Open to new opportunities · ~2 years experience

Building & Automating
Cloud Infrastructure

DevOps and Cloud Engineer focused on CI/CD Pipelines, Containerization, and Cloud Infrastructure.

View ProjectsView Resume
Shubham Mate

// about me

Behind the Terminals

I am a passionate DevOps and Cloud Engineer with a strong foundation in cloud-native technologies. I specialize in automating complex workflows, managing scalable infrastructure, and ensuring the reliability of high-traffic applications. My journey in tech is driven by a curiosity for how systems work and a desire to build tools that empower developers.

Status: Open to full-time roles
Location: Maharashtra, India

// experience

Work History

~2 years of hands-on DevOps & Cloud experience

Framework Engineer (Platform & DevOps)

Full-time

@ Quantiphi

Sep 2021 – Nov 2022

  • Architected and automated cloud infrastructure on AWS using Terraform, resulting in a 70% reduction in manual provisioning time.
  • Containerized legacy monoliths using Docker and orchestrated resilient deployments with Kubernetes, resulting in 99.99% uptime and automated scaling.
  • Designed and integrated end-to-end CI/CD pipelines utilizing Jenkins and GitHub Actions, resulting in release cycles cutting from days to hours.
  • Implemented security-first DevSecOps safeguards using least-privilege IAM, secure network isolation, and automated bot mitigation, resulting in a 40% reduction in infrastructure incidents.

Intern Framework Engineer (Platform & DevOps)

Internship

@ Quantiphi

Mar 2021 – Aug 2021

  • Streamlined dev/QA environments by containerizing workflows with Docker Compose, resulting in 50% faster developer onboarding.
  • Automated pipeline builds using Jenkins and GitHub Actions, resulting in a 35% increase in release frequency and zero manual deployment errors.
  • Provisioned secure cloud infrastructure on AWS EC2, optimizing security groups, ALB load balancing, and network routing to improve throughput.
  • Authored comprehensive infrastructure-as-code documentation and conducted peer reviews on Git, resulting in a 25% improvement in cross-team onboarding efficiency.

// certifications

Credentials

Completed & actively pursuing

Crash Course: AI-Powered DevOps

KodeKloud · Completed
ID: 79473108-c5c7-4345-8235-58a7d496d00f

VERIFY

DevOps Course

Tutedude · Completed
ID: TD-SHUB-DO-2308

VERIFY

DevOps Training

TWS · Completed
ID: NGS4PMHG

VERIFY

100 Days of Python

Udemy · In Progress

VERIFY

100 Days of DevOps

KodeKloud · In Progress

VERIFY

100 Days of Cloud (AWS)

KodeKloud · In Progress

VERIFY

// the stack

Tools & Technologies

Linux
AWS
GCP
Docker
Kubernetes
Terraform
Ansible
Git
GitHub
GitLab
Jenkins
GitHub Actions
ArgoCD
Prometheus
Grafana
Python
Go (Learning)
OWASP Top 10
Vault
Linux
AWS
GCP
Docker
Kubernetes
Terraform
Ansible
Git
GitHub
GitLab
Jenkins
GitHub Actions
ArgoCD
Prometheus
Grafana
Python
Go (Learning)
OWASP Top 10
Vault

Infrastructure

Linux
AWS
GCP
Docker
Kubernetes
Terraform
Ansible

Version Control

Git
GitHub
GitLab

CI/CD

Jenkins
GitHub Actions
ArgoCD

Monitoring

Prometheus
Grafana

Languages

Python
Go (Learning)

Security

OWASP Top 10
Vault

// interactive — try it

devops.sh — bash
$

// projects

Featured Work

A curated showcase of production-grade infrastructure, serverless patterns, and high-availability cloud-native systems. click "flip" to see architecture.

