Badr - Consultant AMAZON AWS
Ref : 200130C002-
75009 PARIS
-
Consultant, DevOps (33 ans)
-
Bientôt freelance
professional experience
2017 ALLIANZ
2019 team lead – Devops & Cloud/on-premises INFRASTRUCTURE
As a team lead of the IT infrastructure team, my work consisted of implementing new Cloud/DevOps oriented projects and ensure their run management. I was also part of Allianz Groups’ Cloud Tribe community that aimed to promote the adoption of the cloud with best security and practices within the company.
⦁ Migrating on-premise servers to cloud and implementing new builds (AWS, AZURE et GCP)
⦁ Promoting and enabling automation and DevOps (IaC, scripting, config management and DevOps tools)
⦁ Securing and upgrading cloud and on-premises infrastructure (monitoring, migrations, patching, disaster recovery…)
⦁ Ensuring Cloud and on-premises RUN management: Incidents and problems resolution, Changes implementation, new releases deployment.
⦁ Editing technical documentation (architecture diagrams, user guides, specs, reporting and KPIs
Examples of Projects:
PROJECT 1: Building Allianz-Morocco’s first ever private cloud infrastructure on AWS to host a new DMS solution (Canon Iris). The access was enabled via a S2S vpn connection in order to secure data transfer.
⦁ Collecting and analyzing business requirements.
⦁ Comparing public cloud providers based on technical and financial requirements.
⦁ Studying and selecting potential AWS services to use for the solution.
⦁ Designing the target architecture on AWS with a focus on IT security and resilience
⦁ Implementing a PoC for the target solution
⦁ Building target AWS infrastructure with IaC methodology using Terraform
⦁ Creating S2S vpn connection between Allianz-Morocco’s network and AWS
⦁ Testing and validating results with application team
⦁ Implementing production go live and improving experience with hot fixes
⦁ Handover to ops and advanced run management.
TECHNICAL ENVIRONNMENT: IAC TERRAFORM, GIT, GITHUB ENTREPRISE SERVER. AWS: VMs (EC2, AMI, SECURITY GROUPS, ELB, AUTOSCALING), STORAGE (S3, VOLUMES EBS), DATABASES (RDS for SQL SERVER and POSTGRESQL), NETWORKING (VPC, VPN GATEWAY, NAT GATWAY, ROUTE53, AWS SFTP). OS: WINDOWS SERVER 2012 R2, CENTOS 7
PROJECT 2: Creating a pipeline on Jenkins to enable automation for future cloud infrastructure deployments using Terraform code. The pipeline is triggered with a Github push and sends notifications via Slack and email.
⦁ Collecting requirements and planning use cases for cloud deployment automation
⦁ Comparing and selecting tools
⦁ Installing/configuring Jenkins and enabling its integration with Github and Slack using webhooks.
⦁ Coding the pipeline with Jenkins DSL language
⦁ Testing and validating the results
⦁ Using the pipeline in production ready environments
TECHNICAL ENVIRONNMENT: JENKINS, GITHUB ENTREPRISE SERVER, SLACK, GIT, TERRAFORM, UBUNTU SERVER 16.04, SHELL SCRIPTING, GCP, AWS, AZURE
2015 ALLIANZ
2017 IT infrastructure Engineer
As an IT infrastructure engineer I was in charge of the following:
⦁ Implementing new IT infrastructure projects
⦁ Conducting migrations and upgrades.
⦁ Administrating virtual infrastructure (VMware vSphere) and physical infrastructure (HPE Proliant Servers, HPE SAN storage, IBM TSM Backup)
⦁ Administrating business application environments and deploying new releases.
⦁ Resolving incidents, implementing production changes and advanced support to Service Desk.
⦁ Coordinating and managing network operations with service providers (LAN, WAN, WLAN, Firewalling)
Examples of Projects:
PROJECT 1: Implementing Chef Infra to manage Linux and Windows servers’ configuration management. The solution was created in order to enable initial configuration automation for new builds.
⦁ Collecting requirements and scenarios
⦁ Comparing solutions and selecting Chef Infra
⦁ Designing the target architecture
⦁ Implementing a PoC: Installing and configuring Chef infra, Bootstrapping Windows and Linux Nodes, creating and applying test cookbooks scripts.
⦁ Testing and validating the results and releasing the solution for Production
⦁ Enhancing the solution and resolving its incidents.
TECHNICAL ENVIRONNMENT: CHEF INFRA SERVER, CHEF WORKSTATION, CHEF CLIENT, KNIFE, SSH, WINRM, POWERSHELL, CENTOS 7, SHELL SCRIPTING
PROJECT 2: Implementing VEEAM backup and replication for VMware vSphere infrastructure, physical servers and workplace laptops. VEEAM was implemented to replace the old TSM backup solution.
