Portfolio & Showcase

Hi, I'm Mohammad Abu Mattar

AWS-Certified DevOps Engineer with 6+ years specializing in high-scale cloud automation and fintech infrastructure. Expert in governing multi-account AWS environments, orchestrating production microservices, and implementing Infrastructure as Code with a focus on PCI-DSS compliance, security, and operational excellence.

See My Resume
banner
About Me

About Me

About Me

AWS-Certified Senior DevOps Engineer with proven expertise in managing 15+ AWS accounts and 20+ production microservices in regulated fintech environments. Specialized in implementing GitOps practices, Infrastructure as Code, and achieving 96% security posture through comprehensive compliance controls. Passionate about building robust, secure cloud solutions using Terraform, Docker, Kubernetes, and modern CI/CD practices.

Career

Work Experience

Assistant Manager DevOps Engineer

Jordan Ahli Bank · Full-timeOct 2024 - PresentAmman, Jordan

Serving as Platform Owner for the bank's cloud ecosystem, managing 15+ AWS accounts and 20+ production microservices with a focus on high availability, disaster recovery, and fintech workload optimization in a regulated financial environment. Leading security and compliance efforts with 96% security posture achievement while orchestrating GitOps practices and Infrastructure as Code implementations.

Contributions & Responsibilities

  • Platform Governance & Reliability: Managing 15+ AWS accounts and 20+ production microservices focusing on high availability, disaster recovery, and fintech workload optimization in regulated environments.
  • Infrastructure as Code & GitOps: Standardized cloud deployments using Terraform, implementing GitOps practices with ArgoCD via Atlantis for consistent, repeatable releases. Managed autoscaling and resource optimization for production workloads.
  • Security & Compliance Leadership: Achieved 96% security posture across all AWS accounts implementing IAM Identity Center, AWS Organizations, and strict PCI-DSS compliance controls with CloudTrail, AWS Config, and Security Hub.
  • Automated CI/CD: Orchestrated end-to-end delivery pipelines using AWS CodePipeline and GitHub Actions, streamlining banking workloads from development to production with automated testing and security scanning.
  • Release Engineering: Leading weekly releases and hotfix strategies, ensuring zero-downtime deployments through robust rollback and go/no-go decision frameworks across dev, QA, and production.
  • Production Support & Monitoring: Supporting production microservices through centralized monitoring (Prometheus, Grafana, CloudWatch), incident response workflows, and long-term platform roadmap planning.

DevOps Engineer

cirrusgo (AWS Partner) · Full-timeMar 2023 - Sep 2024Amman, Jordan

cirrusgo is an AWS partner delivering cloud solutions to businesses in the MENA region.

Architected and delivered AWS hybrid and on-premises solutions for 8+ enterprise clients including fintech organizations. Designed end-to-end solution architectures balancing cloud-native AWS services with on-premises infrastructure, achieving 25-40% cost optimization while meeting regulatory requirements.

Contributions & Responsibilities

  • Solution Architecture: Architected AWS hybrid and on-premises solutions for 8+ enterprise clients including fintech organizations. Designed end-to-end architectures (microservices, event-driven, serverless) and optimized cloud costs by 25-40% through right-sizing, reserved instances, and architecture refinements.
  • IaC Foundation & DevOps Standards: Built foundational Infrastructure as Code using Terraform/Terragrunt patterns and established comprehensive DevOps documentation standards. Implemented multi-account, multi-environment infrastructures using AWS Organizations.
  • Container Platforms & Deployment: Managed containerized workloads across AWS container services (ECS, Fargate, EKS) spanning 3 environments (dev, UAT, prod). Deployed production applications using GitOps practices and hardened container images.
  • CI/CD & Automation: Implemented secure CI/CD pipelines using GitHub Actions, AWS CodePipeline/CodeBuild with canary deployments, automated testing, manual approvals, and environment promotion (dev → UAT → prod).
  • Security & Compliance: Ensured security, access control, and compliance across multi-region cloud deployments (Middle East, US East, Europe) and on-premises environments with automated security scanning and monitoring.

Software Engineer - Microservices

Nagarro · ContractFeb 2022 - May 2022Remote

Nagarro is a German-based software services company specializing in consulting, technology, and outsourcing.

