Senior Architect for Cloud & Data

4/2023 – offen

(1) Azure Enterprise Cloud Setup
Assessed the newly built “beta version” of the enterprise Azure environment to extend / improve it to
become truly enterprise ready and scalable to fit all new cloud native application needs and to
migrate off all workloads from on-premise data centers.
• Based on Microsoft Cloud Adoption Framework (CAF): revisited / redesigned / reengineered:
◦ Management Groups and Landing Zone design
◦ Infrastructure as code / cloud automation stack & reusability across the organization
◦ Central logging solution incl. SIEM (Sentinel)
◦ Role Based Access Control (RBAC) model incl. Privileged Identity Management (PIM)
◦ Cloud Security Posture Management using Azure Defender
◦ Hub & spoke networking & on-prem connectivity
◦ High availability / Disaster Recovery capabilities
• Technology focus: Azure, Azure networking, Log Analytics,Sentinel, Azure Defender, Azure Privileged Identity Management, various Azure IaaS and PaaS, GitHub Enterprise

(2) Cloud Governance / Security
• Designed and implemented an Azure Policy framework to continuously monitor and remediate compliance to meet ISO 27001 requirements for virtual machines and various PaaS offerings.
• Designed / defined guidelines and guardrails to use Azure PaaS / IaaS offerings to meet GxP infrastructure qualification requirements

(3) Cloud Cost Management
• Established cloud cost transparency via reporting and advised conc. cloud cost management tactics (right-scaling, reserved instances, auto-scaling, auto-shutdown, ephermal computing, etc.)

(4) Cloud Migration
• Consulted, advised and accompanied application teams to design cloud native application architectures and to migrate into the new Azure cloud environment
• Analysed existing on-prem IT infrastructure and applications to establish & drive cloud migration roadmaps
• Migrated on-prem fileshares and Sharepoint sites to Azure based fileshares

(5) Cloud Automation (Infrastructure as Code)
• Designed / engineered dozens of reusable Terraform code modules to deploy the complete cloud platform and to deploy various Azure IaaS and PaaS in application projects to meet compliance/security requirements

(6) Datalake & Analytics on Azure
• Designed and setup the new enterprise datalake / data & analytics environment supporting storage, integration, transformation, data governance, analytics capabilities and productionizing models
• Migrated existing ML/AI use cases from Domino Datalab to the new environment and onboarded/consolidated existing “mini” datalakes into the new environment
• Migrated existing on-premise fileshare and Sharepoint environments to cloud based Azure Fileshares
• Technology focus: Microsoft Fabric, Azure Datalake Storage, Azure Files, Azure ML, Azure Batch, Azure Data Factory, Azure Container Apps, Azure Functions

(7) Personalized Vaccination Solution on Azure
• Designed and setup the cloud solution architecture (micro service based) of a new GMP compliant solution to produce personalized vaccinations
• Consulted/supported teams to integrate their micro services into the overall solution and processes
• Technology focus: Azure Storage, Logic Apps, Azure Functions, Azure Container Apps, Azure Batch, Azure ML

Cloud Spezialist, Cyber Security, Cloud Computing, Iaas, Infrastrukturarchitektur, It-Governance, Microsoft Azure, Paas, Solution Architektur

1/2023 – 2/2023

- Designed / defined the binding guidelines and guardrails to integrate Azure PaaS / IaaS offerings into the corporate cloud environment. Focus hereby on Azure Storage, Azure Key Vault, Azure SQL, Azure App Service, Azure Virtual Machine and the topics Backup & Restore, High Availability, Disaster Recovery, Scalability, Networking, Governance via Azure Policies.
- Designed global Cloud Automation Platform and collaboration processes based on Terraform and vRealize to allow decentral DevSecOps Teams and central Managed Service Teams to jointly develop and reuse code and patterns

Cloud Computing, Iaas, It-Governance, Microsoft Azure, Paas, Solution Architektur