⦁ Collecting requirements and backup policies in terms of VMs, Servers and workplace.
⦁ Comparing IT backup solutions based on technical and financial specs.
⦁ Designing the target architecture and preparing the test environment.
⦁ Installing and configuring VEEAM server and integrating it with the existing HPE SAN storage and tape library.
⦁ Testing VMs/Servers/laptops pilot backup and validating the results
⦁ Injecting licenses, Installing VEEAM agents remotely and switch up to production
⦁ Enhancing the solution and resolving its incidents.
TECHNICAL ENVIRONNMENT: VEEAM BACKUP & RÉPLICATION 9.5, VMWARE VSPHERE 6, WINDOWS SERVER 2012 R2, WINDOWS 10 ENTREPRISE, STOCKAGE SAN HPE EVA 6000, HPE TAPE LIBRARY MSL 4048.
PROJECT 3: Implementing a monitoring solution based on Nagios and Nagvis with graphical dashboards and notifications to ensure regular health checks on IT infrastructure components and promote proactive maintenance
⦁ Collecting requirements for IT infrastructure monitoring
⦁ Comparing open source solutions and selecting EyesOfNetwork (Based on Nagios and Nagvis)
⦁ Preparing prerequisites: connectivity, Firewall rules, SNMP configuration, Nagios plugins…
⦁ Building a test environment and validating the results.
⦁ Switch up to production and monitor more infrastructure components.
TECHNICAL ENVIRONNMENT: CENTOS 6, EYESOFNETWORK 4.2, NAGIOS, NAGVIS, SNMP V2 ET V3, SMTP, SHELL SCRIPTING
2014 DXC TECHNOLOGY
2015 Virtualization and system engineer
As a virtualization and system engineer and being part of a team, I was responsible of managing the virtual infrastructure and servers of many contracted clients:
⦁ Administrating Wintel and Linux servers
⦁ Administrating VMware vSphere and Microsoft Hyper-V virtual datacenters
⦁ Managing MS AD & MS Exchange and other Windows server roles (DNS, File/Print, WSUS)
⦁ Managing regular infrastructure patching with WSUS
⦁ Automating system administration with Linux Shell scripts and PowerShell/Batch scripts.
⦁ Resolving Incidents and implementing out-of-business-hours changes.
⦁ Editing technical documentation.
CERTIFICATIONS
AWS Certified Architect Associate (on going)
⦁ Exin DevOps Engineer
⦁ Allianz ISRM (Information Security Risk Management)
ITILv3
⦁ MCSA Windows Server 2012 R2
TECHNICAL SKILLS
CLOUD PROVIDERS : AWS, AZURE, GCP
OS : CENTOS, REDHAT, DEBIAN, UBUNTU SERVER, WINDOWS SERVER
CLI : LINUX SHELL, MS POWERSHELL, MICROSOFT CMD, AWS CLI, AZ CLI, GCOULD
VIRTUAL INFRASTRUCTURE : VMWARE VSPHERE, MS HYPER-V, LINUX KVM
DEV CONFIGURATION : HASHICORP VAGRANT
INFRASTRUCTURE AS CODE : HASHICORP TERRAFORM
CONFIGURATION MANAGEMENT : SHELL SCRIPTS, ANSIBLE, CHEF,
OS IMAGE BUILD : HASHICORP PACKER
SECRETS MANAGEMENT : HASHICORP VAULT
CONTAINERS : DOCKER, CLOUD MANAGED CONTAINERS (AWS ECS, AZURE ACI, GCP CLOUD RUN)
CONTAINERS ORCHESTRATION : KUBERNETES, CLOUD MANAGED KUBERNETES (AWS EKS, AZURE AKS, GCP GKE)
CI/CD : JENKINS
VERSION CONTROL : GIT, GITHUB, BITBUCKET
MONITORING : NAGIOS, GRAFANA, CLOUDWATCH, SOLARWINDS
NETWORK AND SECURITY : SUBNETTING, ROUTING, VPN S2S CONFIGURATION, FIREWALLING
PROGRAMMING LANGUAGES : PYTHON, C, PHP
DATABASES : MYSQL, POSTGRESQL, MS SQL SERVER, DYNAMODB
IDE : VISUAL STUDIO CODE, INTELLIJ IDEA
LANGUAGES
ENGLISH: FLUENT
FRENCH: FLUENT
EDUCATION & TRAININGS
2014 Bachelor of engineering in computer science, ENSIAS, Rabat, Morocco
2019
⦁ Hashicorp tools learning path
⦁ Docker Essential training
⦁ Kubernetes Essential training
⦁ PECB ISO 27001
2017
⦁ Project Management Professional (PMP)
2015
⦁ VMware vSphere 6.0