Peer review the Architectural Design PoC for a client. The greenfield opportunity has presented itself as a short term four-week engagement. Working with a Solutions Architect I provide peer review to the Architecture Design. Using Cloud Formation to fully automate the build of the Infrastructure using a multi-AZ approach for DR. The Design includes the provision of CI/CD pipeline using Jenkins. As part of the landscape the requirement includes Nexus, Git and SVN with the possibility of incorporating their Agile process of Confluence and Jira.
• Architecture Design PoC for client consisting of an AWS Landing Zone facilitating accessing to various environments - Prod, Non-Prod, Sandpit, Shared Services, Audit & Security and incorporating AWS Organisations for consolidated Billing.
• CloudFormation to automate building of the environment consisting of DevOps Pipeline - Jenkins, Chef and Git.
• Implement PAM from One Identity (Safeguard) with the clients platform.
• Using CloudFront for CDN distribution and GuardDuty with AWS WAF.
• AWS Service Catalogue creation and development.
• Architecture Design PoC for client consisting of an AWS Landing Zone facilitating accessing to various environments - Prod, Non-Prod, Sandpit, Shared Services, Audit & Security and incorporating AWS Organisations for consolidated Billing.
• CloudFormation to automate building of the environment consisting of DevOps Pipeline - Jenkins, Chef and Git.
• Implement PAM from One Identity (Safeguard) with the clients platform.
• Using CloudFront for CDN distribution and GuardDuty with AWS WAF.
• AWS Service Catalogue creation and development.
Architecture, CI / CD, Waf, Audit, Cdn, SVN, Development, Infrastructure, Confluence, Security, Design, Service, Cloud, Agile, Audit, DevOps, Jenkins, Jira, AWS, Git
2017 - 2017
freelance
AWS Cloud Consultant
Lemongrass Consulting.
Lemongrass are a SAP consultancy, the primary focus is to migrate Customers on premise/3rd Party Data Centre SAP Infrastructure into the AWS Cloud. Covering all aspects of SAP - CRM, ERP, ECC, BI, SAP Hana, ABAP, SAP Analytics. Many of these systems required various customised dependencies/configurations in order to operate and function.
• Building Infrastructure in AWS Cloud - VPC's, Subnets, NACL's, Security groups, IGW's, CGW', Peer connections, Direct Connect connections to multiple Data Centres.
• CloudFormation - using IaC to deploy environments templates and nested stacks.
• Utilised Terraform to deploy and configure clients Cloud Infrastructure.
• Amazon Core Resource - VPC, EC2, S3, IAM, Glacier, AWS CLI, Cloud Watch, Cloud Trail & Lambda.
• Architect & Build PoC for Global Retail Client in GCP for their on-prem Dev and DR environment.
• Carry out DR Plans to ensure the Cloud environments continues to operate in different AZ's.
• Configure Qualys Security appliance in accordance with Pen-testing requirements.
• Agile environment - take part in scrum sessions running Kanban board for Dev, Staging, In-flight, QA.
• Infrastructure monitoring, patching, asset, threat & vulnerability management - Splunk, Qualys.
• Building Infrastructure in AWS Cloud - VPC's, Subnets, NACL's, Security groups, IGW's, CGW', Peer connections, Direct Connect connections to multiple Data Centres.
• CloudFormation - using IaC to deploy environments templates and nested stacks.
• Utilised Terraform to deploy and configure clients Cloud Infrastructure.
• Amazon Core Resource - VPC, EC2, S3, IAM, Glacier, AWS CLI, Cloud Watch, Cloud Trail & Lambda.
• Architect & Build PoC for Global Retail Client in GCP for their on-prem Dev and DR environment.
• Carry out DR Plans to ensure the Cloud environments continues to operate in different AZ's.
• Configure Qualys Security appliance in accordance with Pen-testing requirements.
• Agile environment - take part in scrum sessions running Kanban board for Dev, Staging, In-flight, QA.
• Infrastructure monitoring, patching, asset, threat & vulnerability management - Splunk, Qualys.
Analytics, BEE, Lambda, Amazon, Testing, SAP HANA, Monitoring, Infrastructure, Security, QA, Scrum, Kanban, Management, Cloud, Agile, ERP, SAP, Retail, AWS, CRM
2016 - 2016
freelance
Infrastructure Cloud Consultant
Herbert Smith Freehills.
