Med Aymen
Chakroun
DevOps & Platform Engineer
Engineering high-availability platforms that transform complexity into scalable competitive advantages.
About Me
The professional evolution from hardware precision to cloud-scale architecture.
My Story
From Electrical Engineering to Cloud Architecture
My foundation was forged in Electrical Engineering, where I learned that 99.9% reliability is a structural requirement, not just a goal. I was trained to think in complex systems where every interconnection is an opportunity for optimization. That hardware-originated precision still drives my approach to architecting resilient, mission-critical infrastructure.
As a Platform & DevOps Engineer, I have delivered end-to-end cloud solutions for 7+ international projects across Dubai, Tunisia, and Europe. From containerizing Django hospitality platforms on Azure to architecting construction-tech GitOps pipelines on on-prem Kubernetes, I specialize in transforming raw complexity into scalable competitive advantages.
Today, at YaiGlobal, I lead the design of automated, multi-tenant cloud infrastructure and on-premise immutable environments. Whether I'm engineering Go CLI tools like onboardctl to automate tenant onboarding or managing the scaling of 20+ microservices, my focus remains on shifting security left and eliminating manual legacy workflows.
I view infrastructure as code, security as a chain, and every deployment as a mission. By merging systems-engineering fundamentals with cutting-edge SRE philosophies, I architect environments that are not just functional they are immutable, auditable, and resilient by design.
SRE Philosophy
Obsessed with 99.99% availability and system resilience.
Core Mission
Automate the complex, secure the critical, scale what matters.
Elite Security
90% reduction in critical production vulnerabilities.
Rapid Velocity
60% increase in deployment frequency via GitOps.
What I Bring to Your Team
- Deterministic systems thinking from hardware foundation
- Proven track record in infrastructure cost-efficiency
- Security-centric architecture with 90% risk reduction
- Multicultural collaboration across international boundaries
- Reliability-first engineering for 99.9% uptime and zero-downtime growth
- Adaptive leadership in rapidly scaling, high-complexity environments
- Strategic architecting of developer-centric platforms for max engineering velocity
Current Position
Leading infrastructure automation and multi-tenant scaling at YaiGlobal.
YaiGlobal
Clearances: MISSION_CRITICAL
Mission Impact Logs
onboardctl Automation
Engineered a production-ready Go CLI that fully automates tenant onboarding via Helm value generation and GitOps workflows.
Configuration Safety
Utilized mergo (deep YAML) and validator (JSON schema) reducing deployment-related errors by 99%.
3-Layer Security Chain
Architected image security using Trivy scanning, Cosign cryptographic signing, and Kyverno cluster gate enforcement.
Zero-Touch Lifecycle
Integrated tfexec & go-git for automated EKS provisioning and declarative repository management.
Stateful Data Resilience
Orchestrated zero-loss migration of 15GB production databases and implemented Rancher Longhorn for block storage.
P2P Private Tunnels
Developed secure remote access for FTP services using ZeroTier sidecars, creating encrypted private network tunnels.
Tools & Frameworks
The infrastructure, automation, and security pipelines I use to build and manage environments.
Cloud & Infrastructure
AWS
Azure
OpenStack
Proxmox
Talos Linux
Vagrant
KVM
KarpenterContainer Orchestration
Kubernetes
Docker
Helm
K3sKustomize
Rancher
eBPF / Cilium
LonghornSecurity & NetSec
Trivy
Kyverno
Keycloak
Cosign
Sealed Secrets
ZeroTierAutomation & GitOps
Terraform
Ansible
Git
Jenkins
ArgoCD
GitHub Actions
Bitbucket
CloudFormationMonitoring & Observability
Prometheus
Grafana
ELK Stack
Loki
Alertmanager
kube-vip
Kubecost
SRE PracticesDevelopment & Languages
Go
Python
Bash
TypeScript
SQL
Django
Flask
SpringBootLive Deployment Pipeline
A real-time simulation of automated CI/CD workflows and security gates.
System Observability
Real-time metrics and diagnostic telemetry from production-grade environments.
System Uptime
99.980%
+0.01%
Vulnerabiltity Scans
120
+12 today
Security Score
98.0/100
+2.1 this week
Cost Savings
35.0%
-$2.5K this month
Cluster Features
onboardctl:
The Tenant Automation Engine
Engineered a production-ready Go CLI at YaiGlobal to automate complex multi-tenant Kubernetes provisioning. It replaces manual hours of configuration with reliable, schema-validated automation.
Hours → Minutes
98% reduction in manual setup time.
Zero Drift
Enforces consistent GitOps states automatically.
GitOps Integrated
Bridges the gap between code and infrastructure.
Multi-Cloud Ready
Native support for AWS EKS and on-prem K8s.
