whoami

Tomas Cruz

Sr. Cloud Engineer  ·  AWS GovCloud & Azure

Cloud Engineer with 10+ years of expertise architecting secure, automated, and cost-optimized infrastructure on AWS and Azure. Proven leader in cloud migrations, Infrastructure-as-Code platforms, and event-driven automation across regulated environments including AWS GovCloud.

504.338.5009 lawilsada@gmail.com Harvey, LA · Remote-friendly tcruz504
View Experience ↓ Download Resume
Tomas Cruz — Cloud Engineer
Open to Work
10+
Years Experience
11
Certifications
2
Cloud Platforms
8
Project Highlights

Technical Arsenal

Skills & Technologies

Cloud Platforms
AWS GovCloud AWS Commercial Microsoft Azure
IaC & Automation
Terraform CloudFormation AWS CDK Ansible Boto3 AWS CLI Azure CLI
Scripting
Python Bash PowerShell
DevOps & CI/CD
GitHub Actions GitLab CI CodeDeploy Azure DevOps Bitbucket Git
Monitoring & Security
CloudWatch CloudTrail Security Hub Azure Monitor Splunk Dynatrace Wiz Delinea
Core AWS Services
Lambda EC2 S3 CloudFront Route53 API Gateway DynamoDB RDS IAM EventBridge ECS Systems Manager
Azure Services
Entra ID (AD) Azure Functions VNets Event Hubs Service Bus Storage Accounts App Registrations
Virtualization & OS
VMware vSphere Citrix Amazon Linux RHEL Windows Server

Core Competencies

Cloud Infrastructure Architecture (AWS & Azure)
Infrastructure-as-Code (Terraform, CFN, CDK)
DevOps Automation & CI/CD Pipelines
Cloud Security, Compliance & Cost Optimization
Serverless & Event-Driven Architecture
Hybrid & Multi-Cloud Integration
Cloud Migration & Modernization

Credentials

Certifications (11)

AWS Amazon Web Services — 7 Certifications
AWS
Solutions Architect – Professional
AWS
Solutions Architect – Associate
AWS
Developer Associate
AWS
SysOps Administrator Associate
AWS
Security – Specialty
AWS
AI Practitioner
AWS
Cloud Practitioner
HashiCorp HashiCorp — 1 Certification
HCP
Terraform Associate
Microsoft Microsoft Azure — 3 Certifications
AZ
Administrator Associate (AZ-104)
AZ
Developer Associate (AZ-204)
AZ
Fundamentals (AZ-900)

