Vamsi Krishna — DevOps & Cloud Infrastructure Engineer

About Me

Cloud infrastructure meets
security intelligence.

I’m a Cloud, Observability & Platform Engineer specializing in building and operating distributed systems across AWS, hybrid infrastructure, and data platforms.

I work across cloud-native and on-prem environments, designing containerized systems, high-throughput data pipelines, and scalable application platforms. My experience includes AWS services (EC2, ECS, Fargate, S3, IAM, API Gateway), Kubernetes, Docker, and multi-account architectures.

On the observability and data side, I build and manage end-to-end pipelines using Elasticsearch, Logstash, Kibana, Prometheus, Grafana, OpenTelemetry, Kafka, and BigQuery — handling logs, metrics, and traces at scale.

I focus on system reliability, security, and performance — implementing secure architectures (TLS, IAM, network controls), debugging production issues across distributed systems, and ensuring platforms run efficiently under real-world workloads, including containerized services and agentic AI-driven systems.

Certifications & Expertise

AWS SysOps Administrator

Associate · Operations

✓ CERTIFIED

AWS Solutions Architect

Associate · Architecture

✓ CERTIFIED

AWS DevOps Engineering

CI/CD · Automation · Platform Ops

COMPETENCY

ELK Stack SIEM

Production · Multi-node · Secure

HANDS-ON

AWS Well-Architected Reviews

Security · Reliability · Cost Optimization

AUDITOR

Agentic AI Systems

Autonomous Workflows · LLM Integration

COMPETENCY

Generative AI

LLMs · Prompting · AI Workflows

COMPETENCY

ISO Compliance & Security Practices

Audit Participation · Security Controls

CONTRIBUTOR

Projects

What I've shipped on Cloud.

A full portfolio spanning Zero Trust platforms, Industrial IoT, AI products, SIEM engineering, and cloud infrastructure — built at Eficens Systems and beyond in Clous Using EKS , ECS , EC2 and OnPrem Deployement Methods.

ECS, BedRock & Agentic AI

Wyra — AI GTM Agents for AWS Partners

wyra.ai

Wyra is a pre-CRM AI execution layer built specifically for AWS Partners — deploying intelligent agents that automate go-to-market outreach, lead qualification, and pipeline development before deals ever hit the CRM. Positions AI-native GTM automation as a competitive advantage in the AWS partner ecosystem, combining agentic AI workflows with deep AWS partner channel intelligence.

AI AgentsGTM AutomationAWS Partner NetworkAgentic AIPre-CRM WorkflowsPipeline Intelligence

EKS

Verastel SPARK — Zero Trust Security Platform

verastel.ai · eficens.ai/solutions/verastel-spark

Verastel SPARK is a continuous Zero Trust security posture platform providing AI-driven vulnerability assessment across hybrid cloud environments. Features IntelliScore (live threat-prioritized vulnerability ranking), DeepScanX (deep infrastructure scanning to uncover hidden risks), and InsightHub (unified cloud + on-prem threat dashboard). Replaces periodic audits with continuous automated posture assurance — providing 360° visibility across all cloud assets and eliminating blind spots where threats can dwell for months.

Zero TrustAI AnalyticsSIEM IntegrationHybrid Cloud ScannersThreat IntelligenceVulnerability ScoringAWS

ECS

Innvendt / CEGMA — Industrial IoT & Grid Intelligence Platform

eficens.ai/products/innvendt

Innvendt brings intelligence to industrial environments through IoT sensors, edge computing, and AI analytics. CEGMA (Convergent Grid Monitoring) is its core module — a full-stack IIoT platform for electrical grid monitoring that predicts equipment failures days before they occur, reducing manual inspection by 60% and improving field team productivity by 90%. Includes GIS-based asset mapping, Smart LOTO for digital safety isolation protocol enforcement, Earth E5 for continuous grounding monitoring, and real-time SMS/email alerting on unsafe conditions.

