Hello, I'm

Mayur Chavhan

Senior |

I'm a Senior DevOps Engineer, SRE and Platform Engineer with 10 years of hands-on experience running cloud and on-prem infrastructure. I manage 2,000+ servers (including 500+ production systems) across AWS, Kubernetes, Terraform, GitLab CI/CD and observability stacks. I hold the AWS Solutions Architect and RHCE certifications, and I've built zero-touch patching and AI-driven automation tools that keep systems secure, compliant and reliable.

About Me

MC
0+ Years Experience
0+ Servers Managed
0+ Production Systems
0.9% Uptime Achieved

I'm a Senior DevOps Engineer, SRE and Platform Engineer with 10 years of experience running cloud and on-prem infrastructure. I've managed 2,000+ servers (500+ production) across AWS, Azure and hybrid environments, and I design the automation, observability and security layers that keep them reliable.

My day-to-day work spans AWS, Kubernetes, Terraform, Ansible, GitLab CI/CD, Docker and GitOps. I'm also AWS Certified Solutions Architect - Associate and Red Hat Certified Engineer (RHCE), with deep Linux administration, security hardening and PCI-DSS experience.

At FIS I resolved 320+ vulnerabilities and built VRT AppVault, a zero-touch patching tool that serves 500+ servers without direct login. At MGT-Commerce I kept 300+ e-commerce clients online through peak traffic events. I like infrastructure that is observable, recoverable and boring in the best way: it just works.

Cloud-native architecture
Infrastructure as Code
🔁 GitOps & CI/CD pipelines
🔒 DevSecOps practices

Skills & Technologies

Cloud & Infrastructure

AWS
GCP
Azure
Terraform
OpenTofu
Ansible
CloudFormation
OpenStack
Proxmox
DigitalOcean
Linode
🐳

Containers & Orchestration

Docker
Docker Compose
Kubernetes
OpenShift
Helm
🔁

CI/CD & Release Orchestration

GitLab CI/CD
GitHub Actions
Jenkins
ArgoCD
GitOps
Blue-Green Deploys
Rolling Updates
🔒

DevSecOps & Security

🔒 SonarQube
🔒 Veracode
🔒 Prisma
🔒 Rapid7 InsightVM
🔒 PCI-DSS
🔒 IAM
🔒 Zero-Touch Patching
📊

Observability & Monitoring

ELK Stack
📊 Splunk
Prometheus
Grafana
📊 AppDynamics
📊 Loki
📊 AlertManager
📊 PagerDuty
📊 CloudWatch
💻

Scripting, Databases & AI

Python
Bash
💻 FastAPI
JavaScript
Java
Go
Rust
PostgreSQL
MySQL
🗄 Supabase
Redis
MongoDB
Git
Linux
🤖 Claude AI
🤖 GitHub Copilot

Certifications

AWS Certified Solutions Architect - Associate

Amazon Web Services · 2020

AWS SAA

Red Hat Certified Engineer

Red Hat · 2016

RHCE

Red Hat Certified System Administrator

Red Hat · 2016

RHCSA

Work Experience

Senior Engineer - Systems Administration (SRE / DevOps)

FIS Solutions (India) Pvt. Ltd

Jan 2024 – Jun 2026
  • Managed 2,000+ servers (500+ production) across UAT, Test and QA in a PCI-DSS regulated financial services environment.
  • Built VRT AppVault, a Python/Bash-based zero-touch patching tool that fetches secure binaries, maintains an application registry and pushes updates to 500+ servers without direct login.
  • Managed Splunk agents across 2,000+ servers for real-time log monitoring, security events and SIEM integration; met 45-day and 90-day vulnerability remediation SLAs using Rapid7, SonarQube and Veracode.
  • Secured hybrid infrastructure with Boks and StrongDM for IAM and privileged access management, eliminating unauthorised access on critical systems.
  • Used Claude AI, GitLab Duo and OpenCode CLI to generate Ansible playbooks from natural-language specs, cutting playbook authoring time by 60% and speeding incident remediation by 40%.
LinuxBashPythonSplunkPCI-DSSAnsibleDevSecOps

Senior System Administrator (SRE / DevOps)

