About

Work Experience

• Senior DevOps Engineer, The Crown Prince Court of Abu Dhabi

  Jan, 2026 - Present

  Lead DevOps and platform engineering initiatives for a highly regulated, air-gapped application environment within the Crown Prince Court.

  • Architect and manage a fully air-gapped, highly regulated application platform, enforcing strict security, compliance, and network isolation controls across all environments.

  • Own and administer on-premise Azure DevOps Server, including project provisioning, repository management, RBAC and privilege assignments, and lifecycle governance of development teams.

  • Design, implement, and maintain end-to-end CI/CD pipelines for microservices and applications, supporting build, test, and deployment workflows for Dockerized workloads.

  • Provision and manage self-hosted Azure DevOps agents, optimizing build performance and ensuring compatibility with isolated infrastructure constraints.

  • Collaborate closely with development teams to define deployment architectures, CI/CD strategies, and environment requirements for microservices-based applications.

  • Deploy and operate microservices platforms using Docker and Kubernetes, supporting applications built with Spring Boot, FastAPI, React, and mobile clients.

  • Administer and integrate Keycloak as the central identity provider, implementing secure authentication and authorization using OIDC, LDAP, and Kerberos.

  • Manage and maintain application servers and runtime environments, ensuring high availability, performance, and compliance with internal security policies.

  • Operate and maintain MinIO object storage for internal artifact and application data management within the air-gapped ecosystem.

  • Deploy and manage Kong API Gateway to centralize API traffic management, enforce security policies, and enable scalable service exposure.

  • Implement observability and monitoring solutions (Prometheus, Grafana) to ensure proactive detection and resolution of system and application issues.

  • Drive DevSecOps practices by embedding security controls into CI/CD pipelines and platform design, aligning with organizational compliance requirements.

• DevOps Engineer, The Pump Factory

  Apr, 2024 - Nov, 20251 year 7 months

  The Pump Factory is a fitness brand located in Iloilo city, Philippines.

  • Helped develop the Gym Management Solution System (PumpApp) written in JavaScript and other backend frameworks.

  • Structured complete CI/CD workflows with Jenkins, and Azure Pipelines to automate builds, tests, deploys, and releases of NPM packages, containers, and other build artifacts hosted on Azure Container Registry, Dockerhub, and storage services like S3.

  • Manage resource deployments in Azure and AKS using ARM templates / Bicep, and Terraform.

  • Established robust monitoring with Prometheus Operator and Grafana to proactively detect issues.

  • Build K8s clusters (bare-metal and on-cloud) and manage its resources by writing our own Helm charts.

  • Design different branching and deployment strategies (canary, blue-green) with the dev team.

  • Implement service mesh architectures on all k8s clusters using Istio, Cilium, and other instrumentation tooling to simplify microservices management by unifying traffic routing, scaling, network policies, observability, and service discovery.

• DevOps Engineer, The Executive Office

  Feb, 2018 - Mar, 20246 years 1 month

  His Highness Sheikh Mohammed bin Rashid's office.

  • Led the automation of CI/CD pipelines, ensuring consistency and efficiency across development, staging, and production environments.

  • Architected scalable and highly available cloud solutions on Azure and AWS, optimizing cloud resource utilization.

  • Designed and deployed containerized applications using Docker and orchestrated environments using Kubernetes with Helm and Git-Ops (Argo CD), improving deployment speed.

  • Developed and implemented Infrastructure as Code (IaC) practices using Terraform, Bicep and CloudFormation, streamlining infrastructure provisioning for multi-cloud environments.

  • Applied configuration management using Ansible, automating deployment processes and system configurations across Linux-based infrastructure.

  • Integrated observability and alerting with Prometheus, Grafana, and AlertManager for centralized logging and Elastic Stack for comprehensive monitoring.

  • Collaborated with different dev teams in implementing Agile and DevSecOps, embedding security and testing protocols into the CI/CD workflows.

  • Utilized Bash for scripting automation and created custom scripts to optimize deployment and management processes.

  • Documented and standardized deployment processes, along with infrastructure configurations, providing comprehensive technical documentation and improving cross-team collaboration.

• Senior System Engineer (Cloud Adoption), The Executive Office

  May, 2015 - Feb, 20182 years 9 months

  • Successfully deployed several platforms in conjunction with the TEO team such as Smart Dubai, MBRMajlis, MBRCLD, Arab Strategy Forums, and Area2071.

  • Migrated several on-premises environments to Azure and AWS to significantly cut expenses.

  • Enhanced security standards by implementing network policies, SSL/TLS encryption, and firewall configurations complying with industry regulations.

  • Managed Azure Active Directory (Entra ID) roles, RBAC assignments, and Privileged Identity Management (PIM) for secure access control.

  • Deployed and managed Azure Virtual Networks (VNets), Network Security Groups (NSGs), Application Gateways, and Azure Firewalls.

  • Designed and implemented Azure Policies to enforce organizational standards.

  • Configured Azure Monitor, Log Analytics, and Application Insights to capture telemetry and performance metrics across TEO's apps and infrastructure.

  • Deployed and managed virtual environments using Hyper-V and VMware, performing backups, and implementing disaster recovery solutions.

• System Engineer, Chronix Automotive Services

  Oct, 2012 - Dec, 20131 year 2 months

  As System and Network Engineer at Chronix Automotive Services

  • Administered Windows Server environments, managing Active Directory with LDAP, multi-domain setups, and Group Policies for user access.

  • Managed Cisco devices, configuring VLANs, OSPF, EIGRP, and security policies.

  • Configured and maintained CentOS and RHEL servers, automated tasks with Bash scripting, and ensured system reliability through regular monitoring and patching.

• System and Network Engineer, Iplus Intelligent Networks

  Feb, 2010 - Aug, 20122 years 7 months

  Worked for a cruising company as Systems and Network Engineer.

  • Designed disaster recovery plans and backup schedules for critical services, ensuring data protection and minimizing downtime.

  • Developed scripts to automate tasks like user provisioning and backup routines across Windows and Linux, improving efficiency and reducing manual work.

  • Implemented network security policies, firewalls, and VPNs, and monitored system health and performance to quickly resolve threats and issues.

• Technical Support Engineer, TeleTech Management

  Aug, 2008 - Feb, 20096 months

  • Acted as Technical Support for clients. The work also involved network monitoring, asset tracking, and software audits.

• Desktop Engineer, Jardine Direct Company Inc.

  Oct, 2005 - Apr, 20071 year 6 months

  • Worked as Desktop Engineer responsible for first level escalation support. Mostly dealt with desktop issues as well as AS400 operational issues.

Skills

Education

Certificates

Interests