Post Job Free
Sign in

DevOps Engineer with AWS & IaC Expertise

Location:
Lahore, Punjab, Pakistan
Salary:
170000
Posted:
April 17, 2026

Contact this candidate

Resume:

RASHID MAQBOOL

DevOps Engineer

Phone: +92-302-******* Email: ****************@*****.*** Location: Lahore, Pakistan LinkedIn: www.linkedin.com/in/rashid-maqbool-92202a2a2 PROFESSIONAL SUMMARY

DevOps Engineer with 3+ years of experience architecting, deploying, and optimizing cloud infrastructure, CI/CD pipelines, and security solutions across AWS multi-account environments. Proficient in Infrastructure as Code (Terraform, CloudFormation), container orchestration (Docker, ECS), and observability stacks (Prometheus, Grafana, Zabbix, ELK). Delivered production-grade platforms including cloud email servers, ERP deployments, hybrid VPN architectures, and automated monitoring frameworks with measurable improvements in uptime and deployment reliability. Collaborative team player focused on accelerating release cycles, enforcing least-privilege security, and maintaining operational excellence at scale. TECHNICAL SKILLS

Cloud Platforms: AWS (EC2, ECS, ECR, VPC, S3, RDS, DynamoDB, EBS, EFS, CloudFront, Route 53, ALB/ELB, Auto Scaling, NAT Gateway, IAM, Secrets Manager, Systems Manager, CloudWatch, CloudTrail, Control Tower, Organizations, SES, SNS, API Gateway, Lifecycle Manager), Azure (Virtual Machines, Microsoft Entra ID, Resource Groups) DevOps & CI/CD: Jenkins (Declarative Pipelines, Webhooks), GitLab CI, GitHub Actions, Pipeline-as-Code (Jenkinsfile), Git, GitLab, GitHub

Infrastructure as Code: Terraform (S3 Remote State, Multi-environment), AWS CloudFormation Containerization: Docker, Docker Compose, AWS ECR, Kubernetes, Microservices Architecture, Container Health Checks, Automated Redeployment

Monitoring & Observability: Prometheus, Grafana, cAdvisor, Zabbix, AWS CloudWatch, ELK Stack (Elasticsearch, Logstash, Kibana), SLA Monitoring, Proactive Alerting, PromQL Security & Compliance: Fail2Ban, ClamAV, Firewall Configuration, SSH Key-Based Authentication, IAM Policies, Security Groups, NACLs, SCPs, Least Privilege, SSL/TLS (Let's Encrypt, Certbot), SPF, DKIM, DMARC, Snort IDS/IPS Scripting & Programming: Bash, PowerShell, Python, YAML, JSON, JavaScript/Node.js (Basic) Databases & Storage: PostgreSQL, MySQL, AWS RDS, DynamoDB, S3 Lifecycle Management Web Servers & Proxy: Nginx (Reverse Proxy, Load Balancing, SSL Termination), Apache HTTP Server Networking & VPN: VLANs, QoS, ACLs, Site-to-Site IPsec, L2TP/IPsec, OpenVPN, DNS (Route 53, Cloudflare), DHCP, CDN & DDoS Protection (Cloudflare)

Firewalls & Network Hardware: pfSense, FortiGate, MikroTik, Nuclias Controller Operating Systems: Linux (Ubuntu, CentOS, RHEL) System Administration, Package Management, Cron Scheduling; Windows Server 2019, Active Directory

PROFESSIONAL EXPERIENCE

DevOps Engineer December 2025 – Present

Axiom World Lahore, Pakistan

• Architected and deployed end-to-end CI/CD pipeline for containerized Python AI application integrating Git, GitHub, Jenkins, and Docker on AWS EC2, achieving high deployment success rate and measurably reduced release cycles.

• Designed and implemented AWS Control Tower multi-account landing zone with Audit, Log Archive, and Core accounts establishing SCPs, Account Factory provisioning, and AWS SSO role-based access across 15+ accounts with centralized governance.

