Education & Training:
I'm the kind of person who always loves to learn new things as a hobby, and I believe god has given us a brain to continue learning from birth till death.
My learning is not only limited to the official universities and institutes but the majority of my knowledge is from wonderful internet
communities, RFCs articles, and the documentation of the technologies I work with.
Note: Many parts of this CV are still under development.
BACHELOR OF SCIENCE ELECTRICAL & COMPUTER ENGINEERING
OMDURMAN ISLAMIC UNIVERSITY - SUDAN
5 years (10 semesters) university BSc. study recognized in Germany by anabin.kmk.org. I have completed the study successfully with a grade of second-class division two.
- Logic Design
- Electronics
- Microprocessor
- Electrical Power
- Communication System
- Radar
MCSE: WINDOWS SERVER 2003.
NETMETRIC SOLUTIONS - INDIA
Microsoft Certified System Engineer (MCSE) is a training certification for managing & maintaining Windows Server 2003.
- Microsoft Windows Server 2003
- Active Directory and Network Infrastructure
- NTFS and share permissions
- Backup and Disaster Recovery
CISCO CERTIFIED NETWORK ASSOCIATE.
NETMETRIC SOLUTIONS - INDIA
This is a training certification in Networking, the training took place along with other training from Microsoft at the period from 2004 to 2006.
- Open Systems Interconnection (OSI) model
- Routing protocols
- Switching
- Firewalls
- Network monitoring & troubleshooting
MASTER OF BUSINESS ADMINISTRATION – MIS.
SUDAN UNIVERSITY OF SCEINCE AND TECHNOLOGY - SUDAN
This is three semesters Master of Business Administration (MBA) specialization in Management Information Systems (MIS).
- statistical studies
- Microeconomics
- System analysis and design
- System prototyping
- Delivery & Reporting
The Certified Kubernetes Administrator - CKA
The Linux Foundation
The Certified Kubernetes Administrator (CKA) certification from the Linux Foundation validates the skills and knowledge required to perform the responsibilities of a Kubernetes administrator. It covers essential topics such as Kubernetes architecture, installation, configuration, application lifecycle management, networking, storage, security, and troubleshooting.
- API Object
- Helm
- Ingress
- Orchestration
- Scheduling
Certified Kubernetes Security Specialist - CKS
The Linux Foundation
The Certified Kubernetes Security Specialist (CKS) certification from the Linux Foundation validates the skills and knowledge required to secure container-based applications and Kubernetes platforms during build, deployment, and runtime. It covers essential topics such as cluster setup, hardening, monitoring, and incident response.
- mTLS
- Falco Sysdig
- cilium.io
- Intrusion Detection (Suricata.io)
- Harbor
- SPIRE Server/Agent by (spiffe.io)
- CIS Benchmarks (cisecurity.org)
- OSSEC.net (Host Intrusion Detection)
- kube-bench
- Open Policy Agent
- AppArmor
Node.js Application Developer - JSNAD
The Linux Foundation
The JavaScript Node.js Application Developer (JSNAD) certification from the Linux Foundation validates the skills and knowledge required to build and maintain Node.js applications. It covers essential topics such as asynchronous programming, Node.js core APIs, error handling, and application security.
- Node.js Buffer API’s
- Connecting Streams
- Incremental Processing
- Managing asynchronous operations
- Spawning and Executing child processes
- Child process configuration
- Debugging Node.js
- Error Handling
- Node.js CLI
- The event system
- Building event emitters
- Consuming event emitters
- File System
- Module system
- Process/Operating System
- Unit Testing
Node.js Services Developer - JSNSD
The Linux Foundation
The JavaScript Node.js Services Developer (JSNSD) certification from the Linux Foundation validates the skills and knowledge required to build and maintain scalable and efficient Node.js services. It covers essential topics such as service development, asynchronous programming, data storage, security, and testing.
- Implementing public facing web servers
- Creating RESTful HTTP services
- Incremental Processing
- Consuming other HTTP services
- Knowledge of HTTP verbs and status codes
- Protecting against malicious input
- Attack mitigation
IT specialist with over 18 years of experience.
IT specialist with over 18 years of experience in Networking – Web application development – SIP Asterisk telephone system –
high availability server hardware installation and virtualization – OS virtualization. Strong and long experience since childhood with JS.
Note: Many parts of this CV are still under development.
CIS: COMPUTER INFORMATION SYSTEMS - SUDAN
KHARTOUM - SUDAN
CIS is a Lebanese company sponsored in Sudan by the Central Trading Company Limited (CTC) - The company specializes in selling and supporting server/storage/backup hardware for the Enterprise. My responsibility was to work 24/7 with the support team. The company closed in Sudan in September 2010 then I moved to work with our client "EBS".
