Badr Jbaï

Cloud infrastructure architect who has built platforms serving 1.3M concurrent users and 5M banking customers with 12+ years of hands-on engineering across banking, aerospace, media, and public safety. Recognized expert in AWS/Azure multi-cloud, Kubernetes orchestration at scale, and zero-downtime delivery. Consistent track record: 99.95%+ uptime on production systems, 84% deployment time reductions, and enterprise-wide standards adopted across 8+ development teams. Combines deep technical execution with strategic architecture: the engineer who both designs the system and ships it.

Cloud Architecture AWS: EKS, EC2, Lambda, S3, Route53, ALB/NLB, Secret Manager, RDS. Azure: AKS, VMs, Container Registry, App Service, CosmosDB, Azure DevOps. Multi-cloud strategy, 99.95%+ uptime infrastructure.

Kubernetes Orchestration 12+ production clusters, 150+ workloads. Blue-green deployments, advanced networking, persistent storage. Cluster upgrades, high-availability design.

Infrastructure as Code Terraform expert. Helm chart architecture (40% complexity reduction). GitOps workflows (ArgoCD, Flux CD). Jenkins Configuration as Code (85% configuration drift reduction).

CI/CD & Automation Jenkins, GitLab CI/CD, GitHub Actions, Concourse. Pipeline orchestration (84% deployment time reduction). Custom Python automation SDKs. Release cycle optimization.

Platform Reliability 99.95%+ uptime architecture. Zero-downtime deployments. Automated failover and rollback. SLO/SLI frameworks. Observability engineering (Datadog, Prometheus, Grafana).

Data & Messaging Apache Kafka ecosystem (Confluent Platform, Kafka Connect). Microservices architecture. PostgreSQL, MongoDB, Oracle, SQL Server. Distributed systems design.

Scrum Master & Technical Architect: SelfHealingKubernetesClusters | Jan 2023 – Mar 2026

⭐ Featured Academic Project | PFE Final Year 2026

Academic Engineering Leadership | Kubernetes Research & Platform Engineering | 6-Month Roadmap

Roles: Scrum Master | Technical Architect | Student Coach | Project Initiator

Initiated and owned the full project concept: proposed SelfHealingKubernetesClusters as the PFE subject, defined scope, and gained academic approval.
Engineered the complete tech stack selection and produced a sequential architecture diagram covering auto-detection, self-remediation, and observability layers.
Designed and communicated a 6-month engineering roadmap with clearly defined milestones, dependencies, and delivery phases.
Distributed all engineering tasks via Jira: created epics, user stories, and sub-tasks aligned to Atlassian ticketing standards, with each story linked to corresponding GitHub branches and pull requests.
Served as Scrum Master: facilitated sprint planning, daily standups, retrospectives, and sprint reviews; kept the team aligned and unblocked.

Senior Cloud Infrastructure Engineer Talan (BPI France)

Mar 2023 - Mar 2026

Tunis, Tunisia | Banking & Financial Services | 500+ Concurrent Banking Users

Expertise: RFP response to requirements architecture. AWS & Azure multi-cloud architecture. Kubernetes platform management. CI/CD orchestration. Infrastructure reliability. Technical leadership.

Tech Stack: AWS: EKS, EC2, Lambda, CloudFront, S3, ACM, Route53, ALB, NLB, RDS, DynamoDB, IAM, WAF, API Gateway, Lambda Authorizer, CloudWatch, Secret Manager, KMS | Azure: AKS, VMs, App Service, CosmosDB, Azure Key Vault | Platform: Kubernetes, Helm, Kustomize, Terraform, Docker, Flux CD, GitOps, Tanzu | CI/CD: Jenkins, Confluent Kafka, AKHQ, Keycloak, IBM ISAM, Vault (Thought Machine) | Observability: Datadog, Prometheus, Grafana | Languages: Python, Bash, Java, Groovy | Tools: SonarQube, Git, Open Lens, Postman, Offset Explorer, Coffre Vault

Leadership Role: Technical architect and hands-on engineer across two mission-critical banking platform trains (Train Prety & Train Snowpiercer) at BPI France. Drove infrastructure automation, Kubernetes migrations, and observability initiatives from design to production. ⭐ Employee of the Month, March 2024

