Open to Senior / Principal Cloud Architect roles

Ali Albaker
Cloud Architect
Healthcare

Building HIPAA-compliant AWS Landing Zones at scale.
13+ years securing, modernizing, and automating clinical infrastructure.

View Projects Get in Touch
13+
Years Exp
85+
Env Migrations
30%
Deploy Time ↓
5
Cloud Platforms
cloud-profile.tf
# Cloud Architect Profile
resource "aws_architect" "ali" {
  name = "Ali Albaker"
  role = "Cloud Architect – Healthcare"
  employer = "Optimum Health IT"
  location = "New York, NY"
 
  cloud = ["AWS", "Azure", "OCI"]
  iac = ["Terraform", "CDK", "CF"]
  compliance = ["HIPAA", "SOC2", "DEA"]
  speciality = "Healthcare LZ Migration"
}
 
# Status
output "availability" {
  value = "Open to new challenges"
}
0
Years of Experience
0
Environments Migrated
0
Cloud Cost Savings
0
Deploy Time Reduction
0
Cloud Platforms
0
HIPAA Audit Success
Technical Expertise

Skills & Technologies

Multi-cloud architecture with deep specialization in healthcare compliance, IaC, and enterprise-scale migrations.

☁️

AWS Cloud

Landing Zones EC2S3RDS LambdaEKSBedrock RekognitionCognito API GatewayCloudFront
🏗️

Infrastructure as Code

TerraformModules CloudFormationCDK AnsibleGitHub Actions CI/CD Pipelines
🔐

Security & Compliance

HIPAASOC2 DEA/EPCSGuardDuty AWS ConfigSAML SSO IAMAuto-Remediation
🌐

Multi-Cloud

AzureOCI VMwareNutanix HCI KubernetesvCenter ESXi
🤖

AI / ML

AWS BedrockSageMaker RekognitionLLM Integration AI Workload Discovery
📊

Observability

CloudWatchSplunk Cost DashboardsRoute53 CloudflareVeeam AWS Backup
Portfolio

Featured Projects

Real-world infrastructure and AI solutions built across healthcare, cloud cost management, and serverless platforms.

New · Open Source · Live

cloudprice-mcp — The FinOps MCP server

Open-source Model Context Protocol server that turns Claude, GitHub Copilot, Cursor, or any of 7 MCP-compatible AI clients into a multi-cloud cost analyst across AWS, Azure, GCP, and OCI. Compares compute, storage, object storage, managed Postgres, and egress pricing — and surfaces OCI's 10 TB free egress tier (~12× cheaper than hyperscalers at 50 TB/month). 14 tools including a v0.6 FinOps decision suite — migration assessment with payback math, RI / Savings Plan / CUD break-even, 3-year TCO with growth modeling, and egress arbitrage — that produce real recommendations in one tool call. One-line install auto-configures every detected AI client. Listed on the Official MCP Registry, Glama, and PyPI.

$ pip install cloudprice-mcp && cloudprice-mcp setup
MCPFinOps Multi-Cloud AWSAzureGCPOCI Python 3.10+14 tools MIT
GitHub PyPI Live Demo
Featured

AI Tennis Analyzer — SaaS Platform

Full-stack SaaS application using AWS Bedrock and Rekognition for real-time video analysis of tennis technique. Cognito authentication, React frontend, serverless backend — production-grade architecture built as a personal passion project.

AWS BedrockRekognition CognitoReact LambdaAPI Gateway
Private — Request Access
Healthcare

Enterprise Hospital LZA Migration

Led end-to-end AWS Landing Zone Accelerator (LZA) migration for an enterprise hospital — on-premises VMware workloads to fully compliant AWS cloud. Implemented HIPAA guardrails, blue/green deployments, and cost management from day one.

LZAHIPAA TerraformAWS Control Tower VMwareBlue/Green Deploy
Private — Request Access
Multi-Cloud Migration

Enterprise Cloud Migrations — AWS↔AWS & AWS→OCI

Led 85+ enterprise client migrations across AWS-to-AWS account moves and AWS-to-OCI cross-cloud transitions. Combined Terraform, PowerShell, and Bash with GitHub Actions pipelines to automate inventory, dependency mapping, and minimum-downtime cutovers — heavy emphasis on regulated and healthcare workloads.

