Farhad – AWS, Python, Kubernetes

It's one of the largest schools in Australia. In this project, a unified human resource application needed to be integrated with other applications in the organisation.

• Designed a unified integration architecture for Oracle HCM, seamlessly connecting it with Finance, Payroll, Ticketing, Active Directory, and other systems.
• Worked closely with vendors, stakeholders, business analysts, and delivery teams to ensure the integration design was accurate and effective.
• Mapped key touchpoints to ensure smooth data flow from source systems to downstream applications, aligning seamlessly with organizational requirements.
• Partnered with the security architect to ensure all design decisions complied with current security standards, with a strong focus on enforcing encryption in transit and at rest across all integration points.

It's an event-driven system responsible for processing card-not-present transactions.

• Developed a security-by-design solution with the security architect, enforcing encryption in transit and at rest across all integration points.
• Leveraged HashiCorp Vault for signature verification, payload decryption, access segregation via namespaces, key vaults, IAM, and security scanning tools.
• Designed a fault-tolerant and self-healing architecture using AWS and Kafka.
• Developed an in-memory unique ID generator algorithm in a clustered environment.
• Designed integrations with NAB’s downstream systems.
• Liaised with the team to ensure implementations meet architectural goals.

It's the largest AWS project in Australia for the Australian Bureau of Statistics.

• Designed and implemented a secure, scalable deployment infrastructure to meet the operational demands of a critical government project.
• Developed an advanced DevSecOps pipeline for a secure government project, streamlining operations and enhancing security.
• Improved processes to achieve OWASP SAMM maturity level 3, demonstrating compliance and robust security practices.
• Achieved a significant deployment time reduction, from over four hours to under 30 minutes, by implementing continuous integration and deployment practices that enhanced team productivity and system reliability.
• Managed pipeline and CloudFormation code reviews to ensure code integrity and security, collaborating with SMEs to comply with Information Security Manual guidelines on information protection, system security, access control, and encryption.
• Integrated the DevSecOps pipeline with key security tools, SonarQube, Checkmarx, Black Duck, and OWASP ZAP, to strengthen security, enable continuous monitoring, and ensure compliance with best practices.

It's an insurance API that automates processes around a contract-first approach, saving hundreds of hours for developers and BAs.

• Worked with BAs to design various microservice APIs with OpenAPI specifications.
• Developed tools and utilised OpenAPI Extensions to automatically generate Java models from contracts.
• Implemented APIs in Java, and Spring Boot on Kubernetes.