Skip to content
View ibrahimelothmani's full-sized avatar
🤖
looking for new job 🧔🏻‍♂️
🤖
looking for new job 🧔🏻‍♂️

Block or report ibrahimelothmani

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Maximum 250 characters. Please don’t include any personal information such as legal names or email addresses. Markdown is supported. This note will only be visible to you.
Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse
ibrahimelothmani/README.md

Hi, I'm Ibrahim El Othmani 👋

Typing SVG

Location Open to Remote Email LinkedIn Portfolio Blog Profile Views


About Me

I didn't start in software — I started in structural engineering, calculating load paths and safety factors for concrete and steel. In 2023 I pivoted into full-stack development and DevOps, and I never stopped noticing the parallel: a distributed system and a bridge fail for the same reason — a bad assumption nobody stress-tested.

Today I design and ship secure, multi-tenant SaaS platforms, and I live at the intersection of application code and the infrastructure it runs on — using Go, Java, and Python to automate CI/CD and GitOps lifecycles end to end.

  • 🇹🇳 Based in Nabeul, Tunisia — open to remote roles across Europe (France, Belgium, Switzerland) and MENA
  • 🗣️ Trilingual: English · Français · العربية
  • 🏗️ Ex-civil engineer → now a Kubernetes / Terraform / DevSecOps generalist

🔭 What I'm Doing Right Now

  • Working as a Cloud & DevOps Engineer @ Future Eagle IoT, building CI/CD pipelines, multi-cloud IaC, and production Kubernetes platforms.
  • Taking on select Production-Readiness Audits (Spring Boot · PostgreSQL · DevSecOps) for teams shipping to AWS.
  • Writing long-form technical content across DevOps, DevSecOps, Cloud, MLOps, and AIOps on my blog.
  • Always happy to talk about Kubernetes admission controllers, multi-tenant Row-Level Security, or migrating legacy Java to cloud-native.

🧰 Tech Stack

Cloud & Infrastructure

AWS Azure Terraform Ansible

Containers & Orchestration

Docker Kubernetes Helm Istio

CI/CD & GitOps

GitHub Actions Jenkins GitLab CI ArgoCD

DevSecOps & Security

SonarQube Keycloak OWASP

Observability & SRE

Prometheus Grafana Elastic

Languages

Java Python Go TypeScript JavaScript Bash

Backend & Frontend

Spring Boot FastAPI React Angular Tailwind CSS

Databases & Messaging

PostgreSQL MongoDB Redis Kafka

🚀 Featured Projects

Project Stack What it does
Future Eagle Fleet Spring Boot · PostgreSQL RLS · Angular · Keycloak · Docker Multi-tenant B2B fleet SaaS with row-level tenant isolation, SECURITY DEFINER triggers, and real-time vehicle telemetry over WebSocket/STOMP.
Eagle IoT FastAPI · TimescaleDB · React · MQTT · ESP32 Industrial IoT platform: PLC → ESP32 → Modbus ingestion into TimescaleDB hypertables, mTLS-secured transport, predictive maintenance alerts.
AgentWarden Go · Kubernetes · Docker · React Validating/mutating admission webhook that sandboxes autonomous AI coding agents in GitOps workflows, shipped as a signed, distroless image.
FlexTier Java · AWS EKS · K3s · Terraform · ArgoCD Migrated a legacy Java WAR into two containerized paths (cost-optimized K3s + managed EKS) with FinOps tagging and rightsizing.
Three-Tier DevSecOps on EKS Terraform · AWS EKS · ArgoCD · Prometheus · SonarQube · Trivy End-to-end reference pipeline from code commit to production rollout, with shift-left scanning and SLO-based monitoring.

📊 Impact, in Numbers

Metric Result
Deployment time ↓ 40% across 8+ microservices
New environment onboarding 2 days → under 30 minutes
Production uptime 99.9%, zero-downtime rolling releases
Mean time to detect (MTTD) ↓ 65% via SLO-driven alerting
Client infrastructure cost ↓ 35%+ vs. prior VM-based deployments
Login latency after Keycloak/OAuth2 migration ↓ 40%

✍️ Writing & Long-Form Content

  • 📘 Engineering AI, Volume I — mapping a Spring Boot / cloud-native stack to LLM integration, AI agents, RAG pipelines, and production AI security.
  • 🎫 TicketForge — a build-in-public series on a high-concurrency ticketing SaaS (Java 21, Kafka, Redis, AWS, DevSecOps).
  • 📗 DevSecOps & Cloud By Hand — a full lifecycle walkthrough: Spring Boot/Angular/PostgreSQL app → CI/CD → AWS lift-and-shift → FinOps → AI agent integration.

All of it lives on my blog, organized across five tracks: DevOps, DevSecOps, Cloud, MLOps, and AIOps.

🎓 Background

  • Full-Stack & DevOps Intensive Program — 2i Formation
  • Applied Bachelor's Degree (Honors), Civil Engineering — ISET Nabeul
  • LFS158 (Kubernetes) · LFS169 (GitOps) · LFEL1014 (KEDA) — The Linux Foundation

📈 GitHub Activity

Ibrahim's GitHub stats Top Languages

GitHub Streak

🤝 Let's Work Together

💼 I'm open to remote DevOps / Cloud Engineer roles across Europe 🇫🇷🇧🇪🇨🇭 and MENA, and I take on select Production-Readiness Audits (Spring Boot · PostgreSQL · DevSecOps) for teams shipping to AWS.

Email LinkedIn Portfolio Blog


"Structures don't fail because of bad math — they fail because of bad assumptions. I bring the same discipline to distributed systems."

⭐️ Thanks for stopping by — check out the portfolio or blog for more.

Pinned Loading

  1. AI-Powered-Cybersecurity-Threat-Detection-System AI-Powered-Cybersecurity-Threat-Detection-System Public

    Designed a system architecture to detect and mitigate real-time cybersecurity threats by analyzing network traffic and system logs using TensorFlow.

    TypeScript 2 2

  2. FlexTier-DevSecOps-Dual-Architecture-Java-Application-Orchestration-FinOps-on-AWS FlexTier-DevSecOps-Dual-Architecture-Java-Application-Orchestration-FinOps-on-AWS Public

    This project showcases how to transition a legacy Java servlet (packaged as a WAR) into modern containerized infrastructures using two distinct pathways: a cost-optimized, single-node K3s cluster m…

    Java

  3. ProMonitor ProMonitor Public

    This project demonstrates a production-style monitoring architecture using Prometheus, Grafana, and Alertmanager across two virtual machines.

    Ruby 1

  4. Blog-Platform-CloudOps Blog-Platform-CloudOps Public

    A full-stack blog platform (Spring Boot + React) with complete DevOps integration: Docker, Jenkins, Kubernetes, Terraform, Ansible, Prometheus, and Grafana.

    TypeScript 2 1

  5. AI-Security-Scanner-for-AWS-S3 AI-Security-Scanner-for-AWS-S3 Public

    In this project, you'll build a similar security monitoring system: a serverless Lambda function that scans S3 bucket encryption, sends its findings to Gemini AI for analysis, and shows you intelli…

    Python

  6. Cloud-Native-MERN-DevOps-Deployment Cloud-Native-MERN-DevOps-Deployment Public

    Production-ready MERN e-commerce deployment using Docker and Kubernetes. Automated CI/CD pipeline with Jenkins and container registry integration. Integrated monitoring & alerting with Prometheus a…

    JavaScript