Developed fintech microservices architectures using Spring Boot across the full SDLC, integrating PostgreSQL databases for reliable data persistence. Built secure, scalable services for financial transaction processing and data management.

Contributions & Responsibilities

  • Fintech Microservices: Developed microservices architectures using Spring Boot for financial transaction processing and data management, ensuring secure and scalable services across the full SDLC.
  • Database Integration: Integrated PostgreSQL databases seamlessly for end-to-end functionality and reliable data persistence in fintech applications.
  • Full Stack Development: Built front-end components using Angular, HTML, and CSS while resolving production bugs and performance issues to improve system stability.
  • Technical Documentation: Produced detailed technical documentation to support long-term maintainability and knowledge transfer across development teams.
View Full Career
Education

Education & Certifications

AWS Certified Developer – Associate

Amazon Web Services (AWS)Issued Feb 2024 · Expires Feb 2027

Validated expertise in developing and maintaining AWS-based applications, including proficiency in core AWS services, application lifecycle management, and deployment best practices.

AWS Certified Cloud Practitioner

Amazon Web Services (AWS)Issued Oct 2023 · Expires Feb 2027

Demonstrated foundational knowledge of AWS Cloud concepts, services, pricing, security, and architecture ideal for technical and non-technical roles.

AWS Academy Graduate - AWS Academy Cloud Foundations

Amazon Web Services (AWS)Issued Nov 2022

Completed a comprehensive introduction to AWS Cloud, covering compute, networking, databases, and storage, aligned with industry-recognized certifications.

View All Credentials
Showcase

Projects & Tools

Beyond enterprise cloud architecture and DevOps consulting, I build open-source tools that solve real developer problems. These projects showcase my expertise in automation, developer experience, and creating production-ready solutions with modern technologies.

Rawi - AI CLI Documentation Tool

An intelligent CLI tool that generates comprehensive documentation for command-line applications using AI. Rawi analyzes your CLI commands and creates detailed, structured documentation automatically.

TypeScript Node.js AI/ML CLI +1

AWS Icons - SVG Icon Library

A comprehensive, free SVG icon library of all AWS services. Constantly updated with new services and available via CDN or NPM for seamless integration. Perfect for any web project needing AWS service icons.

SVG CDN NPM Web

AWS React Icons - React Components Library

AWS service icons as React components with TypeScript support. Built on top of aws-icons, providing a seamless React experience with full type definitions and easy customization.

React TypeScript SVG NPM
View All Projects
Expertise

My DevOps Expertise

Specialized in enterprise-grade cloud infrastructure, security automation, and regulated environment deployments with proven expertise in multi-account governance and production microservices orchestration.

Cloud & Infrastructure

Expert in AWS (EC2, EKS, ECS, Fargate, S3, RDS, IAM, VPC, Organizations, IAM Identity Center, Lambda, CloudFormation, CloudWatch). Proficient in AWS Well-Architected Framework with focus on security, reliability, and cost optimization. Working knowledge of Azure and OCI.

Containers & Orchestration

Proficient with AWS container services (ECS, Fargate, EKS), Docker containerization, and ArgoCD for GitOps deployments. Expert in multi-environment workload management, scaling configurations, and container optimization for production.

CI/CD & Automation

Extensive experience with GitHub Actions, AWS CodePipeline/CodeBuild, Jenkins, and GitLab CI. Design smart deployment strategies (blue-green, canary), automated testing, security scanning, and multi-environment promotion workflows. Proficient in Python, Bash, PowerShell, JavaScript, and TypeScript.

Security & DevSecOps

Experience aligning infrastructure with PCI-DSS, CIS Benchmark, and NIST frameworks. Implement security automation with Trivy, Vault, IAM least privilege, Secrets Manager, CloudTrail, AWS Config, and Security Hub. Achieved 96% security posture across production environments.

Monitoring & Observability

Proficient with Prometheus, Grafana, CloudWatch, and ELK Stack. Design real-time monitoring dashboards, centralized logging, alerting, and incident response workflows for production microservices.

Databases & Development

Optimize PostgreSQL, MySQL, MongoDB, DynamoDB, and S3 for data management across microservices. Experience with Spring Boot, Node.js, React for full-stack development and fintech applications.

