Guilherme Ramos

Bradesco – (Banking Sector | +46M customers | 2nd largest bank in Brazil)

I work as part of the DevSecOps team in one of the largest banks in Latin America, ensuring security, compliance, and automation for cloud applications. My main responsibilities include:

• Implementation and improvement of continuous integration and delivery pipelines with GitHub and GitHub Actions, with the aim of accelerating the SDLC.
• Implementation of Infrastructure as code with Terraform;
• Migration and optimization of CI/CD pipelines from Bamboo and Bitbucket to more modern and scalable solutions such as GitHub and GitHub Actions;
• Infrastructure management and automation using YAML, Bash, PowerShell and Python;
• Administration and support for ArgoCD and Kubernetes, ensuring the integrity and security of applications in production;
• Implementation of security practices throughout the development cycle, ensuring compliance with internal and regulatory standards;
• Collaborating with multidisciplinary teams to integrate DevSecOps practices into critical applications and systems;
• Automation of operational tasks using PowerShell and Bash scripts, reducing time spent on manual activities and increasing team efficiency;

Volvo Group – (Automotive Industry | +100,000 employees | Leader in heavy vehicles)

I was part of Volvo’s global DevSecOps team, working on process automation and application security for one of the world's largest heavy vehicle manufacturers. Key contributions:

• Implementation and improvement of continuous integration and delivery pipelines with Azure DevOps, with the aim of accelerating SDLC, simplifying maintenance and significantly reducing integration and delivery times through CI/CD pipelines with Azure DevOps;
• Implementation of Infrastructure as Code (IaC) using Terraform for Azure, automating provisioning and management of cloud resources;
• Implementation of vulnerability analysis tools such as SCA (Software Composition Analysis), SAST (Static Application Security Testing) and DAST (Dynamic Application Security Testing) in CI/CD pipelines with NexusIQ, BlackDuck and MicroFocus Fortify. Which resulted in a significant reduction in software vulnerabilities after implementation;
• Implementation of tools for analyzing code quality and vulnerabilities with SonarQube;
• Migration and unification of projects, pipelines and repositories;
• Automation of operational tasks using PowerShell and Bash scripts, reducing time spent on manual activities and increasing team efficiency.

(SAP Consulting | Global Presence | SAP Gold Partner)

As an SAP CPI/DS consultant, I played a role in integrations with Demand, Supply (IBP) and S/4Hana modules in challenging projects. I used the SAP Activate methodology to optimize activities, resulting in successful integrations and implementations.

• Alcast Group (S&OP | Aluminum Industry):
  Participation in the Explore, Realize and Deploy phases for successful integration between S/4Hana and IBP via SAP AddOn in the S&OP module.
• Creation and customization of interfaces, configuration of CI-DS, including Datastores, installation of agents, tasks. Configuring extractors to retrieve information from S/4HANA to SAP IBP.
• Preparation of technical specifications, actively contributing to the Cutover plan.
• Managing the transition from JDBC to WebSocket RFC, including the configuration of agents, communication users, scenarios and systems in SAP IBP, the alignment of datastores in SAP CI-DS ensuring successful operation in the tasks.