Azure and AWS engineer
Sergey Molkov
About me
Hi! I'm Sergey Molkov.I am a Cloud Engineer with hands-on experience in Microsoft Azure and Amazon Web Services (AWS).
I specialize in designing and maintaining cloud architectures, network configuration, infrastructure migration, automation (Terraform, ARM/Bicep, CloudFormation), containerization (Docker, Kubernetes/AKS/EKS), and building secure, highly available solutions.I apply Azure Well-Architected and AWS Well-Architected Framework principles to ensure high-quality and predictable infrastructure. I excel in problem-solving, quickly identifying optimal technical solutions, and collaborate effectively within cross-functional teams.
My work is focused on stability, security, cost optimization, and scalability.
My skills
- Foundational IT Knowledge: Windows Server, Linux
- Programming Languages: Python
- Cloud Technology: Azure, AWS
- Infrastructure as Code: AWS CloudFormation, Terraform
- Containers and Container Orchestration: Docker, Kubernetes
- Cloud Application Architecture: Microservices, Serverless, CI/CD
- Networking: TCP/IP, DNS, VPN, Firewall
- Database Languages: PostgreSQL, SQL
Hands-on projects
1. Scalable Web Application in Azure
Multi-tier application using App Service + Azure SQL Database + Azure Functions. Configured with Availability Zones, Application Gateway, auto-scaling, Private Endpoints for database, monitoring via Azure Monitor and Log Analytics.2. Secure Enterprise Environment in Azure
Azure AD with MFA and Conditional Access, Key Vault for secrets management, disk and database encryption, Azure Defender + Sentinel for threat detection, Network Security Groups, Azure Firewall, and Azure Policy for enforced compliance.3. Serverless Application in AWS
API Gateway + Lambda + DynamoDB + S3 (static website hosting) + CloudFront distribution. Authentication via Cognito, cold start optimization, concurrency limits, fully deployed and managed with Infrastructure as Code (CloudFormation or Terraform).4. Highly Available and Load-Balanced Application in AWS
VPC with public and private subnets across multiple Availability Zones, EC2 instances in Auto Scaling Group behind Application Load Balancer, Multi-AZ RDS, ElastiCache (Redis), Route 53 health checks and failover routing.5. Comprehensive Security and Monitoring System in AWS
GuardDuty, Security Hub, Config, Macie, CloudTrail + CloudWatch Logs, least-privilege IAM policies, KMS encryption everywhere, WAF + Shield Standard, full compliance audit against CIS AWS Foundations Benchmark.
Education
Cloud Computing Technologies Graduate Certificate
George Brown College, Toronto, ON- Create secure, highly available micro-services and enterprise-level applications in cloud environments such as Azure and AWS to meet client needs and business requirements.
- Using configuration management and automation tools to provision and manage IT networks and systems on-prem and in cloud environments.
May 2025 – Apr 2026
Certification
November 2025
August 2025
Experience
Branch Manager
Russian TV and Radio broadcasting company, Russia- Optimized staff size and processes, resulting in a 15% increase in broadcast stability metrics and operational efficiency.
- Introduced three new services to the revenue portfolio, driving a 2% annual revenue growth through cross-functional collaboration.
- Led the branch to win awards as the best among large branches twice, demonstrating strong project management and team coordination skills
Sept 2011 – March 2025