Pham Van Thanh

LionGarden Inc. · Ho Chi Minh City, Vietnam · Hybrid

Spearheading the company's cloud strategy and site reliability, taking end-to-end ownership of AWS infrastructure, deployment lifecycles, and system observability.

• •Solution Architecture: Design and implement highly available, secure, and cost-optimized cloud-native architectures on AWS to support mission-critical applications.
• •Infrastructure as Code (IaC): Provision and manage hybrid cloud infrastructure end-to-end using Terraform, ensuring scalable, reproducible, and compliant environments.
• •CI/CD & Automation: Architect and maintain robust CI/CD pipelines, automating deployment workflows to accelerate delivery and reduce manual overhead.
• •Site Reliability & Observability: Establish comprehensive monitoring, logging, and incident response practices to guarantee system health, performance, and uptime.

Softworld VietNam Ltd · Ho Chi Minh City, Vietnam · Hybrid

Built a strong foundation in backend architecture, system integrations, and early cloud service deployments.

Online Music Education JSC · Ho Chi Minh City, Vietnam · Hybrid

Gained foundational insights into client-server data flow, API consumption, and application performance optimization.

Infrastructure Architect, SRE & Observability Lead

No-public-internet AWS platform with on-prem hybrid integration, paired with a serverless observability stack — S3 Parquet log lake, enriched Slack alerts, Cognito-gated Next.js SPA.

• •Architected a fully private VPC with zero public ingress: ECS Fargate behind internal ALBs, Client VPN for end-user access, Site-to-Site VPN to on-premise systems, and Private CA + ACM for internal service certs.
• •Operated CodeDeploy blue/green rollouts gated by ALB health alarms across three isolated environments, with ECS auto-scaling and ElastiCache Serverless (Valkey) for hot session state.
• •Built a cross-account, contract-driven observability stack: Kinesis Firehose → Lambda → S3 Parquet cold log lake (Athena, lifecycle to Glacier Deep Archive), enriched Slack Block Kit alerts with log context + deep links, and a DynamoDB alarm-history store powering the operator SPA.

Cloud Infrastructure Architect

Hybrid ECS + serverless microservices platform for AI-powered document extraction, with end-to-end CI/CD for both frontend and backend.

• •Architected a hybrid microservices topology mixing ECS Fargate (API + WebSocket) with an event-driven Lambda pipeline (S3 → SQS → LLM-based OCR → relational DB).
• •Engineered for graceful failure: SQS-decoupled Lambda stages with retry isolation, ECS auto-scaling, and CodeDeploy blue/green releases.
• •Operated full-stack observability: CloudWatch alarms on ECS, ALB and log-error patterns → SNS → AWS Chatbot, routing incidents to dedicated Slack notice / alert channels.