Michael Uchytil

Cloud Security Engineer

Cloud Engineer specializing in AWS security and automation. Experienced in enterprise IAM policy design including permission boundaries, SCPs, and cross-account access patterns, identity federation across multi-cloud environments, and data encryption and key management. Proficient in Infrastructure-as-Code practices using Terraform and CI/CD-driven workflows. Focus on building effective automation using Python and AWS CLI, with growing interest in applying AI to security and infrastructure workflows.

mjuchytil@outlook.com

920-358-0488

Milwaukee, WI

linkedin.com/in/michael-uchytil

github.com/marslifetech

Education and Certifications

Bachelor of Science and Business Administration Computer Information Systems - Thomas Edison State University

Comptia Security+

AWS Security Speciality

AWS KMS Subject Matter Expert

AWS Solutions Architect - Associate

AWS Solutions Architect – Professional

AWS Machine Learning Engineer

AWS Certified Developer – Associate

AWS Certified CloudOps Engineer – Associate

Red Hat System Administrator (RHCSA) (Inactive)

Cisco Network Administrator (CCNA) (Inactive)

Work Experience

Cloud Support Engineer - Security

Amazon Web Services, Inc (05/2024 - Present)

Troubleshoot and guide enterprise IAM implementations including policy authoring, permission boundaries, cross-account access patterns, SCPs, and RCPs across AWS Organizations.
Troubleshoot and develop sample Terraform and CloudFormation templates following IaC best practices with a zero-manual-changes approach.
Troubleshoot and guide VPC design, networking, and security group configurations for enterprise multi-account AWS environments.
Troubleshoot and guide monitoring, logging, and observability implementations using CloudWatch, CloudTrail, and log analysis with Athena.
Troubleshoot and guide SAML and OIDC identity federation between external providers (Okta, Entra ID, Auth0, ADFS) and AWS services (IAM, Identity Center, Cognito).
Provide expert-level escalation as the designated subject matter expert for enterprise data encryption and key management across multi-account AWS environments. (KMS, CloudHSM)
Partner with application and SecOps teams to respond to customer security incidents, sanitize environments, and strengthen security controls.
Develop automation scripts and SDK samples using Python, JavaScript, and AWS CLI to accelerate customer issue resolution and application development.
Train and mentor junior engineers through live presentations, hands-on labs, and technical documentation.

IT Support Engineer

Amazon, Inc (05/2020 - 05/2024)

Developed automation tools using JavaScript to streamline Change Management workflows and reduce manual quality checks.
Deployed, maintained, and supported infrastructure lifecycle for 14 regional facilities including servers, network equipment, and wireless access points.
Delivered containerized applications using Docker, applying CI/CD practices and agile methodology.
Contributed 30+ knowledge articles documenting deployment procedures and troubleshooting steps.

System Administrator

MarsLife Technologies (Home Lab) (08/2020 - Present)

Build and maintain CI/CD pipelines driving Terraform plan/apply workflows for automated AWS infrastructure deployment. (Terraform, GitHub Actions)
Manage multi-node Proxmox cluster with high availability, software-defined networking, and multi-WAN failover supporting hybrid cloud workloads.
Implement hybrid cloud architecture integrating on-premises Active Directory with Azure Entra Connect and Oracle Cloud Infrastructure.
Develop and deploy non-profit website using Terraform-managed AWS infrastructure with CI/CD automated deployments.