>_ saraj.menghwar
Top Rated Resume
const status = "Available for new Engagements"

Your servers shouldn't keep you up at night.

zsh — saraj@devsecops ~
saraj@devsecops:~/about$ whoami
saraj@devsecops:~/about$ cat mission.txt

I help startups, SaaS companies, and growing teams secure Linux infrastructure, automate DevOps pipelines, and build systems that stay up - so you can focus on shipping products instead of chasing fires.

saraj@devsecops:~/about$
View My Work Contact Me
LocationLahore, PK · UTC+5
Job Success100%
StatusTop Rated
Saraj Menghwar portrait
Online
Top Rated 100% Job Success DevSecOps
scroll
01About

Who I Am

DevSecOps & Linux Security Engineer

I'm Saraj Menghwar, a Computer Science graduate from Tharparkar, Sindh, now based in Lahore. Over 1.5 years of hands-on work, I've focused on hardening Linux infrastructure, securing cloud environments, and designing DevOps pipelines that actually survive production.

I work with startups and growing teams - shipping reproducible infrastructure, CI/CD that deploys in minutes instead of hours, and monitoring that tells you about problems before customers do.

1.5 years of experience Top-Rated Freelancer 100% Job Success
Philosophy
  • 01Security is a feature, not a ticket.
  • 02If you can't reproduce it, you don't own it.
  • 03Automate the boring stuff - twice.
  • 04Monitoring beats heroics.
Off-Duty

Aspiring to become Pakistan's first chess Grandmaster. I spend my evenings between a terminal and a chessboard.

02Impact

Measurable Results

AWS Cost Reduction
0%

Average monthly cloud spend reduction across right-sizing, reserved capacity, and dead-resource reclamation.

Uptime Maintained
0%

Across production Linux fleets with redundant load balancers and HA databases.

Deployment Cycle
0min

From commit to production via hardened CI/CD — down from multi-hour manual releases.

Vulnerabilities Closed
0%

CVE exposure reduced via patch pipelines, CIS hardening, and secrets rotation.

What this looks like in production
100%Job Success
TopRated Talent
24/7Incident Coverage
0Breaches on Watch
03Services

What I Deliver

Security & Hardening

CIS-benchmarked Linux baselines, SELinux/AppArmor policy, patch pipelines, secrets rotation, firewall and SSH lockdown.

  • CIS & STIG compliance
  • SSH + fail2ban lockdown
  • Vulnerability scanning

DevOps & CI/CD

GitHub Actions, GitLab CI, and Jenkins pipelines that test, scan, and deploy without drama. Zero-downtime releases included.

  • Pipeline design & migration
  • Blue/green & canary deploys
  • Pipeline hardening (SLSA)

Cloud Infrastructure

AWS, Azure, and GCP architecture that's secure by default, reproducible with Terraform, and priced for reality.

  • Terraform & IaC
  • VPC + IAM design
  • Cost optimization audits

Containers & Orchestration

Docker images that are small, signed, and scanned. Kubernetes clusters you can actually operate — with RBAC, network policies, and GitOps.

  • Docker & Compose
  • Kubernetes (EKS/GKE/AKS)
  • Helm + ArgoCD GitOps

Monitoring & Observability

Prometheus + Grafana stacks, Loki/ELK pipelines, and alerting that pages humans only when it matters.

  • Prometheus / Grafana
  • Loki / ELK log pipelines
  • SLO-based alerting

Systems Administration

Ubuntu, Debian, RHEL, CentOS, and Alpine — configured, patched, and documented so your next engineer doesn't panic.

  • Server provisioning
  • Ansible automation
  • Backup & DR strategy
04Skills

Tools & Technologies

01 Linux & Security
Ubuntu Debian RHEL CentOS Alpine Bash / Zsh SSH Hardening iptables / nftables fail2ban SELinux AppArmor CIS Benchmarks Vault OpenSSL / TLS
02 Automation & DevOps
Ansible Terraform Pulumi GitHub Actions GitLab CI Jenkins Docker Docker Compose Kubernetes Helm ArgoCD Nginx / HAProxy
03 Cloud & Observability
AWS Azure GCP EC2 / ECS / EKS S3 / RDS IAM VPC / Networking Prometheus Grafana Loki ELK Stack Datadog
04 Languages & Tooling
Python C++ Java Assembly (8086) Bash PowerShell YAML / JSON Git Make Vim / Neovim tmux VS Code
05Projects

Featured Projects

PerformancePlus — Employee Performance Management System
Java · Web
Java Servlets JSP MySQL Bootstrap

PerformancePlus — Employee Performance Management

A Java-based web application to track employee KPIs, provide managerial feedback, and maintain audit logs for transparent performance management.

Code Demo
8086 Assembly Pharmacy Management
Assembly · Systems
MASM8086 Assembly File Handling System Programming

8086 Assembly Pharmacy Management

A pharmacy management program built entirely in Assembly language with file handling, stack, and register management for deep system understanding.

Code Demo
Django Blog System
Python · Web
Django Python MySQL HTML CSS Authentication

Django Blog System

A Django-based blog application featuring user registration, authentication, permissions, and role management with a clean, responsive interface.

Code Demo
IoT Audio Streaming Setup
IoT · Linux
Balena Cloud Raspberry Pi IoT SDR Real-time Streaming

IoT Audio Streaming Setup

Configured Trunk Recorder and ZelloStream on Raspberry Pi using Balena Cloud to stream SDR audio into a Zello channel for real-time communication.

Code Demo
06Contact

Let's Build Something

Ship safer. Sleep better.

Tell me about your infrastructure — where it hurts, what's breaking, or what you want to build. I reply within a business day.

UpworkTop-Rated · 100% JSS Emailaswanisaraj@gmail.com Websiteaswanisaraj.me
LocationLahore, Pakistan · UTC+5
connect.sh
$ ssh saraj@aswanisaraj.me
$ send --subject="New project" \
--budget=Your Budget \
--timeline=weeks
reply within 1 business day
Start a Project Hire on Upwork