nima@devops:~$ whoami
Embedded DevOps Engineer.
I build the pipelines & infrastructure that ship software.
Currently at PiNTeam near Munich — previously Siemens Healthineers, Fraunhofer IIS and STABILO. I automate CI/CD, container platforms, network services and secure remote access — in Python, PowerShell and YAML, end to end.
// tooling i work with daily
Stack
$ nima --stack
- ci_cd:
- GitLab CI · Azure Pipelines · GitHub Actions · Docker Bake
- containers:
- Docker on Linux & Windows · Compose · Nexus registry
- iac_config:
- Ansible · cloud-init · Unattend.xml · Intune + Autopilot
- virtualization:
- Proxmox VE · Hyper-V & process isolation · WSL
- networking:
- Kea DHCP · BIND9 · DDNS · NGINX · bonded VLANs
- identity_access:
- Microsoft Entra ID (OIDC) · MFA RDP Gateway · noVNC
- languages:
- Python (expert) · PowerShell · Bash · C++ · JS / PHP
// shipped in production, not on a course certificate
What I do
CI/CD & GitOps
- Optimized GitLab pipelines with Docker Bake and JUnit XML reporting — cut build ramp-up time
- GitLab governance across teams: golden merge-request rules, automated reviewer assignment, cost analysis
- Azure Pipelines agents with container support; Android (Gradle) & iOS (Xcodebuild) build pipelines
Containers & Infrastructure
- Docker on Linux and Windows, incl. Hyper-V / process isolation and CUDA toolchains in containers
- Kea DHCP + BIND9 + DDNS over bonded VLANs — static reservations, scaled per VLAN
- Proxmox VE virtualization: provisioning, backups, offline upgrades, server maintenance
Automation & Tooling
- Modular Python CLIs shipped as pip packages and .exe (PyInstaller, Nuitka, uv) to an internal Nexus
- End-to-end Windows endpoint provisioning: PowerShell, Intune, Autopilot, unattended installs
- Ansible as Infrastructure as Code; Selenium-based auth automation across Chrome, Edge & Firefox
Secure Remote Access
- Dockerized RDP Gateway (rdpgw) integrated with Microsoft Entra ID (OIDC) for MFA-secured access
- Self-hosted noVNC with WebSocket access restricted to setup owners; NGINX HTTPS routing
- Status page & admin dashboard for hardware setups, incl. remote power control
// git log --oneline career/
Career path
Mar 2025 — present
Embedded DevOps Engineer · PiNTeam · Garching (Munich)
CI/CD, network services, secure remote access, endpoint automation
Oct 2023 — Feb 2025
DevOps & Administration · Siemens Healthineers · Forchheim
Windows containers, Azure Pipelines agents, Ansible, Proxmox VE
Apr 2023 — Sep 2023
DevOps Intern · STABILO International GmbH · Heroldsberg
Android & iOS CI/CD pipelines, Docker, Nexus artifact delivery
Oct 2021 — Oct 2023
Research Assistant & DevOps · Fraunhofer IIS · Erlangen
Build & deployment pipelines for Bluetooth audio encoders, web automation
Nov 2020 — Oct 2024
M.Sc. Communications & Multimedia Engineering · FAU Erlangen-Nürnberg
Thesis at Fraunhofer IIS — grade 1.7
// don't take my word for it
Verified by employers
Three German employers put it in writing — reference letters (Arbeitszeugnisse) from Siemens Healthineers, Fraunhofer IIS and STABILO are available as PDFs, along with my CV in English and German.
// let's talk
Hiring a DevOps engineer?
I'm based in the Munich area and bring production experience from medical tech, applied research and embedded products. Happy to walk you through any project on this site — in English or German.