Mostafa Hosni.
Senior Technical Lead · Cloud Architect

Designing Secure, Scalable & Enterprise Cloud Solutions

Senior Technical Lead with deep expertise in Google Cloud, AWS, Azure, Security, Infrastructure Modernization, and Enterprise Architecture — partnering with organizations on mission-critical cloud transformation.

Riyadh, KSA 13+ years across multi-cloud & enterprise architecture
Platforms
Google Cloud
AWS
Microsoft Azure
Portrait of Mostafa Hosni, Senior Cloud Solutions Architect
0+
Years Experience
0+
Enterprise Projects
0
Cloud Platforms
0/7
Ops Leadership
About

A trusted advisor for cloud transformation at enterprise scale.

I help organizations modernize critical infrastructure, secure their cloud footprint and operate resilient platforms — combining hands-on engineering with senior technical leadership across multi-cloud and hybrid environments.

13+ years across IT infrastructure, cloud engineering, enterprise architecture, networking, security, ITSM & technical leadership.

Senior Solution Architecture Lead driving GCP transformations for government, financial, education and aviation sectors.

Specialized in GCP landing zones, hybrid connectivity, Kubernetes, security hardening, observability and disaster recovery.

Compliance-aligned delivery to SAMA, NCA and ISO frameworks — partnering with regulated enterprises across KSA.

Core Expertise

A full-stack cloud practice.

From foundations to day-2 operations — domains I architect, deliver and lead across Google Cloud, AWS and Azure.

Google Cloud Platform

Landing zones, organization policies, BigQuery, Cloud SQL, GKE, networking.

Amazon Web Services

Multi-account, VPC, EKS, IAM, security tooling, well-architected reviews.

Microsoft Azure

Hub-and-spoke, AKS, Entra ID, hybrid identity, M365 & Intune.

Kubernetes / GKE

Cluster design, GitOps, autoscaling, multi-tenant platforms.

Cloud Security & SecOps

Cloud Armor, WAF, zero-trust, SIEM, posture management.

Networking & Hybrid

VPN, Interconnect, SD-WAN, FortiGate, DNS, segmentation.

DR & Backup

RPO/RTO design, Veeam, cross-region failover, runbooks.

Migration & Modernization

Discovery, wave planning, refactor, replatform, cutover.

Infrastructure as Code

Terraform modules, policy as code, drift management.

Monitoring & Observability

Prometheus, Grafana, Dynatrace, Elastic, SLOs.

ITSM / ITIL

Incident, change, problem management & service operations.

Experience

13+ years of cloud & infrastructure delivery.

A career spanning cloud architecture, enterprise infrastructure, security and technical leadership across regulated industries.

iSolutions · Riyadh, Saudi Arabia logo

Senior Solution Architecture Lead

Feb 2025 – Present
iSolutions · Riyadh, Saudi Arabia
  • Lead end-to-end GCP implementation projects for enterprise clients across regulated sectors.
  • Technical lead for the Professional Services GCP team — mentoring engineers and partnering with presales & architecture.
  • Architect secure, scalable, cost-effective infrastructures: VPC, IAM, compute, storage, hybrid connectivity.
  • Apply GCP best practices aligned with SAMA, NCA and ISO compliance frameworks.
  • Drive cost optimization & billing governance with GCP Budgets, CUDs and FinOps practices.
Geidea · Riyadh, Saudi Arabia logo

Regional IT Team Leader

Feb 2023 – Jan 2025
Geidea · Riyadh, Saudi Arabia
  • Managed 11 IT teams across 4 countries — overseeing performance and SLA compliance.
  • Owned ITIL-based operations: Incident, Change and Asset Management.
  • Streamlined service workflows through automation, reducing manual effort and delays.
  • Established DR, patching and hardening strategies aligned with compliance requirements.
  • Managed IT budgets and vendor contracts for optimized resource allocation.
Geidea · Cairo, Egypt logo