• Engineered rollback and redeployment mechanisms using version-controlled Docker images, ensuring average rollback.

• Integrated Cloudflare DNS, CDN, and DDoS protection with Contabo infrastructure, improving page load performance and successfully mitigating attempted DDoS attacks.

• Configured GitHub Webhooks for automated Jenkins pipeline triggering on code commits, eliminating manual intervention and enabling true continuous integration.

• Implemented comprehensive Zabbix monitoring with custom dashboards for infrastructure health, uptime tracking, and automated alerting reducing Mean Time to Detection (MTTD) for critical incidents.

• Configured Nginx reverse proxy with SSL/TLS termination, HTTPS redirection, and request routing for multiple containerized services, strengthening overall application security posture.

• Configured OAuth-based Microsoft 365 integration with Odoo, implementing IMAP over SSL/TLS for automated email-to- ticket workflows processing.

• Performed security hardening including Fail2Ban intrusion prevention, ClamAV malware scanning, firewall rule optimization, and SSH key-based authentication, reducing security incidents across managed infrastructure.

• Automated Linux log monitoring using Bash scripting with severity classification, threshold-based alerting, and cron-driven 24/7 automation, improving incident response time.

• Provisioned and configured Odoo.sh environments (development, staging, production) with Git-based branch deployments and controlled release management workflows.

• Produced detailed topology diagrams, fault-isolation documentation, and Root Cause Analysis (RCA) reports for management visibility and compliance audits.

• Provisioned and managed VPS and cloud server environments across Hetzner Cloud, Contabo, and Bluehost, including manual Docker image uploads and container deployments on Hetzner infrastructure for production workloads. KEY PROJECTS - AXIOM WORLD

AI-Powered Full-Stack Application Deployment with Multi-Container Architecture on Contabo VPS Technologies: Contabo VPS (Ubuntu), Docker, Docker Compose, PostgreSQL 16 (pgvector), Nginx, Let's Encrypt, Certbot, FastAPI

(Python), Next.js 16, OpenAI API LangChain, LangGraph, LangSmith, QuickBooks Online API, Gmail API (OAuth 2.0), NextAuth.js, JWT, SSH

Skills: Cloud VPS Deployment, Multi-Container Orchestration, Reverse Proxy Configuration, SSL/TLS Management, AI/ML Application Deployment, Vector Database Administration, API Integration, Security & Authentication, Zero-Downtime Deployment, Monitoring & Logging

• Provisioned and configured a production-grade Ubuntu VPS on Contabo, deploying a 4-container microservices architecture using Docker and Docker Compose comprising a FastAPI backend, Next.js 16 frontend, PostgreSQL 16 database, and Adminer UI

• Configured Nginx as a reverse proxy with precise multi-service routing rules, implemented HTTPS with SSL/TLS certificates via Let's Encrypt and Certbot, and resolved complex SSL routing conflicts between NextAuth.js and the backend API.

• Deployed PostgreSQL 16 with the pgvector extension to support vector embeddings and semantic search, enabling RAG

(Retrieval-Augmented Generation) workflows powered by OpenAI text-embedding-3-small and LangChain/LangGraph agent frameworks.

• Integrated 99+ AI tools via LangChain and LangGraph, connecting OpenAI GPT-5.2, QuickBooks Online API, and Gmail API

(OAuth 2.0) into automated agent workflows with LangSmith tracing for observability.

• Implemented zero-downtime deployment strategies with automated container health checks, restart policies, and volume management for data persistence across all services.

