Mohamed Amine Azouz

Within AXA's IT department, I act as a DevOps Architect/Lead in various projects operating in agile mode. My role is to design, implement, and maintain a DevSecOps framework to seamlessly support different projects towards the automation of software development and operations, enabling organizations to achieve rapid, reliable, and reproducible software deployment through advanced automation, intelligent toolchains, and a culture of continuous improvement. Developing a scalable and secure DevSecOps architecture aligned with AXA's strategic objectives and the specific needs of each project. Implementing automated continuous integration and continuous deployment (CI/CD) pipelines for fast and reliable deliveries. Integrating security practices throughout the development lifecycle, in close collaboration with cybersecurity teams. Selecting and implementing suitable DevOps tools to promote automation and operational efficiency. Implementing static application security testing (SAST) and dynamic application security testing (DAST). Collaborating with development, operations, and security teams. Attending various architecture committee meetings. Drafting DAT, HLD, LLD, ARB documents, etc.

Tools: Orchestration: Kubernetes, Automation: Ansible, Terraform, Image registry: Jfrog artifactory, Docker trust registry CI/CD: Github action, Jenkins, Package manager: Helm, Cloud: Azure, ADF, ADLS, Azure devops Monitoring: Datadog ETL: Airflow Big Data: Snowflake Others: Jira, service now, Plume Scripting: powershell, shell, python, Azure app service, Azure app container, Docker compose, Docker file Nginx, SAST, DAST, Checkmarx, Sonarqube, Github dependabolt, SCA, Jfrog XRAY, Qualys 12/2022 to 12/2023

Within the digital operations department, I act as a DevOps Engineer in various agile teams and participate in the development of the IoT product made available to our clients for managing their Kubernetes deployments on AZURE and the operational maintenance of the infrastructure as well as the deployed applications. Supervising application platforms and incident management. Implementing an operational mode for production deployment (merge request, pull request, roadmap). Providing operational support to resolve infrastructure and deployment-related issues. Collaborating with development teams for production incidents. Automating project deployments and builds (CI/CD). Writing various scripts. Supporting developers in setting up pipelines and containerizing projects. Upgrading various services deployed on Kubernetes clusters. Communicating SLAs to different project managers. Participating in regular retrospectives to identify improvement opportunities and implement iterative changes. Assisting users/operations teams in case of incidents. Diagnosing, preventing, and resolving incidents or malfunctions. Leading daily stand-ups for operations, IoT, and System teams; participating in crisis cells. Provisioning Azure managed services (IaC) via Terraform and managing script versioning. Tools: Orchestration: Kubernetes, Automation: Ansible, Terraform, Image registry: Jfrog artifactory, Docker trust registry CI/CD: Github action, Jenkins, Package manager: Helm, Cloud: Azure, ADF, ADLS, Azure devops Monitoring: Datadog ETL: Airflow Big Data: Snowflake Others: Jira, service now, Plume Scripting: powershell, shell, python Image registry: Harbor, Docker trust registry CI/CD: GitLab, Jenkins, Package manager: Helm, Cloud:

Within the IT security department, I act as a DevOps Engineer to conduct a study on Azure services that meet the CISO's needs in terms of services and their compliance before implementation. Participating in various perimeter-related meetings: 'Daily Scrum, Synchronization Meeting.' Studying Azure Cloud solutions that meet requirements. Associating all identified risks with Azure solutions. Security Gap Analyses for the group's tenant. Solution validation process. Deploying validated Azure solutions. Ensuring the operational maintenance of solutions in Azure. Supervising all cloud-hosted services. Resolving incidents identified by the Cyber-SOC. Populating the Knowledge Base with procedures and operational documents.

Tools: Project Management: Jira confluence, Security: AAD, AKV, MFA, IAM, Application Gateway Containerization: Docker, Orchestration: Kubernetes, Automation: Ansible Image registry: DTR, Harbor, CI/CD: GitLab, Package manager: Helm, Monitoring: Prometheus, Grafana, Azure app service, Azure app container, Docker