Deland Kume

Operated Wiz CSPM/CWPP across AWS GovCloud accounts and built a production agentic AI security remediation system on AWS Bedrock that ingests Security Hub/GuardDuty/Wiz/SonarQube/Checkov findings and auto-generates human-reviewed GitLab fix merge requests. Rebuilt a GitLab CI/CD pipeline library with blocking SAST/IaC/container gates and modular Terraform security baselines deployed via CloudForma

Operated Wiz CSPM/CWPP on AWS GovCloud and remediated IAM and exposure findings using attack path analysis to prioritize toxic combinations. Hardened EKS with CIS Benchmark controls, enforced zero-trust Istio mTLS, and owned GovCloud DoD deployments with GitLab CI/CD, ArgoCD, and parallel SAST/SCA/IaC/container scanning stages.

Hardened AWS accounts using CIS Benchmark controls and AWS Config rules, authored SCPs across AWS Organizations, and integrated Security Hub aggregations of GuardDuty/Inspector/Macie/AWS Config. Implemented regulated banking CI/CD quality gates in GitLab with SonarQube SAST, Checkov IaC scanning, and Snyk SCA, plus CloudTrail-based key usage auditing and compliance evidence collection for SOC 2 an

Built and operated Kubernetes environments on EKS and GKE, securing workload identity with IRSA on AWS and Workload Identity Federation on GCP using least-privilege service accounts. Designed hybrid connectivity with Site-to-Site VPN (BGP) and Direct Connect failover, and delivered observability with Prometheus/Grafana/ELK/Splunk and CloudWatch/CloudTrail aggregation that reduced MTTR via dashboar

Built GitLab CI/CD pipelines using ArgoCD and Helm to deploy to EKS across dev/staging/production, integrating ECR image builds with Trivy scanning and automated base image patch workflows. Designed AWS infrastructure with CloudFormation/Terraform (VPC/ALB/RDS Multi-AZ/EC2 auto-scaling), administered Linux/Windows with Ansible for patching and CIS hardening, and supported SOC 2/PCI-HIPAA audit evi

Designed AWS hybrid cloud architectures with CloudFormation/Terraform and implemented Site-to-Site VPN with BGP routing between on-premises data centers and AWS VPCs. Led migration assessments using AWS CART and executed relational database migrations to AWS with DMS for minimal downtime while building multi-tier AWS environments and cross-region DR patterns for S3 and RDS.

Pursuing an M.S. in Cloud Computing at the University of Maryland Global Campus.

Earned a B.S. in Computer Science from the University of Buea.