10/2020 – 12/2022

- Redesigned and engineered the global enterprise Azure environment for IaaS and PaaS/cloud native workloads based on Microsoft Enterprise Scale Framework
- Designed and engineered infrastructure as code / cloud automation
- Designed and engineered central logging aggregation solution for SIEM integration
- Designed and engineered cloud governance using Azure Policies
- Designed and engineered corporate firewall and network automation for zero-trust hub & spoke networking
- Designed and engineered cloud infrastructure monitoring and alerting
- Consulted, advised and accompanied global application teams in their migration efforts into the new Azure cloud environment
- Worked in the global Architecture Review Board to ensure that applications are built in a cloud first / cloud native manner
- Helped to setup the new global Cloud Centre of Excellence (CCoE) and led the Cloud Architecture Team within the CCoE
- Technology focus: Azure, Powershell, ARM, Terraform, Azure Blueprints, Azure Policies, Azure App Service, Azure SQL, Azure Storage, AKS, Cosmos DB, Azure Service Bus, Azure Event Hub, Azure Monitor, Azure networking, Azure DevOps

Cloud Computing, Iaas, Infrastrukturarchitektur, It-Governance, Microsoft Azure, Paas, Solution Architektur

1/2018 – 12/2020

- Worked as Lead Architect and designed the new Azure cloud based corporate Data Lake / Big Data & Analytics platform to make it truly globally distributed and scalable to meet local data residency and regulatory compliance needs
- Designed the infrastructure as code / cloud automation
- Designed the migration of the existing on-premises big data environment to the new cloud platform
- Managed a Scrum team of DevSecOps team with 15 engineers on a daily basis as Tech Lead to build the cloud platform
- Optimized cloud costs
- Mentored and coached several junior colleagues
- Technology focus: Azure, Powershell, ARM, Azure DevOps, ADLS Gen1/Gen2, Databricks, HDInsight, Azure Search, Cosmos DB, Azure SQL, Azure Data Factory and others

Apache Hadoop, Databricks, Big Data, Cloud Computing, ETL, Iaas, Infrastrukturarchitektur, Microsoft Azure, Paas, Solution Architektur

9/2016 – 12/2017

- Designed the corporate data lake
- Engineered the automation of the data lake areas
- Designed and engineered a dockerized Java microservice framework for data intake into the data lake
- Managed a Scrum team of 8 developers on a daily basis as Tech Lead to build the above
- Technology focus: Hadoop ecosystem (HDFS, Hive, Spark) on-prem and HDInsight on Azure, Java Spring, Python, Docker

Apache Hadoop, Big Data, Cloud Computing, Docker, ETL, Java (allg.), Paas

9/2011 – 8/2016

- Designed multiple solutions with a contract volume between EUR 5-10m for German DAX companies in different industries for big data and data warehouse solutions
- Designed the technical solution and estimated the effort to build it in numerous sales / pre-sales engagements
- Engineered the designed solutions with teams of 5-15 developers (on-/off-/near-shore) and managed them daily as a Tech Lead
- Mentored and coached several junior colleagues
- Primary industry and subject area focus: Automotive (Supply Chain Analytics), Chemicals (Smart Farming Analytics), Travel and Transportation (IoT, Predictive Maintenance, Customer Loyalty)
- Technology focus: Teradata, Hadoop ecosystem (HDFS, Hive, Spark, Kafka, etc.), AWS

Apache Hadoop, Big Data, Data Warehousing, ETL, Solution Architektur, Teradata Sql

6/2009 – 10/2011

- Designed multiple solutions with a contract volume between EUR 1-5m for German DAX companies and medium sized business in different industries for corporate reporting and ETL architectures
- Designed the technical solution and estimated the effort to build it in numerous sales / pre-sales engagements
- Engineered the designed solutions with teams of 10 developers (on-shore) and managed them daily as Tech Lead
- Primary industry and subject area focus: Automotive (After Sales Optimization), Telecoms (Enterprise Data Warehousing), Public Sector (Federal Budget Planning & Controlling)
- Technology focus: SSIS, Talend, ERWin, Oracle IBM Cognos

ETL, Business Intelligence (BI), Data Warehousing

12/2005 – 5/2009

- Designed and engineered ETL processes for populating data warehouses
- Designed and engineered BI reports
- Engineered the designed solutions with teams of 3-5 developers (on-/off-/near-shore) and managed them daily as Tech Lead
- Primary industry and subject area focus: Public Sector (Federal Budget Planning & Controlling, Data Warehouse), Telecoms (Churn prediction, Call Detail Record (CDR) integration)
- Technology focus: SSIS, ERWin, Teradata, Oracle, SQL Server, IBM Cognos

Business Intelligence (BI), Data Warehousing, ETL