ClearBlade EdgeGoogle BigQueryIoT SensorsGIS TechnologySmart BeaconsMobile AppsPredictive MaintenanceCloud Workflow Engine

ECS @ Ec2

VisiQ — AI Visitor Management & Physical Access Control

eficens.ai/products/visiq

VisiQ replaces paper logbooks with a contactless AI reception experience — combining facial recognition, automated health screening, NDA digital workflows, and seamless PACS integration (turnstiles, doors, elevators) for policy-driven entry. Delivers full immutable audit trails of every entry/exit event for compliance and security investigations. Deployed across a global corporate real estate firm across 32 office locations, cutting access management overhead by 70%.

Computer VisionFacial RecognitionPACS IntegrationCloud IdentityBiometric APIsMobile AppCompliance Audit

ECS

BundlAR — No-Code Augmented Reality CMS

eficens.ai/products/bundlar

BundlAR is an enterprise AR content management platform — enabling anyone to build, publish, and measure AR experiences without writing a line of code. Purpose-built for industrial training and field service. Supports HoloLens, Magic Leap, and mobile (iOS/Android). Features OTA instant publishing (bypassing app store cycles), GLTF/OBJ 3D asset import, multi-language delivery, and deep engagement analytics. A global hydraulic OEM reduced technician training time by 45% using BundlAR's AR-guided field training.

AR / Mixed RealityHoloLensMagic LeapiOS / Android3D RenderingCloud CMSAnalytics

SIEM · 01

Production ELK SIEM Platform on AWS EC2

Designed and deployed a full-scale ELK Stack on AWS EC2 with separated master and data nodes. Compiled Kibana 8.14.3 from source with X-Pack disabled for OSS compliance. All inter-node and HTTP API communications secured with mutual TLS using custom CA-signed PEM and PKCS#12 certificates. S3 snapshot/restore for long-term archival.

Elasticsearch 8.xKibana 8.14.3AWS EC2Multi-NodemTLSOSS BuildNode.jsYarn

SIEM · 02

Palo Alto & Sophos Log Ingestion Pipeline

Built end-to-end Logstash pipelines to ingest Palo Alto firewall logs (CSV) and Sophos endpoint security logs into Elasticsearch data streams. Configured grok filters, field mappings, and ILM. Implemented S3 snapshot/restore for long-term log archival with point-in-time restore capability.

LogstashPalo AltoSophosCSV ParsingGrokS3 SnapshotsILM

SIEM · 03

Fleet Server, Elastic Agent & Sysmon Integration

Deployed Fleet Server for centralized Elastic Agent management. Set up agent policies, integrated Sysmon log collection for Windows endpoint telemetry, and routed inter-component communications through a proxy for network isolation. Enabled real-time endpoint visibility directly into Elasticsearch data streams.

Fleet ServerElastic AgentSysmonProxy RoutingAgent PoliciesWindows Telemetry

INFRA · 04

Full-Stack SSL/TLS Hardening (HTTP + Transport Layer)

Implemented comprehensive SSL/TLS across the ELK Stack — HTTP API layer (Kibana + client access) and the Elasticsearch transport layer (inter-node communication). Built a custom CA, signed certificates in PEM and PKCS#12, and configured mutual authentication to ensure only authorized nodes can join the cluster.

SSL/TLSPEMPKCS#12mTLSCustom CAOpenSSL

INFRA · 05

Containerized Django Application (Docker + Kubernetes)

Built and managed a containerized Django REST API from local Docker development to Kubernetes production. Managed container orchestration, service discovery, persistent volumes, and rolling updates.

DjangoDockerKubernetesREST APIPython

CLOUD · AUDITS

AWS Well-Architected Reviews (WAR)

Conducted AWS Well-Architected Reviews for clients across all five pillars — Security, Reliability, Performance Efficiency, Cost Optimization, and Operational Excellence. Identified architectural risks, produced remediation roadmaps, and worked with client engineering teams to implement improvements as part of Eficens' AWS cloud advisory practice.

