Hi, I'm Sharath.

Sharath S Naik

Cloud Security & DevOps | SRE · FinOps · Platform Engineering | AWS & Azure | Kubernetes | Docker | SOC2 & ISO Compliance

I design and operate secure, scalable, and highly available cloud platforms by bridging the gap between engineering velocity and enterprise security. With end-to-end ownership across architecture, CI/CD, observability, and cost optimization, I build resilient, audit-ready systems that are secure by design and optimized for performance and cost.

What I Bring to the Table:

  • Cloud Security & DevSecOps: Zero Trust architecture, IAM, SAST/DAST, container and supply chain security, with compliance-as-code across AWS and Azure.
  • DevOps & SRE Excellence: CI/CD and GitOps pipelines, SLO/SLI-driven observability, and incident response with MTTR under 2 hours using Prometheus and Grafana.
  • Platform Engineering: Kubernetes (EKS/AKS), Terraform-based landing zones, zero-downtime deployments, and resilient infrastructure design.
  • FinOps & Optimization: Delivered up to 50% cloud cost reduction through automated lifecycle management, right-sizing, and budget governance.
  • Compliance & Reliability: SOC 2 and ISO 27001 readiness, audit leadership, and building highly available, SLA-driven systems.
Download Resume View LinkedIn Contact Me

Professional Snapshot

Experience: 3+ Years
Current Role: Cloud Security, Platform and Devops
Expertise: Cloud Security · Devops · SRE · Platform Engineering · FinOps · Cloud Architecture
Current Company: Mareana, Inc.
Location: Bengaluru, India

Specializations:

  • Cloud & Architecture: AWS, Azure, Multi-Account Strategy, Landing Zones, High Availability
  • DevSecOps & CI/CD: Jenkins, GitOps, Secure Pipelines, Automation
  • Security: IAM, Zero Trust, SAST/DAST, Security Hub, GuardDuty, Supply Chain Security
  • Kubernetes & Platform Engineering: EKS, AKS, Helm, ArgoCD, Container Security
  • Infrastructure as Code: Terraform, Cloud Automation
  • Observability & Reliability: Prometheus, Grafana, CloudWatch (MTTR < 2 hrs, SLO/SLI)
  • Compliance & Governance: SOC 2, ISO 27001, CIS, NIST
  • FinOps: Cost Optimization, Budget Governance (up to 50% cost reduction)

Professional Summary

Cloud Security, DevSecOps, and Site Reliability Engineer with 3+ years of experience delivering secure, scalable, and highly available platforms across AWS and Azure. Proven track record of owning end-to-end cloud initiatives—from architecture design and platform engineering to CI/CD modernization, security hardening, and observability.

Specialized in Zero Trust security, Kubernetes platform engineering, and compliance frameworks (SOC 2, ISO 27001), with hands-on experience leading audit readiness and acting as a technical SPOC for customer audits. Strong focus on reliability engineering (SLI/SLO, MTTR < 2 hours), ensuring zero-downtime deployments and resilient system design.

Delivered measurable impact through DevSecOps transformation, supply chain security (image signing), and FinOps initiatives achieving up to 50% cost reduction. Passionate about building audit-ready, production-grade systems while enabling teams through standardization, automation, and knowledge sharing.

Technical Skills

Cloud & Architecture: AWS (IAM, EC2, EKS, VPC, S3, Route 53, CloudWatch, CloudTrail, KMS, SSM, SNS, SQS, ELB, ECR, SES), Azure (AKS, RBAC, NSG, Storage), Multi-Account Architecture, Landing Zones, Well-Architected Framework, High Availability, Scalability
DevOps, SRE & CI/CD: Jenkins, AWS CodePipeline, CodeBuild, CodeDeploy, Bitbucket Pipelines, GitOps, Platform Engineering, Incident Management, SLI/SLO, Disaster Recovery
Containers & Platforms: Docker, Kubernetes (EKS, AKS), Helm, ArgoCD
Infrastructure as Code: Terraform, CloudFormation, Ansible
Security & DevSecOps: IAM, Zero Trust, SAST, DAST, Container Security, Supply Chain Security, RBAC, SAML
Security & Scanning Tools: Trivy, SonarQube, OWASP ZAP, Dependency-Track, Kubescape
Monitoring & Observability: Prometheus, Grafana, CloudWatch, ELK, SIEM
Cloud Security Services: AWS Security Hub, GuardDuty, WAF, Azure Defender, Sentinel
Compliance & Governance: SOC 2, ISO 27001, CIS Benchmarks, NIST, MITRE ATT&CK
FinOps: Cost Optimization, Budget Governance, Resource Efficiency
Secrets Management: HashiCorp Vault, AWS KMS
Languages & Scripting: Python, Bash, Shell
Systems & Networking: Linux (Amazon Linux, Ubuntu), TCP/IP, DNS, Load Balancers, TLS/SSL, Microservices Architecture
Databases: MySQL, PostgreSQL

Professional Experience

Mareana, Inc.