- Selling servers
- Tabe libraries & backup Hardware/software
- Maintenace Contracts
- Spare parts Stock managmeent
- 24/7 Customer support
EBS: ELECTRONIC BANKING SERVICE. - SUDAN
KHARTOUM - SUDAN
I moved to work with our main client EBS after CIS had closed. My main responsibilities were to monitor servers’ network and hardware failure.
- High availiablity HP-UX Clusters
- Database Administration
- Integrity Servers HP-UX
- ATM Networks
- Network monitoring & troubleshooting
ABMMC: HAMED BIN MOHAMED MILITARY COLLEAGE. - QATAR
ASH-SHAHANIYAH - QATAR
I worked for 7 years in the registration office administering and supporting an E-Learning system called "Blackboard". In April 2014 I started learning the German language every evening part-time, in DEC 2017 I passed the Exam "Gothe B1" and got a residence permit from Germany then moved from Qatar to Germany on 18 NOV 2018. From 19 NOV 2018 till JUN 2019, I continued to study the German B2 in Berlin then in August 2019 moved permanently to Leipzig to work with LASUB.
- Students' Registration System Administration
- E-Learning System Administration
- Oracle Database Aministration
- Data entry
LASUB: LANDESAMT FÜR SCHULE UND BILDUNG - GERMANY
LEIPZIG - GERMANY
I worked in the teacher training center and my main responsibility was to manage the accounts of the teachers and the students, WLAN hotspot, and to support the teachers in the classrooms.
- User Support
- Active Drictory
- WLAN HOTSPOT
- LANCOM WLAN Controller
- Netwrok Policy Server NPS
- Safe-Q print Server
My Skills
Recent Technology I'm working with
- All
- Networking
- Servers
- Programming
- Others
Pfsense
pfSense is a robust open-source firewall and router software that provides advanced security features, VPN support, and network management capabilities. It includes powerful firewall rules, advanced NATing (Network Address Translation)
Nginx
Nginx is a high-performance open-source web server, reverse proxy & load balancer for managing thousands of concurrent connections. I've long experience with Nginx, including managing the Nginx Ingress Controller in Kubernetes to route & load balancing to containerized applications.
VPN Technology
I work with various VPN implementations for secure communication including the open-source OpenVPN that provides secure point-to-point or site-to-site connections.
HAProxy
"HAProxy is a high-performance open-source load balancer and reverse proxy for TCP and HTTP applications. I have strong expertise in configuring and managing HAProxy to efficiently balance TCP and HTTP traffic, ensuring high availability, reliability, and optimal performance for web services and applications.".
Border Gateway Protocol
"BGP (Border Gateway Protocol) is a robust routing protocol available as a package in pfSense, facilitating efficient route management and exchange between different autonomous systems.".
Open Short Path First
OSPF (Open Shortest Path First) is a dynamic routing protocol available as a package in pfSense, enabling efficient route discovery and management within complex networks.
Network security with Suricata
Suricata is an advanced network threat detection engine available as a package in pfSense, providing powerful intrusion detection and prevention capabilities to enhance network security. I have extensive experience in configuring Suricata rules to effectively detect and mitigate network threats
Docker
Docker is a containerization platform for developing, shipping, and running applications. I have extensive experience working with Docker, including managing Docker volumes, using Docker Compose for defining and running multi-container applications, and configuring Docker networks.
Kubernetes
Kubernetes (K8s) is a powerful container orchestration platform for automating deployment, scaling, and management of containerized applications. I am Kubernetes Certified Administrator (CKA) and Certified Kubernetes Security Specialist (CKS) certified.
Node.js
Node.js is a JavaScript runtime built on Chrome's V8 engine, enabling server-side scripting and building scalable network applications. I am JavaScript Node.js Application Developer (JSNAD) and JavaScript Node.js Services Developer (JSNSD) certified.
Rook-Ceph
Rook-Ceph is a storage orchestrator for Kubernetes, providing a seamless integration with Ceph storage solutions. I am proficient in deploying and maintaining Rook-Ceph, managing Ceph OSDs, monitors, and managers, as well as configuring RADOS gateways and S3-compatible storage.
Ubuntu Linux
"Ubuntu Linux is a popular open-source operating system that I work with extensively, focusing on Logical Volume Management (LVM), networking, and various other aspects of system administration and optimization."
MongoDB
MongoDB is the most scalable and fastest NoSQL and in-memory database, which I use extensively with the Mongoose driver for Node.js. I have strong expertise in connecting applications to MongoDB within Kubernetes (K8s) environments and in monitoring servers with Prometheus.
MariaDB
MariaDB is a powerful open-source relational database, which I use extensively with various applications. I have strong expertise in connecting applications to MariaDB within Kubernetes (K8s) environments and in monitoring servers with Prometheus.
