Overview
Work History
Education
Certification
Timeline
Generic

SHAWN NI

WWW.LINKEDIN.COM/IN/SHAWNNI
Singapore

Overview

9
9
years of professional experience
10
10
Certifications

Work History

Consultant, NGINX

F5 Networks
09.2023 - Current
  • Lead Technical workshops during customer engagements to demonstrate NGINX product features, with goal of addressing customer pain points and requirements gathering
  • Architect NGINX Solutions on Kubernetes (AWS EKS and Openshift) and VM based (RHEL) deployments factoring High-Availability, Scalability, Logging, Segregation, and Observability with Low/High Level Design (LLD/HLD) for enterprise setups
  • Developed bash scripts for custom installation and configuration APIs to Automate deployment of greenfield NGINX projects, resulting in reduced delivery timelines for new customer adoption to reach Minimally Viable Product (MVP) benchmark
  • Created various NGINX Proof-of-Concept (POC) labs on reverse proxy, IDP integration, and WAF (NGINX App Protect) use-cases, thereby gaining customer's technical confidence in Pre-sales pitches
  • Documented Runbook, User Acceptance Test (UAT) and Security benchmark (CIS NGINX) to serve as future references for customers upon closing of project delivery
  • Created Statement of Work (SoWs) to breakdown and identify new technical tasks into quantifiable billable costs leading to increased revenue

DevOps Engineer

IBM
01.2023 - 09.2023
  • Responsible for developing a central CI/CD pipeline on GitLab for Spring Boot microservices comprising various stages such as Build, Test, Code Coverage, SAST, Deployment to Dev/SIT/QA/Preprod/Production environments, DAST, and report aggregation as part of a platform enabling self-service automated deployment amongst software engineering teams
  • Involved in the setup, configuration and hardening of the underlying AWS infrastructure hosting enterprise-grade DevOps toolchains such as Parasoft, Fortify SCA, Fortify WebInspect, Code Dx, Artifactory, and other proprietary tools
  • Integrated the APIs of various DevOps toolchains into GitLab pipeline for increased automation
  • Designed and developed production-grade CloudFormation templates for use across software engineering teams for common AWS infrastructure patterns
  • Remediate security vulnerabilities arising from infrastructure, application server and database configurations flagged by AWS Security Hub and Tenable scans
  • In a team of Solution Architects and DevOps Engineers, engaged stakeholders on business requirements and assisted in translating to technical requirements for pipeline design and AWS infrastructure recommendations enabling High-Availability, Disaster Recovery, and Security to meet SLAs, RTOs, and compliance requirements

DevOps Engineer

Ernst & Young
01.2022 - 12.2022
  • Designed and built an end-to-end solution on AWS for deploying microservices securely. Usage of services include Cognito, Route53, CloudFront, ACM, WAF, Kinesis, S3, Glue, Athena, QuickSight, SNS, CloudWatch, IAM, API Gateway, SQS, Lambda, DynamoDB, RDS, VPC, EC2, ALB, ECR, ECS Fargate
  • Worked on Infrastructure-as-Code (IaC) using Terraform to manage and automate the provisioning of cloud infrastructures, resulting in time savings and infrastructure repeatability
  • Deployed frontend in S3 bucket cached at CloudFront distribution (with OAI) and associated with WAF to provide a secured static web content delivery
  • Deployed backend REST API calls with edge-optimized and regional endpoints in API Gateway with the appropriate integration type to other AWS services. Configured CORS, and associated API stages with WAF and Cognito authorizer ensuring only authenticated API invocations
  • Deployed a variety of microservice patterns such as SQS to Lambda to DynamoDB, Lambda-in-VPC to RDS, VPC-Link to ALB to ECS-Fargate, thereby achieving decoupled and scalable distributed environments
  • Dockerised flask APIs to be pushed into ECR and deployed onto an ECS cluster using Fargate behind an internal ALB, resulting in a consistent environment between developers and the infrastructure
  • Configured WAF with both managed and custom rule-sets to address common OWASP vulnerabilities and IP-sets to blacklist known malicious IP CIDR ranges, while keeping within WCU limits
  • Integrated WAF to a real-time serverless security analytics platform using Kinesis (Firehose), S3, Glue, Athena queries, QuickSight dashboards and SNS topic for notifications enabling faster incident response
  • Hardened a Linux-based bastion host with SSH port knocking intended to obscure ports. This instance is then subsequently converted to a custom AMI, to be provisioned in a public subnet acting as a proxy to access internal EC2 instances

Cybersecurity Intern

Amaris.AI
05.2021 - 07.2021
  • Developed, in a small team, an explainable AI (XAI) tool to thwart adversarial AI attacks via image model hacking and text misclassification
  • Tech Stacks include using Python and other deep-learning libraries not divulged due to a non-disclosure agreement

Cybersecurity Intern

PSA International
09.2016 - 02.2017
  • Assisted in the security administration of intrusion detection and prevention systems (IDS/IPS) within PSA’s internet-facing infrastructure
  • Handled logs monitoring and server hardening tasks to maintain the security posture of the “Portnet” system
  • Participated in an internal cyber hygiene program to bring awareness to phishing emails for heightened vigilance with an outreach of more than 500 employees

Education

Bachelor Degree - ICT (Information Security)

Singapore Institute of Technology
12.2022

Diploma - Information Security

Nanyang Polytechnic
03.2017

Certification

AWS Partner: Accreditation (Technical)

Timeline

F5 Certified! Administrator, NGINX (F5-CA, NGINX)

09-2024

Consultant, NGINX

F5 Networks
09.2023 - Current

AWS Partner: Sales Accreditation (Business)

09-2023

AWS Partner: Accreditation (Technical)

02-2023

AWS Partner: Cloud Economics Accreditation

02-2023

DevOps Engineer

IBM
01.2023 - 09.2023

AWS Certified Cloud Practitioner

12-2022

AWS Certified Developer Associate

12-2022

AWS Certified Security Specialty

12-2022

HashiCorp Certified Terraform Associate

12-2022

AWS Certified Solutions Architect Associate

08-2022

Professional Scrum Master I

03-2022

DevOps Engineer

Ernst & Young
01.2022 - 12.2022

Cybersecurity Intern

Amaris.AI
05.2021 - 07.2021

Cybersecurity Intern

PSA International
09.2016 - 02.2017

Diploma - Information Security

Nanyang Polytechnic

Bachelor Degree - ICT (Information Security)

Singapore Institute of Technology

Similar Profiles

  • SaiTeja TADI

    SaiTeja TADISaiTeja TADI

    JAMF/Intune/SCCM Administrator at F5 NetworksJAMF/Intune/SCCM Administrator at F5 Networks

  • Kavya Chunduri

    Kavya ChunduriKavya Chunduri

    Principal Data Analyst at F5 NetworksPrincipal Data Analyst at F5 Networks

  • Jorine Leow

    Jorine LeowJorine Leow

    Senior People Operations Manager at F5 Networks Singapore Pte LtdSenior People Operations Manager at F5 Networks Singapore Pte Ltd

  • Saurabh Jain

    Saurabh JainSaurabh Jain

    Territory Sales Manager at F5 NetworksTerritory Sales Manager at F5 Networks

  • Carol Lim

    Carol LimCarol Lim

    AR Credit Control Officer at TP ICAP Management Services Pte LtdAR Credit Control Officer at TP ICAP Management Services Pte Ltd

CREATE PROFILE
SHAWN NIWWW.LINKEDIN.COM/IN/SHAWNNI