Principle Infrastructure Cloud consultant providing support for Projects. I was tasked with building a new environment in the Cloud to store 16PB of raw data. This included building the application environment called Relativity to allow Lawyers and teams of legal personnel to access and work with the data.
* AWS Platform build and integration - Relativity Project
* Built a new Resource domain running Windows Server 2012 R2 running one single forest domain.
* Provision various VM's consisting of Web, MySQL & Application servers. Deployed into two environmnets, Production & DR.
* Incorporate ManageEngine IAM/PAM solution into the Cloud Platform.
* AWS Platform build and integration - Relativity Project
* Built a new Resource domain running Windows Server 2012 R2 running one single forest domain.
* Provision various VM's consisting of Web, MySQL & Application servers. Deployed into two environmnets, Production & DR.
* Incorporate ManageEngine IAM/PAM solution into the Cloud Platform.
Mysql, AWS, Cloud, Integration, Windows server, Windows, Support, Infrastructure, Web, Server, Production
2016 - 2016
temp
Senior Cloud Engineer - AWS
Stagecoach Bus.
To facilitate the current project team to complete the build of a new environment within the AWS Cloud. The project involved the proposal of the Stagecoach Bus Card similar to that of the TFL Oyster card.
• AWS Platform integration - EC2, ECS, S3, WAF, CloudFront, CloudWatch, IAM, Route 53.
• Implement CI/CD with Chef & Terraform - scripted Python & json templates for customised builds.
• Manage and configure the Infrastructure Platform Domain and AD Infrastructure.
• Incorporate PAM solution - Cloud Vault, with AWS platform integration.
• Monitor infrastructure logging environment via Splunk.
• Co-Design and build Network Infrastructure primarily on Cisco/Nexus technology - PaaS, IaaS.
• Implement SCCM Infrastructure for 3rd party customer to manage patching schedules, scripted PowerShell application installs and automate build processes including managing devices such as BYOD and MDM.
• Manage and build servers & migrate in from private cloud to AWS for 3rd party vendors.
• AWS Platform integration - EC2, ECS, S3, WAF, CloudFront, CloudWatch, IAM, Route 53.
• Implement CI/CD with Chef & Terraform - scripted Python & json templates for customised builds.
• Manage and configure the Infrastructure Platform Domain and AD Infrastructure.
• Incorporate PAM solution - Cloud Vault, with AWS platform integration.
• Monitor infrastructure logging environment via Splunk.
• Co-Design and build Network Infrastructure primarily on Cisco/Nexus technology - PaaS, IaaS.
• Implement SCCM Infrastructure for 3rd party customer to manage patching schedules, scripted PowerShell application installs and automate build processes including managing devices such as BYOD and MDM.
• Manage and build servers & migrate in from private cloud to AWS for 3rd party vendors.
Design, Python, AWS, JSON, Cisco, Cloud, Integration, PowerShell, Technology, Network, Infrastructure, Waf, Processes, CI / CD
2015 - 2016
freelance
Infrastructure Cloud Consultant
BT IS Global Services.
I was tasked with building a new environment in BT's Private Cloud space to provide a bespoke application catalogue to its partners. The three applications systems were, Symantec Endpoint Protection, Symantec Endpoint Encryption, Dell/Quest Password Manager.
• Infrastructure Architecture - Co-Author HLD's and LLD's provisioning the build of a new Shared Services Infrastructure platform in Private Cloud.
• Peer-review with Solution Architects, Technical Design Authority and Project Managers.
• Provide technical and non-technical advice and support to VIP's, Project Managers and clients.
• Liaising with 3rd party suppliers and vendors to gain information and technical specifications to assist with the HLD's and LLD's.
• Build Virtual platforms using VMWare in Private Cloud Infrastructure.
• Optimise Server builds, primarily Windows 2012 R2.
• Install/Support Web environments using IIS and Apache.
• Install/configure monitor tools Solarwinds and Splunk.
• Manage and configure the Shared Infrastructure Platform Domain and AD Infrastructure.
• Co-Design and build Network Infrastructure primarily on Cisco equipment.
• Infrastructure Architecture - Co-Author HLD's and LLD's provisioning the build of a new Shared Services Infrastructure platform in Private Cloud.
• Peer-review with Solution Architects, Technical Design Authority and Project Managers.
• Provide technical and non-technical advice and support to VIP's, Project Managers and clients.
