Badr - Consultant AMAZON AWS

professional experience

2017 ALLIANZ
2019 team lead – Devops & Cloud/on-premises INFRASTRUCTURE

As a team lead of the IT infrastructure team, my work consisted of implementing new Cloud/DevOps oriented projects and ensure their run management. I was also part of Allianz Groups’ Cloud Tribe community that aimed to promote the adoption of the cloud with best security and practices within the company.

⦁ Migrating on-premise servers to cloud and implementing new builds (AWS, AZURE et GCP)
⦁ Promoting and enabling automation and DevOps (IaC, scripting, config management and DevOps tools)
⦁ Securing and upgrading cloud and on-premises infrastructure (monitoring, migrations, patching, disaster recovery…)
⦁ Ensuring Cloud and on-premises RUN management: Incidents and problems resolution, Changes implementation, new releases deployment.
⦁ Editing technical documentation (architecture diagrams, user guides, specs, reporting and KPIs


Examples of Projects:

PROJECT 1: Building Allianz-Morocco’s first ever private cloud infrastructure on AWS to host a new DMS solution (Canon Iris). The access was enabled via a S2S vpn connection in order to secure data transfer.

⦁ Collecting and analyzing business requirements.
⦁ Comparing public cloud providers based on technical and financial requirements.
⦁ Studying and selecting potential AWS services to use for the solution.
⦁ Designing the target architecture on AWS with a focus on IT security and resilience
⦁ Implementing a PoC for the target solution
⦁ Building target AWS infrastructure with IaC methodology using Terraform
⦁ Creating S2S vpn connection between Allianz-Morocco’s network and AWS
⦁ Testing and validating results with application team
⦁ Implementing production go live and improving experience with hot fixes
⦁ Handover to ops and advanced run management.

TECHNICAL ENVIRONNMENT: IAC TERRAFORM, GIT, GITHUB ENTREPRISE SERVER. AWS: VMs (EC2, AMI, SECURITY GROUPS, ELB, AUTOSCALING), STORAGE (S3, VOLUMES EBS), DATABASES (RDS for SQL SERVER and POSTGRESQL), NETWORKING (VPC, VPN GATEWAY, NAT GATWAY, ROUTE53, AWS SFTP). OS: WINDOWS SERVER 2012 R2, CENTOS 7

PROJECT 2: Creating a pipeline on Jenkins to enable automation for future cloud infrastructure deployments using Terraform code. The pipeline is triggered with a Github push and sends notifications via Slack and email.

⦁ Collecting requirements and planning use cases for cloud deployment automation
⦁ Comparing and selecting tools
⦁ Installing/configuring Jenkins and enabling its integration with Github and Slack using webhooks.
⦁ Coding the pipeline with Jenkins DSL language
⦁ Testing and validating the results
⦁ Using the pipeline in production ready environments

TECHNICAL ENVIRONNMENT: JENKINS, GITHUB ENTREPRISE SERVER, SLACK, GIT, TERRAFORM, UBUNTU SERVER 16.04, SHELL SCRIPTING, GCP, AWS, AZURE

2015 ALLIANZ
2017 IT infrastructure Engineer

As an IT infrastructure engineer I was in charge of the following:

⦁ Implementing new IT infrastructure projects
⦁ Conducting migrations and upgrades.
⦁ Administrating virtual infrastructure (VMware vSphere) and physical infrastructure (HPE Proliant Servers, HPE SAN storage, IBM TSM Backup)
⦁ Administrating business application environments and deploying new releases.
⦁ Resolving incidents, implementing production changes and advanced support to Service Desk.
⦁ Coordinating and managing network operations with service providers (LAN, WAN, WLAN, Firewalling)

Examples of Projects:

PROJECT 1: Implementing Chef Infra to manage Linux and Windows servers’ configuration management. The solution was created in order to enable initial configuration automation for new builds.


⦁ Collecting requirements and scenarios
⦁ Comparing solutions and selecting Chef Infra
⦁ Designing the target architecture
⦁ Implementing a PoC: Installing and configuring Chef infra, Bootstrapping Windows and Linux Nodes, creating and applying test cookbooks scripts.
⦁ Testing and validating the results and releasing the solution for Production
⦁ Enhancing the solution and resolving its incidents.

TECHNICAL ENVIRONNMENT: CHEF INFRA SERVER, CHEF WORKSTATION, CHEF CLIENT, KNIFE, SSH, WINRM, POWERSHELL, CENTOS 7, SHELL SCRIPTING

PROJECT 2: Implementing VEEAM backup and replication for VMware vSphere infrastructure, physical servers and workplace laptops. VEEAM was implemented to replace the old TSM backup solution.

⦁ Collecting requirements and backup policies in terms of VMs, Servers and workplace.
⦁ Comparing IT backup solutions based on technical and financial specs.
⦁ Designing the target architecture and preparing the test environment.
⦁ Installing and configuring VEEAM server and integrating it with the existing HPE SAN storage and tape library.
⦁ Testing VMs/Servers/laptops pilot backup and validating the results
⦁ Injecting licenses, Installing VEEAM agents remotely and switch up to production
⦁ Enhancing the solution and resolving its incidents.

TECHNICAL ENVIRONNMENT: VEEAM BACKUP & RÉPLICATION 9.5, VMWARE VSPHERE 6, WINDOWS SERVER 2012 R2, WINDOWS 10 ENTREPRISE, STOCKAGE SAN HPE EVA 6000, HPE TAPE LIBRARY MSL 4048.

PROJECT 3: Implementing a monitoring solution based on Nagios and Nagvis with graphical dashboards and notifications to ensure regular health checks on IT infrastructure components and promote proactive maintenance

⦁ Collecting requirements for IT infrastructure monitoring
⦁ Comparing open source solutions and selecting EyesOfNetwork (Based on Nagios and Nagvis)
⦁ Preparing prerequisites: connectivity, Firewall rules, SNMP configuration, Nagios plugins…
⦁ Building a test environment and validating the results.
⦁ Switch up to production and monitor more infrastructure components.

TECHNICAL ENVIRONNMENT: CENTOS 6, EYESOFNETWORK 4.2, NAGIOS, NAGVIS, SNMP V2 ET V3, SMTP, SHELL SCRIPTING

2014 DXC TECHNOLOGY
2015 Virtualization and system engineer

As a virtualization and system engineer and being part of a team, I was responsible of managing the virtual infrastructure and servers of many contracted clients:

⦁ Administrating Wintel and Linux servers
⦁ Administrating VMware vSphere and Microsoft Hyper-V virtual datacenters
⦁ Managing MS AD & MS Exchange and other Windows server roles (DNS, File/Print, WSUS)
⦁ Managing regular infrastructure patching with WSUS
⦁ Automating system administration with Linux Shell scripts and PowerShell/Batch scripts.
⦁ Resolving Incidents and implementing out-of-business-hours changes.
⦁ Editing technical documentation.