Services

What I Offer

End-to-end DevOps & cloud engineering solutions for modern teams

01 Cloud & DevOps Consulting

Cloud & DevOps Consulting

I architect and deliver enterprise-grade AWS solutions for fintech and regulated environments. Specializing in multi-account governance, hybrid cloud architectures, and achieving 25-40% cost optimization while maintaining security compliance.

  • Multi-account AWS governance with Organizations & IAM Identity Center
  • Infrastructure as Code with Terraform & CloudFormation
  • PCI-DSS compliance and security automation (96% posture achievement)
  • Kubernetes and Docker orchestration for production workloads
  • Cloud cost optimization and architecture refinements
Let’s Talk
02 Custom CI/CD Pipelines

Custom CI/CD Pipelines

I design and implement secure CI/CD pipelines for regulated environments with automated testing, security scanning, and zero-downtime deployment strategies. Expert in orchestrating production releases with robust rollback and go/no-go frameworks.

  • GitOps practices with ArgoCD and automated deployment tools
  • Smart deployment strategies (blue-green, canary) with rollback capabilities
  • Integration with AWS CodePipeline, GitHub Actions & Jenkins
  • Automated security scanning and compliance checks
  • Multi-environment promotion workflows (dev → UAT → prod)
Let’s Talk
03 Infrastructure as Code (IaC)

Infrastructure as Code (IaC)

I build foundational IaC frameworks using Terraform/Terragrunt patterns for multi-account, multi-environment infrastructures. Creating reusable modules, comprehensive DevOps documentation standards, and automation libraries for consistent cloud deployments.

  • Terraform & Terragrunt automation with Atlantis for GitOps
  • Multi-account AWS Organizations architecture
  • Reusable modules and Python/JavaScript automation libraries
  • Automated provisioning with autoscaling configurations
  • Security and compliance automation (PCI-DSS, CIS Benchmark)
Let’s Talk
cta-image

Ready to Scale Your Cloud Infrastructure with Expert DevOps Solutions?

Partner with an AWS-Certified Senior DevOps Engineer who has successfully managed 15+ AWS accounts and 20+ production microservices in regulated fintech environments. I specialize in multi-account governance, Infrastructure as Code, PCI-DSS compliance, and achieving 96% security posture. Whether you need secure CI/CD pipelines, cloud cost optimization (25-40% savings), or zero-downtime deployment strategies, I deliver enterprise-grade solutions that ensure reliability, security, and operational excellence.

Let's Work Together
Latest Resources

Latest Content & Resources

Explore my latest blog posts, cheatsheets, code snippets, DevTips, flashcards, glossary entries, presentations, quizzes, and roadmaps. Real-world insights from production environments and battle-tested practices.

Latest Blog Posts

100
View All
Serverless Observability: A Comprehensive Guide to AWS Lambda Monitoring

Serverless Observability: A Comprehensive Guide to AWS Lambda Monitoring

Introduction: Why Serverless Observability is Non-Negotiable for AWS Lambda? What is Serverless Computing and AWS Lambda? Serverless computing is a big change in how we build things i

#CloudWatch #X Ray #Datadog +3 tags
read more
Designing SLOs and Error Budgets: Your Blueprint for Sustainable Reliability

Designing SLOs and Error Budgets: Your Blueprint for Sustainable Reliability

In today's fast-paced digital world, businesses are always trying to balance two big things: getting new features out fast and keeping their services super reliable. Every tech team deals with this, p

#SLI #SLA #Monitoring +2 tags
read more
Edge Computing: AWS Lambda@Edge vs. Cloudflare Workers – A Practical Guide

Edge Computing: AWS Lambda@Edge vs. Cloudflare Workers – A Practical Guide

The digital world keeps changing, and so do the demands on our apps and services. We all expect instant responses, smooth experiences, and things to just work, no matter where we are. This constant pu

#AWS Lambda@Edge #Cloudflare Workers #CDN +3 tags
read more

Quick Reference Cheatsheets

35
View All
Docker Swarm DevOps & Tools
Chef DevOps & Tools
Docker Compose DevOps & Tools
Dockerfile DevOps & Tools
PostgreSQL Database
Redis Database

