🚀 DevOps Engineer | Platform & Cloud Engineering | Kubernetes | Terraform | Azure | DevSecOps

I design, build, and operate production-grade cloud and container platforms with a strong focus on
automation, security, scalability, cost-optimised and reliability.

My experience spans enterprise CI/CD systems, Azure landing zones, and cloud-native microservices running on Kubernetes clusters across on-prem and cloud environments and managing Kubernetes Clusters.

• Build secure Azure platform foundations and landing zones
• Design multi-environment CI/CD pipelines with strong DevSecOps practices
• Containerize applications using Docker (multi-stage builds)
• Deploy and manage microservices on Kubernetes
• Operate hybrid environments (on-prem + cloud)
• Enable teams through reusable Terraform and pipeline templates

• Microsoft Azure (AKS, VMSS, VNet, Load Balancer, Bastion, Key Vault, SQL, Monitor)
• Hybrid cloud architectures (on-prem ↔ cloud)
• Secure networking with private endpoints, WAF, and centralized logging

• Terraform (modular design, remote backends, multi-env isolation)
• Azure landing zones & platform foundations
• Environment separation: Dev / UAT / Prod

• Writing multi-stage Dockerfiles for optimized images
• Building, tagging, and pushing images to container registries
• Secure image pipelines integrated with CI/CD
• Supporting both VM-based and container-based workloads

• Deploying and managing microservices on Kubernetes
• Working with on-prem and cloud Kubernetes clusters
• Workload deployments, scaling, rolling updates, and rollbacks
• Hybrid Kubernetes operations with shared CI/CD pipelines

• Azure DevOps Pipelines (multi-stage, approvals, environments)
• GitHub Actions
• PR-based workflows with security and quality gates
• DevSecOps tooling:
  • SAST / SCA / IaC scanning
  • SonarQube, tfsec, tflint, checkov, TruffleHog, Black Duck
• Secure secrets management using Azure Key Vault

• Prometheus & Grafana
• Azure Monitor & Log Analytics
• Application Insights
• Proactive alerts, health checks, and automated rollback

I recently worked on a UAE-based digital banking platform involving a
T24 core banking system and a real-time fraud monitoring solution, originally running fully on-premises.

The goal was to modernize the platform using a secure hybrid cloud architecture, improving scalability while maintaining connectivity with legacy banking systems.

My contributions included:

• Designing and building the Azure landing zone from scratch
• Implementing hub-and-spoke architecture with VPN / ExpressRoute connectivity
• Migrating real-time microservices to Azure Kubernetes Service (AKS)
• Building enterprise-grade CI/CD pipelines with DevSecOps controls
• Implementing canary deployments and automated rollback
• Enabling full observability across VMs and Kubernetes workloads

Tech stack:
Azure • Terraform • AKS • Kubernetes • Docker • Azure DevOps • GitHub Actions • WAF • Key Vault • Prometheus • Grafana

📎 Detailed architecture and implementation patterns are reflected in my pinned repositories.

Enterprise-style Azure platform built with modular Terraform, covering networking, security, VMs, load balancers, and shared services.
👉 Terraform • Azure • Platform Engineering

End-to-end CI/CD pipelines with security scanning, approvals, artifact governance, and automated deployments.
👉 Azure DevOps • GitHub Actions • DevSecOps

Reusable YAML templates (steps, jobs, stages) designed as a shared CI/CD platform capability.
👉 Pipeline Engineering • Reusability

CI/CD for a React + .NET application with build, test, artifact management, and cloud-ready deployments.
👉 .NET • React • CI/CD

• Automation over manual operations
• Secure-by-default platforms
• Predictable, scalable infrastructure
• Clean, reusable IaC and pipelines
• Production-first DevOps mindset

📫 Let’s Connect
If you’re interested in DevOps, Kubernetes, Cloud Platforms, or CI/CD architecture, feel free to explore my repositories.