Cloud Engineer (Security, DevSecOps, SRE, Platform Engineering)

Mar 2023 – Present

AWS | Manufacturing Intelligence Platform

  • Architected secure multi-account AWS environments using Organizations, IAM, and AWS Config; reduced policy violations by ~30% and enabled scalable, compliant landing zones.
  • Designed end-to-end DevSecOps pipelines integrating SAST, DAST, container scanning, and signed image enforcement; reduced production vulnerabilities by ~35%.
  • Established SRE practices with SLIs/SLOs, Prometheus, and Grafana; reduced MTTR to under 2 hours through automated alerting and runbooks.
  • Built Terraform-based landing zones aligned with CIS/NIST, reducing environment provisioning time from days to under 2 hours.
  • Strengthened Zero Trust security posture with RBAC, SAML-based SSO integration, and centralized security services (Security Hub, GuardDuty, CloudTrail).
  • Implemented software supply chain security using image signing (Cosign) and policy enforcement for production deployments.
  • Led FinOps initiatives, automating lifecycle management of EC2/EKS/storage resources; reduced cloud spend by 50% without impacting SLAs.
  • Acted as technical SPOC for SOC 2 and ISO 27001 audits; automated compliance evidence collection and maintained audit readiness.
  • Modernized CI/CD tooling (Jenkins, SonarQube upgrades), improving pipeline security and standardization across teams.

Johnson & Johnson (Client Engagement)

Cloud Engineer (DevSecOps, SRE, Platform Engineering)

Mar 2023 – 2025

Azure | Manufacturing Intelligence Platform

  • Architected and deployed secure AKS environments with Helm-based blue/green strategies, enabling zero-downtime deployments and high availability.
  • Built DevSecOps pipelines (Jenkins, GitHub Actions) integrating Trivy, OWASP ZAP, and security gates; reduced policy violations by ~33–35%.
  • Implemented observability with Prometheus and Grafana; achieved MTTR under 2 hours with proactive alerting and incident response.
  • Automated infrastructure provisioning using Terraform and Ansible, improving deployment efficiency by ~40%.
  • Designed RBAC and Zero Trust access models for multi-tenant systems; contributed to threat modeling and secure architecture reviews.
  • Delivered multi-tenant platform environments (Dev, QA, Demo) with 99%+ uptime and rapid provisioning (< 2 hours).
  • Mentored teams and led knowledge-sharing sessions on DevSecOps, CI/CD modernization, and compliance practices.

Kenvue (Client Engagement)

Cloud Engineer (DevOps, FinOps, Platform Engineering)

Mar 2023 – Present

Azure | Manufacturing Intelligence Platform

  • Built and operated scalable AKS platforms using GitOps (ArgoCD), enabling reliable, standardized, and rollback-capable deployments.
  • Implemented DevSecOps practices with integrated security scanning and policy enforcement across pipelines.
  • Established observability with Prometheus and Grafana; maintained MTTR under 2 hours and improved system reliability.
  • Automated infrastructure provisioning and reusable platform modules using Terraform, reducing manual effort and accelerating delivery.
  • Drove FinOps initiatives, optimizing storage and compute usage; achieved 50% reduction in cloud costs.
  • Delivered Kubernetes-based platform onboarding for multiple applications, enabling scalable and production-ready deployments.
  • Ensured zero downtime during deployments, migrations, and patching, maintaining high availability and compliance standards.

Projects & Key Initiatives

End-to-End Platform Engineering

Impact: Designed and delivered full-stack cloud platforms from landing zones and Infrastructure as Code (IaC) through CI/CD and observability, enabling secure self-service, scalability, and consistent compliance.

Automated DevSecOps Pipeline (60% Faster Deployments)

Tools: AWS CodePipeline, Jenkins, SonarQube, Trivy, Terraform

Impact: Reduced deployment time by 60% by implementing automated CI/CD pipelines with integrated SAST, DAST, container scanning, and supply chain security; ensured only verified and signed images reached production.

DevSecOps Transformation

Impact: Embedded security across the SDLC by integrating SAST, DAST, container scanning, and dependency validation into pipelines; improved deployment velocity by 60% while strengthening overall security posture.

Cloud FinOps & Cost Optimization (50% Cost Reduction)

Tools: AWS Cost Explorer, Terraform, Custom Automation

Impact: Achieved 50% reduction in cloud spend by automating decommissioning of unused resources (EC2, EKS, storage), enforcing right-sizing, and implementing budget governance without impacting SLAs.

Multi-Account AWS Security Guardrails (35% Fewer Violations)

Tools: Python, Boto3, IAM, AWS Config

Impact: Implemented 50+ custom security guardrails across multi-account AWS environments, reducing policy violations by 35% and enforcing Zero Trust and least-privilege access.

Centralized Observability & SLA Management (MTTR < 2 Hours)

Tools: Prometheus, Grafana, CloudWatch

Impact: Built SLO-driven monitoring and alerting systems, reducing alert noise by 30% and achieving incident MTTR under 2 hours, significantly improving system reliability.

SRE & Reliability Engineering

Impact: Established SLO-based reliability practices, proactive monitoring, and incident response frameworks to enhance system availability and operational excellence.

Certifications & Achievements

In Progress:

  • AWS Certified Solutions Architect – In Progress
  • Certified Kubernetes Administrator (CKA) – In Progress
  • Terraform Associate – Infrastructure as Code – In Progress

Achievement:

  • Awarded ACE Alliance for outstanding contributions to Cloud and DevOps automation.

Events & Continuous Learning:

  • Global GenAI Bootcamp – Bengaluru
  • Snowflake World Tour 2025
  • Thoughtworks XConf 2025
  • Redis events, CloudKeeper

Education

Bachelor of Engineering (B.E.) | BIT, Visvesvaraya Technological University | 2022 | CGPA: 7.86

Contact

Open to Cloud Security, DevSecOps, SRE, DevOps & Platform Engineering Opportunities

Email: sharathnaik.contact@gmail.com

Phone: +91-8296237529

LinkedIn: https://linkedin.com/in/sharath029

Location: Bengaluru, Karnataka, India