Hi, I'm Li Zhang
Associate Software Engineer at Optum
Looking to trainsition into the Cloud Computing industry as a Cloud Engineer.
Contact meAbout Me
My introduction
Software engineer with a deep passion for cloud computing and infrastructure automation. Certified in Microsoft Azure (AZ-104, AZ-305) and AWS Certified Solution Architect Associate - SAA C03, I combine my development background with hands-on experience building cloud solutions. I thrive on solving complex technical challenges and continuously expanding my knowledge across AWS, Azure, DevOps practices, and Linux systems. Known for being a quick learner and collaborative team player, I'm excited to contribute my skills and grow as a cloud engineer.
experience
Skills
My technical levelProgramming Languages
Python
Bash Scripting
C#
Javascript
TypeScript
SQL
Certifications
AZ305 - Azure Solutions Architect
AZ104 - Azure Administrator Associate
SAA C03 - AWS Solution Architect Associate
HashiCorp Certified: Terraform Associate (003)
CKA - Certified Kubernetes Administrator
Microsoft GitHub Actions Certificate
PCAP - Certified Associate in Python
Tech Stack
AWS
Azure
Terraform
GitHub Action (CI/CD)
Kubernetes
Linux
SQL
Qualification
My personal journeySouth Dakota State University, Brookings, SD
Master of Science in Computer ScienceAssociate Software Engineer
Optum/UnitedHeath GroupProjects
Most recent work
Personal Portfolio Website
1. Designed and developed a responsive personal portfolio website using HTML5, CSS3, and modern web development practices.
2. Set up web hosting infrastructure using AWS S3, CloudFront, and Route 53 for scalable delivery.
3. Configured CloudFront with AWS Certificate Manager (ACM) for SSL and optimized cache invalidations.
4. Managed DNS record sets in Amazon Route 53 for efficient domain routing and availability.
5. Automated code deployment with a CI/CD pipeline and integrated OIDC-based GitHub authentication for secure AWS access.
6. Designed and implemented a serverless contact form using AWS Lambda, API Gateway, DynamoDB, and SNS, enabling secure and scalable message processing with email notifications and database storage.
Web Application Deployment with Amazon EC2 and Terraform
1. Implemented end-to-end infrastructure automation using Terraform, deploying a dynamic website on AWS EC2 instances within private subnets for enhanced security and maintainability.
2. Architected a highly available infrastructure with custom VPC spanning multiple availability zones, configuring security groups and network ACLs to enforce strict access controls.
3. Established robust load balancing using ALB with auto-scaling groups (ASG), enabling automated scaling to maintain optimal performance while efficiently managing resource utilization.
4. Secured application communications through AWS Certificate Manager (ACM), implementing SSL/TLS certificates and ensuring encrypted data transmission across all endpoints.
Web Application Deployment with Docker and Amazon ECS
1. Built and packaged a car-rental web application using Docker.
2. Used Amazon ECR (Elastic Container Registry) as a secure storage system for Docker images.
3. Set up automatic scaling on Amazon ECS (Elastic Container Service) to handle varying user traffic.
4. Designed and maintained task definitions and service configurations in ECS.
5. leveraged Terraform, Terraform modules to automate the provisioning and management of cloud infrastructure.
6. Implemented CI/CD pipelines using GitHub Action to deploy the rentzone application on AWS with docker and Amazon ECS service.
Web Application Deployment with Kubernetes and Amazon EKS
1. Deployed Containerized Applications on AWS EKS: Built and deployed custom Docker images to Amazon EKS, ensuring scalable and high-availability hosting for dynamic applications.
2. Integrated AWS Services: Configured Amazon ECR for secure Docker image storage, Route 53 for custom domain management, and ACM for SSL certificate issuance, ensuring secure and optimized deployment.
3. Managed Secrets with AWS Secrets Manager: Stored sensitive data securely using AWS Secrets Manager, enhancing application security and compliance.
4. Streamlined Kubernetes Deployments: Automated EKS cluster setup and application deployments using Kubernetes YAML files, Helm, kubectl and eksctl, improving infrastructure efficiency.
Host a WordPress Website on AWS
1. Designed and implemented a highly available and scalable WordPress hosting environment on AWS, utilizing EC2, EFS, RDS, and ALB.
2. Architected a secure VPC with public and private subnets, nat gatewaysm internet gateways, route tables and security groups to enforce strict access controls.
3. Configured Auto Scaling Groups (ASG) and Application Load Balancer (ALB) to optimize performance and ensure high availability across multiple Availability Zones.
4. Implemented SSL/TLS encryption using AWS Certificate Manager (ACM) and configured Route 53 for domain resolution and secure website access.
5. Deployed and configured an Amazon RDS instance with a single-AZ setup to optimize cost while maintaining reliable database performance for a WordPress website.
Host a Static Website on AWS with Ansible
1. Designed and deployed a secure, highly available web hosting infrastructure on AWS using VPC with public and private subnets across two Availability Zones.
2. Configured an Application Load Balancer (ALB) with SSL/TLS encryption via AWS Certificate Manager to securely route traffic to application servers in private subnets.
3. Automated infrastructure provisioning and application deployment using Ansible, streamlining server configuration and reducing manual intervention.
4. Implemented a bastion host in the public subnet to provide secure SSH access to private resources, utilizing SSH Agent Forwarding for key management.
5. Optimized network security and access control by configuring NAT Gateway, public and private route tables, and fine-tuning security groups to restrict traffic flow.