Deployed and maintained dual cloud platforms (Train Prety & Train Snowpiercer) across Staging, Master-Staging, and Production on AWS EKS and Tanzu, ensuring zero-downtime releases throughout.
Spearheaded Kubernetes EKS migration across multiple environments; received commendations from tech leads, business analysts, and development teams.
Integrated Kafka ecosystem (Kafka Connect, Confluent, AKHQ) with Keycloak authentication replacing IBM ISAM, deployed a centralized AKHQ portal, and industrialized Kafka Connect on Tanzu with 25% efficiency improvement.
Engineered standardized Helm release chart framework and centralized Terraform IaC modules, reducing deployment complexity by 40% and improving consistency across environments.
Automated credential delivery to SAFE vault via AWS Lambda, implemented IAM credential rotation for AWS environments, and configured HSTS security — eliminating manual secret handling.
Implemented Datadog monitoring dashboards and proactive alerting across Tomcat/Tomee and all platform services, reducing incident response time by 35%.
Migrated Logstash VMs to Kubernetes containers (CaaS) across DEV, PPD, and PRD environments and authored full implementation documentation.
Led Chaos Engineering initiatives, resolved FluxCD GitOps challenges, and coordinated production MEPs (Mise en Production) at each sprint conclusion.

Technical Manager Komutel

May 2022 - Mar 2023

Tunis, Tunisia | Public Safety & Emergency Systems

Expertise: AWS infrastructure, Terraform IaC, CI/CD automation, test automation, team leadership, mission-critical systems

Tech Stack: AWS (EC2, RDS, CloudWatch, IAM), Terraform, Jenkins, Bamboo, Docker, Portainer, SonarQube, Veracode, Python, TestLink, Jira, Bitbucket, Confluence, Scrum

Led QA engineering team of 6 engineers. Implemented comprehensive test automation frameworks achieving 30% productivity increase and 45% reduction in bug escape rate.
Architected production AWS infrastructure using Terraform infrastructure-as-code. Implemented automated provisioning and infrastructure drift detection reducing manual errors by 90%.
Engineered CI/CD pipeline automation with Jenkins declarative pipelines reducing release cycle from 2 weeks to 3 days.
Developed comprehensive testing strategy for mission-critical emergency systems ensuring 99.99% availability and regulatory compliance.

DevOps Platform Engineer Neoxam

Sep 2021 - May 2022

Tunis, Tunisia | Banking & Insurance | 200+ Developers

Expertise: DevOps platform operations, Jenkins JCasC, GitOps workflows, Docker orchestration, automation SDK development

Tech Stack: Jenkins, JCasC, BitBucket, Bamboo, SonarQube, Veracode, JFrog Artifactory, Docker Swarm, NFS, Portainer, Python, REST APIs, GitOps, Grafana, Kanban

Engineered and operated enterprise DevOps platform serving 200+ developers. Maintained 99.9% SLA through automated monitoring and self-healing infrastructure.
Automated Software Factory upgrades across Docker Swarm clusters using Portainer orchestration reducing maintenance windows by 60% (from 8h to 3h).
Implemented Jenkins Configuration as Code (JCasC) with GitOps workflow across Dev, Staging, Production environments reducing configuration drift incidents by 85%.
Developed Python automation SDK leveraging REST APIs for RBAC auditing across DevOps toolchain automating permission reconciliation for 200+ users.

DevOps Engineer Desjardins

Oct 2020 - Sep 2021

Montreal, Canada | Banking & Insurance | 5M+ Customers

Expertise: Platform infrastructure architecture, infrastructure-as-code, GitOps, platform engineering, Kubernetes deployment

Tech Stack: AWS (EKS, EC2, S3), GCP, Kubernetes, Terraform, Concourse CI, Cloud Foundry (PCF/Tanzu), Helm, Jenkins, Bitbucket, SonarQube, JFrog Artifactory, Java, Maven, Gradle, GitOps

Architected complete platform infrastructure and DevOps automation tooling for enterprise banking applications serving 5M+ customers implementing infrastructure-as-code patterns and GitOps workflows.
Enabled 12 development squads to achieve continuous delivery through platform engineering implementing self-service deployment automation reducing deployment time from days to hours.
Engineered reusable Java application blueprints with embedded best practices deployed to Pivotal Cloud Foundry (Tanzu) using Concourse pipeline-as-code adopted by 15+ microservices.

