MADAN MOHAN MALLAVELLI

Sr.Manager, Cloud Solutions Architecture

S&P Global

10.2016 - Current

Designed and implemented strategies for onboarding new AWS accounts
Designed and implemented complex network topologies on AWS, including VPC rollout, Route tables, NACL, Security Groups, Transit Gateway, VPC Peering, NAT Gateways, and VPC Interface Endpoint services (PrivateLinks)
Managed AWS DNS service (Route 53), including creating and configuring Hosted Zones for internal and external domains, and setting up DNS resolution between VPCs and on-premises environments
Configured and managed AWS load balancing services, including Network Load Balancers (NLB), Application Load Balancers (ALB), and Elastic Kubernetes Service (EKS) for container orchestration
Managed secrets and sensitive data using AWS Secrets Manager, ensuring secure storage and access management
Developed a comprehensive onboarding playbook and trained cross-functional teams on best practices for onboarding new accounts
Worked closely with AWS account managers to identify areas for improvement and implement process changes to streamline account onboarding
Led Azure onboarding and enablement efforts as part of a multi-cloud strategy, enabling the organization to leverage Azure services for improved scalability, flexibility and cost-effectiveness
Developed a comprehensive Azure onboarding framework and training program, including best practices for Azure IAM roles, Vnets & Subnets breakup, governance, and security
Worked closely with internal stakeholders and Azure solution architects to identify business requirements and design Azure solutions that met the organization's needs
Collaborated with cross-functional teams to develop and implement Azure migration plans, including workload assessments, resource planning, and risk mitigation strategies
Worked with network team to review multi-cloud (AWS, Azure and GCP) networking infrastructure architecture and IP schemes breakdown across environments, ensuring optimal network performance and scalability
Collaborated with network architects to develop a comprehensive network architecture framework, including routing protocols, firewall rules, and load balancing strategies
Established network documentation and knowledge-sharing practices, ensuring that all relevant teams had access to up-to-date network diagrams, IP address schemes, and other critical network information
Configured MFA over break-glass-user for secured access and integrated with CyberArk, enabling authorized users to gain access to critical systems in emergency situations
Conducted regular reviews of break-glass policies and procedures to ensure that they remained effective and aligned with security best practices
Defined and implemented strategies for user access to AWS, Azure, GCP accounts, including the use of ADFS RBAC IAM roles, to improve security and compliance with regulatory requirements
Worked with internal stakeholders and the security team to design and implement IAM roles and policies that aligned with business requirements and security best practices
Conducted regular audits of user access and IAM policies to identify potential security risks and ensure compliance with internal policies and industry standards
Collaborated with cross-functional teams to develop and implement user access training programs to educate employees on best practices for managing AWS access
Involved in On-prem to AWS Cloud migrations
Conducted workload assessments to identify applications that were suitable for migration and developed migration plans that aligned with business requirements and timelines
Led cross-functional teams to ensure successful migration of applications to AWS cloud, coordinating efforts across development, testing, and operations teams
Developed and implemented cloud governance policies and best practices, including cost optimization strategies and cloud security measures
Defined and rolled out roles for Cloudability tool integration, enabling teams to monitor and optimize cloud spending across the division
Developed training materials and conducted training sessions for Cloudability users, ensuring that they were able to use the tool effectively and efficiently
Conducted regular reviews of Cloudability data and usage to identify areas for cost optimization and drive cost savings across the organization
Monitored and audited cloud environments over SecureState, ensuring that all security controls were in place and that vulnerabilities were identified and addressed promptly
Conducted regular reviews of SecureState data to ensure that all security controls were in place and effective, and that vulnerabilities and compliance issues were being addressed in a timely manner
Worked closely with application development teams to define requirements and develop appropriate Kafka messaging and connectivity architectures through VPC Private-links
Worked closely with application development and operations teams to identify key dependencies and requirements for DR/HA, and developed appropriate solutions using cloud-native services and architectures
Developed and tested DR/HA runbooks and procedures, ensuring that they were well-documented and easily accessible to relevant stakeholders
Worked with the Data Science team to understand their requirements and develop IAM policies and roles that granted them the necessary access while maintaining security and compliance
Defined access strategies for Data Science team and unblocked with AWS Sagemaker, enabling them to access data and compute resources for machine learning workloads
Defined strategies for implementing Infrastructure as Code (IaC), using tools such as Terraform, CloudFormation, and Ansible
Defined AWS and Azure Terraform modules to enable standardized infrastructure deployment and configuration across environments
Conducted regular reviews of Terraform modules to ensure that they were aligned with best practices and standards, and identified areas for optimization and improvement
Created and maintained a centralized logging infrastructure on AWS, allowing for efficient log management and analysis across multiple AWS accounts and services
Worked closely with cross-functional teams to define logging standards and best practices, ensuring consistent and reliable log data across the organization
As an SME, conducted training for various teams on Cloud Onboarding, AWS/Azure services, troubleshooting techniques, and best practices, ensuring that team members were equipped with the necessary knowledge and skills to effectively manage cloud resources
Created and maintained internal Confluence pages with detailed documentation on AWS/Azure services, configurations, troubleshooting guides, and other reference materials, allowing teams to easily access and refer to relevant information as needed
Participated in daily scrum meetings, providing updates on project progress, identifying roadblocks and dependencies, and collaborating with cross-functional teams to ensure alignment on project goals and timelines
Contributed to backlog grooming sessions, reviewing user stories, prioritizing tasks, and refining requirements to ensure successful project delivery
Leveraged Agile methodologies, including Lean Scrum Ban and SAFe Agile, to drive project execution and delivery, continuously improving processes and increasing efficiency
Worked closely with Product Owners and stakeholders to understand business requirements and priorities and provided guidance and recommendations to ensure that cloud solutions aligned with business objectives.