Cloud Engineer

Terraform IaC Expertise

Tap into focused topics below to explore specific areas of my work in Terraform .

Scalable, secure, and automated Azure infrastructure using Terraform and OpenTofu.

Developed and maintained infrastructure-as-code (IaC) using Terraform and OpenTofu for Azure resource automation.
Provisioned Virtual Machines, App Services, AKS, Cosmos DB, VNets, and NSGs using modular and reusable Terraform code.
Integrated with GitHub Actions to create CI/CD pipelines for validation, planning, and deployment of infrastructure changes.
Used remote backend with Azure Storage and state locking for collaborative and secure state file management.
Implemented RBAC, tagging, and naming conventions through modules to support governance and scalability.
Managed secrets and sensitive variables via Azure Key Vault and GitHub Secrets for enhanced security and traceability.
Utilized workspaces and parameterized variables for consistent multi-environment deployments (dev/test/prod).
Enforced standards with terraform fmt, validate, and plan checks during PR reviews and CI workflows.

Community-driven, license-free alternative to Terraform for infrastructure automation on Azure.

Leveraged OpenTofu to provision Azure infrastructure while maintaining compatibility with existing Terraform modules.
Benefited from open governance, transparent development, and community contributions through OpenTofu.
Integrated OpenTofu into GitHub Actions CI/CD workflows for tofu fmt, tofu validate, and automated plan/apply stages.
Used Azure Storage as the OpenTofu remote backend for state locking, versioning, and secure collaboration.
Designed infrastructure as modular, reusable code using DRY principles to simplify multi-environment deployments.
Secured secrets with Azure Key Vault and masked sensitive output using sensitive = true attributes in modules.
Assisted in transitioning from Terraform to OpenTofu, minimizing impact while gaining license flexibility and community-driven improvements.