Ramin Ghorbani

With over 12 years of experience in server management and security, I started my career in Linux server administration and web security, gradually transitioning into DevOps. Currently, I specialize in securing Linux environments, managing complex server infrastructures, and utilizing modern technologies like Docker, Kubernetes, and virtualization (ESXi, KVM), with a focus on automation and scalability

My proficiency in penetration testing, security vulnerability analysis, and the implementation of web application firewalls ensures the highest levels of protection for web applications and servers. I am committed to driving operational excellence, delivering high-availability solutions, and contributing to the success of technical projects.

1. • Master of Science (M.Sc.) in Computer Networks Engineering , Rouzbahan University
   • Bachelor of Science (B.Sc.) in Information Technology Engineering, Rouzbahan University Iran/Sari

1. • Extensive experience in setup and configuration of Linux servers (Debian, Ubuntu, CentOS, AlmaLinux, etc.)
   • Strong proficiency in virtualization platforms including ESXi, KVM, and OpenVZ
   • Skilled in containerized project deployment and lifecycle management using Docker
   • Hands-on expertise in managing production-grade Kubernetes clusters
   • Advanced in using Terraform and Ansible to design, automate, and maintain scalable infrastructure
   • Specialized in securing virtualization environments and hypervisors
   • Proven experience in cloud infrastructure architecture and management, including AWS (EC2, S3, RDS, Route53, IAM, CloudWatch) and Microsoft Azure (VMs, Storage, App Services, Virtual Networks, Azure Monitor)
   • Experienced in building high-availability clusters and redundancy solutions for critical systems
   • Proficient in Git-based workflows for version control, release management, and CI/CD pipeline integration
   • Competent in setup and configuration of hosting control panels (cPanel, DirectAdmin, Plesk)
   • Experienced in optimizing content delivery using Nginx-based CDN configurations
   • Strong background in designing and implementing load balancing with HAProxy and Nginx
   • Designed and maintained high-availability database replication architectures (PostgreSQL, MySQL, MariaDB)
   • Advanced in Python programming with a focus on automation and system scripting
   • Solid experience developing scalable web applications using the Django framework
   • Skilled in configuring and maintaining cloud environments for performance and scalability
   • Proficient in writing Bash scripts for automation, deployment, and server maintenance
   • Experienced in penetration testing and vulnerability assessment of systems and web applications
   • Strong ability to produce detailed technical and security assessment reports for stakeholders
   • Deep understanding of security best practices, including least-privilege access models
   • Experienced in Web Application Firewall (WAF) configuration following OWASP best practices
   • Skilled in custom WAF rule writing and advanced web attack mitigation
   • Experienced in installation and configuration of blockchain nodes (Bitcoin, Dogecoin, Litecoin, Ethereum, BNB, etc.) Dedicated node setup and optimization for performance and reliability

• DevOps on AWS: Code, Build, and Test : Check Certificate
• LPI Linux Essentials (010-160) Cert Prep : Check Certificate
• Cybersecurity Threat Landscape : Check Certificate
• cPanel & WHM Administration Certification (CWA) : Check Certificate
• cPanel & WHM Sales Professional (CPSP) : Check Certificate
• Imunify360 Certification : Check Certificate

1. • Work at: Tose Amn Atrin Co
   • Job Title: System Administrator
   • Co-founded Devatrin, an actively developing startup aimed at solving real-world challenges faced by developers and system administrators, with a focus on DevOps automation and server optimization.
   • Led DevOps automation in a fast-growing startup focused on solving real-world challenges for developers and system administrators.
   • Designed and implemented CI/CD pipelines with automated backups, high availability (HA) configurations, and zero-downtime deployment workflows.
   • Deployed and managed Linux-based services using Docker, Kubernetes, and Terraform (IaC).
   • Conducted security assessments of platforms.
   • Worked in software development: Python (Django) development, Bash scripting, and general software engineering activities related to platform features.
   • Server virtualization and virtualization platform administration (ESXi) and virtual server lifecycle management.
    Aug 2023 – Present

1. • Work at: Novinpal.ir End Work
   • Job Title: DevOps Engineer
   • Infrastructure lead responsible for Linux servers, high-availability (HA) environments, and 99.99% uptime across production and development.
   • Built CI/CD pipelines using GitLab CI and Jenkins, automated deployments, and configured Prometheus/Grafana monitoring.
   • Implemented zero-downtime backups, database replication (Galera Cluster, Percona), and infrastructure as code (IaC) with Terraform/Ansible.
   • Co-founder of the fintech initiative and currently holds a shareholder role (now primarily acts as a shareholder).
    Apr 2022 – Jul 2023

1. • Work at: Toosan Fanavari Pars Co End Work
   • Job Title: DevOps Engineer
   • Co-founded fintech company and led infrastructure for Novinpal.ir — a secure online payment gateway with AWS/Azure integration.
   • Designed CI/CD workflows, automated provisioning, and high-availability systems using Kubernetes and Terraform.
   • Deployed full blockchain nodes (Bitcoin, Ethereum, BNB) and managed Exchangerapp.com — a P2P/OTC crypto platform.
   • Bridged Dev and Ops with SRE practices, isolated environments, and security best practices (OWASP, WAF).
   • Server virtualization and provisioning for customer platforms, including SolusVM and ESXi-based virtual hosting setups; deployed and supported virtual servers for exchange platform clients.
    Oct 2016 – Apr 2022

1. • Work at: Asiatech End Work
   • Job Title: Linux System Administrator
   • Configured servers and web hosting platforms, delivered server administration services, and maintained IT infrastructure and server environments.
   • Managed hosting environments with cPanel, DirectAdmin, and Plesk, performing optimization and patch management.
   • Designed and deployed Linux server infrastructures, set up hosting and cloud services, and implemented virtualization using ESXi and related technologies.
   • Provided on-call support, incident response and routine backup/restore operations.
    May 2014 – Feb 2016

1. • Work at: Bestsecurity End Work
   • Job Title: Penetration Tester
   • Conducted penetration testing and vulnerability assessments using Burp Suite, OWASP ZAP, and Metasploit.
   • Performed web application, network and infrastructure penetration tests, performed authenticated and unauthenticated assessments, exploited and validated vulnerabilities, and mapped attack paths.
   • Prepared detailed technical reports, risk-ranked findings, provided remediation guidance and retest verification to ensure issues were fixed.
    Apr 2012 – May 2014

1. • OWASP WAFControl — Official OWASP Open-Source Project
   The first modern, web-based GUI dashboard for managing ModSecurity and OWASP Core Rule Set (CRS), automating installation, configuration, and rule management.
   Official OWASP Project Page | Website | GitHub



2. • Nginx.ir (High-availability and DevOps Service)



3. • Exchangerapp.com ( cryptocurrency platform)



4. • Pronginx.com (Nginx plugin for cPanel)