~/ushna.akram
// resume

USHNA AKRAM

CISO · AWS Certified DevSecOps Engineer · Cloud Security · SOC 2 · Kubernetes · Python

ushna.akram1@gmail.com /in/ushna-akram @uakramm Lahore, Pakistan
PDF Word Text

About

Lancaster University graduate (B.S. Software Engineering) with 5+ years designing scalable, secure cloud infrastructure on AWS, Azure, and GCP. Currently CISO at Athena Security Group, leading the SOC 2 program and security oversight across the company’s cloud and SaaS estate.

Education

Lancaster University, UK

B.S. Software Engineering · 2014 – 2018

Certifications

  • AWS Certified DevOps Engineer — Professional
  • AWS Solutions Architect — Associate
  • AWS Certified Developer — Associate
  • Google Cloud — Associate Cloud Engineer
  • Certified Kubernetes Application Developer (CKAD)

Skills

AWSAzureGCPEKSECSLambda API GatewayCloudFrontCognitoTerraform TerragruntCDKCDK-TFCloudFormation JenkinsGitHub ActionsCircleCICodePipeline ArgoCDDockerKubernetesHelm AnsibleChefPuppetPythonGolang TypeScriptBashSSMPagerDuty TailscaleNetboxElasticSearchDatadog SplunkGrafanaPrometheusCloudWatch New RelicIstioSOC 2Well-Architected JIRAConfluence

Work Experience

Chief Information Security Officer

Athena Security Group, LLC · Jul 2025 — Present

  • Lead the company-wide information security program
  • Own SOC 2 governance, risk management, control coordination
  • Security oversight across AWS, GitHub, Microsoft 365, Defender/Intune
  • Partner with executive leadership, engineering, and SecOps
  • Coordinate controls: access mgmt, vuln mgmt, endpoint, backups, vendor risk

Senior DevSecOps Engineer (Freelance)

Upwork · Jan 2024 — Present

  • EventBridge + Lambda for org-wide API tracking with auto-remediation
  • Auto-remediation: S3 PAB, public-SSH SG rules, missing tags
  • SCPs blocking non-compliant resource creation
  • SSO login forensics, brute-force alerts, Tailscale IP tracking
  • Daily/weekly/monthly per-user cost reports for active resources
  • GovCloud account provisioning via Terraform
  • Central SSM Documents running custom scripts on EC2 launch
  • Scalable AWS architectures (EKS, ECS, Lambda, CloudFront) via Terraform/CDK
  • CI/CD pipelines across Jenkins, GitHub Actions, CircleCI, CodePipeline

Senior DevOps Engineer

Kaleidoscope · 2023 — 2024

  • Migrated CI/CD from GitLab to GitHub Actions
  • Terragrunt-based infra across multiple client environments
  • Built org-wide API call tracking solution
  • Enhanced existing Golang applications
  • Cloud9 setups improving developer deployment velocity

DevOps Engineer / Python Developer

Enquizit, Inc. (AWS Premier Partner) · Nov 2019 — Jun 2023

  • Migrated infrastructure on-prem & multi-cloud → AWS
  • Containerized microservices on EKS & ECS Fargate
  • Serverless apps with AWS Lambda (Python) & GCP Cloud Functions
  • IaC: CloudFormation, Terraform, AWS CDK
  • Optimized healthcare app reliability & automated microservice deployment

Selected Projects

SkyMap

Enquizit · DevOps + Python

  • AMI pipeline via Packer; multi-env CloudFormation
  • Microservices on EKS & ECS via CircleCI
  • Serverless Framework APIs in Python (Cognito-auth)
  • Internal ElasticSearch for dev logging

NEMSIS — National Emergency Medical Services Info System

Migration + DevOps + Python

  • Migrated WordPress on-prem → AWS ECS Fargate
  • Multi-origin CloudFront (S3 + EFS) with Lambda@Edge
  • SAM-based APIs on RDS MSSQL

Rebuild Ukraine

DevOps + Python

  • Aurora Serverless (Postgres) with Cognito-auth APIs
  • Private S3 frontend behind CloudFront
  • PyTest coverage on serverless Lambdas

iModal

Migration + DevOps + Python

  • Landing Zone & Control Tower setup
  • Cross-account migration via CloudFormation
  • Domain migration GoDaddy → Route53; SES/Workmail
  • DynamoDB-backed signup/contact + QuickSight dashboards

American Chemical Society (ACS)

Migration & Discovery + DevOps

  • 800 on-prem server discovery & cost analysis
  • Monolith → microservices, Dockerfiles from scratch
  • EKS deployments with Serverless Cognito-auth APIs

National Board of Medical Examiners (NBME)

DevOps + Python

  • Multibranch CodePipeline + Lambdas, cross-account deploys
  • Infra & pipeline stacks in SAM and CDK
  • Org-wide alert manager creating alarms on resource creation
  • Secure S3-from-QuickSight delivery pattern

SkyTracker

Enquizit · DevOps Engineer

  • Multi-env CloudFormation with ACM SSL
  • Docker multi-build & CircleCI to ECS
  • MSSQL RDS backing
back to portfolio