• Diagnosed and resolved 10+ critical production issues including Docker container corruption, port conflicts, network connectivity failures, and environment variable misconfigurations maintaining deployment stability throughout. Production-Grade Dockerized Odoo ERP Deployment on AWS EC2 with Full Security Hardening & Observability Technologies: AWS EC2 (Ubuntu), Docker, Docker Compose, PostgreSQL, Nginx, Let's Encrypt, Certbot, AWS Lifecycle Manager, AWS CloudWatch (CloudWatch Agent), Fail2Ban, ClamAV, SSH Key-Based Auth, AWS SES, Route 53 Skills: Cloud Infrastructure Provisioning, ERP Deployment, Containerization, Reverse Proxy Configuration, SSL/TLS Automation, Snapshot Lifecycle Management, Security Hardening, Cloud Monitoring & Observability, Cost Optimization

• Provisioned and configured a production-grade Ubuntu EC2 instance on AWS, deploying Odoo 19 ERP as a fully containerized solution using Docker and Docker Compose with PostgreSQL as the backend database - ensuring environment consistency, portability, and simplified maintenance.

• Configured Nginx as a reverse proxy to route all inbound traffic to the Dockerized Odoo container, mapped the application to a custom domain via Route 53/DNS, and secured the endpoint with SSL/TLS certificates provisioned through Let's Encrypt and Certbot - with cron-automated certificate renewal to eliminate manual intervention.

• Implemented AWS Data Lifecycle Manager (DLM) to automate EBS snapshot creation on a scheduled policy ensuring point-in- time recovery capability, data durability, and compliance-ready backup history without manual effort.

• Executed comprehensive OS-level security hardening: disabled root SSH login, enforced SSH key-based authentication by disabling password access, configured UFW firewall rules to restrict unnecessary ports, and hardened the SSH daemon configuration (sshd_config) to eliminate brute-force attack vectors.

• Deployed Fail2Ban with custom jail configurations to automatically detect and ban IPs with repeated failed SSH and HTTP authentication attempts providing real-time intrusion prevention across the server surface.

• Integrated ClamAV antivirus with scheduled cron-driven scans to continuously monitor the server for malware, trojans, and malicious file uploads ensuring ongoing threat detection and compliance with organizational security policies.

• Installed and configured the AWS CloudWatch Agent to collect custom system-level metrics including RAM utilization, CPU usage, and disk I/O metrics not natively available in CloudWatch and built CloudWatch dashboards and alarms for real-time visibility and proactive alerting.

• Performed data-driven infrastructure right-sizing by analyzing CloudWatch RAM and CPU utilization trends over time, identifying over-provisioned resources, and downsizing the EC2 instance to an optimal instance type reducing monthly compute costs without impacting application performance or availability.

• Integrated AWS SES for transactional and operational email delivery from Odoo, configuring SPF, DKIM, and DMARC DNS records to achieve full email authentication compliance and resolve initial DNS routing and deliverability issues. Container-Level Observability & Performance Monitoring Platform Technologies: Prometheus, cAdvisor, Grafana, Docker, Docker Compose, Ubuntu, PromQL Skills: Observability Engineering, Container Monitoring, Dashboard Design, Performance Analysis, Capacity Planning, Incident Troubleshooting

• Designed and deployed a production-grade container monitoring solution providing full visibility into CPU and memory utilization of Dockerized workloads running on Ubuntu servers.

• Integrated cAdvisor with Prometheus via custom scrape configurations to collect granular per-container metrics, eliminating system-level noise.

• Engineered rate-based CPU utilization monitoring by converting cumulative CPU counters into accurate percentage-based metrics using PromQL expressions.

• Built Grafana dashboards visualizing real-time and historical resource utilization filtered at Docker Compose service level enabling faster root-cause analysis and capacity planning decisions.

• Delivered management-ready operational dashboards used for proactive incident prevention, resource right-sizing, and performance reviews.