Project Showcase
A showcase of real-world solutions that deliver measurable impact.
Dubai Hospitality Showcase Website
Django app for hostel business venture, fully containerized and hosted securely on Azure.
Key Highlights
- •Developed Django/Python web application for hostel.
- •Containerized with Docker and Docker-Compose orchestration.
- •Hosted the application on Microsoft Azure.
- •Configured GoDaddy email and DNS services.
Solar Energy Showcase Website
React/Flask application deployed on Microsoft Azure with secure networking and HTTPs integration.
Key Highlights
- •React frontend with Flask backend.
- •Microsoft Azure cloud deployment.
- •Configured Azure Virtual Network, NSGs, and VMs.
- •Enabled HTTPS using Let's Encrypt for secure access.
CI/CD Automation with GitOps & Kubernetes
End-to-end deployment pipeline with secure access and scalable infrastructure for a BIM platform.
Key Highlights
- •Automated integration/deployment for BIM platform (SpringBoot/Next.js).
- •On-premise Kubernetes deployment with GitOps.
- •Secure client access via configured VPN.
- •Enabled real-time monitoring and progress tracking.
DevOps Microservices Pipeline
Automated modern CI/CD pipeline and monitoring for Spring Boot/Angular microservices.
Key Highlights
- •CI/CD automation using Jenkins with GitHub integration.
- •Containerized services with Docker, managed via Nexus.
- •Ensured code quality with SonarQube & Mockito.
- •Monitored infrastructure with Prometheus and Grafana.
MediMind: PaaS-Based AI Healthcare Platform
Cloud-native healthcare platform with an AI chatbot and OpenStack private cloud infrastructure.
Key Highlights
- •Private cloud setup on OpenStack (7 nodes).
- •AI chatbot for appointment booking (DialogFlow + Flask).
- •Kubernetes orchestration via Magnum and Heat.
- •Real-time monitoring with Prometheus & Grafana.
Wakalni: Cross-Platform E-Delivery App
Multi-platform e-delivery application with payment integration and RESTful APIs.
Key Highlights
- •Cross-platform support (Desktop, Web, Mobile).
- •Stripe payment integration & Mailing API.
- •RESTful API architecture.
- •MySQL database management.
Professional Certifications
Key Milestones in My Learning Path
AWS Cloud Practitioner (CLF-C02)
Advanced skills in provisioning, operating, and managing distributed application systems on AWS
Cisco Network Security
Industrial network security expertise with digital badge verification.
Latest Insights
Sharing knowledge and best practices from the field
GitOps ArgoCD Deployment with Jenkins and Kubernetes
Master GitOps workflows using ArgoCD, Jenkins, and Kubernetes for automated deployments. Learn how to implement a...
Secure Multi-Environment Deployments with Kustomize
Explore how I architected secure, automated multi-environment deployments using AWS EKS for Kubernetes clusters and Crossplan...
How to Use LocalStack for Testing AWS Services Locally
Learn how to set up LocalStack for local AWS development and testing with Docker. Master S3, DynamoDB, Lambda, and other AWS...
Strategic Engineering
Deterministic infrastructure designed for production. I build systems that are repeatable, observable, and secured by design.
Deterministic Strategy
Every infrastructure component is defined as code. I ensure environments are immutable, repeatable, and audited through automated GitOps pipelines.
Reliability & Observability
Moving beyond basic uptime to focus on the four golden signals. I build observability into the core of the platform to catch issues before users are impacted.
Industrial Hardening
Security is baked into the design, not added as a layer. Implementing zero-trust principles and automated compliance to meet EU/US standards.
Collaborator Insights
Real feedback from the project owners, leads, and engineers I build infrastructure for.
"I have the pleasure of working with Aymen on our DevOps team. He brings strong expertise in Kubernetes, networking, on-premises solutions, automation, and containerization. His problem-solving mindset consistently drives us to deliver reliable and efficient solutions."
Hajer Frigui
DevOps & Cloud Engineer
YaiGlobal
"Aymen is one of the most reliable Cloud & DevOps engineers I’ve worked with. He took full ownership of critical tasks, deploying Django and React/Flask apps for major ventures in Dubai. His ability to research and implement creative, cost-effective solutions under budget constraints is truly impressive."
Ahlem Laajili
Software Engineer
Flouci (Kaoun)
"Med Aymen's approach to Infrastructure as Code and system hardening is top-tier. He doesn't just build systems; he builds resilience. His work on automating complex CI/CD pipelines has significantly reduced our manual overhead and improved our security posture."
Houssem Slimani
Full-stack Developer
Avaxia Group
Start a
Conversation
Direct Communication
You'll coordinate directly with me to define technical requirements and infrastructure constraints.
Fast Assessment
I respond to all professional inquiries within one business day for initial technical alignment and discovery.