• Liaising with 3rd party suppliers and vendors to gain information and technical specifications to assist with the HLD's and LLD's.
• Build Virtual platforms using VMWare in Private Cloud Infrastructure.
• Optimise Server builds, primarily Windows 2012 R2.
• Install/Support Web environments using IIS and Apache.
• Install/configure monitor tools Solarwinds and Splunk.
• Manage and configure the Shared Infrastructure Platform Domain and AD Infrastructure.
• Co-Design and build Network Infrastructure primarily on Cisco equipment.
Design, VMware, Cisco, Cloud, Apache, Windows, Architecture, Network, IIS, Support, Infrastructure, Web, Server, Solarwinds, Manager
2015 - 2015
freelance
Infrastructure and Networking Consultant - AWS
Spotlight.
• Exposure to DevOps tools - Continuous Integration using Chef, Puppet & Docker. Configuration Management using Ansible & TeamCity.
• TeamCity & Octopus deploy used for the CI/CD pipeline. The main Integration tool for builds, code commits, task scheduling and version control.
• AWS Cloud digital transformation/migration.
• Backup Exec 2010 - Carry out an audit of the current backup policy. Design and implement backup schedule and implement tape rotation. Create SOP and train Sys Admins.
• EMC SAN - Capacity management, removed high risks associated with VM Data store being over provisioned.
• Migrated from Exchange 2013 to O365 using the migration tool and the MRS tool.
• Audit network infrastructure - Flat network was segregated into VLAN's for security.
• Audit monitoring tools PRTG and Splunk for suitability.
• Juniper Firewalls - check/test configuration and suggest improvements.
• Team collaboration, documentation and document versioning using Jira and Confluence
Career History
• TeamCity & Octopus deploy used for the CI/CD pipeline. The main Integration tool for builds, code commits, task scheduling and version control.
• AWS Cloud digital transformation/migration.
• Backup Exec 2010 - Carry out an audit of the current backup policy. Design and implement backup schedule and implement tape rotation. Create SOP and train Sys Admins.
• EMC SAN - Capacity management, removed high risks associated with VM Data store being over provisioned.
• Migrated from Exchange 2013 to O365 using the migration tool and the MRS tool.
• Audit network infrastructure - Flat network was segregated into VLAN's for security.
• Audit monitoring tools PRTG and Splunk for suitability.
• Juniper Firewalls - check/test configuration and suggest improvements.
• Team collaboration, documentation and document versioning using Jira and Confluence
Career History
Security, CI / CD, Audit, SAN, EMC, Configuration Management, Teamcity, Backup, Continuous integration, Monitoring, Infrastructure, Transformation, Confluence, Network, Design, Test, Integration, Management, Cloud, Audit, Exchange, DevOps, Digital transformation, Networking, Jira, AWS, Docker
2015 - 2015
job
Senior Systems Admin
unknown.
Lowcost Holidays (Contract))
2014 - 2015
job
Senior Infrastructure Engineer
unknown.
Ingeus UK (Contract))
Infrastructure
2013 - 2014
job
Infrastructure Support Specialist
Transputec Ltd.
(Contract))
Support, Infrastructure
2013 - 2013
job
Network Engineer
unknown.
Logicalis UK - (Contract))
Network
2007 - 2013
job
ICT Operations Engineer, Team Leader
unknown.
One Complete Solution (Permanent))
Operations
2006 - 2007
job
ICT Operations Engineer
OCS.
One Complete Solution (Permanent))
Operations
2005 - 2006
job
Desktop Support Analyst
unknown.
HBOS Card Services (Permanent))
Support, Analyst
2000 - 2005
job
ITIL Senior Service Desk Analyst
unknown.
Halifax Card Services (Permanent))
ITIL, Service, Analyst
1999 - 2000
job
Technical Support Engineer - Team Leader
Virgin Internet.
(Permanent))
Support
1998 - 2000
job
Technical Support Engineer
unknown.
NTL Internet (Permanent))
Support, Internet
Jonathan's reviews
Jonathan has not received any reviews on Worksome.
Contact Jonathan Clement
Worksome removes the expensive intermediaries and gives you direct contact with relevant talent.
Create a login and get the opportunity to write to Jonathan directly in Worksome.
37900+ qualified freelancers
are ready to help you
Tell us what you need help with
and get specific bids from skilled talent in Denmark