Suraj Kumar Sah
7+ years building secure, scalable infrastructure on AWS, Azure & GCP — from bare-metal Kubernetes clusters to CKA-certified SOC 2 compliance automation.
About Me
Who am I professionally?
0
About Me
Who am I professionally?
I'm Suraj Kumar Sah, a lead DevOps Engineer with 7+ years of expertise in the field and a deep in AWS, Azure, GCP, and Kubernetes (Certified CKA).
Over the years, I've been instrumental in establishing secure, scalable infrastructures and ensuring smooth application deployments. I have a teaching experience of 2 years. In addition to my primary role, I've actively contributed to research in cloud computing. Beyond my professional endeavors, I cherish imparting knowledge to others, and I'm deeply involved in community outreach and educational initiatives.
Research Papers
Published & Upcoming Work
Research Papers
- In 2025,S. K. Sah and L. K. Sah, “Variable Record Table: A Unified Hardware-Assisted Framework for Runtime Security”, 68th IEEE International Midwest Symposium on Circuits and Systems (MWSCAS), Lansing, MI, USA, 2025.
- In 2024,S. K. Sah and L. K. Sah, “VRT: A Runtime Protection Against Back-Edge CFI Violation”, 67th IEEE International Midwest Symposium on Circuits and Systems (MWSCAS), Springfield, MA, USA, 2024.
- In 2021,S. K. Sah, M. D. Upadhaya, and R. Shrestha, “The Role of AI on Jobs, Human Rights, and Education During the Pre- and Post-COVID-19 Pandemic”, HBRP Publication Research and Reviews: Advancement in Robotics, Volume 4, Issue 1, Ghaziabad, Uttar Pradesh, India, 2021, pp. 1–11.
Blogs
Loading blog posts...
Resume
My Professional Journey
Chronicles of My Professional Path
Lead DevOps Engineer,
Soliish/KYXStart/ArimaHealth/Sleep Clinics of America
- Architected and executed a full cross-tenant Microsoft 365 migration (Sleep Clinics of America → Arima Health) covering email, calendar, contacts, tasks, mailbox rules, OneDrive, and SharePoint; employed CTMM (Cross-Tenant Mailbox Migration) for compatible users and Microsoft Purview PST export/import for users blocked by unresolvable MAPI named properties; orchestrated SharePoint migration via SPMT, OneDrive via UDM cross-tenant tooling, and completed DNS cutover (MX, Autodiscover, SPF, DKIM, DMARC) with zero data loss.
- Led organization-wide attainment of SOC 2 Type II certification by designing and implementing robust security controls, continuous monitoring, alerting mechanisms, and compliance automation across cloud and endpoint environments, ensuring regulatory adherence and enhanced organizational security posture.
- Directed deployment of Wazuh for comprehensive compliance monitoring aligned with SOC 2 requirements, incorporating real-time alerting for suspicious activities and proactive vulnerability tracking to maintain a resilient and secure infrastructure.
DevOps Engineer,
12iD Pvt. Ltd.
- GitHub Actions with GitHub workflows implemented for CICD to GKE
- Multiple clients product deployment across the world with proper communications and documentations
- Setup a proper environment versioning system and also store all the configuration to the GCP Secret Manager.
DevOps Engineer,
Grepsr Pvt. Ltd.
- Set up Development, Staging, and Production servers for moving all the applications and services to AWS Elastic Kubernetes Service(EKS) via Terraform, Ansible, Drone CI, and ArgoCD with Istio-Service-Mesh enabled.
- Manage every AWS Service through Terraform Cloud and Applications with version control to Bitbucket.
- Setup Staging & Development Kubernetes Cluster from scratch; moved all the applications and services to Kubernetes with Istio-Service-Mesh enabled on-premise with the help of Helm charts.
Get in Touch
Let's Connect
I'm currently available to take on new projects, so feel free to send me a message about anything that you want to run past me. You can contact anytime at 24/7.
Telegramcallmedevops