MGT-Commerce GmbH · Berlin, Germany

Dec 2021 – Jan 2024
  • Managed AWS infrastructure for 300+ e-commerce clients including Nintendo and Gigaset, maintaining 99.9% uptime for business-critical systems using Terraform and Ansible.
  • Handled 3x peak holiday and Black Friday traffic by tuning Elasticsearch, Redis, Varnish, PHP-FPM and RabbitMQ, plus AWS Auto Scaling Groups and CloudWatch alarms.
  • Worked with the security team to harden Nginx, firewalls and WAF policies, blocking 60% of attacks through SSL/TLS, IAM, encryption and Cloudflare.
  • Automated server provisioning and configuration with Ansible and Terraform, cutting deployment time from hours to minutes; ran blue-green releases through GitHub Actions and AWS CodeDeploy.
  • Set up 24/7 incident response with Prometheus, Grafana and PagerDuty, reducing critical alerts by 99% through runbooks and on-call rotations.
AWSTerraformAnsibleNginxCloudWatchPagerDuty

DevOps Engineer

Uniapply (NoPaperForms / Meritto)

Mar 2018 – Dec 2021
  • Designed CI/CD pipelines using GitLab, Docker, Kubernetes for 20+ microservices.
  • Increased DevOps team velocity by 40% and reduced manual deployments by 90%.
  • Deployed monitoring solutions with Prometheus, Grafana, and Alertmanager.
  • Managed AWS infrastructure using Terraform, improving system stability and efficiency.
GitLab CIDockerKubernetesPrometheusTerraform

Linux System Administrator

NodeOutlet (GoPBN) · Thane, Mumbai, India

Jun 2016 – Feb 2018
  • Managed bare-metal servers and provisioned VPS workloads for 500+ clients using cPanel/WHM, Virtualizor and WHMCS ticketing workflows.
  • Configured RAID, LVM, ext4/XFS and IPMI-based remote node management; deployed KVM/libvirt virtualization alongside VMware ESXi/vCenter concepts.
  • Handled storage and networking integration including iSCSI, NFS, multipathing and udev across virtualised environments, sustaining 99.5% uptime.
  • Automated DNS/CDN management, SSL deployment and LAMP/LEMP provisioning through Bash scripts, cron jobs and the Cloudflare API; hardened VPS, WordPress and Apache configurations.
LinuxBashCloudflareKVMVMware

Featured Projects

K8s GitOps Platform

Production-grade Kubernetes platform with ArgoCD for GitOps, Istio service mesh, and automated certificate management. Supports blue-green and canary deployments out-of-the-box.

KubernetesArgoCDIstioHelmGitHub Actions

AWS Multi-Account IaC

Reusable Terraform modules for multi-account AWS organisations. I built VPC, EKS clusters, RDS, IAM roles and centralised logging modules, then managed them through Atlantis for PR-based plan/apply workflows.

TerraformAWSAtlantisS3IAM

Observability Stack

Full observability platform deployed on Kubernetes: Prometheus + Alertmanager, Grafana dashboards, Loki for log aggregation, and Tempo for distributed tracing. Helm-packaged for easy redeployment.

PrometheusGrafanaLokiTempoHelm

CI/CD Pipeline Template Library

Shareable GitHub Actions workflow library for Node.js, Python, and Go services - covering build, test, SAST scanning, Docker image build & push, and Kubernetes rollout with automatic rollback.

GitHub ActionsDockerSASTSnykTrivy
🔒

VRT AppVault

A Python/Bash zero-touch patching platform that fetches secure binaries, tracks an application registry and pushes updates to 500+ servers without direct login. Integrated with Rapid7 InsightVM, SonarQube and Veracode to keep security scans and remediation cycles inside PCI-DSS SLAs.

PythonBashRapid7SonarQubePCI-DSS
🤖

AI-Driven Automation Framework

Used Claude AI, GitLab Duo and OpenCode CLI to turn natural-language remediation specs into Ansible playbooks. Cut playbook authoring time by 60% and sped up incident response by 40% across a 2,000+ server estate.

AnsibleClaude AIPythonGitLab Duo

Let's Work Together

I'm open to full-time DevOps, SRE or Platform Engineering roles, contract engagements and interesting open-source work. Send me a message and I'll respond within 24 hours.