
Aly Ragab
Verified Expert in Engineering
DevOps Engineer and Developer
Dubai, United Arab Emirates
Toptal member since January 3, 2022
Aly has been a DevOps and DevSecOps Engineer for the past six years, specializing in planning, designing, configuring, and implementing a deep level of security. Aly has worked in the GRC and Pen Testing culture and implementation. Before this, he was a Linux and Unix administrator for three years. Aly's areas of expertise include AWS, Kubernetes, MySQL, MongoDB, ELK, Go, HashiCorp Vault, Terraform, and more.
Portfolio
Experience
- CI/CD Pipelines - 5 years
- DevOps - 5 years
- Amazon Elastic Container Service (ECS) - 3 years
- Helm - 3 years
- PCI DSS - 3 years
- Go - 2 years
- Serverless Framework - 1 year
Availability
Preferred Environment
MacOS, Linux, Visual Studio Code (VS Code), DevOps, Burp Suite
The most amazing...
...experience is helping companies develop and secure their digital platforms, making them reliable and available at all times.
Work Experience
Lead DevSecOps Engineer
fintech-galaxy
- Completed the migration to AWS EKS with a very secure and reliable cloud-native architecture based on GRC (Governance, Risk Management, and Compliance).
- Integrated HashiCorp Vault with Kubernetes Microservices.
- Set the main strategy to build an open banking platform in a reliable way using IaC and config management with Centralized Helm charts for Kubernetes.
- Started the ISO/IEC 27001:2022 information security lead implementation.
- Set the strategy for planning the business continuity planning and disaster recovery planning.
- Coached my team in applying and learning the best practices regarding security, reliability, and observability patterns.
Senior DevOps Archetict
Talabat
- Built and managed environments to fulfill PCI DSS compliance requirements and wrote internal tools in Go.
- Implemented and managed policy as code using Open Policy Agent (OPA), Conftest, and Gatekeeper.
- Implemented AWS serverless applications using a serverless framework and implemented and managed Amazon EKS clusters.
- Migrated and implemented centrally templated Helm Charts to assist in deploying 100+ microservices in different AWS EKS clusters.
- Assisted the company in implementing a scaled system design and implemented AWS Secrets Manager and Vault to secure secret data.
- Implemented progressive deployment using Argo CD and Argo Rollouts for blue-green and canary deployments.
- Used a GitHub Actions self-hosted runner to enable secured and private E2E testing.
Lead DevOps Engineer
Hala Company
- Assisted in migrating from a monolithic architecture to a microservices architecture.
- Implemented and managed PCI DSS compliant infrastructures.
- Defined the DevOps-related strategies and tools. Implemented managed the cloud environment based on Oracle Cloud.
- Implemented and introduced IaC using Terraform, managed Kubernetes clusters using Kubespray, and deployed microservices using Helm.
- Implemented CI/CD pipelines using Jenkins for all microservices; shared knowledge with all engineering teams; and defined the culture for introducing infrastructure features, such as RFC documents and POCs.
- Managed four members of the DevOps team and coached them to grow, learn, and apply best practices.
Senior DevOps Engineer
Fly365
- Managed and implemented PCI DSS compliant infrastructures.
- Managed AWS infrastructure based on AWS S3, CloudFront, Lambda Functions, CloudWatch, GuardDuty, Elasticache, and RDS.
- Implemented logging and monitoring for all microservices based on ELK and Prometheus stacks.
- Set up and helped the teams use CI/CD pipelines for 50+ microservices.
- Managed a small DevOps team to stay on the same page with applying best practices at all times.
DevOps Engineer
Transporter Courier Service
- Helped the company design stateless-based microservice architecture and implemented CI/CD for all microservices.
- Assisted in migrating to AWS and implemented a Kubernetes environment based on the kops tool.
- Collaborated with the ITOps team to implement internal LDAP using FreeIPA in order to have an internal, Linux-based LDAP server.
- Worked with ITOps to implement a reliable VoIP server based on Asterisk.
Linux and Unix System Administrator
ECC Solutions
- Managed and monitored IBM Unix AIX Power Servers.
- Managed a TSM backup system, IBM V7000 back-end storage, and IBM AIX LPARS and LAPAR Mobility.
- Provided second-line support for Linux-based applications, helping customers fix and troubleshoot issues on Linux Red Hat, CentOS, Ubuntu, and Debian-based distributions.
Linux System Administrator
World'Vest Base (WVB)
- Managed and implemented Spacewalk servers for network and system provisioning.
- Managed a FortiGate firewall to secure internal networks and implemented segregated internet connectivity and site-to-site VPN.
- Implemented and managed a deep level of security hardening.
- Managed a Linux VoIP solution based on Asterisk to facilitate cross-team communication across three countries.
Business Solution Specialist
Vodafone Egypt Telecommunications SAE
- Handled all escalated hosting domain issues over the phone with Vodafone enterprise customers.
- Managed and fixed Microsoft SharePoint server problems and handled email services with enterprise clients.
- Conducted technical training for the first-line support.
Experience
AWS IAM Slackbot
https://github.com/AlyRagab/aws-iam-slack-botAWS RDS Alerts to Slack
https://github.com/AlyRagab/LambdaFunc-rds-alertUser API Microservice
https://github.com/AlyRagab/golang-user-registration• Based in PostgreSQL as DataStore and GORM library
• Hashing Passwords using pepper and salt into Database, Never saving passwords
• Cookies security with HMAC
Education
High Diploma in Software Engineering (College Level)
Cairo University - Egypt, Cairo
Bachelor's Degree in Art History
Helwan University - Egypt, Cairo
Certifications
HashiCorp Certified: Vault Associate
HashiCorp
Skills
Tools
CircleCI, Terraform, AWS Key Management Service (KMS), Amazon EKS, Helm, HashiCorp Vault, Vault, Amazon Elastic Container Service (ECS), HashiCorp, Zabbix, ELK (Elastic Stack), Jenkins, VPN, AWS IAM
Frameworks
Serverless Framework
Paradigms
DevOps, Microservices, DevSecOps, Agile Software Development, Automation, Microservices Architecture, Penetration Testing
Platforms
Red Hat Linux, Docker, Kubernetes, Amazon Web Services (AWS), AWS Elastic Beanstalk, KVM, AIX, Unix, Burp Suite
Storage
PostgreSQL, MariaDB, Elasticsearch, MongoDB, Oracle Cloud, MySQL
Languages
Go, Python 3, Python
Industry Expertise
Network Security
Other
Kubernetes Operations (kOps), CI/CD Pipelines, PCI DSS, GitHub Actions, Infrastructure as Code (IaC), DevOps Engineer, Containerization, Self-managed Kubernetes, Argo CD, Cloudflare, AWS Secrets Manager, Organization, Lambda Functions, FortiGate, IBM Storage, FreeIPA, Argo Rollouts, VoIP, Slackbot
How to Work with Toptal
Toptal matches you directly with global industry experts from our network in hours—not weeks or months.
Share your needs
Choose your talent
Start your risk-free talent trial
Top talent is in high demand.
Start hiring