AWSOCI TerraformPowerShell BashGitHub Actions 85+ Clients
Private — Request Access
AI + FinOps

SageMaker Cost Chatbot

Conversational AI chatbot powered by AWS SageMaker that answers natural-language questions about cloud spend. Integrates Cost Explorer APIs, giving engineers real-time cost intelligence without leaving their workflow.

SageMakerCost Explorer LambdaBedrock
Private — Request Access
FinOps

AWS ↔ Azure Cost Translator

Personal tool that maps equivalent services across AWS and Azure and generates side-by-side cost comparisons — built as a home project to learn multi-cloud cost modeling and FinOps fundamentals.

AWSAzure Cost OptimizationTerraform
Private — Request Access
Serverless

FastAPI Lambda + API Gateway

Personal serverless REST API built with FastAPI on Lambda, fronted by API Gateway — Terraform-managed with a GitHub Actions CI/CD pipeline. Built as a home project to explore serverless API patterns and IaC practices.

FastAPILambda API GatewayTerraform CI/CD
Private — Request Access
LLM Engineering

LLM Engineering Lab

Experimental workspace for LLM fine-tuning, prompt engineering, and RAG pipeline development. Includes evaluation harnesses, cost-aware inference patterns, and healthcare-domain prompt templates.

LLMRAG BedrockPrompt Engineering
Private — Request Access
Azure

Azure Landing Zone IaC

Azure Landing Zone built in Terraform modules — management groups, policies, hub-spoke networking, and identity configuration. Built while studying the Microsoft Cloud Adoption Framework + Landing Zone reference architecture; mirrors AWS LZ patterns for consistent multi-cloud governance.

AzureTerraform Hub-SpokePolicy as Code
Private — Request Access
IaC Module

CloudFront Automation Module

Reusable Terraform module that spins up a CloudFront distribution with S3 origin, WAF, custom headers, and configurable cache behaviors — built as a personal IaC composition exercise.

CloudFrontS3 Terraform ModuleWAF
Private — Request Access
Serverless

AWS API Gateway Platform

Production API Gateway with custom domain, Lambda authorizers, usage plans, and WAF integration. Terraform-managed with blue/green deployment support and full observability via CloudWatch.

API GatewayLambda Custom DomainTerraform WAF
Private — Request Access
Azure

Azure Fabric Integration

Infrastructure-as-Code for Microsoft Fabric workspace provisioning — automating data lake, Lakehouse, and pipeline resources across healthcare analytics environments with governance controls.

AzureMS Fabric TerraformData Lake Analytics
Private — Request Access
Interactive Demo

Healthcare AWS Landing Zone

A live walkthrough of the multi-account architecture I architect for healthcare clients. Click any service to learn more.

AWS Organization — Healthcare Client
✓ HIPAA ✓ SOC2 Terraform IaC
Click a service to learn more
terraform apply
Career History

Work Experience

13+ years progressively owning larger-scale infrastructure — from hospital sysadmin to enterprise cloud architect.

