Karim Mohsen

Operated as the sole infrastructure owner driving a high-traffic AWS/Kubernetes platform serving 600+ clients with scalable, secure multi-tenant operations.
Managed 2 production-grade EKS clusters supporting a multi-tenant platform with multiple microservices.
Led cluster modernization with Karpenter and Amazon Linux 2023 on Graviton, reducing compute costs by 60% while improving performance by 3x.
Drove infrastructure-as-code adoption by importing existing AWS infrastructure into Terraform via Terraformer.
Designed autoscaling patterns using HPA and KEDA, improving responsiveness under variable regional traffic loads.
Built GitHub Actions CI/CD pipelines with Trivy for automated container vulnerability scanning.
Led migration of 800 custom storefront domains to CloudFront SaaS Manager + ACM.
Performed production security hardening across EKS, RDS, and GuardDuty.
Implemented WAF rules and Shield Advanced for DDoS protection.
Built observability stack with Prometheus, Grafana, Instatus, and Gatus.
Designed a shared-infrastructure staging environment for developers.

• Operated as the sole infrastructure owner driving a high-traffic AWS/Kubernetes platform serving 600+ clients with scalable, secure multi-tenant operations.
• Managed 2 production-grade EKS clusters supporting a multi-tenant platform with multiple microservices.
• Led cluster modernization with Karpenter and Amazon Linux 2023 on Graviton, combined with Kubernetes resource right-sizing that reduced compute costs by 60% while improving performance by 3x.
• Drove infrastructure-as-code adoption by importing existing AWS infrastructure (VPC, EKS, RDS, IAM, CloudFront, S3, ALB) into Terraform via Terraformer and capturing full Kubernetes manifests for both clusters, establishing a foundation for drift detection and reproducible infrastructure.
• Designed autoscaling patterns using HPA and KEDA for 30+ production workloads including queue- and event-driven services, improving responsiveness under variable regional traffic loads.
• Built GitHub Actions CI/CD pipelineswith Trivy for automated container vulnerability scanning (DevSecOps), and initiated GitOps adoption with ArgoCD for drift-resistant Kubernetes deployments.
• Led migration of 800 custom storefront domains to CloudFront SaaS Manager + ACM, managing complex DNS/TLS routing and simplifying edge delivery architecture, decreasing network cost by 15%.
• Performed production security hardeningacross EKS, RDS, and GuardDuty; executed secure employee offboarding procedures across AWS IAM and GitHub.
• Implemented WAF rules and Shield Advanced for DDoS protection and edge security across CloudFront and ALB.
• Built observability stack with Prometheus, Grafana, Instatus, and Gatus; developed structured incident response protocols with parallel investigation branches, reducing mean-time-to-resolution.
• Designed a shared-infrastructure staging environment with S3-backed seed data and automated lifecycle management, improving developer velocity and team productivity for environment provisioning.

Established the DevOps department from the ground up.
Promoted to lead and mentor a team of 3 DevOps engineers.
Built and maintained Azure DevOps CI/CD pipelines.
Implemented GitOps with Argo CD to standardize releases.
Automated provisioning and deployments using Ansible, PowerShell, and Bash.
Partnered cross-functionally with Microsoft engineers on ETA E-Invoice integration.
Improved observability and code quality with Elastic Stack and SonarQube.

• Established the DevOps department from the ground up in a fast-paced software house environment, reporting directly to the CTO to architect and manage complex hybrid (on-premise and cloud) infrastructure.
• Promoted to lead and mentor a team of 3 DevOps engineers, driving operational excellence and supporting 3+ active projects across enterprise and government sectors.
• Built and maintained Azure DevOps CI/CD pipelines, achieving 95% build reliability and 30% faster builds for 20+ developers across 3+ Umbraco CMS projects.
• Implemented GitOps with Argo CD to standardize releases, sync policies, and environment consistency across hybrid Kubernetes clusters.
• Automated provisioning and deployments using Ansible, PowerShell, and Bash, reducing manual effort by 60%.
• Partnered cross-functionally with Microsoft engineers on ETA E-Invoice integration, ensuring regulatory compliance and stable operations.
• Improved observability and code quality with Elastic Stack and SonarQube, cutting incident response time by 40%.

Managed CI/CD infrastructure using Azure DevOps and Git.
Managed on-premise containerization and scaling with Docker and k3s.

• Managed CI/CD infrastructure using Azure DevOps and Git for government and private-sector applications, contributing to release stability across multiple projects.
• Managed on-premise containerization and scaling with Docker and k3s, configuring self-hosted agents to achieve 99.9% uptime and improved release cadence.

Acquired technical skills in different systems
Acquired technical skills of lines
Acquired technical skills of the Mailing system
Acquired ethical policies
Demonstrated adaptability and teamwork in a professional environment