Aly Ragab
Verified Expert in Engineering
DevOps Engineer and Developer
在过去的六年里,Aly一直是DevOps和DevSecOps工程师, specializing in planning, designing, configuring, and implementing a deep level of security. Aly参与了GRC和渗透测试的文化和实施. 在此之前,他担任了三年的Linux和Unix管理员. Aly's areas of expertise include AWS, Kubernetes, MySQL, MongoDB, ELK, Go, HashiCorp Vault, Terraform, and more.
Portfolio
Experience
Availability
Preferred Environment
MacOS, Linux, Visual Studio Code (VS Code), DevOps, Burp Suite
The most amazing...
...经验正在帮助公司开发和保护他们的数字平台, making them reliable and available at all times.
Work Experience
Lead DevSecOps Engineer
fintech-galaxy
- 通过基于GRC (Governance)的非常安全可靠的云原生架构,完成了向AWS EKS的迁移, Risk Management, and Compliance).
- Integrated HashiCorp Vault with Kubernetes Microservices.
- 设置主要策略,以可靠的方式使用IaC和配置管理,为Kubernetes建立一个开放的银行平台.
- 启动ISO/IEC 27001:2022信息安全领导实施.
- 为规划业务连续性计划和灾难恢复计划制定策略.
- 指导我的团队应用和学习有关安全性的最佳实践, reliability, and observability patterns.
Senior DevOps Archetict
Talabat
- 构建和管理满足PCI DSS合规性要求的环境,并使用Go编写内部工具.
- 使用开放策略代理(OPA)、Conftest和Gatekeeper作为代码实现和管理策略.
- 使用无服务器框架实现AWS无服务器应用程序,并实现和管理Amazon EKS集群.
- 迁移和实现集中模板化的Helm Charts,以帮助在不同的AWS EKS集群中部署100多个微服务.
- 协助公司实施可扩展的系统设计,并实施AWS秘密管理器和保险库以保护机密数据.
- 使用Argo CD和Argo Rollouts实现渐进式部署,用于蓝绿色和金丝雀部署.
- 使用GitHub Actions自托管运行器来启用安全和私有的端到端测试.
Lead DevOps Engineer
Hala Company
- 协助从单片架构迁移到微服务架构.
- Implemented and managed PCI DSS compliant infrastructures.
- Defined the DevOps-related strategies and tools. 实现了基于Oracle cloud的云环境管理.
- Implemented and introduced IaC using Terraform, managed Kubernetes clusters using Kubespray, and deployed microservices using Helm.
- Implemented CI/CD pipelines using Jenkins for all microservices; shared knowledge with all engineering teams; and defined the culture for introducing infrastructure features, such as RFC documents and POCs.
- 管理DevOps团队的四名成员,并指导他们成长、学习和应用最佳实践.
Senior DevOps Engineer
Fly365
- Managed and implemented PCI DSS compliant infrastructures.
- Managed AWS infrastructure based on AWS S3, CloudFront, Lambda Functions, CloudWatch, GuardDuty, Elasticache, and RDS.
- 基于ELK和Prometheus堆栈实现了所有微服务的日志记录和监控.
- 为50多个微服务建立并帮助团队使用CI/CD管道.
- 管理一个小型的DevOps团队,使其始终如一地应用最佳实践.
DevOps Engineer
Transporter Courier Service
- 帮助公司设计无状态微服务架构,并为所有微服务实现CI/CD.
- 协助迁移到AWS,并基于kops工具实现Kubernetes环境.
- 与ITOps团队合作,使用FreeIPA实现内部LDAP,以便拥有内部, Linux-based LDAP server.
- 与ITOps合作,基于Asterisk实现可靠的VoIP服务器.
Linux and Unix System Administrator
ECC Solutions
- Managed and monitored IBM Unix AIX Power Servers.
- 管理TSM备份系统、IBM V7000后端存储、IBM AIX lpar和LAPAR Mobility.
- Provided second-line support for Linux-based applications, 帮助客户修复和排除Linux Red Hat上的问题, CentOS, Ubuntu, and Debian-based distributions.
Linux System Administrator
World'Vest Base (WVB)
- 管理和实现用于网络和系统配置的Spacewalk服务器.
- 管理FortiGate防火墙以保护内部网络,并实现隔离的互联网连接和站点到站点VPN.
- 实现并管理了深层次的安全加固.
- 管理基于Asterisk的Linux VoIP解决方案,促进三个国家的跨团队通信.
Business Solution Specialist
Vodafone Egypt Telecommunications SAE
- 通过电话与沃达丰企业客户处理所有升级的托管域名问题.
- 管理和修复微软SharePoint服务器问题,处理企业客户的电子邮件服务.
- Conducted technical training for the first-line support.
Experience
AWS IAM Slackbot
http://github.com/AlyRagab/aws-iam-slack-botAWS RDS Alerts to Slack
http://github.com/AlyRagab/LambdaFunc-rds-alertUser API Microservice
http://github.com/AlyRagab/golang-user-registration• Based in PostgreSQL as DataStore and GORM library
•哈希密码使用胡椒和盐进入数据库,从不保存密码
• Cookies security with HMAC
Skills
Frameworks
Serverless Framework
Tools
CircleCI, Terraform, AWS Key Management Service (KMS), Amazon EKS, Helm, Vault, Amazon Elastic Container Service (Amazon ECS), HashiCorp, Zabbix, ELK (Elastic Stack), Jenkins, VPN, AWS IAM
Paradigms
DevOps, Microservices, DevSecOps, Agile Software Development, Automation, Microservices Architecture, Penetration Testing
Platforms
Red Hat Linux, Docker, Kubernetes, Amazon Web Services (AWS), AWS Elastic Beanstalk, KVM, AIX, Unix, Burp Suite
Storage
PostgreSQL, MariaDB, Elasticsearch, MongoDB, Oracle Cloud, MySQL
Other
Kubernetes Operations (kOps), CI/CD Pipelines, PCI DSS, GitHub Actions, Infrastructure as Code (IaC), DevOps Engineer, Containerization, Self-managed Kubernetes, HashiCorp Vault, Argo CD, Cloudflare, AWS Secrets Manager, Organization, Lambda Functions, FortiGate, IBM Storage, FreeIPA, Argo Rollouts, VoIP, Slackbot
Languages
Go, Python 3, Python
Industry Expertise
Network Security
Education
High Diploma in Software Engineering (College Level)
Cairo University - Egypt, Cairo
Bachelor's Degree in Art History
Helwan University - Egypt, Cairo
Certifications
HashiCorp Certified: Vault Associate
HashiCorp