Automated AWS Infrastructure Deployment with Jenkins & Terraform Technologies: AWS EC2, VPC, Subnets, Security Groups, IAM, S3 Backend, Terraform, Jenkins, GitHub, Webhooks, Slack Notifications

Skills: Infrastructure as Code, CI/CD Automation, Cloud Provisioning, Multi-Environment Deployment, DevSecOps

• Built a fully automated, parameterized Jenkins pipeline-as-code that provisions AWS resources (EC2, VPC, Subnets, Security Groups) via Terraform with support for plan, apply, and destroy stages.

• Configured Terraform S3 remote backend for secure, collaborative state management and version-controlled infrastructure across multi-environment deployments.

• Integrated GitHub Webhooks for automatic pipeline triggers on code commits and configured Slack/email notifications for real- time build status updates.

• Eliminated manual provisioning errors, reduced infrastructure delivery time significantly, and enabled self-service infrastructure deployment for developers and operations teams.

Automated Linux Log Monitoring & Alert System

Technologies: Linux (Ubuntu), Bash Scripting, Cron, Log Analysis, System Monitoring Skills: Site Reliability Engineering, Incident Detection, Log Aggregation, Automation, Server Operations

• Engineered a production-grade automated log monitoring engine with centralized aggregation across multi-service Linux environments, classifying entries into ERROR, WARNING, CRITICAL, and FATAL severity tiers.

• Implemented threshold-based anomaly detection with fail-safe alerting mechanisms and integrated cron scheduling for fully autonomous 24/7 operation eliminating manual log review entirely.

• Reduced Mean Time to Detection (MTTD) for critical failures, improved server uptime, and established a scalable monitoring foundation reusable across enterprise Linux deployments. Assistant Manager IT July 2023 – November 2025

GoldFin Limited Lahore, Pakistan

• Designed and implemented IaC-driven CI/CD pipeline for a Python application using Terraform, Jenkins, and GitLab provisioning AWS EC2 infrastructure with automated build, deployment, and service management workflows.

• Architected enterprise-grade cloud email infrastructure on AWS using Postfix, Dovecot, and Nginx with SPF/DKIM/DMARC, TLS encryption, Fail2Ban, ClamAV, ELB, Auto Scaling, and S3 automated backups serving multiple users.

• Built containerized CI/CD platform for WordPress, Java, and Node.js applications using Jenkins declarative pipelines, Docker Compose, AWS ECR, and GitHub Webhooks, significantly reducing deployment time and configuration errors.

• Deployed Windows Active Directory Domain Services in AWS with structured OUs, RBAC, Group Policy Objects (GPOs), and PowerShell-based backup automation managing 150+ domain-joined systems.

• Architected highly available multi-branch enterprise network with VLAN segmentation using MikroTik routers, implementing QoS, ACLs, and multi-ISP Active-Active failover with automated health checks.

• Established Site-to-Site IPsec and L2TP/IPsec VPN tunnels (MikroTik/FortiGate) with HA redundancy, securely interconnecting 5 branch offices and AWS VPC workloads.

• Deployed Jenkins-driven Dockerized MikoPBX VoIP platform with SIP routing, IVR configuration, Zabbix monitoring, and automated backup workflows supporting 100+ concurrent calls.

• Implemented pfSense and FortiGate firewalls with DoS mitigation, NAT, and granular port-forwarding policies, reducing security incidents across network perimeter.

• Integrated Zabbix monitoring for WAN uptime, packet-loss detection, SLA enforcement, and automated quarantine of degraded ISP links achieving consistently high network availability. KEY PROJECTS - GOLDFIN LIMITED

Cloud-Based Corporate Email Server

Technologies: Ubuntu, Postfix, Dovecot, Nginx, SSL/TLS, SPF/DKIM/DMARC, Fail2Ban, ClamAV, Spamhaus, AWS EC2, ELB, Auto Scaling, S3, Cron

Skills: Email Infrastructure, Cloud Security, Messaging Protocols, Anti-Spam Engineering, Automated Backup & Recovery

• Designed and deployed a corporate-grade cloud email server with Postfix (SMTP) and Dovecot (IMAP/POP3) on AWS EC2 behind an ELB with Auto Scaling, serving 200+ mailbox users.

