AWS Solutions Architect Certified

I transform infrastructure chaos into SOC 2 Type 2 & ISO 27001-ready systems in 60 days.

Cloud & Security Engineer specializing in rapid compliance transformations, Zero Trust implementations, and multi-cloud architecture. SOC 2 Type 2, ISO 27001, and beyond — I deliver in weeks what typically takes months.

Discuss Your Project View Case Studies
0 days Disaster to SOC 2 Type 2-ready
0 users Zero Trust deployment
0 min RTO AWS disaster recovery
0 efficiency Automation gains

Services

I help companies secure, optimize, and scale their cloud infrastructure.

SOC 2 Type 2 & ISO 27001 Compliance

Complete compliance roadmaps covering logging, MFA enforcement, backup policies, and evidence collection for SOC 2 Type 2 and ISO 27001. Get audit-ready faster than you thought possible.

  • SOC 2 Type 2 Roadmaps
  • ISO 27001 Frameworks
  • Audit Preparation
  • Evidence Collection

Zero Trust & M365 Security

Enterprise Zero Trust implementations with Conditional Access, MFA, Intune compliance, and device posture standardization. Full M365 migrations with email security hardening (SPF, DKIM, DMARC).

  • Conditional Access
  • Identity Management
  • M365 Migration
  • Email Security

Cloud Architecture

Multi-cloud infrastructure design across AWS, Azure, and hybrid environments. Disaster recovery with validated RTOs, cost optimization, and operational excellence.

  • AWS / Azure
  • Disaster Recovery
  • Cost Optimization

Network Security

FortiGate, SonicWall, and cloud-native firewall deployments. SD-WAN, SSL/IPsec VPN, and SAML SSO integrations with Azure AD/Entra ID.

  • FortiGate / SonicWall
  • VPN Solutions
  • SSO Integration

Recent Work

Real transformations with measurable outcomes.

Featured Project

60-Day SOC 2 Type 2 Transformation

SaaS Company Infrastructure Overhaul

Before

  • Publicly exposed firewall
  • Broken VPN access
  • Zero audit trails
  • No compliance readiness

After 60 Days

  • Hardened FortiGate with custom SD-WAN
  • Secure Azure Key Vault access over VPN
  • Complete audit logging & retention
  • 14-week SOC 2 Type 2 audit roadmap delivered
$7,000+/yr Total cost optimizations identified
$2,400+/yr O365 licensing savings
$190/mo Azure resource rightsizing
$200/mo Container Apps migration & rogue service cleanup

Enterprise Zero Trust Rollout

500+ User Organization

Complete Zero Trust implementation with MFA, Conditional Access, and Intune compliance. Standardized device posture across the organization while securing Teams and SharePoint access.

Azure AD Intune Conditional Access

Production AWS Infrastructure (Terraform)

Uzera — Full-Stack Cloud Platform

Designed the complete Azure-to-AWS migration architecture and built the production platform from scratch using Terraform — containerized microservices, managed databases with HA failover, caching, message queues, and a dedicated analytics data plane. Implemented least-privilege secrets management, KMS encryption across all layers, and five AWS-native security services for continuous compliance monitoring.

Terraform ECS Fargate RDS KMS Security Hub IaC

M365 Migration & Email Security

MSP — Multi-Client Deployments

Full M365 tenant migrations with email security hardening: SPF, DKIM, and DMARC enforcement. Built Python automation using Microsoft Graph API to assess M365 and Intune configurations, reducing manual assessment effort by 65%.

M365 SPF / DKIM / DMARC Graph API Python

Wazuh SIEM Deployment

Uzera — Centralized Security Monitoring

Deployed Wazuh SIEM for centralized log collection, threat detection, and compliance monitoring. Configured agents across cloud and on-prem workloads, enabling real-time alerting and audit-ready event logging aligned to ISO 27001 controls.

Wazuh SIEM ISO 27001 Log Management
Tejas Shrivastav

About

Currently: Cloud & Security Engineer at Uzera — sole security owner leading SOC 2 Type 2 & ISO 27001 compliance implementation from the ground up.

At Uzera, I own the full cloud and security stack — I designed the Azure-to-AWS migration architecture and built the entire production platform from scratch using Terraform, spanning containerized microservices, managed databases, caching, analytics, and five AWS-native security services. I also manage compliance frameworks, Zero Trust architecture, Wazuh SIEM, and have driven $7,000+/yr in infrastructure savings.

Before Uzera, my time at an MSP gave me exposure to 15+ different organizational environments — accounting firms, NGOs, enterprises. That breadth means I've seen what works, what breaks, and how to navigate real-world constraints fast.

Technical Skills

Cloud Platforms

AWS Azure Hybrid Infrastructure

Security & Compliance

Zero Trust SOC 2 Type 2 ISO 27001 FortiGate SonicWall Wazuh / SIEM SPF / DKIM / DMARC

Identity & Access

Azure AD / Entra ID Intune Conditional Access SAML SSO

Monitoring & Infrastructure

AWS CloudWatch Azure Monitor Active Directory SD-WAN VPN Docker Kubernetes

Automation

Python PowerShell Bash Terraform Azure CLI Graph API
AWS Solutions Architect - Associate

Let's work together

Available for international remote contract opportunities. Whether you need a complete infrastructure transformation or targeted security hardening, I'd like to hear about your project.

Tejasshrivastav@icloud.com LinkedIn

Based in India (IST) | Flexible with international time zones