About Hakim
With a 9 years track record in cloud and DevOps, I'm a seasoned Senior Cloud and
DevOps Engineer. I specialise in designing, deploying, and optimising AWS infrastructures, honing my skills through continuous learning and unwavering dedication.
A standout achievement includes leading the design and implementation of a complex AWS environment for a major enterprise, involving the migration and management of over 200 AWS accounts. This initiative achieved a remarkable 30% reduction in operational costs and a 25% improvement in overall operational efficiency metrics.
My contributions extend to projects handling significant traffic and user loads, where I played a key role in architecting solutions that seamlessly accommodated up to 50% more concurrent users during peak periods. These successes showcase not only my technical prowess but also my ability to deliver scalable solutions aligned with business needs.
Beyond numbers, my collaborative leadership style consistently fosters a culture of mutual learning and support, empowering teams to advance the frontiers of cloud technology and innovation.
Arabic
Native or bilingual
English
Native or bilingual
French
Fluent
Remote only
Primarily works remotely
Experience
- KenzupSenior Kubernetes / DevOps EngineerDIGITAL AND ITDecember 2024 - Today (1 year and 6 months)Casablanca, MoroccoAt Kenzup, I lead the architecture and delivery of a cloud-agnostic Kubernetesplatform spanning AWS and Oracle Cloud, enabling seamless workload portabilityand resilience. My key responsibilities and achievements include:
- Cloud-Agnostic Kubernetes Platform Design: Architected and implementeda fully automated Kubernetes solution across AWS and Oracle Cloud, ensuring vendor independence and operational consistency.
- Infrastructure as Code Automation: Managed the complete lifecycle of infrastructure provisioning and Kubernetes deployments using Terraform, from cluster creation to manifest application, ensuring compliance and reducing manual intervention.
- Storage and Secret Management: Deployed MinIO as an S3-compatible object storage layer and HashiCorp Vault for centralized secret management across multi-cloud environments.
- Operator-Based Application Management: Integrated PostgreSQL and RabbitMQ operators to enable automated failover, backups, and scaling, ensuring highly available stateful services.
- Networking and Traffic Management: Implemented Tailscale for secure east-west communication between clusters and Cloudflare for optimized north-south ingress traffic, achieving low-latency, encrypted connections.
- Advanced Networking with Cilium: Adopted Cilium as the CNI for enhanced network security, observability, and fine-grained policy enforcement within Kubernetes. Monitoring and Observability: Designed and implemented a comprehensive observability stack leveraging Datadog, Prometheus, and Grafana to provide real-time insights, proactive alerting, and deep visibility into workloads across multi-cloud environments.
- Cost Optimization: Introduced intelligent autoscaling, workload right-sizing, and environment standardization, significantly reducing monthly operational costs.
- CI/CD Enablement: Developed GitHub Actions workflows for continuous integration and delivery, embedding security checks and deployment automation into the SDLC.
- LeboncoinSenior AWS Technical ArchitectE-COMMERCEMay 2024 - September 2025 (1 year and 4 months)Paris, FranceAt Leboncoin, I architected and deployed a from-scratch AWS environment tomigrate the mission-critical “Knocker” application into dedicated AWS accounts. Mykey responsibilities and achievements include:
- AWS Environment Design and Deployment: Led the end-to-end setup of AWS networking, compute, storage, and security to host “Knocker” with high availability and scalability.
- Compute Architecture with ASG and Launch Templates: Designed an Auto Scaling Group-based solution with reusable Launch Templates, enabling consistent and efficient instance provisioning.
- Secure Configuration Management: Integrated AWS Systems Manager Parameter Store, Secrets Manager, and HashiCorp Vault for centralized, encrypted configuration and secret handling.
- Networking and Security Hardening: Configured VPCs, subnets, route tables, ALBs/NLBs, security groups, and firewall rules; implemented AWS WAF for application-level protection.
- Observability and Monitoring: Built a comprehensive monitoring stack using Datadog and ELK, providing deep visibility into application performance, infrastructure health, and security posture.
- Infrastructure as Code Delivery: Implemented Terraform to codify the entire AWS setup, ensuring consistent, repeatable, and version-controlled deployments.
- Cost Optimization: Applied intelligent instance selection, lifecycle policies, and automated scaling to reduce AWS costs without impacting performance.
- Automation and Best Practices: Ensured all provisioning, scaling, and configuration processes were fully automated, following AWS Well Architected Framework principles
- IU GroupAWS DevOps Lead AI GTMEDUCATION AND E-LEARNINGApril 2024 - December 2024 (8 months)Cologne, GermanyAt IU Group, Europe’s largest private university group, I lead the design, automation, and optimization of cloud infrastructure and DevOps practices, ensuring scalable, secure, and highly available environments to support critical applications. Key highlights include:
- IaC Leadership: Spearheaded Terraform-based IaC practices, creating reusable templates to standardize deployments, ensuring compliance, reducing errors, and accelerating timelines.
- ECS Clustering: Designed Amazon ECS-based clustering solutions for scalable, resilient workloads, optimizing resource use and availability.
- AWS Infrastructure: Architected and deployed AWS solutions, leveraging ECS, Lambda, RDS, and S3 for scalability and reliability.
- Standardization: Standardized multi-environment infrastructure (dev, staging, prod) using Terraform for consistency and ease of replication.
- CI/CD Optimization: Designed GitLab pipelines for deploying microservices and AI tools, aligning runners with environment-specific permissions for secure operations.
- Security and Compliance: Implemented IAM policies, Secrets Manager, and VPC Security Groups, safeguarding sensitive data.
- Cost Optimization: Achieved a 20% reduction in AWS expenses through resource usage analysis and efficient budgeting.
- Monitoring: Established centralized monitoring with Datadog, CloudWatch, and X-Ray for proactive issue resolution and performance optimization.
- Team Leadership: Mentored engineers, promoting best practices and fostering a culture of learning and improvement.
Reviews
Recommendations
Be the first to recommend Hakim
Help this freelancer shine by sharing your experience working together.
These freelancer profiles also match your criteria
Agatha Frydrych
Backend Java Software Engineer
4.7
(3)
2
Baptiste Duhen
Fullstack developer
4.6
(4)
5
Amed Hamou
Senior Lead Developer
4
(2)
7
Audrey Champion
Web developer
4.3
(3)
4
Education
- Software EngineerNational School of Applied Sciences2016
Certifications
- AWS Certified Solutions Architect – ProfessionalAmazon Web Services2025
- AWS Certified DevOps Engineer ProfessionalAmazon Web Services2021