IT Support Supervisor

Mar 2022 – Mar 2023
Geidea · Cairo, Egypt
  • Delivered L2 support for Office 365, Active Directory, Exchange and SharePoint environments.
  • Resolved incidents within SLA timelines — improving overall support efficiency.
  • Enforced endpoint protection via Microsoft Defender and Mail Gateway policies.
Toyota Egypt Group · Cairo, Egypt logo

IT Supervisor

Nov 2020 – Mar 2022
Toyota Egypt Group · Cairo, Egypt
  • Administered Office 365 and SCCM across 500+ endpoints, accelerating deployment cadence.
  • Monitored security alerts and implemented corrective actions.
  • Handled patching and licensing to ensure compliance and availability.
Toyota Egypt Group · Cairo, Egypt logo

IT Specialist

Oct 2015 – Nov 2020
Toyota Egypt Group · Cairo, Egypt
  • Managed network infrastructure, servers and endpoint configurations.
  • Supported users with troubleshooting and access management.
  • Maintained system documentation and asset tracking procedures.
Global Knowledge Middle East & Africa · Cairo, Egypt logo

Technical Support Specialist

Mar 2013 – Sep 2015
Global Knowledge Middle East & Africa · Cairo, Egypt
  • Installed and configured hardware, operating systems and software applications.
  • Provided technical support and resolved escalated user issues.
  • Assisted in evaluating new technologies to improve IT operations.
Projects & Experience

Selected enterprise deliveries.

Industries and outcomes — customer names withheld for confidentiality.

Education

Large Education Platform Migration to Google Cloud

End-to-end migration of a nationwide learning platform serving millions of students to GCP with zero data loss.

Architecture
Multi-region GKE, private VPC, Cloud SQL HA, blue/green cutover.
Security
Cloud Armor WAF, IAM least-privilege, KMS encryption, VPC-SC.
Outcome
60% infra cost reduction · 99.95% availability · faster release cadence.
GCPGKECloud SQLCloud DNSCloud ArmorTerraform
Aviation

Airport Infrastructure Modernization & Datacenter Migration

Modernized core airport operations workloads with hybrid datacenter-to-cloud migration.

Architecture
Hybrid hub-and-spoke, redundant VPN, segmented zones for OT/IT.
Security
FortiGate NGFW, micro-segmentation, hardened bastion access.
Outcome
Critical RTO < 30 min · improved operational visibility 24/7.
VPNFortiGateVPCTerraformMonitoring
Financial Services

Financial Services Secure Cloud Transformation

Built a regulated landing zone for a financial group with strict compliance posture.

Architecture
Org policies, shared VPC, separated environments, encrypted perimeters.
Security
Zero-trust, CMEK, SIEM integration, continuous compliance scanning.
Outcome
Audit-ready foundation · accelerated workload onboarding by 3x.
GCPIAMCloud ArmorSecurity OperationsTerraform
Retail & Manufacturing

Retail & Manufacturing Enterprise Cloud Migration

Migrated ERP, e-commerce and analytics workloads across multiple business units.

Architecture
Workload-tiered VPCs, data lake on BigQuery, API-first integration layer.
Security
IAM federation, secret management, hardened delivery pipelines.
Outcome
Unified data platform · 40% faster analytics turnaround.
GCPBigQueryCloud SQLAPI Gateway
Government

Government Cloud Landing Zone & Security Architecture

Designed a sovereign-grade landing zone with strict governance for a public-sector entity.

Architecture
Multi-folder org hierarchy, perimeter controls, isolated tenants.
Security
Zero-trust, VPC service controls, audit logging, posture management.
Outcome
Compliant foundation enabling regulated workloads at scale.
GCPVPC-SCIAMCloud ArmorTerraform
Enterprise Platforms

Enterprise Kubernetes & API Modernization Platform

Stood up a shared GKE platform with internal developer experience and API gateway.