DevOps Engineer / Technical Advisor Vermeg

Nov 2019 - Oct 2020

Tunis, Tunisia | Banking & Insurance

Expertise: Kubernetes cluster engineering, GitOps architecture, AWS multi-region, knowledge transfer, bare-metal infrastructure

Tech Stack: AWS (multi-region), Kubernetes, RedHat, ArgoCD, CNI, Jenkins, Maven, JFrog Artifactory, Bitbucket, Jira, Tomcat, MySQL, Java, Java Melody, GitOps, bare-metal infrastructure, Linux

Led CI/CD infrastructure knowledge transfer assuming full operational ownership of infrastructure and database systems across AWS 3 regions.
Pioneered GitOps architecture evaluation for enterprise product line designing adoption roadmap and technical integration strategy.
Engineered bare-metal Kubernetes cluster on RedHat infrastructure (5 nodes) implementing CNI networking, persistent storage, managing 20+ containerized workloads.

Data Specialist Assent Compliance Inc

Aug 2018 - Feb 2019

Ottawa, Ontario, Canada | Supply Chain Data Management

Expertise: Data pipeline engineering, ETL automation, SQL development, QA testing, cross-functional collaboration, client data operations

Tech Stack: Python, SQL Server, Oracle DB, SSRS, SSAS, ETL, Zendesk, Jira, PyCharm, JSON, Excel automation

Streamlined customer data ingestion workflows into SSAS platform, reducing processing time while providing expert support to internal stakeholders and clients.
Developed complex SQL queries on SQL Server for large-scale data extraction and ETL processes supporting internal and external reporting systems.
Automated metadata cleansing using Python and Excel, enhancing data quality and accelerating processing for the data operations team.
Designed and implemented data pipelines to optimize throughput and consistently meet client SLA commitments.
Collaborated with project managers on client calls, performing proactive data analysis to identify potential blockers and mitigate delays.
Partnered with offshore QA team in Kenya to identify process bottlenecks and implement operational improvements.
Leveraged Zendesk and Jira for issue tracking; developed JSON parsing solutions using PyCharm for supplier intelligence team.

DevOps Engineer IFS

Aug 2017 - Jul 2018

Ottawa, Canada | Aerospace & Defense

Expertise: CI/CD migration, Bamboo, binary artifact management, build optimization, mission-critical systems

Tech Stack: Bamboo, JFrog Artifactory, IBM Anthill Pro, Jenkins, Groovy, Gradle, Git, SVN, Ant, Ivy, WebSphere, Atlassian Suite, Crucible, SonarQube, Oracle DB, Java, Windows Server

Led migration of 15+ project repositories from IBM Anthill Pro to Bamboo CI/CD including binary artifact migration to JFrog Artifactory reducing build times by 35%.
Administered Windows-based development infrastructure for Java aerospace applications optimizing build tooling and CI pipelines for mission-critical fault-tolerant systems.

Software Developer Cision

Apr 2016 - Jul 2017

Ottawa, Canada | Media Monitoring & Analytics | 1.3M Concurrent Users

Expertise: Large-scale system development, API design, RESTful services, performance optimization, high-availability architecture

Tech Stack: Java, Spring MVC, RESTful APIs, Microservices, PostgreSQL, MySQL, MongoDB, Elasticsearch, RabbitMQ, Kafka, Flume, HBase, Tomcat, Jenkins, Bamboo, Maven, Ant, Git, SVN, Bitbucket, Ansible, Jira, Nagios, Postman, Swagger, Pentaho, Linux, performance optimization, scalability engineering

Developed and maintained enterprise media monitoring platform serving 1.3M global concurrent users with 99.9% uptime handling 500K+ API requests/day.
Designed and implemented RESTful APIs, refactored legacy code, resolved critical production defects reducing incident response time by 40%.

Platform Technical Specialist Cision

Sep 2014 - Apr 2016

Ottawa, Canada | Media Monitoring & Analytics

Expertise: Platform customization, UNIX/Linux system administration, BI reporting, data transformation, international deployments

Tech Stack: MediaVantage platform, UNIX/Linux, Pentaho BI, XML/XSLT, Oracle DB, SQL Server, MySQL, ETL, Salesforce, Jenkins, Tomcat, SVN, Eclipse, Putty, JSON, JSP, HTML, Photoshop, database administration, email systems, system customization

Deployed and validated enterprise media monitoring products for international clients across multiple regions ensuring successful global rollouts.
Administered and customized MediaVantage platform instances on UNIX/Linux systems tailoring configurations to meet specific client requirements.
Built custom BI reports using Pentaho and developed XML/XSLT transformations for automated, personalized email distribution systems serving thousands of users.