Proxmox Virtual Environment
Proficient in setting up and maintaining Proxmox clusters for high availability and load balancing, automating tasks with shell scripting and Proxmox API, working with Proxmox Backup Server (PBS), configuring virtual networks and VLANs, and implementing monitoring with Prometheus and Grafana.
Redis
Redis is an in-memory data structure store used as a database, cache, and message broker. I have extensive experience setting up Redis Sentinel for high availability and automatic failover. Additionally, I am skilled in connecting Redis Sentinel with Node.js and other applications
Prometheus
"Prometheus is a monitoring and alerting toolkit for collecting and querying metrics. I have experience in setting up and configuring Prometheus in Kubernetes (K8s) clusters and configuring it to scrape metrics from various services, setting up alerting rules, and integrating with Grafana for visualization.
Grafana
Grafana is an open-source platform for monitoring and observability. I have experience in setting up and configuring Grafana, creating custom dashboards, and visualizing metrics from various data sources such as Prometheus and Elasticsearch.
Elasticsearch
Elasticsearch is a powerful search and analytics engine. I have extensive experience in setting up and configuring Elasticsearch clusters, and indexing and querying data. I also use it to monitor the access logs of my Nginx Ingress Controller for security and data analysis purposes.
Kibana
Kibana is a visualization tool for Elasticsearch. I am skilled in using Kibana to create interactive dashboards, visualize data, and gain insights from Elasticsearch indices.
JavaScript
Skilled in JavaScript with over 18 years of experience, enjoying writing and developing robust applications using modern JavaScript frameworks and libraries. Proficient in both ESM (ECMAScript Modules) and CJS (CommonJS) specifications.
HTML
Highly proficient in HTML with extensive experience in creating well-structured, semantic, and accessible web pages. Skilled in using HTML5 features to build responsive and interactive user interfaces.
CSS
Highly skilled in CSS with extensive experience in designing responsive and visually appealing web pages. Proficient in using CSS frameworks like Bootstrap to streamline development and ensure consistent styling across applications.
SASS
Proficient in using SASS (Syntactically Awesome Style Sheets) to write maintainable and scalable CSS. Skilled in leveraging SASS features such as variables, nesting, mixins, and functions to enhance and streamline the styling process.
JQuery
Experienced in using jQuery to simplify JavaScript programming, enhance web page interactivity, and manipulate the DOM efficiently. Skilled in leveraging jQuery's extensive library of plugins and tools to create dynamic and responsive user interfaces.
Bash scripting
Proficient in automating server tasks using Bash scripting, with extensive experience in writing scripts for system administration, and process automation. Skilled in creating efficient scripts to manage configurations, perform backups, monitor performance, and automate maintenance tasks.
Git
Git is a version control system for tracking changes in source code during software development. I have extensive experience in using Git for version control, including branching, merging, and resolving conflicts.
Cert-Manager
is a powerful tool that automates the management and issuance of TLS certificates. It integrates with various certificate authorities, including Let's Encrypt, to automatically issue and renew certificates, ensuring secure communication for your applications.
Velero
Velero is a powerful tool for backup and recovery of Kubernetes clusters. I have extensive experience using Velero to ensure data protection and disaster recovery, including setting up scheduled backups, backing up Persistent Volume Claims (PVCs), restoring applications, and migrating cluster resources.
Harbor
I am skilled in configuring Harbor for secure storage and distribution of container images, integrating it with CI/CD pipelines to automate the build, test, and deployment processes, and using Trivy image scanner with Harbor to ensure security by scanning for vulnerabilities.
FALCO by Sysdig
I possess a good experience using Falco, an open-source runtime security tool for Kubernetes. My skills include setting up and configuring Falco to monitor and detect anomalous activity in containerized environments, writing custom rules to enhance security.
OSSEC
I have significant experience using OSSEC (OS Security), an open-source host-based intrusion detection system (HIDS). My skills include setting up and configuring OSSEC to monitor and analyze system logs, detect security breaches, and respond to threats.
Open Policy Agent
I have experience using Open Policy Agent (OPA) for policy-based control in cloud-native environments. My skills include writing and managing policies using Rego, integrating OPA with Kubernetes for admission control, and implementing fine-grained access control across various services.
Linux AppArmor
I have significant experience using AppArmor (AA), a Linux kernel security module for mandatory access control. My skills include configuring and managing AppArmor profiles to secure applications and Kubernetes containers, enhancing system security, and troubleshooting profiles for optimal protection.
Hardware
I have extensive skills in configuring hardware, including setting up and managing storage system arrays, RAID configurations, FC (Fibre Channel) networking, and iSCSI, in both Windows and Linux operating systems. I have experience working with different brands such as HPE and Synology.
VSCode remote development
I have extensive experience using Visual Studio Code (VSCode) for remote development. This includes setting up and configuring VSCode for remote SSH connections, utilizing the Remote Development extension pack, and seamlessly working on code hosted on remote servers or virtual machines.
Hobbies.
