About Hamza
Iβm passionate about the cloud-native ecosystem and have developed a strong background in Kubernetes, CI/CD, and Cloud over the years. My daily work involves helping projects establish best practices across their organization and accelerate delivery.
An open-source lover, creator of π‘ππ₯π¦-πππ¨π©π and π‘ππ₯π¦-π―ππ₯ helm plugins, I love to simplify users daily jobs.
English
Native or bilingual
French
Native or bilingual
Can work on-site
Paris (up to 15km)
Experience
- BNPPARIBAS CIBDevOps Engineer, Expert kubernetesBANKING AND INSURANCENovember 2024 - Today (1 year and 7 months)Montreuil, Franceππ«π¨π£πππ: Design and administration of Controlplane as Service Platform
- Designed and architected an on-premise Controlplane as service platform
- Provisioning of on-premise infrastructure (VMs et LB) with terraform
- Deployed and configured the management cluster
- Deployed tenant control planes in the management cluster using Kamaji
- Implemented tenant etcd clusters via custom Helm charts
- Implemented tenant isolation (using netpol, GlobalNetworkPolicy)
- Enforced environment segregation through RBAC
- Implementation of authentication using Pinniped
- Developed a custom Kubernetes controller for automated NodePort allocation
- Built an API server proxy to manage communication between the management cluster and tenant clusters
- Implemented advanced traffic routing with Gateway API and kgateway
- Developed custom Helm charts for platform components
- Designed a GitOps approach for kubernetes addons deployments
- Implemented CI workflows using Argo Workflows
- Deployed monitoring stack (Prometheus, Grafana)
- Deployed logging stack ( vector, Loki)
- Automated tenant deprovisioning with Kyverno
- Established automated security enforcement and best practice governance in tenant clusters through kyverno policies
- Upgrading client Kubernetes clusters
- Implemented cluster backup and recovery strategy with Velero
- Deployed Sealed Secrets for secure secret encryption
- Integrated of NetApp Trident for persistent storage
- Deployed cert-manager for automated certificate management
- Writing documentation and user guides
- Providing client support
π»ππππππππ πππππ:Kubernetes(1.32/1.33), kubeadm, terraform, kamaji, helm, ansible, ansible tower, fluxCD, artifactory, calico, containerd, argoWorkflow, argoEvents, Go, openstack, bitbucket, kyverno, velero, etcd, gatewayAPI, vector, Loki - BNP Paribas CIBDevOps Engineer, Expert kubernetesBANKING AND INSURANCEJanuary 2023 - Today (3 years and 5 months)Montreuil, Franceππ«π¨π£πππ: Administration of a multi-region CaaS platform
- Deployed and administered multi-region on-premise Kubernetes clusters
- Implementation of authentication using Pinniped
- Established automated security enforcement and best practice governance using kyverno/gatekeeper
- Designed a GitOps approach for kubernetes addons deployments
- Developed custom Helm charts
- Implemented CI workflows using Argo Workflows
- Deployed monitoring stack (Prometheus, Grafana)
- Implementing of logging operator to send logs to kafka
- Deployed and configured NGINX Ingress Controller
- Enforced environment segregation through RBAC
- Developed a custom Kubernetes controller for automated node auto-remediation
- Upgrading client Kubernetes clusters
- Implemented cluster backup and recovery strategy with Velero
- Deployed Sealed Secrets for secure secret encryption
- Integrated of NetApp Trident for persistent storage
- Deployed cert-manager for automated certificate management
- Writing documentation and user guides
- Providing client support
π»ππππππππ πππππ:Kubernetes(1.22/1.24/1.29/1.30), kubeadm, helm, ansible, ansible tower, fluxCD, artifactory, calico, containerd, argoWorkflow, argoEvents, golang, openstack, bitbucket, kyverno, gatekeeper, velero, etcd, nginx controller, logging operator - CrΓ©dit Agricole Group Infrastructure PlatformDevOps Engineer, Expert kubernetesMarch 2022 - December 2022 (9 months)Paris, Franceππ«π¨π£πππ: Managed kubernative CaaS platform
- Deployment and administration of a new managed kubernative platform offer (managed control plane) on Openstack
- Enforcing best practices and securing Kubernetes cluster using kyverno
- Implementation of a secure Inter-cluster communication through skupper.io
- Define and design a GitOps approach to deploy Kubernetes addons in the workload cluster
- Develop Helm charts for Kubernetes addons
- Develop a Kubernetes controller to dynamically update kyverno admission webhooks
- Update and maintain a bunch of custom kubernetes Operators
- Upgrade customers Kubernetes clusters
- Customers support
- Write Documentation
π»ππππππππ πππππ: Kubernetes(1.19/1.21), Ansible, Helm, Go, Openstack, FluxCD, ArgoCD, Kyverno, skupper, nginx Ingress Controller, calico, containerd, etcd
Recommendations
Be the first to recommend Hamza
Help this freelancer shine by sharing your experience working together.
These freelancer profiles also match your criteria
Agatha Frydrych
Backend Java Software Engineer
4.7
(3)
2
Baptiste Duhen
Fullstack developer
4.6
(4)
5
Amed Hamou
Senior Lead Developer
4
(2)
7
Audrey Champion
Web developer
4.3
(3)
4
Education
- Master RΓ©seaux Informatiques et Services MobilesCERI Avignon2016
- Master RΓ©seaux Informatiques et Services MobilesAvignon UniversitΓ©2016
Certifications
- Certified Kubernetes Security SpecialistCNCF2021
- Certified kubernetes AdministratorCNCF2019