• Implemented SPF, DKIM, and DMARC DNS authentication records alongside TLS encryption for all mail transport, achieving enterprise-class deliverability and regulatory compliance.

• Integrated Spamhaus DNS blocklists, ClamAV malware scanning, and Fail2Ban brute-force prevention to significantly reduce spam, phishing, and unauthorized access attempts.

• Automated SSL certificate renewal, mail queue management, and S3-based backup routines via cron, ensuring uninterrupted, compliant email operations with zero manual maintenance.

• Configured end-user Outlook clients for secure IMAP/SMTP access, ensuring seamless synchronization across all corporate departments.

Active Directory & Centralized File Server Infrastructure Technologies: Windows Server 2019, Active Directory, PowerShell, RBAC, DHCP, DNS, LDAP, GPOs, NTFS Permissions, BitLocker, Task Scheduler

Skills: Identity & Access Management, Windows Server Administration, PowerShell Automation, Group Policy, Disaster Recovery, Security Compliance

• Designed and deployed a centralized Active Directory infrastructure with structured OUs, RBAC, and LDAP integration enabling secure, role-based access for all corporate users across multiple branches.

• Established a centralized File Server with NTFS permission-based departmental folder structures and integrated DHCP and DNS for automated IP allocation and name resolution across branches.

• Developed PowerShell automation scripts for daily and incremental backups, cross-branch data consolidation, and AD replication monitoring eliminating manual intervention and ensuring rapid recovery.

• Enforced corporate security standards via GPOs covering password policies, login restrictions, USB access control, control panel lockdown, and system hardening.

CI/CD Deployment of WordPress, Java & Node.js Applications on AWS Technologies: AWS EC2, Jenkins, Docker, Docker Compose, AWS ECR, Nginx, MySQL, GitHub, Webhooks, Zabbix, SSL/TLS, Ubuntu

Skills: CI/CD Automation, Containerization, Application Deployment, Database Management, Monitoring & Alerting, Security

• Built and managed a containerized CI/CD platform for WordPress, Java, and Node.js applications using Jenkins declarative pipelines with GitHub Webhooks for automated deployments on code commits.

• Dockerized all application stacks with Docker Compose, configured persistent volumes for data durability, and managed versioned images in AWS ECR for centralized, secure image storage.

• Configured Nginx as a reverse proxy with SSL/TLS termination and automated certificate renewal; integrated Zabbix for container health, database performance, and uptime monitoring with threshold-based alerting.

• Reduced deployment errors by over 70% and streamlined development-to-production workflows, delivering a resilient, highly available hosting environment.

Enterprise LAN/WAN Network with Multi-ISP Failover Technologies: MikroTik RB2011, Nuclias Controller, VLANs, QoS, ACLs, NAT, MAC Filtering, VNC, RDP, Firewall Rules Skills: Network Architecture, WAN Optimization, Wireless Management, Remote Access Security, Network Monitoring

• Designed and deployed a scalable multi-branch LAN/WAN infrastructure with VLAN segmentation per department, inter-VLAN routing, and QoS policies for critical traffic prioritization.

• Configured multi-ISP Active-Active WAN failover with automated health checks, NAT, and optimized routing policies achieving 99.9% network uptime across all locations.

• Deployed Nuclias Controller for centralized SSID management, load balancing, guest Wi-Fi isolation, and AP firmware monitoring; enforced endpoint security via MAC filtering and VLAN isolation. Hybrid Cloud Connectivity & Site-to-Site VPN Architecture Technologies: AWS VPC, Site-to-Site VPN, IPsec (AES-256, IKEv2), MikroTik, FortiGate, L2TP/IPsec, Route Tables, NACLs, IAM, CloudWatch, CloudTrail

Skills: Hybrid Cloud Architecture, VPN Engineering, Network Security, Identity Federation, High Availability

• Designed and deployed a secure hybrid cloud architecture connecting on-premises datacenters across 5 branch offices with AWS VPC using Site-to-Site IPsec VPN tunnels with AES-256 encryption and IKEv2.