Project Architecture
Zoom Blueprint

Cloud Native Portfolio

Elite Cloud-Native Portfolio | Serverless Messaging Backend | Honeypot Anti-Bot Security | Terraform IaC | AWS (Lambda, API Gateway, Route 53, CloudFront, S3, DynamoDB) | Automated CI/CD. A high-fidelity DevOps showcase featuring atomic deployments, security-first engineering, and automated infrastructure management.

aiautomationawsci-cdcloud-nativecloudfrontdevopsdynamodbemailjsgithub-actions
Code

// architecture

Cloud Native Portfolio

S3 Bucket Static Web Hosting fronted by CloudFront CDN Edge Caching
API Gateway Ingress routing contacts to AWS Lambda serverless microservice
Brevo SMTP Mail Integration & Client-Side EmailJS Failover Controller
Checkov Security Scans & ESLint quality gates built in CI/CD pipeline
Terraform Declarative IaC managing all Route 53, ACM, and serverless resources
Problem:Manual build steps, missing infrastructure quality gates, and static message delivery endpoints create security vulnerabilities and maintenance drift.
Fix:Engineered a serverless GitOps pipeline featuring Checkov quality checks, S3/CloudFront atomic hosting, and an API Gateway/Lambda hybrid contacts fallback endpoint.
Project Architecture
Zoom Blueprint

Terraform For Deploying Simple Frontend Backend App Using Docker AWS VPC ECR And ECS Fargate

This project deploys a Flask backend and Express frontend using Docker and AWS ECS Fargate. Managed via Terraform, it features a VPC for isolation, an ALB for path-based routing, and ECR for image hosting. It includes secure private subnets, CloudWatch logging, and automated infrastructure as code (IaC) workflows.

albautomationawsbackendcicdcloudwatchdevopsdockerecrecs
Code

// architecture

Terraform For Deploying Simple Frontend Backend App Using Docker AWS VPC ECR And ECS Fargate

ALB Port Listener Routing (Port 80 ➔ Express, Port 5000 ➔ Flask)
ECS Service Connect (Secure Internal DNS microservice-to-microservice traffic)
Private VPC Subnets (Total task isolation, zero public IP exposure)
NAT Gateways & ECR VPC Endpoints (Secure container image pulling)
Encrypted CloudWatch Logging (KMS Customer Managed Key & Rotation)
Problem:High operational overhead of managing EC2 servers, environment drifts, and insecure public exposure of microservices.
Fix:Architected a serverless AWS ECS Fargate cluster hosting containerized services inside private subnets, utilizing ECS Service Connect for secure internal discovery and port-based ALB routing managed by Terraform IaC.
View Full Project Library

// meta-project

How This Site is Built

This portfolio is itself a DevOps project — deployed via a fully automated CI/CD pipeline on AWS infrastructure provisioned with Terraform.

Git Push

Push to main branch triggers the pipeline

Test & Lint

ESLint + TypeScript quality gates

Security Scan

Checkov scans Infrastructure (IaC)

Terraform Apply

Automated provisioning of CloudFront, S3, Lambda, and API Gateway

S3 Sync

Build output synced to S3 bucket

CF Invalidation

CloudFront cache invalidated for instant updates

Health Check

Automated verification ensures site is 100% UP and reachable

.github/workflows/deploy.yml
name: 🚀 Deploy Portfolio

on:
  push:
    branches: [main]

jobs:
  terraform-infra:
    name: 🏗️ Infrastructure (Terraform)
    runs-on: ubuntu-latest
    steps:
      - uses: actions/checkout@v4
      - uses: hashicorp/setup-terraform@v3
      - run: terraform init
      - run: terraform apply -auto-approve

  build-and-deploy:
    name: 📦 Build and 🚀 Deploy
    needs: terraform-infra
    runs-on: ubuntu-latest
    steps:
      - uses: actions/checkout@v4
      - uses: actions/setup-node@v4
        with: { node-version: '24' }
      - run: npm ci && npm run build
      - name: 🚀 Deploy to AWS
        run: node scripts/deploy.js
      - name: 🏥 Health Check
        run: curl -f https://shubhammate.com

// contact

Let's Build Something

Open to DevOps / Cloud Engineer roles and internship-to-full-time opportunities. Always happy to connect and talk infrastructure.

https://www.linkedin.com/in/shubham-mate
https://github.com/shubhmate
https://gitlab.com/shubhmate