🇬🇧 Right to work: Require Skilled Worker Visa sponsorship · IELTS-ready
Professional Summary
Cloud Security Architect and DevSecOps lead with 7+ years architecting enterprise infrastructure across AWS, Azure, GCP, Oracle Cloud, and on-premise environments. CISSP-certified at 22. Specialist expertise in Zero Trust architecture, IAM governance, Kubernetes security, SIEM/SOAR operations, and incident response. Built multi-cloud DevOps platforms supporting 50+ applications at 99.9% availability and led FinOps across 800+ cloud resources. Deep familiarity with GDPR, ISO 27001/27017/27018, and SOC 2 control frameworks.
ibex — Principal Software Engineer (DevOps) → Enterprise AI EnablementSep 2025 – Present
Karachi, Pakistan · Hybrid · Full-time
Leading the CTO's AI transformation programme across 23 global sites — 8 parallel AI adoption tracks including SOC automation (SIEM/SOAR), infrastructure AI ops, and FinOps intelligence, all governed by IAM, threat modelling, and Zero Trust principles.
Built an Enterprise Synthetic Monitoring Platform (PULSE) from zero — multi-site, multi-client, integrated with Datadog + SolarWinds, full-stack FastAPI + React dashboard with RBAC and SLA tracking. Approved by VP-level leadership.
Driving FinOps across 800+ cloud resources — rightsizing, commitment planning, anomaly detection, and cost attribution across the multi-cloud estate.
Delivered 34 CTO-level technical briefings on AI strategy, monitoring architecture, and cloud economics.
Al Nafi International College — Lead CloudOps ManagerMar 2025 – Dec 2025
Markham, Ontario, Canada · Hybrid · Full-time
Led the design and management of secure, scalable cloud infrastructure supporting 50+ applications at 99.9% uptime; built an enterprise NOC/SOC from scratch (Wazuh SIEM · Grafana · Prometheus · ELK/EFK · Splunk).
Implemented IAM governance, risk assessment, and incident response procedures; achieved 75% cloud cost reduction via FinOps and AI-powered automation.
Al Nafi — DevSysOps Lead ManagerJul 2024 – Mar 2025
Markham, Ontario, Canada · Hybrid · Full-time
Led cross-functional development, operations, and security collaboration; defined organisation-wide security policies including IAM and access control; mentored junior engineers — reduced supervision overhead 60% whilst raising team efficiency 165%.
Al Nafi — Senior Manager CIO-Ops · DevSysOps Engineer · Cloud & Network ManagerSep 2019 – Jun 2024
Markham & Toronto, Ontario, Canada · Hybrid · 4.5+ years
Progressed through six roles (2019–2024): designed secure multi-cloud and private-cloud infrastructure; led security audits, penetration testing, and vulnerability assessments.
Deployed SIEM (Wazuh/Splunk) with SOAR-driven incident response; ensured ISO 27001/27017/27018, PCI-DSS, CIS Top 18, and SOC 2 compliance; established encryption and API security standards.
Diploma in AI Operations (EduQual Level 6) — Al Nafi International College, Ontario, Canada · Grade A+
Advanced Cyber Security Diploma — IBA Karachi · 2026–Present
Certifications
CISSP — Certified Information Systems Security Professional · ISC² (earned at age 22)
ISO/IEC 27001:2022 Lead Auditor — Mastermind Assurance
AWS Advanced Networking — Specialty — Amazon Web Services
Microsoft Cybersecurity Analyst Professional Certificate — Microsoft
Google Cybersecurity Professional Certificate — Google
Generative AI Cybersecurity & Privacy for Leaders — Vanderbilt University
ISO 27001 Master (Implementer + Auditor for 27001/27017/27018) — Al Nafi
90+ additional certifications across 15 issuers (Linux Foundation, Microsoft Learn Level 11, KodeKloud, AWS, GCP, Azure, CompTIA, Docker, CNCF): full list at credly.com/users/matx104.
Selected Projects
PULSE — Enterprise Synthetic Monitoring Platform: Multi-site monitoring across 23 sites, physical workstation model, Datadog + SolarWinds integration, FastAPI + React dashboard with RBAC and SLA tracking.
Sovereign Court — Production multi-agent AI automation: 10 autonomous agents, 150+ scheduled jobs, self-evolving memory system on Oracle ARM infrastructure.