Know More

About Me – DevOps & Cloud Engineer from Nepal

About Me – DevOps & Cloud Engineer from Nepal

Khimananda Oli – Lead DevOps Engineer & Cloud Architect From Nepal

AWS Certified Solutions Architect | ISO 27001 & Cisco CyberOps Certified | 15+ Years Experience

I'm Khimananda Oli, a Lead DevOps Engineer and Cloud Architect with 15+ years of hands-on experience designing, building, and operating production-grade infrastructure across AWS, Azure, Google Cloud, government data centers, and on-premise environments.

Currently serving as Lead DevOps Engineer at a multinational company, I help businesses and engineering teams deploy faster, scale safely, and pass audits confidently — building systems that don't break when traffic spikes or compliance reviews happen.

My background spans traditional on-prem infrastructure to modern cloud-native architectures, with deep expertise in SOC 1/2 compliance, security governance, and audit-ready infrastructure. I hold a Master's degree in Network Cryptography (MScIT), ensuring security is baked into every layer of infrastructure I design.

What I Do

I specialize in production-grade, audit-ready cloud systems built for reliability, performance, compliance, and long-term growth.

Core Focus Areas

  • Multi-cloud infrastructure design & optimization (AWS, Azure, GCP)

  • CI/CD pipeline architecture & automation

  • Compliance-ready infrastructure (SOC 1, SOC 2, ISO 27001)

  • Kubernetes & container orchestration

  • Infrastructure security, hardening & audit preparation

  • Monitoring, logging & incident response

  • Cost optimization & performance tuning

I don't just "set up servers" — I engineer resilient, auditor-approved systems.

Certifications & Education

Professional Certifications

  • AWS Certified Solutions Architect

  • ISO 27001 Certified – Information Security Management

  • Cisco CyberOps Associate – Security Operations

Academic Background

  • Master of Science in IT (MScIT) – Network Cryptography

  • Bachelor in Computer Application (BCA)

  • +2 Science

Compliance Experience

  • Helped companies achieve SOC 1 compliance

  • Helped companies achieve SOC 2 compliance

  • Built audit-ready infrastructure with automated evidence collection

Technical Skills & Cloud Expertise

Cloud Platforms

  • Amazon Web Services (AWS) – EC2, S3, RDS, VPC, IAM, CloudWatch, Lambda, ECS, EKS

  • Microsoft Azure – Virtual Machines, AKS, Azure DevOps, Storage

  • Google Cloud Platform (GCP) – Compute Engine, GKE, Cloud Storage

  • On-Premise & Hybrid – Government data centers, private cloud, VPN-based environments

DevOps & Automation

  • CI/CD pipelines (GitHub Actions, GitLab CI, Jenkins)

  • Infrastructure as Code (Terraform, CloudFormation)

  • Configuration management (Ansible)

  • Shell scripting & automation (Bash)

Containers & Orchestration

  • Docker

  • Kubernetes (EKS, AKS, GKE, on-premise)

  • Helm

  • Container security & optimization

Operating Systems & Networking

  • Linux (Ubuntu, CentOS, RHEL)

  • Networking fundamentals (VPC, subnets, NAT, firewalls, VPN)

  • Load balancers & reverse proxies (Nginx, HAProxy, ALB, NLB)

Databases & Storage

  • PostgreSQL

  • MongoDB Atlas

  • RDS, Aurora, managed databases

Monitoring & Observability

  • Prometheus & Grafana

  • ELK Stack (Elasticsearch, Logstash, Kibana)

  • CloudWatch, Azure Monitor, Stackdriver

  • Alerting, logging & performance monitoring

  • Incident handling & root cause analysis

Security & Compliance

  • IAM & least-privilege access control

  • Secrets management (Vault, AWS Secrets Manager)

  • Security hardening & vulnerability management

  • Audit trail automation & evidence collection

  • Backup & disaster recovery planning

  • SOC 1/2 & ISO 27001 compliance infrastructure

Virtualization

  • Proxmox

  • VMware

  • KVM

What I Build

Over the years, I've built and managed mission-critical infrastructure across enterprise, government, and startup environments.

Systems & Platforms I Deliver

  • Multi-Cloud Architecture – Seamless workloads across AWS, Azure, and GCP

  • Audit-Ready Infrastructure – SOC 1/2 compliant systems with automated controls

  • Kubernetes Platforms – Production-ready container orchestration at scale

  • CI/CD Pipelines – Automated build, test, and deployment workflows

  • High-Availability Systems – Zero or near-zero downtime architectures

  • Secure Cloud Environments – Hardened systems with compliance-grade access control

  • Monitoring & Observability Stacks – Full visibility into system health and performance

  • Cost-Optimized Cloud Setups – Reducing cloud bills without sacrificing performance

  • Government & On-Premise Infrastructure – Secure, compliant deployments in restricted environments

I design systems that scale smoothly, fail gracefully, and pass audits confidently.

How I Work

I follow a methodical, security-first process — no shortcuts.

  1. Infrastructure Assessment – Understanding current setup, pain points & compliance gaps

  2. Architecture Design – Scalable, secure, audit-ready, and cost-efficient systems

  3. Automation First – Infrastructure as Code, CI/CD pipelines, and repeatable deployments

  4. Security & Compliance – Access controls, audit trails, and compliance mapping

  5. Implementation – Clean, documented, production-ready deployments

  6. Monitoring & Alerts – Visibility before problems happen

  7. Optimization & Scaling – Continuous performance and cost improvements

My philosophy is simple:
If it's not automated, observable, secure, and audit-ready — it's not production-ready.

Why Organizations Trust Me

  • 15+ Years of Production Experience – Battle-tested across enterprise, government, and startup environments

  • Certified & Educated – AWS Solutions Architect, ISO 27001, Cisco CyberOps, MScIT in Network Cryptography

  • Compliance-Ready Infrastructure – Proven SOC 1/2 and ISO 27001 implementation experience

  • Multi-Cloud Expertise – Real production deployments across AWS, Azure, GCP, and on-premise

  • Lead-Level Thinking – Architecture, reliability, security, and strategy

  • Automation-Driven – Fewer errors, faster delivery, repeatable processes

  • Security-First Mindset – Systems built with cryptographic foundations and defense-in-depth

I build systems that engineering teams can trust, auditors approve, and businesses scale on.

Infrastructure Experience

I've deployed and managed production infrastructure across:

  • Large-scale AWS environments – Multi-account, multi-region architectures

  • Government data centers – Compliance-focused, air-gapped, and restricted environments

  • On-premise infrastructure – Traditional data centers, virtualization, and hybrid setups

  • Microsoft Azure – Enterprise cloud deployments

  • Google Cloud Platform – GKE, Cloud Run, and managed services

  • VPN-based secure environments – Access-controlled production and development systems

Beyond Work

Outside infrastructure and deployments:

  • Exploring cloud-native and AI-driven DevOps tools

  • Studying system reliability, performance engineering, and zero-trust security

  • Sharing knowledge with engineering teams and mentoring junior DevOps engineers

  • Staying updated with evolving cloud, Kubernetes, and compliance best practices

Let's Build Production-Ready Infrastructure

If you're looking for a Lead DevOps Engineer & Cloud Architect who understands technology, operational reality, and compliance requirements, I'm ready to help.

Available for freelance consulting — remote work with US timezone availability.

Email: [email protected]
Phone: +977 9851187668
Location: Lalitpur, Nepal