MTFreelancer profile translated to English.
Back to original languageAbout Mohmaed Taha
Cloud & DevOps Engineer specialized in Microsoft Azure, with 4.5 years of experience in designing, industrializing, and operating secure cloud environments. I work on infrastructure, governance, security, automation, and operational maintenance topics on Azure, in demanding production contexts. My expertise notably covers Landing Zones, Azure governance, networking and security (Policy, RBAC/PIM, VNet, NSG, Bastion, Azure Firewall, Key Vault, Private Endpoints), Infrastructure as Code with Terraform / Terragrunt, as well as automation and CI/CD with Azure DevOps. I also support application projects.
French
Native or bilingual
Can work on-site
Paris (up to 50km)
Experience
- AmadeusCloud DevOps EngineerSeptember 2024 - Today (1 year and 9 months)- Contribution to the Move2Cloud program to accelerate the migration, standardization, and industrialization of application environments to Microsoft Azure in a complex, multi-subscription context.- Design and evolution of secure Azure Landing Zones: governance, Management Groups, Azure Policy / Initiatives, tagging, RBAC / PIM, and structuring of cloud environments.- Participation in the MCO/MCS of Azure platforms, handling incidents, evolution requests, compliance monitoring, and continuous improvement.- Industrialization of deployments with Terraform / Terragrunt using reusable modules and robust provisioning standards.- Implementation of secure Azure network architectures: hub-and-spoke, VNets, subnets, peering, UDR, NSG, Azure Firewall, Bastion, Private Endpoints, and DDoS Protection.- Deployment and securing of Azure infrastructure, platform, and application exposure services.- Support for web, data, and AI workloads on Azure in a production environment, with a focus on security, integration, and operations.- End-to-end automation of deployments via Ansible, ServiceNow, and Azure DevOps to ensure reliability and traceability throughout the deployment cycle.Technical environment: Azure, Terraform, Terragrunt, Ansible, Azure DevOps, ServiceNow, Python, Bash.
- EkinopsCloud DevOps EngineerTELECOMMUNICATIONSSeptember 2023 - August 2024 (11 months)91300 Massy, France- Design and deployment of a secure Azure Landing Zone in a hub-and-spoke architecture, with environment structuring and cloud foundation setup.- Implementation of Azure infrastructure, network, and security components: Management Groups, Azure Policy / Initiatives, RBAC, VNets, subnets, NSG, Azure Firewall, Bastion, Private Endpoints, Private DNS, VPN Gateway.- Industrialization of Azure deployments via Terraform, with reusable modules and standardization of infrastructure and platform resource provisioning.- Participation in the MCO/MCS of Azure environments: incident management, evolution requests, continuous improvement, and compliance monitoring.- Deployment and administration of Azure platform and security services: Key Vault, Storage Accounts, Application Gateway WAF, Log Analytics, Azure Monitor, Cost Management.- Automation of configuration and post-provisioning with Ansible on IaaS components and systems.- Setup of Azure DevOps pipelines to manage Terraform deployments and orchestrate infrastructure operations.- Support for web, data, and analytics projects on Azure, integrating services like Databricks and Azure Data Factory in secure and industrialized environments.- Contribution to the setup of a container platform based on AKS, ACR, and Helm for hosting application workloads.Technical environment: Azure, Terraform, Ansible, Azure DevOps, Docker, Helm, Databricks, Azure Data Factory, Python, Bash.
- WavestoneCloud Security ConsultantFebruary 2022 - August 2023 (1 year and 6 months)Paris, FranceInternal POC —AWS• Design of a multi-account landing zone compliant with PSSI/ISSP: AWS Organizations & SCP, dedicated accounts (security/logging), hub-and-spoke VPC, SG/NACL, KMS, CloudTrail org, S3 log centralization.• IaC Industrialization with Terraform: versioned reusable modules, S3 backend + DynamoDB locking, workspaces per environment, tag standards; executions via GitLab CI/Jenkins (fmt/validate/plan/apply with approvals).• Containerization & execution on ECS (Fargate/EC2): multi-stage Dockerfiles, task roles, scanned ECR images/retention, ALB exposure; logs & metrics in CloudWatch.• Observability & FinOps: CloudWatch dashboards/metrics, centralized AWS Config; Budgets/Cost Explorer; Python/Bash scripts for stopping non-prod and cleaning artifacts.Client Mission —Azure (Build & Run)• Build & Run of a landing zone: Management Groups, Azure Policy/Initiatives, RBAC/PIM, VNets/subnets, Azure Firewall, NSG, Bastion, Private Endpoints, Key Vault, Storage Account, Application Gateway WAF, ACR.• Reusable Terraform/Terragrunt templates for provisioning services (network, security, platform); secure state, documented variables/outputs, explicit dependencies.• AKS platform: images from ACR, Helm deployments, ingress (AGIC/NGINX), HPA & cluster autoscaler, secrets via Key Vault CSI driver; logs & metrics centralized in Log Analytics.• Post-provisioning automation: Ansible/AWX playbooks for VMs (install,
Recommendations
Be the first to recommend Mohmaed Taha
Help this freelancer shine by sharing your experience working together.
These freelancer profiles also match your criteria
Agatha Frydrych
Backend Java Software Engineer
4.7
(3)
2
Baptiste Duhen
Fullstack developer
4.6
(4)
5
Amed Hamou
Senior Lead Developer
4
(2)
7
Audrey Champion
Web developer
4.3
(3)
4
Education
- Certified: Terraform Associate (003)HashiCorpCertified: Terraform Associate (003)
- Master's Degree in EngineeringENSEIRB-MATMECA2022Diplôme d'Ingénieur