AWS WARSecurity PillarReliability PillarFinOpsCloud GovernanceRisk AssessmentRemediation Planning

CLOUD · MARKETPLACE

AWS Marketplace Listings & Cloud Partnership

Involved in Eficens' AWS Marketplace presence and cloud partnership operations — supporting listing management, AWS partner program compliance, and cloud solution commercialization. Worked alongside the Wyra AI GTM platform to drive AWS partner go-to-market motions and pipeline development through the AWS partner network.

AWS MarketplaceAWS Partner NetworkCloud CommercializationGTM StrategyPartner Programs

CLOUD · INFRA

Cross-Account AWS S3 Log Ingestion Pipeline

Configured cross-account AWS S3 access to continuously pull log data from S3 buckets across separate AWS accounts into the centralized SIEM pipeline. Managed IAM roles, bucket policies, and cross-account trust relationships. Integrated with Logstash's S3 input plugin for seamless streaming into Elasticsearch.

AWS S3Cross-Account IAMBucket PoliciesTrust RelationshipsLogstash S3 Input

DATA · AUTOMATION

Company Intelligence Data Extraction Script

Built a Python script to extract and compile structured company intelligence data — revenue, headcount, exchange listings, and HQ — into Excel files with incremental append logic. Engineered for repeated runs without duplication, enabling ongoing data collection workflows.

PythonExcel AutomationIncremental LogicData Extractionopenpyxl

Tech Stack

Tools of the trade.

Every technology across my cloud, security, IoT, and product engineering work at Eficens and beyond.

vamsi-prod ~ cat profile.json

$ whoami --verbose

{
  "role": "DevOps, Cloud & Platform Engineer",
  "company": "Eficens Systems",
  "cloud": [ "AWS (EC2, ECS, Fargate, S3, IAM, VPC, CloudWatch)", "GCP (BigQuery)", "Azure" ],
  "containers": [ "Docker", "Kubernetes (EKS & On-Prem)", "ECS / Fargate", "Helm", "kubectl" ],
  "observability": [ "ELK Stack", "Prometheus", "Grafana", "OpenTelemetry", "Jaeger", "Zipkin", "CloudWatch" ],
  "data_streaming": [ "Kafka", "BigQuery", "MongoDB", "PostgreSQL", "MySQL", "MinIO" ],
  "security_networking": [ "TLS / mTLS", "Nginx", "Kong API Gateway", "StrongSwan", "Palo Alto", "OWASP ZAP", "SonarQube" ],
  "devops": [ "Jenkins", "Git", "CI/CD Pipelines", "Automation & Scripting" ],
  "programming": [ "Python", "Node.js", "Bash" ],
  "ai_systems": [ "Agentic AI Workflows", "Generative AI", ],
  "hybrid_infra": [ "On-Prem VMs", "Hybrid Cloud Architectures" ],
  "audits": [ "AWS Well-Architected Reviews", "Cloud Security Audits", "Observability Validation", "ISO Participation" ],
  "certs": [ "AWS-SAA-C03", "AWS-SysOps-Associate" ],
}

$ # building what matters, securing what counts

AWS

GCP

Azure

CloudWatch

API Gateway

Docker

Kubernetes

ECS / Fargate

Elasticsearch

Logstash

Kibana

Elastic Agent

Fleet

Sysmon

Grafana

Prometheus

Jaeger

Zipkin

OpenTelemetry

BigQuery

MongoDB

MySQL

PostgreSQL

MinIO

Kafka

Nginx

SSL / TLS

StrongSwan

Kong API Gateway

Palo Alto

Git

Jenkins

Bash

Python

Node.js

On-Prem VMs

Hybrid Architecture

SonarQube

OWASP ZAP

Kube Tools

Vamsi Krishna Koduri

Cloud infrastructure meets
security intelligence.

Broad skills,
deep execution.

What I've shipped on Cloud.

Tools of the trade.

Let's build something
worth securing.

Vamsi Krishna Koduri

Cloud infrastructure meetssecurity intelligence.

Broad skills,deep execution.

What I've shipped on Cloud.

Tools of the trade.

Let's build somethingworth securing.

Cloud infrastructure meets
security intelligence.

Broad skills,
deep execution.

Let's build something
worth securing.