WILL A. SOTO

AWS Cloud Engineer · AWS Community Builder (2026) · US Navy Veteran

Providence, RI · 857-544-6474 · sotowilmeralberto@gmail.com · linkedin.com/in/iamwillsoto · github.com/iamwillsoto · willsoto.tech

PROFESSIONAL SUMMARY

AWS Cloud Engineer designing, automating, and supporting secure AWS infrastructure, Terraform-driven governance, and CI/CD-integrated controls across production environments. Reduces operational risk and accelerates delivery through network segmentation, drift remediation, and structured observability.

EXPERIENCE

HD SUPPLY | Cloud Infrastructure Engineer (Contract)

Jun 2024 – Present

• Architected segmented multi-VPC AWS environment with Transit Gateway centralized routing, enforcing deterministic east-west traffic control and isolating production workloads to reduce cross-environment risk and contain blast radius during incident response.
• Automated compliance evidence generation using AWS Lambda and PowerShell, converting Security Hub and Inspector findings into structured audit artifacts and reducing manual evidence collection by 60%.
• Built CI/CD pipelines on GitHub Actions and AWS CodePipeline with automated testing and rollback gates, accelerating release cycles by 40% and reducing failed deployment incidents across production environments.
• Implemented enterprise security baselines using KMS encryption, scoped IAM role hierarchies, and RBAC boundary controls to minimize standing privilege and reduce infrastructure blast radius.
• Established Terraform-driven infrastructure convergence with AWS Config rule validation to detect and remediate configuration drift across beta and production environments, sustaining policy-compliant state through automated reconciliation.
• Engineered production observability across CloudWatch, Prometheus, and ELK Stack with structured alerting and proactive degradation detection, reducing incident response time by 45% across mission-critical workloads.

LEVELUPINTECH | Cloud Engineer

Feb 2024 – Oct 2024

• Architected secure multi-tier AWS infrastructure using Terraform Cloud across ALB, Auto Scaling, and RDS with private subnet isolation and repeatable IaC convergence across multiple Availability Zones.
• Developed reusable VPC modules with structured subnet segmentation, route table propagation control, and standardized NAT egress patterns to enforce predictable traffic behavior.
• Engineered Python and Boto3 automation for EC2 lifecycle operations, including scheduling, tagging, and snapshot governance, recovering 10+ engineering hours weekly across the operations team.
• Integrated managed AI capabilities into cloud infrastructure by provisioning Amazon Bedrock pipelines with throttling-aware fallback logic, cross-region failover handling, and DynamoDB persistence across isolated environments.

VERIZON | Cloud Support Engineer

Jan 2021 – Mar 2024

• Operated enterprise AWS production environments sustaining 99.9%+ SLA adherence through CloudWatch alarm strategy, scaling policy optimization, and proactive degradation detection across SRE-supported workloads.
• Reduced MTTR by 25% through log correlation, metric threshold tuning, IAM policy evaluation, and structured incident response workflows aligned to enterprise change management standards.
• Supported on-premises to AWS migration using EC2, S3, and Database Migration Service (DMS), reducing hardware dependency and enabling elastic scalability across SRE-supported workloads.
• Diagnosed complex routing, DNS resolution, and load balancer health failures using VPC Flow Logs and CloudWatch Insights to restore service integrity.

LIFE TIME FITNESS | IT Service Desk Technician

Sep 2014 – Aug 2020 | Burlington, MA

• Escalation point for enterprise identity and access management across 1K+ users and 6 locations, administering Active Directory lifecycle, VPN/SSO authentication, and structured incident and change workflows in ServiceNow.
• Resolved LAN/WAN connectivity issues including VPN, DNS, DHCP, and endpoint configuration across enterprise infrastructure.

US NAVY | Boatswain's Mate

Jan 2010 – Mar 2014 | USS Lake Champlain, San Diego, CA

• Honorably served aboard guided missile cruiser USS Lake Champlain (CG-57) executing deck operations, navigation watch, and underway replenishment evolutions across forward-deployed maritime missions, operating under strict safety, readiness, and chain-of-command accountability standards.

SKILLS

AWS: EC2, S3, RDS, VPC, Lambda, DynamoDB, CloudFront, Route 53, API Gateway, IAM, CloudTrail, Config, WAF, X-Ray, Bedrock

IaC: Terraform, AWS CloudFormation, Ansible

CI/CD & DevOps: Jenkins, GitHub Actions, AWS CodePipeline, Git, Bitbucket, Docker, Amazon ECS, Kubernetes

Monitoring: CloudWatch, Prometheus, Grafana, ELK Stack, Datadog

Security: AWS KMS, GuardDuty, Amazon Inspector, Secrets Manager, IAM, WAF, Zero-Trust

Networking: VPC Design, Subnetting, Routing, NAT Gateways, NACLs, Security Groups

Scripting & Systems: Python (Boto3), Bash, Linux

AI Services: Amazon Bedrock, Rekognition, Transcribe, Polly, AI-Enabled Automation

CERTIFICATIONS & RECOGNITION

• AWS Certified Solutions Architect – Associate | Dec 2025
• AWS Certified SysOps Administrator – Associate | Jul 2025
• AWS Certified AI Practitioner | Jan 2026
• CompTIA Security+ | Apr 2025
• CompTIA Network+ | Feb 2026
• AWS Community Builder – Cloud Operations | 2026 – Present

EDUCATION

Western Governors University | B.S. Cloud and Network Engineering | Expected 2026