Profile photo of Hamza Hssaini

Hamza Hssaini

Cloud & DevOps Consultant

I design and automate scalable, production-ready cloud infrastructures using Azure, AWS, Kubernetes, and CI/CD pipelines.

  • Azure
  • AWS
  • Kubernetes
  • Terraform
  • Ansible
  • Gitlab CI/CD
Technical Insights
Delivery Metrics Dashboard Engineering Notes

Professional Experience

DevOps engineer focused on Kubernetes platforms, microservices infrastructure, and automated CI/CD delivery pipelines for cloud-native applications.

DevOps Consultant (End-of-Studies Internship)

Feb 2026 – Present
Indatacore | Casablanca, Morocco
Focus: Kubernetes platform operations and GitOps-driven application delivery.
  • Designed and operated enterprise Kubernetes clusters using RKE2, managed via Rancher for centralized cluster lifecycle management.
  • Implemented a GitOps deployment architecture using ArgoCD to automate application delivery and maintain configuration consistency across environments.
  • Developed reusable Helm charts to standardize microservice packaging and deployment workflows.
  • Built a production observability platform using Prometheus and Grafana to monitor cluster health, service metrics, and infrastructure performance.
Stack: Kubernetes • RKE2 • Rancher • ArgoCD • Helm • GitLab CI • Prometheus • Grafana

DevOps Engineer (Remote)

Dec 2025 – Jan 2026
Teknologiate | Remote
Focus: CI/CD automation and cloud deployment for a microservices-based platform.
  • Designed and implemented a CI/CD architecture using GitLab CI to automate build, test, and deployment pipelines for microservices.
  • Automated application deployment workflows to Azure Web Apps for reliable and repeatable releases.
  • Implemented environment isolation (Dev / Test / Prod) and secure secrets management.
  • Standardized deployment processes to reduce manual operations and configuration drift.
Stack: GitLab CI • Azure • Microservices • CI/CD • Secrets Management

DevOps Intern — Kubernetes

Feb 2025 – Jun 2025
Bairoutech | Fez, Morocco
Focus: Containerization and Kubernetes orchestration of cloud-native applications.
  • Containerized a Node.js and MongoDB application stack and deployed it on Kubernetes.
  • Configured NGINX Ingress, persistent volumes (PVC), and health probes (liveness/readiness).
  • Improved application availability and reduced deployment time by 40%.
Stack: Kubernetes • Docker • Node.js • MongoDB • NGINX Ingress

Real-World DevOps Projects

Designed, automated, and deployed with production standards.

GitOps Kubernetes CI/CD Platform

Fév 2026 – Mars 2026
Personal

GitOps-driven CI/CD platform using GitHub Actions, ArgoCD, Kubernetes, and Prometheus.

Problem

Traditional CI/CD struggles with configuration drift, manual Kubernetes updates, and lack of real-time cluster visibility.

Solution

Built a decoupled GitOps architecture using GitHub Actions for CI and ArgoCD for CD. Kubernetes state is continuously synced from Git, secured, and monitored by a Prometheus/Grafana stack.

What I Built

  • Architected GitOps flow separating app code and infrastructure manifests
  • Automated Docker builds and registry publishing via GitHub Actions
  • Configured ArgoCD for continuous, automated Kubernetes state synchronization
  • Deployed Prometheus & Grafana via Helm for real-time observability and alerts
Kubernetes GitHub Actions ArgoCD Helm Docker Prometheus Grafana GitOps

Azure Microservices CI/CD Platform

Dec 2025 – Jan 2026
Work

Production-grade microservices delivery with GitLab CI and Azure Web App deployment.

Problem

Solution

What I Built

  • Designed CI/CD pipelines for Auth (.NET) and React frontend (GitLab CI)
  • Automated build, test, and deployment to Azure Web App
  • Implemented environment separation (dev/test/prod) and secure secrets handling
  • Standardized a repeatable release flow to reduce manual errors
Azure GitLab CI .NET React Secrets

Cloud Automation with Ansible (AWS)

Dec 2025
Personal

Server automation and hardening on AWS using dynamic inventory and secrets management.

Problem

Solution

What I Built

  • Configured dynamic EC2 inventory using aws_ec2
  • Automated Nginx, Docker, MySQL, and Redis installation & configuration
  • Secured secrets using Ansible Vault (encrypted workflow)
  • Hardened baseline server configuration with idempotent runs
AWS EC2 Ansible Ansible Vault Linux Nginx Docker MySQL Redis

Hybrid Azure Architecture (Hub & Spoke)

Oct 2025 – Nov 2025
Personal

Secure hybrid connectivity with segmentation, VPN IPSec, and Terraform-based IaC.