• Implemented redundant dual-tunnel VPN configurations for automatic failover, achieving high availability for inter-branch and cloud-to-on-prem workloads.

• Applied firewall ACLs, NACLs, and IAM-based access control for least-privilege segmentation; integrated on-premises Active Directory with AWS for unified authentication and identity management. MikoPBX VoIP Platform with Automated CI/CD

Technologies: MikoPBX, Docker, Docker Compose, Jenkins, GitHub Webhooks, MySQL, Nginx, Zabbix, Ubuntu, SIP, IVR Skills: VoIP Engineering, CI/CD Automation, Containerization, Telephony Management, Monitoring & SLA

• Deployed and containerized MikoPBX on Ubuntu with MySQL backend and Nginx web interface, managing SIP trunks, call routing, extensions, IVR menus, and voicemail for 100+ concurrent calls.

• Built Jenkins declarative pipelines integrated with GitHub Webhooks to automate repository cloning, Docker container builds, deployments, and post-deployment health validations.

• Reduced manual configuration and update time through CI/CD automation; integrated Zabbix monitoring for uptime, SIP channel availability, and server health with automated alerting. pfSense Firewall Deployment & Network Security Implementation Technologies: pfSense, VMware, NAT, VLANs, DHCP, DNS, OpenVPN, Snort IDS/IPS, SSL/TLS, Traffic Shaping, Rsyslog, Firewall Rules

Skills: Network Security, Firewall Administration, IDS/IPS, VPN Configuration, Virtualization, Logging & Monitoring

• Deployed pfSense as a virtual appliance on VMware with multi-interface WAN/LAN configuration, implementing NAT, DHCP, DNS, VLAN segmentation, and granular firewall rules for enterprise traffic control.

• Integrated Snort IDS/IPS for real-time intrusion detection and OpenVPN for secure remote access; applied traffic shaping, SSL/TLS, and port forwarding for performance optimization.

• Configured centralized logging, real-time monitoring dashboards, and scheduled automated backups significantly reducing unauthorized access attempts and improving overall network resilience. Windows Server Backup & Disaster Recovery Configuration Technologies: Windows Server Backup, PowerShell, Task Scheduler, wbadmin, BitLocker, VSS (Volume Shadow Copy), Active Directory, Remote Network Share

Skills: Disaster Recovery, Backup Automation, Business Continuity, PowerShell Scripting, System Administration

• Configured and automated Windows Server Backup for full-server and system-state backups of the DR site, including Active Directory scheduling off-peak daily runs via Task Scheduler and PowerShell.

• Implemented BitLocker encryption for backup data security and enabled VSS for application-consistent snapshots; configured dual destinations (local disk + remote network share) for redundancy.

• Validated restore procedures through simulated failure scenarios, ensuring point-in-time recovery with minimal downtime; documented all processes and trained IT team on routine maintenance. IT Support & Network Administration (Financial Organization) Technologies: Windows Server, IPsec VPN, VNC, ERP, LMS, DHCP, DNS, Firewall, Routers & Switches, Wi-Fi APs, CCTV

(NVR/DVR), PowerShell, System Monitoring Tools

Skills: IT Operations, Network Administration, End-User Support, Infrastructure Management, CCTV & Physical Security

• Served as sole IT Support Engineer for a financial organization, handling 100+ support queries per month across systems, networks, and security layers supporting Windows, macOS, and Android platforms.

• Maintained IPsec VPN tunnels for secure inter-branch communication, administered CCTV infrastructure (NVR/DVR), configured port forwarding, and resolved LAN/WAN connectivity issues to maintain uninterrupted operations.