Career

Professional Experience

Sr. Cloud Engineer
Smartronix (SMX) · Remote
Feb 2022 – Present
  • Architect and deploy automation pipelines using Terraform, Python, Lambda, and EventBridge to enhance cloud security posture and operational efficiency for the State of Massachusetts MMIS.
  • Implemented Dynatrace monitoring with custom DQL dashboards for MA MMIS and MassHealth POSC — configured AWS integrations (EC2, S3, EFS) and Control-M extensions for batch job visibility.
  • Developed serverless applications processing GitHub Dependabot alerts and AWS Security Hub findings, auto-creating Jira tickets and tracking remediation via DynamoDB for MA PFML.
  • Designed end-to-end VM provisioning automation using Terraform, VMware vSphere, Python, and Ansible for dynamic template-based deployments for MA Trial Courts (MATC).
  • Engineered hybrid Windows CA and AWS infrastructure automation (PowerShell / S3 / CloudFront / IAM) to synchronize and distribute Certificate Revocation Lists from on-premises servers for MATC.
  • Authored reusable Bash and Python utilities to streamline resource provisioning, configuration management, and environment cleanup across dev/test/prod landscapes.
Lead Cloud Engineer
HII / Alion Science · Remote
Feb 2021 – Feb 2022
  • Orchestrated migration of Koha library platform to AWS (EC2 + RDS MySQL) using CloudFormation, achieving zero data loss and minimal disruption for US Army Pacific (USARPAC, Hawaii).
  • Delivered 40% reduction in non-production infrastructure costs via Lambda-based EC2/RDS scheduling automation using Python and Boto3.
  • Designed IaC pipeline to provision secure AWS GovCloud tenant environments for AFSOC, ensuring compliance and accelerating deployment cycles.
  • Architected cross-region ECS/ALB → Route53 synchronization for zero-downtime deployments across GovCloud/Commercial boundary for the CMS project.
  • Developed automated cost reporting using Boto3 CUR API → Teams webhook for management budget tracking and forecasting.
Cloud Operations Engineer III
DXC Technology · Remote
Mar 2018 – Mar 2021
  • Provided comprehensive AWS and Azure infrastructure support for multiple state Medicaid programs (MS MMIS, Virginia Vaxix, Maine OMS) managing mission-critical healthcare applications.
  • Managed complex cloud networking — VPCs, VNets, subnets, route tables, ELBs, security groups, and NACLs across multi-region deployments.
  • Delivered IaC solutions using Terraform and CloudFormation for consistent, version-controlled infrastructure deployments.
  • Administered Azure AD (Entra ID) — user provisioning, group management, conditional access policies, and IAM configurations for secure access control.
Platform Engineer II
Cox Automotive / Dealertrack · Metairie, LA
Mar 2012 – Mar 2018
  • Managed enterprise VMware vSphere environment hosting 300+ VMs across dev/test/staging/prod.
  • Led AWS cloud migration using Server Migration Service — executing phased migrations with minimal business disruption.
  • Deployed Ansible for enterprise-wide configuration management and automated patching, reducing manual effort by 60% while improving compliance.
  • Integrated Splunk Cloud for centralized logging and analytics with custom dashboards for comprehensive infrastructure monitoring.

Featured Work

Project Highlights

01
Serverless Security & Compliance Automation
Event-driven pipeline routing GitHub Dependabot alerts and AWS Security Hub findings through API Gateway → Lambda → EventBridge to auto-create Jira tickets with DynamoDB audit trails. Built for MA PFML.
Security Hub Lambda EventBridge DynamoDB Jira
02
Cross-Region Service Discovery for Containerized APIs
Automated DNS synchronization between AWS GovCloud (ECS/ALB) and Commercial regions via Lambda, guaranteeing zero-downtime deployments in a segmented cloud architecture. Built for CMS.
ECS Route53 Lambda EventBridge GovCloud
03
AI-Driven Network Provisioning Chatbot
Serverless AI bot integrated with Microsoft Teams using Amazon Q Developer, allowing engineering teams to query Infoblox IPAM APIs to dynamically allocate CIDR ranges for AWS environments. Deployed via Terraform.
Amazon Q Lambda Secrets Manager Terraform MS Teams
04
Full-Stack VM Provisioning Automation
End-to-end IaC workflow using Terraform + VMware vSphere + Python + Ansible to dynamically provision and configure VMs from templates based on user-defined parameters. Built for MA Trial Courts.
Terraform Python Ansible VMware vSphere
05
Cloud Cost Optimization Engine
Lambda-based scheduling automation for non-production EC2 and RDS resources using Python and Boto3, reducing associated infrastructure costs by 40% across AFSOC programs.
Lambda EC2 RDS Python Boto3
06
Secure Multi-Tenant GovCloud Platform
IaC pipeline (CloudFormation) for provisioning compliant AWS GovCloud tenant environments for four AFSOC tenants — standardizing and accelerating secure infrastructure deployments with DoD compliance.
GovCloud CloudFormation IAM VPC
07
Hybrid Cloud Certificate Authority Sync
Automation using PowerShell Task Scheduler, S3, CloudFront, and IAM to synchronize and distribute Certificate Revocation Lists from on-premises Windows CA servers to hybrid AWS infrastructure for MATC.
S3 CloudFront IAM PowerShell
08
Legacy Application Cloud Migration
Complete lift-and-shift migration of the Koha library system to AWS (EC2/RDS MySQL) using CloudFormation IaC, achieving zero data loss and minimal service disruption for US Army Pacific (USARPAC).
EC2 RDS CloudFormation ELB

Academic Background

Education

Bachelor of Science — Computer Systems Technology
Tulane University · New Orleans, Louisiana
Graduated May 2012