Problem

Solution

What I Built

  • Designed hub-spoke network segmentation for controlled east/west traffic
  • Provisioned infrastructure using Terraform (repeatable, versioned IaC)
  • Secured hybrid connectivity using VPN IPSec (on‑prem ↔ cloud)
  • Automated infrastructure delivery with CI/CD for IaC
Azure Terraform VPN IPSec Networking CI/CD

Kubernetes Production Deployment

Feb 2025 – Jun 2025
Work

Containerized Node.js + MongoDB with ingress, persistence, and production-grade health checks.

Problem

Solution

What I Built

  • Deployed a Node.js + MongoDB stack with Kubernetes manifests
  • Configured ingress, services, and namespaces for clean routing & isolation
  • Implemented persistence (PVC) and readiness/liveness probes
  • Scaled workloads with HA mindset (replicas + stable rollout patterns)
Kubernetes Docker Node.js MongoDB Ingress PVC

Azure RAG Chatbot (AI + Cloud)

2025
Personal

Enterprise RAG pipeline on Azure with secure backend orchestration and search grounded answers.

Problem

Solution

What I Built

  • Designed end‑to‑end RAG flow (ingestion → embeddings → vector search)
  • Integrated Azure OpenAI and Azure AI Search for grounded retrieval
  • Secured backend orchestration and API access patterns
  • Delivered a production-ready UI backed by the RAG service
Azure OpenAI Azure AI Search Blob Storage Node.js Express

Migration to Azure (Cloud Modernization)

2025
Personal

Modernized an application stack by migrating to Azure with production-focused networking, observability, and repeatable deployments.

Problem

Solution

What I Built

  • Assessed the workload and designed a target Azure landing approach (networking + access)
  • Migrated services with minimal downtime and validated end-to-end connectivity
  • Hardened the baseline with least-privilege access and environment separation
  • Enabled monitoring & logging to track health and operational signals
Azure Migration Networking Monitoring Security

Metrics & Engineering Impact

Measurable results delivered through automation, cloud, and CI/CD.

+40%

Deployment Speed

Faster deployments through CI/CD automation

Built with GitHub Actions/GitLab CI pipelines and repeatable deploy steps

−50%

Delivery Time

Reduced release time using IaC & pipelines

Terraform IaC + standardized pipeline stages to cut manual release steps

+30%

Performance Gain

Improved app performance after Azure migration

Azure migration with runtime tuning (sizing, networking, caching)

−20%

Cost Optimization

Lower cloud costs via re-architecture & monitoring

Right-sizing + monitoring alerts (Azure Monitor/CloudWatch) to prevent waste

Metrics measured across Azure, AWS, and Kubernetes-based production projects.

How I Work: DevOps Operating Model

Production-grade delivery with clear standards and measurable outcomes.

Infrastructure as Code

Terraform & Ansible for reproducible, versioned environments

CI/CD First Approach

Automated build, test, and deploy with GitHub Actions / GitLab CI

Secure by Design

IAM, network segmentation, VPNs, and least-privilege access

Cost & Performance Optimization

Right-sizing, monitoring, and cloud cost awareness

Production-Ready Documentation

Clear READMEs, diagrams, and operational notes

Certifications & Professional Training

Selected certifications and hands-on training aligned with Cloud & DevOps delivery in production environments.

Dec 10–12, 2025

Ansible Essentials — Automation & Configuration Management

Orange Digital Center Club – Sidi Maârouf

Hands-on training focused on infrastructure automation, configuration management, and DevOps best practices using Ansible.

View certificate (PDF)
Cybersecurity & Cloud Foundations

Foundations of Cybersecurity

Google · Coursera

July 2024

Core cybersecurity principles: threats, risk management, security frameworks, and best practices.

View credential
Cybersecurity & Cloud Foundations

Play It Safe: Manage Security Risks

Google · Coursera

August 2024

Practical approaches to identifying, assessing, and mitigating security risks in modern IT environments.

View credential

Education

Academic background supporting cloud delivery, automation, and secure operations.

Let’s Build Reliable Cloud Infrastructure

Cloud & DevOps collaboration with a production-first mindset. Open to roles, consulting, and technical discussions.

LinkedIn GitHub Download CV