DevOps & Cloud Engineer

Skander Ben Abdallah

AWS · Terraform · Docker · Jenkins · Linux

I build cloud infrastructure that is secure, cost-efficient, and resilient by design. Background in networking and Linux system administration. Currently focused on FinOps, cloud security hardening, and infrastructure observability.

Available for opportunities
View Projects LinkedIn
3+ Years in IT
FinOps Focus
8+ AWS Services
IaC Everything as Code
Scroll
01

Skills

Cloud Infrastructure
AWS EC2 VPC RDS ALB IAM Secrets Manager Auto Scaling CloudWatch
Infrastructure as Code
Terraform Ansible HCL YAML Launch Templates Modules
Containers & CI/CD
Docker Docker Compose Jenkins GitHub Actions Docker Hub ECR
Security & FinOps
Least Privilege IAM Security Groups SSH Hardening UFW / Fail2ban Cost Tagging Cost Explorer
Networking & Systems
Linux VPN DNS DHCP Active Directory Routing Firewalls
Monitoring & Observability
CloudWatch Alarms Prometheus Grafana Log Groups Node Exporter
Languages
Python Bash JavaScript TypeScript HCL
Databases & APIs
PostgreSQL MySQL REST API FastAPI SQLAlchemy
What I focus on
$
FinOps
Every infrastructure decision has a cost reason. Right-sized instances, scale-in policies, no idle capacity.
#
Security by design
No secrets in code. Least-privilege IAM. Private subnets. Locked-down security groups.
~
Self-healing infra
Two layers: Docker restarts the container, ASG replaces the instance. Zero manual intervention.
>
Automation first
Nothing configured twice. IaC from day one, CI/CD pipelines, Ansible roles, reproducible environments.
02

Projects

001
AWS · Terraform · DevOps · FinOps
CloudCost — Cost-Optimized Multi-Tier Infrastructure

Production-grade task manager on AWS built to demonstrate cost-aware infrastructure from day one. Auto Scaling Group with scale-out at 70% CPU and scale-in at 30%. Two-layer self-healing: Docker restarts crashed containers in seconds, ASG replaces failed instances in minutes. RDS password lives only in Secrets Manager, fetched at boot via IAM role scoped to that single secret ARN. Full network isolation, Jenkins CI/CD, CloudWatch alarms wired to scaling policies.

AWS Terraform Docker Jenkins CloudWatch Secrets Manager Auto Scaling Python Flask pytest
View on GitHub → LinkedIn →
002
Linux · Ansible · Networking · Security
Linux Production Infrastructure

4-server Linux environment built from a single golden image template. All configuration managed through Ansible playbooks and roles — nothing configured manually twice. System hardening across all servers: SSH key-only auth, UFW firewall rules, Fail2ban. 3-tier application stack where each tier only accepts connections from the previous tier. Node exporter on all servers for centralized metrics collection.

Linux Mint 22 Ansible VirtualBox Prometheus Grafana UFW Fail2ban Nginx PostgreSQL
View on GitHub → LinkedIn →
003
Full-Stack · AI · FastAPI · Next.js
ReadyToApply — AI CV Tailoring Tool

Full-stack web app that takes a LinkedIn PDF and job description and outputs a tailored, ATS-clean Word document in under 15 seconds. 4-step AI pipeline via Groq: extract, rewrite, keyword match, tailor. Stateless by design, no database, no stored data. Rate limiting per IP, bot guard, CORS restricted to production origins. GitHub Actions CI/CD deploys backend to Render and frontend to Vercel on every merge. Live at readytoapply.work.

Next.js FastAPI Python Docker GitHub Actions Vercel Render Groq API
View on GitHub → Live site →
03

Experience

Aug 2025 — Jan 2026 Remote · Freelance
DuraClim
IT Automation Specialist · Quebec, Canada
  • Designed and deployed end-to-end automation workflows integrating Pipedrive, internal systems, and external APIs, covering lead tracking, follow-ups, sales reporting, and ticket triage
  • Built AI-powered scripts using OpenAI and Python to automate data processing, generate business insights, and interact with PostgreSQL databases for structured reporting
  • Automated user account management, workstation provisioning, and software deployments, reducing manual IT overhead across remote and on-site staff
  • Administered servers, Active Directory, and network infrastructure including VPN, DNS, and Wi-Fi for a distributed team
  • Implemented monitoring scripts to proactively detect and prevent connectivity and application issues before they impacted operations
May 2023 — Aug 2025 On-site
Consup ON
System Network Administrator N2 · La Marsa, Tunisia
  • L2 technical support on Windows Server environments: incident management, VPN/DNS/DHCP configuration, Active Directory administration
  • Worked with the Kony mobile application platform, supporting deployments, configurations, and integrations within the enterprise environment
  • Technical point of contact for French-speaking clients and partners in a B2B international context
  • Documented procedures and configurations to improve team knowledge sharing and reduce resolution time
Mar 2023 — May 2023 Internship
Wifirst
Network Administrator Intern · Paris, France
  • Supported network configuration including VPN, DNS, and routing in a French telecom environment
  • Wrote technical documentation and incident resolution procedures
04

Contact

Let's build
something right

Open to DevOps, cloud infrastructure, and SRE roles. Available for full-time opportunities and freelance projects worldwide.

@
Email [email protected]
in
LinkedIn linkedin.com/in/skanderbena5
GH
GitHub github.com/Skanderba8
Tel
Phone +216 58 777 770

Currently available for

Full-time DevOps / Cloud Engineer roles
SRE positions
Infrastructure consulting
Freelance automation projects
Remote worldwide