8218 SE 26th St.
Mercer Island, WA 98040
Manoj Srivastava www.golden-gryphon.com/manoj
Phone: +1 (615) 796-6646
Email: srivasta@acm.org

Summary I have several years of experience building and trouble shooting complex distributed applications in C, C++ and Java. I have experience in in designing and leading development teams to build and manage complex and resilient distributed applications for DARPA, including projects related to fault tolerant layered resource management, army logistics, and intelligence data mining. I Also have four years of experience in systems engineering at Amazon looking after the global retail server fleets, At Amazon I took the lead in designing and delivering a turn key system to spin up fleets of virtual servers with an eye for high availability and disaster recovery (load balancing, data center redundancy and failover, logging and automated recovery systems). Designed an automated test framework to link capacity to performance goals and to continuously optimize a fleet for maximum efficiency and availability. Clearance: TS/SCI (2008)
Experience Sr. Systems Engineer, Website Hosting Operation
January 2010 - April 2014
Jan '10 - Apr '14

Senior engineer on the Amazon Retail Website hosting operations team. Took a leadership role in the following projects:

Designed and helped execute test plan for moving Amazon’s European retail websites from physical hosts to EC2 virtual fleets. This resulted in configuration changes that saved $875,000 annually.
Designed a composable, fully document driven, flexible work flow engine to ease the task of creating complex applications by taking care of sub task scheduling and of data flow. (Perl, Java)
Fleet Creation Workflow. Designed and implemented a turnkey product to create EC2 fleets, with load balancing, virtual IP setup, monitoring, alarming, and automated correction of failure modes. Reduced fleet build time from 60 hours to 30 minutes). Fleets created are actively auto scaled based on load. (AWS, Perl)
Designed an created a tool to find out and remove cruft from the retail website stack (using a transparent overlay file system) which resulted in a 27% reduction in size of the software deployed, and reduced mean time to traffic by 5% in the first quarter of operation. (C, S3, Perl)
Designed the SELinux security policy for the secure ingestion of confidential information into Amazon websites. The security policies ensure that the critical data is isolated before being encrypted with a hardware security module, and is only handled by TPM equipped machines running SELinux (the root of trust is the HSM).
Designed a mechanism to model a service ue that model to determine the relationship between responsiveness and fleet size, allowing the business organization to opt to by back latency with a larger fleet. Improved capacity planning, aligning it with business goals. Increased revenue by about 5%. (R, Perl)
Designed a performance profiling infrastructure to create A/B/../N performance comparisons of distributed services using synthetic and/or Live traffic. Designed and implemented services to do Multi attribute utility analysis based on user supplied business utility measures. This cut down the effort in testing major software updates to the retail website by 95%, while improving the number of metrics considered by 400%. Extended the system to automate continuous configuration optimization for maximum efficiency using hill climbing. (Perl, Java)
Hardware Profiling
Designed and implemented an automated framework to perform a viability analysis for new software for a given service based on a cost benefit analysis with current hardware. Also determine operation ranges and configuration settings for the new hardware. (Perl, R, MySQL)
Oct 95-Now Developer
The Debian Project [A Linux Distribution]
October 1995 - Present

The Debian project is one of the primary creators of a Linux operating system distribution.

  • Created the original Debian kernel packaging tools
  • Charter member of the Technical Committee, the final arbiter of technical issues in the project (1997–2011.)
  • Wrote the application to conduct voting for the Debian project (Condorcet method, mailed in signed ballots)
  • Created initial SELinux packages and Co-lead of the Debian SELinux port (2002–2009).
  • Conducted Debian elections and votes as Debian Project Secretary (2002–2009)
  • Co-editor of the Debian Technical policy document (1998–2010)
Oct '00 - May '09 Lead Systems Programme & architectr
System/Technology Development Corp.
October 2000 - May 2009

Technical lead for the company’s DARPA projects.