Sept 2025 — Present
Optimum Health IT
Cloud Architect – Healthcare
Architecting and deploying AWS Landing Zones for healthcare clients. Implementing security and compliance guardrails following the AWS Well-Architected Framework.
  • Implemented blue/green deployment strategies, minimising downtime
  • Built AWS cost management dashboards, enhancing cost visibility
  • Led cost optimisation initiatives, reducing unnecessary expenses
  • Deployed AI solutions for workload discovery and migration planning
Nov 2023 — Sept 2025
Marathon Health
Senior Cloud Engineer
Designed and managed AWS infrastructure for healthcare platforms, ensuring HIPAA and SOC2 compliance. Automated provisioning with Terraform and CloudFormation.
  • Implemented AWS Config and GuardDuty for security and compliance
  • Managed AWS WorkSpaces with SAML SSO and lifecycle automation
  • Optimised containerized workloads to enhance scalability
  • Enhanced security posture with auto-remediation strategies
Oct 2021 — Nov 2023
Fivos Health
Senior Systems Administrator – IT & Security
Managed hybrid AWS and OCI environments for healthcare workloads. Drove infrastructure modernization with Terraform, GitHub Actions, and PowerShell.
  • Migrated 85+ customer environments across cloud platforms with minimal downtime
  • Orchestrated resilient DNS and networking with Route 53 and Cloudflare
  • Achieved consistent recovery success with Veeam and AWS Backup
Oct 2020 — Dec 2021
Ellis Medicine Hospital
IT Manager / Server Administrator Lead
Oversaw server and infrastructure operations for clinical environments. Managed VMware to Nutanix HCI and Kubernetes migration.
  • Streamlined automation with Terraform and Ansible, reducing deployment time by 30%
  • Instituted HIPAA-compliant security controls and access policies
Feb 2019 — Oct 2020
CMA Consulting
Senior Systems Administrator
Automated hybrid infrastructure across AWS and Azure using Terraform, Ansible, and SCCM. Implemented Splunk for centralized logging and SOC visibility.
Jan 2013 — Feb 2019
Albany Medical Center Hospital
System Network Administrator
Oversaw large-scale clinical infrastructure. Implemented EPCS with MFA/2FA for DEA compliance. Supported HIPAA audits, security reviews, and incident response.
Credentials

Certifications

Verified credentials across AWS, Azure, and FinOps — with two AWS professional-tier exams actively in progress.

AWS Certified Solutions Architect – Professional

Amazon Web Services

Verify credential ↗

AWS Certified Advanced Networking – Specialty

Amazon Web Services

Verify credential ↗

Microsoft Certified: Azure Administrator Associate

Microsoft

Verify credential ↗

AWS Well-Architected Proficient

Amazon Web Services

Verify credential ↗

AWS Certified Solutions Architect – Associate

Amazon Web Services · Sep 2025–Sep 2028

AWS Knowledge: Migration Foundations

Amazon Web Services · Jan 2026

In Progress

AWS Certified DevOps Engineer – Professional

Amazon Web Services

In Progress

AWS Certified Security – Specialty

Amazon Web Services

Planned

FinOps Certified Practitioner

FinOps Foundation

About this cert ↗
Interactive Tool

Cloud Maturity Assessment

5 questions. Find out where your organization stands — and what it takes to reach the next level.

Question 1 of 5
Open Source Activity

GitHub

Live data from GitHub — real repos, real contributions.

Public Repos
Followers
Total Stars
On GitHub Since
Infrastructure Reliability

Multi-Cloud Status

Live operational health of the major cloud platforms Ali architects on.

☁️ Amazon Web Services
Checking…
View AWS Health Dashboard ↗
💙 Microsoft Azure
Checking…
View Azure Status ↗
🔵 Google Cloud
Checking…
View GCP Status ↗
🟠 Oracle Cloud (OCI)
Checking…
View OCI Status ↗

Status fetched live from each provider's public API · Click any card for the full health dashboard

Live cost dashboard
What this multi-cloud portfolio actually costs to run, updated nightly from each cloud's billing API.
$— month to date View breakdown →
Let's Connect

Open to Opportunities

Looking for Senior Cloud Architect, Principal Engineer, or Healthcare Cloud Lead roles. Also open to advisory and consulting engagements.

Reach me directly

baker.ali.m@gmail.com
New York, NY
linkedin.com/in/ali-albaker
github.com/alialbaker
Download Resume PDF
✓ Message sent — I'll get back to you within 24 hours.
Served from AWS
This site runs on both AWS and Azure. Traffic on cloud.albaker.info flips between them every Monday and Thursday via Route 53 weighted routing with health-check failover.

You're currently seeing the AWS copy. Read the architecture doc ↗.
Ask Ali anything

Ask Ali

AI Assistant

Hey! I'm Ali's AI assistant. Ask me about his experience, projects, certifications, or how he can help with your cloud migration. 👋