Skip to content
View amirhosssein0's full-sized avatar
:octocat:
grinding๐ŸŒต
:octocat:
grinding๐ŸŒต

Block or report amirhosssein0

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Maximum 250 characters. Please donโ€™t include any personal information such as legal names or email addresses. Markdown is supported. This note will only be visible to you.
Report abuse

Contact GitHub support about this userโ€™s behavior. Learn more about reporting abuse.

Report abuse
amirhosssein0/README.md

Hi ๐Ÿ‘‹, I'm Amirhossein

DevOps & Platform Engineer | DevSecOps Enthusiast

I build production-realistic infrastructure and Kubernetes-native platforms โ€” with security baked in from day one, not bolted on afterward.


๐ŸŽฏ What I Focus On

  • Platform Engineering โ€” designing Kubernetes platforms that other engineers can actually build on top of (GitOps, self-service, sane defaults)
  • DevSecOps โ€” shift-left scanning, admission control, and runtime security as a standard part of every deployment pipeline, not an afterthought
  • Infrastructure as Code โ€” Terraform-first, cost-conscious, reproducible environments
  • Cloud-native Architecture โ€” event-driven systems, autoscaling, and observability on Kubernetes
  • Software Supply Chain Security โ€” SBOM generation, image signing, and artifact verification with Syft & Cosign

I learn best by building real, end-to-end systems rather than isolated tutorials โ€” every repo below runs on a live cloud environment, gets destroyed and rebuilt, and is intentionally over-engineered on the security side because that's the part most portfolios skip.


๐Ÿš€ Highlighted Projects

Project What it demonstrates
kafka-and-security-lab Event-driven architecture (Kafka + KEDA) on AKS with a full DevSecOps pipeline: Trivy, Checkov, Kyverno, Falco, Velero, GitOps via ArgoCD
k8s-gitops-lab GitOps workflow with Helm & ArgoCD on Kubernetes
k8s-operator-lab Production-style Kubernetes Operator: CRD, reconciliation loop, OwnerReferences
vault-cicd-lab HashiCorp Vault + GitHub Actions โ€” secrets management and CI/CD integration on Kubernetes
observability-lab Terraform + Ansible provisioned k3s with Prometheus, Grafana, Loki, and SLI/SLO/SLA implementation
terraform-lab Azure infrastructure as code with Terraform, PostgreSQL

๐Ÿงฐ Tech Stack

Languages & OS

Python Go TypeScript Bash Linux

Cloud

AWS Azure

Containers & Orchestration

Docker Kubernetes Helm Istio Nginx

CI/CD & GitOps

GitHub Actions Jenkins ArgoCD

IaC & Configuration Management

Terraform Ansible

Observability

Prometheus Grafana Grafana Tempo Loki ELK Stack OpenTelemetry

Security & Compliance

Vault Trivy Checkov Kyverno Falco Cosign Syft SBOM

Data & Messaging

Kafka Redis PostgreSQL

Backup & DR

Velero


๐ŸŽ“ Education

B.Sc. Computer Science โ€” University of Messina ๐Ÿ‡ฎ๐Ÿ‡น


๐Ÿ“œ Certifications

Certified Kubernetes Administrator ย ย  HashiCorp Terraform Associate

Pinned Loading

  1. kafka-and-security-lab kafka-and-security-lab Public

    Event-driven notification system on Kubernetes with Kafka (Strimzi) & KEDA autoscaling โ€” secured with Trivy, Checkov, Kyverno, Falco & Velero

    HCL 24

  2. k8s-gitops-lab k8s-gitops-lab Public

    GitOps workflow with Helm & ArgoCD on Kubernetes

    Go 26

  3. k8s-operator-lab k8s-operator-lab Public

    Production-style Kubernetes Operator with Kubebuilder & Go โ€” custom CRD, reconciliation loop, OwnerReference

    Go 26

  4. vault-cicd-lab vault-cicd-lab Public

    HashiCorp Vault + GitHub Actions โ€” secrets management and CI/CD integration on Kubernetes

    Go 24

  5. terraform-lab terraform-lab Public

    Azure infrastructure as code with Terraform โ€” AKS, ACR, VNet, PostgreSQL

    HCL 20

  6. observability-lab observability-lab Public

    Terraform + Ansible provisioned k3s with Prometheus, Grafana, Loki, Tempo, OTel and SLI/SLO/SLA implementation

    HCL 20