Code Snippets & Examples

10
View All
Multi-Environment Secret Management with HashiCorp Vault

Multi-Environment Secret Management with HashiCorp Vault

Need to manage secrets safely across multiple environments? Here's how with HashiCorp Vault. Storing secrets in .env files, hardcoding them, or even using separate secret managers per environme

#Vault #SecretsManagement #MultiEnvironment +3 tags
Bash and Python
View Code
Top 7 Open Source OCR Models for Document Processing

Top 7 Open Source OCR Models for Document Processing

AI Tool Turn your documents into perfect digital copies with these powerful open source OCR models. No more dealing with messy text extraction get clean, accurate markdown from PDFs, images, and

#OCR #Computer Vision #Document Processing +5 tags
Python
View Code
Why printf Beats echo in Linux Scripts

Why printf Beats echo in Linux Scripts

Scripting Tip You know that feeling when a script works perfectly on your machine but fails miserably somewhere else? That's probably because you're using echo for output. Let me show you why pri

#Bash #Shell Scripting #Printf +5 tags
Bash
View Code

DevTips & Tricks

12
View All
Structured Logging & Log Aggregation with ELK Stack

Structured Logging & Log Aggregation with ELK Stack

Why Centralized Logging Matters The Logging Crisis When services fail, where do you look first? With distributed systems, logs scatter across servers, containers, and cloud regions. A si

#Logging #ELK Stack #Elasticsearch +4 tags
Read More
Container Image Vulnerability Scanning in CI/CD with Trivy

Container Image Vulnerability Scanning in CI/CD with Trivy

Why Container Security Matters The Vulnerability Problem Container images are a critical attack surface in modern deployments. Every time you build a container image, it includes the bas

#Container Security #Vulnerability Scanning #Trivy +4 tags
Read More
Policy-as-Code Governance with OPA/Rego

Policy-as-Code Governance with OPA/Rego

Why Policy-as-Code Matters The Governance Challenge Managing infrastructure at scale gets complicated fast. As your infrastructure grows, ensuring consistency and compliance becomes incr

#Policy as Code #OPA/Rego #Compliance +4 tags
Read More

Presentations & Slides

4
View All
Kubernetes Security: A Blueprint for Hardening Clusters in Production

Kubernetes Security: A Blueprint for Hardening Clusters in Production

A visual journey through Kubernetes security layers from cluster-level hardening (API server config, etcd encryption) to workload security (PSA, RBAC, network policies) and supply chain protection. A blueprint teams can use to audit and improve their cluster posture.

#Kubernetes #RBAC #Pod Security Admission +6 tags
View Deck
Observability Engineering: From Metrics to Insights

Observability Engineering: From Metrics to Insights

Learn how to build observability systems that actually help you debug production issues fast. We'll cover metrics, logs, and traces, and show you how to use them together to find problems before your users do.

#Observability #Metrics #Distributed Tracing +7 tags
View Deck
The Deployment Pipeline Journey: From Commit to Customer

The Deployment Pipeline Journey: From Commit to Customer

Understand how modern deployment pipelines automate software delivery. Walk through each stage from code commit to production release, discovering the safety nets that enable confident, frequent deployments.

#Deployment Pipeline #CI/CD #DevOps +7 tags
View Deck

Interactive Quizzes & Assessments

59
View All
System Design & Architecture: Scalability & Resilience

System Design & Architecture: Scalability & Resilience

Welcome to the System Design & Architecture quiz! Test your knowledge on scalability, reliability, performance, trade-offs, distributed systems patterns, and architectural decisions for production sys

#Architecture #System Design #Scalability
Take Quiz
Testing Strategies: Unit, Integration, E2E

Testing Strategies: Unit, Integration, E2E

Welcome to the comprehensive quiz on testing strategies! This quiz covers unit testing, integration testing, end-to-end testing, mocking, fixtures, code coverage, and more. Test your knowledge and und

#Testing #Quality #DevOps
Take Quiz
TypeScript Advanced: Types, Generics, Utility Types

TypeScript Advanced: Types, Generics, Utility Types

Welcome to the TypeScript Advanced Quiz! Test your knowledge on advanced types, generics, utility types, and more. Each question has a hint and explanations for all options. Good luck!

#TypeScript #Types #Advanced
Take Quiz