Context
INWI is one of Morocco’s leading mobile operators. Atos France mandated me to audit their existing OpenShift environments (production and non-production) running on VMware, identify risks and deliver recommendations to improve security, reliability and operational maturity.
Responsibilities
- Ran infrastructure and application workshops to understand the current state and business requirements
- Audited disconnected OpenShift production and non-production clusters on VMware:
- Cluster deployment procedures and automation maturity
- Network and storage configuration
- Operator management and lifecycle
- Post-installation configurations (logging, monitoring, registry, CI/CD)
- Assessed cluster security posture: authentication mechanisms, privilege management, network policies, hardening against CIS benchmarks
- Audited application environments:
- Application lifecycle, deployment pipelines and rollback procedures
- Application security: image scanning, secrets management, RBAC
- Logging, traceability and monitoring coverage
- Delivered a detailed audit report with prioritized recommendations and a remediation roadmap
Key Achievements
- Identified 40+ security findings, categorized by severity with remediation guidance
- Provided a phased hardening roadmap covering infrastructure, application and process layers
- Delivered actionable documentation enabling the internal team to implement improvements autonomously
Technical environment: OpenShift 4, VMware vSphere, CI/CD toolchain, network and storage audit tooling