All systems operational · 99.99% uptime

Infrastructure that

I design, automate and operate the backbone behind modern applications — resilient cloud infrastructure, zero-downtime delivery pipelines and observability you can actually trust.

Explore services Start a project
0Deployments / week
0Avg. uptime
0Years experience
0Services automated
mostafa@backserver: ~/ops
// Services

DevOps operations, end‑to‑end

From a bare server to a self-healing platform — these are the operations I handle so your team can ship with confidence.

CI/CD Pipelines

Automated build, test and release pipelines on Azure DevOps, GitLab & GitHub — zero-downtime, blue/green and canary deployments.

Azure DevOpsGitLab CI/CDGitHub ActionsArgoCD

Containerization

Lean, secure container images and Compose stacks — reproducible from laptop to production.

DockerComposePodman

Kubernetes & Orchestration

Production-grade clusters with autoscaling, Helm charts, ingress, and GitOps-driven rollouts.

K8sHelmIngress

Infrastructure as Code

Versioned, repeatable infrastructure with Terraform & Ansible — no more snowflake servers.

TerraformAnsiblePulumi

Monitoring & Observability

Metrics, logs and traces unified into actionable dashboards and smart alerting before users notice.

PrometheusGrafanaLoki

Cloud Architecture

Cost-aware, scalable cloud design across AWS, GCP and private clouds — built for growth.

AWSGCPVPC

Security & Hardening

CIS-benchmark server hardening, secrets management, TLS automation, WAF, fail2ban and least-privilege access controls.

HardeningVaultTLS/SSLFirewall

Databases & Storage

High-availability databases, replication, automated backups and tested disaster recovery.

PostgreSQLMySQLRedis

Automation & SRE

Self-healing systems, auto-scaling, runbooks and SLO-driven reliability engineering.

BashPythonRunbooks
// Delivery pipeline

From commit to production

Every change flows through an automated, observable pipeline — fast feedback, safe releases.

01

Commit

Push triggers the pipeline with linting & secret scanning.

02

Test

Unit, integration & security tests run in parallel.

03

Build

Immutable container images are built & signed.

04

Scan

Images scanned for CVEs & misconfigurations.

05

Deploy

GitOps rollout with automatic rollback on failure.

06

Observe

Live metrics, logs & alerts confirm a healthy release.

// Live infrastructure

A datacenter that runs itself

Autoscaling nodes, balanced traffic and continuous health checks — monitored 24/7 so issues are resolved before they become incidents.

  • High availabilityMulti-zone, redundant nodes with automatic failover.
  • Horizontal autoscalingCapacity follows demand — pay for what you use.
  • Automated backups & DRPoint-in-time recovery, tested restore drills.
web-node-01
nginx · 4 vCPU · 8 GB
app-cluster
k8s · 6 pods · auto
db-primary
postgres · replicated
cache-redis
redis · 99.9% hit
CPU Load
0
Memory
0
Network
0
Requests
0
// Security & hardening

Servers hardened by default

Security isn't a checkbox at the end — it's baked into every layer. I lock down servers to industry benchmarks, automate patching and keep an audit trail of everything.

OS & Server Hardening

CIS-benchmark baselines, kernel & sysctl tuning, disabled unused services and minimal attack surface.

CIS BenchmarksLynissysctl

Access & Identity

SSH key-only logins, MFA, least-privilege sudo, role-based access and full session auditing.

SSH KeysMFARBAC

Firewall & Intrusion Defense

UFW/iptables rules, fail2ban, network segmentation, VPN access and brute-force protection.

UFWfail2banWAF

Secrets Management

Centralized, encrypted secrets with HashiCorp Vault, automated key rotation and no plaintext credentials.

VaultSOPSKey Rotation

TLS & Encryption

Automated Let's Encrypt certificates, TLS 1.3, encryption at rest & in transit, HSTS and strong ciphers.

Let's EncryptTLS 1.3At-rest

Patching & Compliance

Automated security updates, continuous CVE scanning, tamper-proof audit logs and compliance reporting.

Auto-patchCVE ScanAudit Logs
mostafa@backserver: ~/security/harden.sh
0Servers managed
0Successful deploys
0Uptime delivered
0Monitoring & support
// Toolbox

The stack I build on

Battle-tested, open tools chosen for reliability — not hype.

Linux
Docker
Kubernetes
AWS
Terraform
Ansible
Azure DevOps
Azure
GitLab CI/CD
GitHub
Fail2ban
CIS Hardening
Prometheus
Grafana
PostgreSQL
Redis
Nginx
Cloudflare
Python
Go
// About

Hi, I'm Mostafa Mousavi

A DevOps & infrastructure engineer who turns fragile, manual systems into automated, observable platforms. backserver.ir is where I bring those server & operations services together.

I care about the boring things that keep products alive at 3 AM — clean pipelines, sane monitoring, tested backups and infrastructure your whole team can reason about.

  • Reliability firstSLO-driven engineering with measurable results.
  • Automate everythingIf it happens twice, it gets scripted.
  • Clear communicationDocumentation & runbooks your team will thank you for.
Visit mousavi.dev Work with me
profile.yaml 
# backserver.ir — service profile
engineer: Mostafa Mousavi
site:     backserver.ir
main:     mousavi.dev
role:     DevOps & Infrastructure

focus:
  - cloud-native architecture
  - ci/cd automation
  - kubernetes orchestration
  - observability & sre

principles:
  uptime:        99.99   # %
  automate_all:  true
  on_call:       24/7
  coffee:        

status: available for new projects
// Get in touch

Let's build something unbreakable

Need reliable infrastructure, a CI/CD overhaul, or a safe pair of hands for your servers? Let's talk about how backserver.ir can help.

m_mousavi@live.com mousavi.dev backserver.ir