Iran
Senior Infrastructure & Cloud Architect with 16+ years of experience designing, building, and optimizing large-scale, mission-critical systems across complex enterprise environments. Combines deep expertise in distributed systems, cloud platforms, and software-defined datacenter (SDDC) with a strong DevOps mindset to deliver scalable, highly available, and resilient infrastructure platforms. Strong background in Linux system engineering, performance tuning, system hardening, and automation using Bash and Ansible, focusing on reliability, consistency, and operational efficiency. Extensive experience with cloud and virtualization platforms including OpenStack, KVM, and VMware, alongside container ecosystems such as Kubernetes, K3s, and OpenShift—enabling standardized, automated, and scalable application delivery. Deep expertise in distributed storage systems including Ceph, as well as ZFS, DRBD, and enterprise SAN/NAS solutions, covering design, optimization, replication, and disaster recovery. Strong database engineering experience with Oracle Database and MariaDB/MySQL ecosystems, focusing on high availability, clustering, performance tuning, and backup/DR strategies. Experienced in designing observability-driven systems using Prometheus, Grafana, and Zabbix, integrating monitoring, alerting, and telemetry into the core of infrastructure and operations. Applies DevOps principles as part of infrastructure architecture by designing CI/CD pipelines, automating delivery workflows, implementing Infrastructure as Code (IaC), and improving system performance through key metrics such as Lead Time, Deployment Frequency, MTTR, and Change Failure Rate. Proven ability in designing high-availability architectures, failover systems, and scalable clusters, reducing downtime, improving performance, and ensuring business continuity. Acts as a strategic advisor, helping organizations modernize infrastructure, adopt DevOps culture, and align technology with business goals.
-Assessed DevOps maturity using structured frameworks (e.g., CALMS), identified gaps across culture, observability, and automation, and defined actionable roadmaps aligned with business and operational goals. -Designed and deployed Percona Monitoring and Management (PMM) to identify query bottlenecks, reducing average database response time by ~35% and enabling proactive capacity planning. and integrated MySQL/MariaDB instances for full-stack performance monitoring, query analytics, and proactive database health insights. -Performed full installation, deployment, and security configuration of Wazuh for enterprise-level monitoring, threat detection, and centralized SIEM operations -Implementing and managing configuration management solutions using Foreman (Datacenter Lifecycle Management) to automate system provisioning, enforce consistent configurations, and optimize infrastructure operations -Implementation, configuration, and lifecycle management of Zabbix in scalable, secure, and high-availability monitoring architectures, encompassing infrastructure, applications, databases, networks, and cloud platforms, with active configuration of alerting workflows (Email & SMS) aligned with incident management and operational escalation policies -Architected secure remote access solutions using modern tunneling and proxy-based architectures, focusing on encryption, traffic obfuscation, high availability, and zero-trust principles. -End-to-End Implementation, Configuration, and Operational Management of Postfix (SMTP Relay & Mail Infrastructure -Design and implementation of SSL/TLS architectures for multiple projects, covering certificate lifecycle management, CA integration, protocol and cipher hardening, HSTS enforcement, and secure communication across web servers, load balancers, and containerized platforms. -Designing and implementing a reliable workflow for building Docker images and deploying Laravel-based projects on production servers.
Ceph is an open-source, distributed storage system designed to provide highly scalable object, block, and file storage in a unified platform. Its architecture allows it to scale horizontally, making it suitable for cloud environments, data centers, and Software-Defined Data Centers (SDDC). Ceph is known for its resilience, self-healing capabilities, and ability to handle large amounts of data. ▎Critical Role of Ceph in Various Domains -DevOps: • Continuous Integration/Continuous Deployment (CI/CD): Ceph can store and manage large volumes of data generated during CI/CD pipelines, ensuring that build artifacts and logs are readily available. • Scalability: As development teams scale their applications, Ceph can easily expand storage capacity without downtime, supporting rapid iteration and deployment cycles. • Automation: Ceph integrates well with automation tools and orchestration platforms like Kubernetes, enabling seamless storage management in DevOps workflows. -Security: Data Redundancy: Ceph’s replication and erasure coding ensure that data is securely stored across multiple nodes, minimizing the risk of data loss. Access Control: Ceph supports role-based access control (RBAC) and authentication mechanisms, allowing organizations to enforce strict security policies on data access. • Encryption: Data can be encrypted both at rest and in transit, providing an additional layer of security for sensitive information. -Infrastructure: • Unified Storage Solution: Ceph provides a single platform for object, block, and file storage, simplifying infrastructure management and reducing operational complexity. • Resource Efficiency: By using commodity hardware, Ceph reduces costs associated with traditional storage solutions while providing high performance and reliability. • Self-Healing: Ceph automatically detects and repairs data inconsistencies or hardware failures, ensuring high availability and reliability of infrastructure
Tutor of mysql
Researcher in the field of cryptocurrencies and its concepts and its Ecosytem in IT and organizational excellence - Metaverse Coaching - Types of mining methods, especially based on storage - Investigating growing trends for epidemic use, analyzing its benefits on organizations for organizational improvement
Diyako Secure Bow was founded by a group of engineers with academic education and international specialized degrees with more than a decade of activity in the field of cyber security and related technologies. In DSB Co, distinctive security-oriented services in Four areas: ~Information Security ~Network Security ~Offensive Security ~(Cyber Security) With three approaches, Technical(Controls), System(Processs) and Training. Solution: CISO as a Service (VCISO) Subset Solutions: o CyberSecurity Strategy o Governance, Risk, Compliance (GRC) o CyberSecurity Technical and System Audits o Designing and Implementing CyberSecurity-Oriented Controls o Specialized and Customized CyberSecurity Training, related technologies o Career Coaching, Mentoring and Providing CyberSecurity Expert Manpower (HR) The Services Cycle: •Requirement Assessment •Research and Development (R,D) •Design •Implementation •Operation •Hardening •FineTune (Optimization) •Audit •Maturity •Support
-Designed and Implemented ELK Stack Cluster. -Install , Config , Manage Azure Devops -Investigating ISMS structures for the structure and processes of Devops -Install , Config , Manage Gitlab CI/CD - Build and Maintain CI/CD Pipeline -Install , Config , Manage Nexus Repository Management -Deploying, configuring, and managing Docker Swarm clusters -Install, Configure, and Manage SonarQube for integration in CI/CD pipelines -Containerizing .NET applications using optimized multi-stage Dockerfiles, improving image size, portability, and deployment consistency.