Zouhair
EC-Charef

Cloud & DevOps Engineer

Architecting, automating, and securing multi-cloud infrastructure across AWS, Azure, and GCP. Focused on scalability, cost efficiency, and DevSecOps maturity.

Morocco +212 641-306973 zouhair.eccharef@gmail.com
View Projects Get in Touch
30+
Workloads migrated to Kubernetes
99.9%
SLA uptime achieved
25%
Cloud cost reduction
60%
Fewer pipeline vulnerabilities
<5 min
MTTR for priority events
zouhair@portfolio ~ zsh
➜ ~ 
About

Building cloud infrastructure
that scales.

I'm Zouhair EC-Charef, a Cloud and DevOps Engineer with an engineering degree in Computer Science, Cloud, Networks & Telecom from ENSA Fès. I architect, automate, and secure multi-cloud infrastructure across AWS, Azure, and GCP — driving scalability, cost efficiency, and DevSecOps maturity in enterprise environments.


I've migrated 30+ workloads to Kubernetes, reduced cloud costs by 25%, cut pipeline vulnerabilities by 60%, and mentored 5+ engineers on IaC and GitOps best practices.

LocationMorocco
Phone+212 641-306973
Emailzouhair.eccharef@gmail.com
DegreeEng. CS, Cloud & Networks
SchoolENSA Fès · 2017–2022
LanguagesArabic · French · English
Skills

Technical Stack

☸️
Container Orchestration

Production-grade Kubernetes clusters with zero-downtime deployments and autoscaling.

KubernetesRancher RKE2K3S HelmKustomize KarpenterDocker
☁️
Multi-Cloud Infrastructure

Enterprise cloud solutions across AWS, Azure, and GCP for diverse workloads.

AWS EC2/EKS/RDS Azure VM/AKS GCP GKE IAMVPC
⚙️
IaC & Automation

Infrastructure as code, configuration management, and pipeline engineering.

TerraformAnsible AWXCloudFormation GitLab CIAzure DevOps JenkinsPython Shell
🚀
GitOps & Delivery

Declarative delivery with automated sync and multi-environment promotion.

ArgoCDGitLab CI GitHub ActionsBitBucket SonarQube
📊
Observability & Logging

Full-stack monitoring, alerting, and log pipelines with MTTR under 5 minutes.

PrometheusGrafana LokiELK/EFK GraylogDatadog OpenSearch
🔒
DevSecOps & Security

Shifting security left with automated scanning, policy enforcement, and compliance.

TrivySnyk OPACheckov AWS Security Hub Azure Defender
🌐
Networking & Storage

CNI networking, micro-segmentation, and distributed storage on Kubernetes.

CalicoCilium BGPMinIO LonghornHarbor
🖥️
Virtualization

On-premises VM management, cluster operations, and OS administration.

ProxmoxVMware KVMRedHat Debian
Projects

Featured Work

01 — Observability
K8s Observability Stack

End-to-end monitoring on Kubernetes — Prometheus, Grafana dashboards, Loki log aggregation, and AlertManager for multi-team alerting.

PrometheusGrafanaLoki
View Docs GitHub ↗
02 — GitOps
GitOps Platform w/ ArgoCD

Full GitOps workflow on RKE2 — declarative app delivery, automated sync policies, multi-environment management, and Helm chart deployments.

ArgoCDHelmRKE2
View Docs GitHub ↗
03 — Storage
MinIO Object Storage Cluster

Distributed MinIO cluster with WORM compliance, Longhorn-backed volumes, S3 API, and automated backup to offsite targets.

MinIOLonghornS3
View Docs GitHub ↗
04 — Logging
Enterprise Log Pipeline

Centralized Graylog pipeline with OpenSearch backend and MongoDB — processing millions of events per day across Kubernetes namespaces.

GraylogOpenSearchMongoDB
View Docs GitHub ↗
05 — Networking
Calico Network Security

Calico CNI policies for multi-tenant clusters — namespace isolation, network policies, BGP peering, and zero-trust micro-segmentation.

CalicoKubernetesBGP
View Docs GitHub ↗
06 — Migration
AWS EKS Migration

Full workload migration to AWS EKS — Terraform provisioning, IAM/IRSA, Velero-based PV migration, and observability re-integration.

AWS EKSVeleroTerraform
View Docs GitHub ↗
07 — Resilience
Disaster Recovery Automation

Zero-loss failover automation using Ansible AWX + GitLab CI — ensuring business continuity for mission-critical apps across multi-cloud.

Ansible AWXGitLab CIMulti-Cloud
View Docs GitHub ↗
Experience

Career

Cloud & DevOps Engineer
Convotis Morocco · Morocco
Sep 2022 — Present
  • Multi-Cloud: Designed and maintained enterprise solutions on AWS, Azure, and GCP — EC2, EKS, AKS, GKE, RDS, VPC — for diverse client workloads and compliance goals.
  • IaC: Spearheaded provisioning with Terraform and Ansible (AWX), delivering reproducible, compliant cross-cloud deployments.
  • Kubernetes: Provisioned HA clusters (Rancher, RKE2, K3S) with Helm, Kustomize, and Karpenter — zero-downtime deployments, 30% faster release velocity.
  • CI/CD: Built and optimized pipelines in GitLab CI, Azure DevOps, and Jenkins with Python/Shell scripts.
  • Observability: Full-stack monitoring with Prometheus, Grafana, Loki, ELK, Datadog — MTTR under 5 minutes.
  • Security: Embedded Trivy, Snyk, OPA, Checkov scanning — reduced production vulnerabilities by 60%.
  • DR: Architected zero-loss failover with Ansible AWX + GitLab CI across multi-cloud environments.
  • Leadership: Mentored 5+ interns and junior engineers on IaC, GitOps, and cloud automation.
DevOps Engineer Intern
HPS · Morocco
Mar 2022 — Aug 2022
  • Migrated legacy infrastructure to Docker and Kubernetes for payment platforms.
  • Developed automated configuration management with Ansible — reduced manual setup time by 80%.
  • Designed CI/CD pipelines integrating BitBucket, Jenkins, SonarQube, and Docker.
  • Implemented a Slack bot for real-time notifications and cross-team feedback.
Certifications

Credentials

In Progress
☁️
AZ-104
Azure Administrator Associate
Microsoft · 2025
CKA
CKA
Certified Kubernetes Admin
CNCF · 2023
☁️
AWS SAA-C03
Solutions Architect Associate
Amazon Web Services · 2024
🔒
Calico L1
Certified Calico Operator
Tigera · 2024
☁️
AWS CLF-C02
Cloud Practitioner
Amazon Web Services · 2022
☁️
OCI
Oracle Cloud Infrastructure
Oracle · 2021
Contact

Let's connect.

✉️
Email
zouhair.eccharef@gmail.com
📞
Phone
+212 641-306973
GitHub
github.com/ZouhairCharef
💼
LinkedIn
zouhair-ec-charef