  • Created single sign on mechanism and security practices for the company. (Kerberos, LDAP, NIS)
  • Provided technical sections in bids for DARPA and IARPA project contracts (Broad Agency Agreements). Successfully landed four contracts, with a total value of over $10 million.
Team lead of the independent evaluation team for IARPA’s project Tangram. (C++, Nagios, PostgreSQL)
  • Designed and implemented a continuous build and integration system.
  • Designed and implemented an evaluation framework to test distributed, Globus grid based distributed application.
  • Designed and deployed a grid-aware monitoring and data collection system
  • Implemented a system to calculate measures of performance and effectiveness for the Tangram application
  • Tailored a system to perform multi-attribute utility analysis and automated report generation for this project.
  • Shredded synthetic intelligence data sets for verisimilitude
  • Obtained a TS security clearance for this work
Technical lead of the assessment team (Java, Perl, ruby)
  • Brought in mid-program after the previous assessment team failed, created an evaluation plan from scratch
  • Devised a viable assessment protocol and methodology for a distributed, agent logistics system. The evaluation protocol had to be robust in face of the designedly non-deterministic results.
  • Designed a quantitative measure of military utility, survivability, and performance of the system
  • Created a system to perform multi-attribute utility analysis and generate reports, based on user specifications
Lead developer and architect for QoS Metrics Services (QMS), funded by DARPA’s QUITE program. (C++)
  • Created a transport mechanism to allow different QoS management components to interact and provide assured resource management and Quality of Service for the managed services and resources.
Feb '05-Mar '06 Consultant and contract programmer
Base Systems, Inc.
February 2005–March 2006

The role was that of a systems architect and software consultant.

  • Conducted user interviews and created the requirements document
  • Designed a HIPPA compliant Medical Transcription Web application.
  • Implemented a policy driven mandatory access schema for the application, and crafted an exemplar policy
Oct '99- Aug '00 Contract programmer
The Open Group.
October 1999 – August 2000

Designed and implemented a distributed testbed and monitoring application, reducing time to deployment of software by 33%. Provided systems engineering support for the QUITE contract team. (C++, Scripting)

Dec 96-Aug 99 Consultant, UNIX Systems Engineering Group
December 1996 - August 1999

Onsite Consultant, Critical escalation resolution.
Provided on site consulting services during critical escalations for high profile customers. Average resolution time for issues was 5 days, and most issues had been open for six months or more. (C, kernel, threads)

Aug 92-Aug 96 Systems Research Programmer
Project Pilgrim,
University of Massachusetts at Amherst.
Project Lead, June 1995-August 1996

Team lead on the research and implementation of cutting edge multi-tier distributed applications using OSF/DCE. Project Pilgrim concentrated on research on distributed applications based on DCE. (C, C++)

Education M.S. Electrical and Computer Engineering, September 1992, University of Massachusetts, Amherst.
B.Tech. (Hons) Electronics and Electrical Communications Engineering, May 1985, Indian Institute of Technology, Kharagpur, India
Publications J. D. Narkiewicz, M. Girkar, M. Srivastava, M. Rahman, A. S. Gaylord, " Pilgrim's OSF DCE based Services Architecture", International DCE Workshop, Karlsruhe, Germany, Oct 1993.
M.Srivastava, "Security enhanced virtual machines: An introduction and recipe", In Proceedings of the Sixth annual Debian conference Debconf6, Oaxtepec, Mexico (May 2006), The Debian Project.
M.Srivastava, "Security enhanced linux on Debian Stable.",In Proceedings of the Seventh annual Debian conference Debconf7, Edinburgh, Scotland (Jun 2007), The Debian Project.
K. S. DiBella, M. Rahman, M.Srivastava, " C Style guide and coding standards", Pilgrim Documentation series, 1993.
M. Srivastava, " Resource allocation in Tru64 UNIX: A Quality of Service assurance issue", COMPAQ Internal White paper, Spring 1999.
Languages: C, C++, Perl, shell, Ruby, Java, SGML, XML.
Computer systems: Linux, TRU64 UNIX, HP-UX, Ultrix, OSF/1, Hurd.
Software systems: AWS, CORBA, OSF/DCE, DFS/AFS, UML, SELinux

Manoj Srivastava <srivasta@ acm.org>