Architecture
Multi-tenant clusters, GitOps, ingress mesh, golden paths.
Security
Workload identity, policy controller, image signing.
Outcome
Developer onboarding cut from weeks to hours.
GKEAPI GatewayTerraformMonitoring
Business Continuity

Business Continuity & Disaster Recovery Implementation

Implemented enterprise DR strategy across cloud and on-prem with measured RPO/RTO.

Architecture
Cross-region replication, immutable backups, failover orchestration.
Security
Encrypted backups, segregated DR perimeter, regular game days.
Outcome
Verified RTO ≤ 1h for tier-1 workloads · executive-ready resilience.
VeeamGCPVPNDR Runbooks
Operations

Enterprise Monitoring & Observability Transformation

Unified telemetry across hybrid estate with actionable SLOs and proactive alerting.

Architecture
Central observability stack, service catalog, SLO-based alerting.
Security
RBAC, data tenancy isolation, secure log pipelines.
Outcome
MTTR reduced by 55% · proactive incident detection.
PrometheusGrafanaDynatraceElastic
Delivery Highlights

Numbers from real engagements.

0+
VMs migrated on-prem → GCP (Terraform)
0+
Mailboxes migrated from Google Workspace to Exchange 2019
0 TB+
SharePoint data migrated with full fidelity
0+
Users onboarded to Microsoft 365
Architecture & Solutions

Patterns I design at scale.

GCP Landing Zones

Org hierarchy, folder strategy, shared VPC, guardrails.

Hybrid Cloud Architecture

Interconnect, VPN, identity bridging, routing design.

Kubernetes Platforms

Multi-tenant clusters, GitOps, autoscaling, SLOs.

Secure Enterprise Networking

Segmentation, NGFW, micro-perimeters, egress control.

Cloud Security & Governance

Policies, IAM, posture management, audit logging.

Disaster Recovery

RPO/RTO design, runbooks, failover validation.

Multi-Environment Design

Dev/stage/prod isolation, promotion paths, IaC.

Zero Trust Architecture

Identity-aware access, continuous verification.

Leadership & Operations

Engineering excellence — operationally proven.

Senior technical leadership across delivery, governance and 24/7 service operations.

24/7 Technical Operations Leadership

Owning availability, escalation paths and on-call excellence across global teams.

Enterprise Delivery Management

Driving programs from architecture to steady-state with predictable outcomes.

Technical Governance

Architecture review boards, standards, guardrails and policy as code.

Customer Engagement

C-level advisory, solution workshops and trusted-advisor relationships.

Incident & Problem Management

Leading critical incident response, RCA and continuous-improvement loops.

Mentoring & Performance

Coaching senior engineers, raising the bar and growing technical leaders.

Certifications

Credentials & recognitions.

Verify all badges on Credly
Google Cloud
Google Professional Cloud Architect · 2025
Verify on Credly
Google Cloud
Google Associate Cloud Engineer · 2025
Verify on Credly
HashiCorp
HashiCorp Terraform Associate · 2025
Verify on Credly
Amazon Web Services
AWS Solutions Architect – Associate · 2026
Verify on Credly
Amazon Web Services
AWS Solutions Architect – Professional · 2026
Verify on Credly
SAFe
Scaled Agile
Certified SAFe Scrum Master · 2024
Verify on Credly
ITIL
Axelos / PeopleCert
ITIL v4 Foundation · 2024
Verify on Credly
Minya University
B.Sc. Computer Science & Information Systems · Minya University
Technologies

A pragmatic, multi-vendor toolkit.

Google CloudKubernetesDockerTerraformLinuxFortinetCloud SQLBigQueryPrometheusGrafanaElasticDynatraceVeeamCloud ArmorAPI GatewayNetworkingSecurityGoogle CloudKubernetesDockerTerraformLinuxFortinetCloud SQLBigQueryPrometheusGrafanaElasticDynatraceVeeamCloud ArmorAPI GatewayNetworkingSecurity
Get in touch

Always happy to connect with the cloud community.

Whether you want to talk architecture, swap notes on cloud platforms, or just say hello — feel free to reach out.

Based in
Riyadh, Saudi Arabia