About
DevSecOps and Cloud Security Engineer with 2+ years of experience in building, automating, and securing cloud-native infrastructure and CI/CD pipelines across AWS and multi-cloud environments. Strong expertise in integrating security into DevOps workflows, including CI/CD pipeline security, container vulnerability scanning, IAM best practices, and secure infrastructure provisioning using Terraform and Ansible. Experienced in Kubernetes-based deployments, observability (Prometheus, Grafana, Datadog), and automation using Python and Shell scripting. Passionate about implementing security guardrails, improving DevOps maturity, and enabling secure and scalable cloud platforms.
Skills & Expertise (47)
Work Experience
IT Intern
DIGITUM INTELLECTS
Feb 2024 - Jul 2024
Assisted in building CI/CD pipelines using Jenkins with focus on automated and secure deployments. Supported Docker containerization for consistent and secure environments. Worked with GitHub for version control and branching strategies. Assisted in provisioning AWS resources with basic security configurations (IAM, access control). Monitored application logs and system performance.
Cloud Security Engineer
CGI
Aug 2024 - Present
Designed and implemented secure CI/CD pipelines, integrating code quality analysis and container vulnerability scanning (SonarQube, Nessus/Twistlock), ensuring secure software delivery. Automated infrastructure provisioning using Terraform and Ansible, enforcing secure configurations, access controls, and environment consistency. Managed and deployed containerized applications using Docker and Kubernetes (EKS/OKE) with focus on secure configurations, secrets management, and RBAC. Configured secure cloud networking (VPC/VCN), including security groups, IAM policies, and access control mechanisms. Implemented DevSecOps practices across the SDLC, enabling early vulnerability detection and improving overall security posture. Integrated container image scanning and security validation into CI/CD pipelines to reduce vulnerabilities in production. Implemented observability solutions using Prometheus, Grafana, Datadog, and CloudWatch for monitoring, alerting, and incident response. Developed automation scripts using Python and Bash, reducing manual operational effort. Collaborated with development teams to drive adoption of secure DevOps practices and improve DevOps maturity. Troubleshot production issues and led remediation of deployment and security-related incidents. Supported Git-based and GitOps-style deployment workflows for controlled and traceable releases.
Education
Bachelor of Technology in Computer Science and Engineering (Cybersecurity) - KL University
2019 - 2023 · Afghanistan
Board of Intermediate Education - Sri Chaitanya Junior College
2017 - 2019 · Afghanistan
Certifications
No certifications added yet
Interested in this developer?
Profile Score Breakdown
Profile Overview
Skills (47)
Click a skill to find developers with the same skill
