Senior DevOps Engineer with 5 years of experience building and running Kubernetes clusters, CI/CD pipelines, and cloud infrastructure across on-premises and Azure environments. Cut environment provisioning time from days to under 2 hours at ServiceNow by automating Azure infrastructure with Terraform and Bash scripting. Embedded DevSecOps practices directly into delivery pipelines - integrating Trivy,.
Key Highlights
DEVSECOPS PIPELINE: Built an end-to-end DevSecOps pipeline using Cosign, Kyverno, Trivy, and HashiCorp Vault - achieving zero unsigned container deployments and zero critical CVEs in production.
INFRASTRUCTURE AUTOMATION: Cut Azure environment setup from days to under 2 hours by automating provisioning with Terraform and Bash scripting, eliminating manual configuration drift across AKS, VMSS, Application Gateway, SQL Managed Instance, and API Management.
KUBERNETES SECURITY: Designed and ran bare-metal Kubernetes clusters on Rocky Linux using k3s and k8s, implementing RBAC, network policies, and Pod Security Standards to meet enterprise security baselines.
AIR-GAPPED DEPLOYMENT: Deployed a production-grade GitLab instance with dedicated CI/CD runners on a self-managed k3s cluster running Rocky Linux 9.6, supporting both online and air-gapped environments - with installation scripts adopted as team-standard runbooks.
CI/CD DELIVERY: Built and maintained multi-stage Jenkins and Azure DevOps pipelines serving 3 development teams, defining branching strategies, environment promotion workflows, and automated rollback procedures using ArgoCD and Helm.
Built and maintained multi-stage CI/CD pipelines in Jenkins and Azure DevOps, improving deployment consistency across staging and production environments and cutting release cycle time
Provisioned bare-metal Kubernetes clusters on Rocky Linux using k3s and k8s, configuring RBAC, network policies, and Pod Security Standards - achieving zero critical CVEs in production containers
Integrated Trivy, Cosign, Kyverno, and HashiCorp Vault into CI/CD pipelines, cutting the time to identify and fix security issues
DevOps Engineer
G2K Group GmbH
Jun 2021 – Jul 2023
Administered Windows and Linux servers across physical and VMware vSphere environments, handling provisioning, patching, scaling, and decommissioning
Provisioned Azure resources - including Application Gateway, VMSS, SQL Managed Instance, and API Management - using Terraform, cutting provisioning errors
IT Specialist
HyperOne
Jul 2020 – Jun 2021
Installed, configured, and maintained POS systems, barcode readers, electronic scales, and printer fleets across retail locations - keeping device uptime at 99%
Handled user onboarding and training during hardware and software rollouts, and wrote procedural guides that reduced repeat support tickets
Certifications
Certified Kubernetes Administrator (CKA)
In P
Microsoft Azure Fundamentals (AZ-900)
Microsoft
Linux System Administration
HashiCorp Vault Operations
Education
Faculty of Engineering, Al-Azhar University
Bachelor of Engineering in Bachelor of Engineering, Computers & Systems Engineering