• Developed proactive monitoring practices that reduced downtime and improved SLA compliance, while maintaining network security and stability through structured patch management and backup procedures. AWS Cloud & Infrastructure Intern 2024

Systems Limited Lahore, Pakistan

• Designed secure 3-tier AWS architectures using VPC, public/private subnets, NAT Gateway, Application Load Balancer, and Auto Scaling Groups with CloudWatch-driven automated scaling policies.

• Implemented same-account and cross-account VPC peering with route tables, NACLs, and IAM role-based access for secure private connectivity between development and production environments.

• Built Jenkins pipeline-as-code integrated with Terraform for automated EC2, VPC, subnet, and Security Group provisioning using S3 remote state and GitHub Webhooks.

• Containerized Java applications using Docker and Docker Compose, automating image builds, versioning, and deployment to AWS ECR with Jenkins declarative pipelines.

• Deployed Ubuntu EC2 workloads with Nginx reverse proxy and Let's Encrypt SSL; integrated CloudWatch and Zabbix for comprehensive metrics, logs, and SLA dashboards.

KEY PROJECTS - SYSTEMS LIMITED

Multi-Tier AWS Application Deployment

Technologies: AWS EC2, VPC, ALB, Auto Scaling Groups, CloudWatch, Terraform, Jenkins, Ubuntu, IAM, NACLs, S3 Skills: Cloud Architecture, Infrastructure as Code, High Availability, Auto Scaling, CI/CD, Security Best Practices

- Architected a highly available, scalable 3-tier application infrastructure on AWS with separate subnets for frontend, application, and database layers, configured ALB for traffic distribution across multiple Availability Zones.

- Implemented Auto Scaling Groups for application and frontend tiers with CloudWatch-driven scaling policies, ensuring cost efficiency and performance under variable load.

- Used Terraform for repeatable IaC provisioning and Jenkins pipelines for automated application deployments; enforced IAM roles, Security Groups, and NACLs for least-privilege inter-tier access. Java Application Containerization with Docker & AWS ECR Technologies: Docker, Docker Compose, Java, Nginx, SSL/TLS, AWS ECR, Ubuntu, Jenkins, GitHub Webhooks Skills: Containerization, CI/CD Automation, Reverse Proxy Configuration, Image Registry Management, DevOps Engineering

- Built Docker images for Java applications ensuring environment consistency across development, staging, and production; managed multi-service orchestration with Docker Compose including persistent storage configuration.

- Configured Nginx reverse proxy with SSL/TLS and automated certificate renewal; integrated Jenkins pipelines with GitHub Webhooks for automated build, test, and deploy workflows.

- Centralized container image management in AWS ECR with versioned, secure storage reducing manual deployment errors and improving release velocity.

Zabbix Server CI/CD Deployment

Technologies: Zabbix, Jenkins, Docker, Docker Compose, GitHub Webhooks, MySQL, Nginx, Ubuntu, SNMP Skills: Monitoring Infrastructure, CI/CD, Containerization, Network Observability, Alerting & SLA Management

• Deployed containerized Zabbix Server with MySQL backend and Nginx dashboard using Docker Compose, integrated SNMP discovery for automated monitoring of servers, switches, routers, and endpoints.

• Built Jenkins declarative pipelines with GitHub Webhooks for automated Zabbix deployments and health checks; configured threshold alerts, SLA dashboards, and Zabbix notifications for proactive operational management. EDUCATION

Bachelor of Science in Computer Science (BSCS)

Lahore Garrison University Lahore, Pakistan

CERTIFICATIONS & PROFESSIONAL TRAINING

• AWS Cloud Practitioner Training

• DevOps Foundations (CI/CD) - LinkedIn Learning

• Docker Compose - LinkedIn Learning

• AWS Console Management - LinkedIn Learning

• MikroTik Router Administration

• CCNA (Cisco Certified Network Associate) Training

• Linux System Administration



Contact this candidate