Fadel
Chafai
- Senior Full-Stack Developer & SRE
I design, build, and operate production-grade web platforms and IoT/GTB (BMS) systems: backend services in #PHP (#Symfony / #APIPlatform) and #NodeJS, modern dashboards in #React / #TypeScript, and field integrations using #MQTT for real-time data exchange.
With a strong #SRE mindset, I focus on #HighAvailability, #CICD, containerized deployments (#Docker), #InfrastructureAsCode with #Ansible, and full-stack observability (#Prometheus, #Grafana, #Loki), with particular attention to #Security, #Performance, and #Reliability.
I also work extensively on #Cybersecurity and #OperationalSecurity: #LinuxHardening and #EdgeHardening for GTB systems (#ESID) in the context of #CyberHomologation, security policy definition (#SecurityPolicy, #RiskAssessment, #ThreatModeling, #DataProtection, #AccessControl, #IncidentResponse, #Backup & #DisasterRecovery, #SecureDevelopment, #OWASP compliance), and #RAMS documentation for sensitive projects.
Beyond technical delivery, I contribute to #ProjectManagement and #TechnicalLeadership, coordinating and mentoring #Web and #Mobile development teams, structuring roadmaps, ensuring delivery quality, and aligning engineering execution with business and operational constraints in both #Enterprise and #Startup environments.
I deliver solutions across large enterprises and startup environments while consistently maintaining #ProductionGrade standards.
Technical Skills
BACKEND_APIS
- PHP 8.2
- Nodejs
- Symfony 6.x
- API Platform 4.x
- Nest.js
- Doctrine ORM
- REST/JSON APIs
- Auth: JWT / OAuth2
- Magento
- Laravel
- CPhalcon PHP
- Data modeling & migrations
- Performance tuning & caching
FRONTEND
- React.js
- Angular
- TypeScript
- Vite
- Tailwind CSS
- SPA dashboards
- Component architecture
SRE_DEVOPS
- Docker
- CI/CD (GitHub Actions)
- Ansible
- Linux
- Traefik / Nginx
- Prometheus
- Grafana
- Loki
- Alerting / SLI/SLO
- Backups & reliability
IOT_DATA
- GTB / BMS domain
- BacNet
- Modbus (IP/RTU/RS485)
- Redis
- MariaDB / MySQL
- InfluxDB
- ElasticSearch
- OpenSearch
CYBERSECURITY
- Server hardening (Linux)
- Edge server hardening (GTB/ESID)
- Cyber homologation
- Security Policy
- Risk Assessment / Threat Model
- Data Protection Policy
- Access Control Policy
- Risk Assessment & Method Statement
- Incident Response Plan
- Backup & Disaster Recovery Plan
- Secure Development Policy
- OWASP Compliance
Projects
Enterprise SaaS Projects (Private Access)
A large part of my work is delivered as internal or enterprise SaaS platforms. These systems are not publicly accessible (or require authentication) due to security and confidentiality constraints. I'm available to discuss these projects in detail and provide additional information upon request.
I provide guidance and documentation for secure SaaS platforms, including the drafting and homologation of security policies: Security Policy, Risk Assessment / Threat Model, Data Protection Policy, Access Control Policy, Incident Response Plan, Backup & Disaster Recovery Plan, Secure Development Policy, and OWASP Compliance Statement.
BOUYGUES × ARMED FORCES — DEDICATED GTB/BMS SYSTEM
Design and implementation of a dedicated GTB/BMS system for military buildings: monitoring, supervision, and operational control of building equipment and energy usage.
Cybersecurity implementation: edge server hardening for GTB systems with ESID for cyber homologation, and documentation including Risk Assessment & Method Statement, Backup & Disaster Recovery Plan, and Incident Response Plan.
RESPONSE — Positive Energy Neighborhoods
Smart city initiative around energy-positive districts.
Bouygues Telecom — Public Web Platform
Senior Web Developer work on the Bouygues Telecom public website: Magento features and integrations, frontend modules with Angular and React.js, and reliable production releases.
Villanovo — Luxury Villa Rentals
Built from scratch an online luxury villa booking platform.
Professional Experience
Deputy Head of Studies & Development (IT)
- > Designed and maintained business web applications and APIs.
- > Improved deployment automation and operational reliability.
- > Collaborated with cross-functional teams and stakeholders.
- > Led cybersecurity initiatives: server hardening, security policy development, risk assessment, and incident response planning for critical infrastructure projects.
- > Architected and implemented IoT/GTB systems with edge computing, real-time data processing, and integration with industrial protocols (Modbus, BacNet).
- > Designed and operated BigData pipelines for energy monitoring, time-series data storage (InfluxDB), and analytics platforms with ElasticSearch/OpenSearch.
CTO / IT Project Manager
- > Designed multi-tenant platforms for energy monitoring and performance supervision.
- > Delivered dashboards, alerting and reporting workflows for operational teams.
- > Implemented reliable deployments and observability practices (details on request).
Web Consultant
- > Designed and maintained business web applications and APIs.
- > Improved deployment automation and operational reliability.
Senior Web Developer
- > Developed and maintained Magento-based web features and integrations.
- > Built frontend modules with Angular and React.js for customer-facing interfaces.
- > Worked with stakeholders to deliver reliable production releases.
Technical Team Lead
- > Designed and maintained business web applications and APIs.
- > Improved deployment automation and operational reliability.
- > Led a development team for Presstalis digital transformation project, coordinating technical activities, ensuring delivery quality, and aligning solutions with business objectives
Freelance Web Developer
- > Designed and maintained business web applications and APIs.
Web Developer & System Administrator
- > Designed and maintained business web applications and APIs.
Senior Web Developer
- > Designed and maintained business web applications and APIs.
Web Developer
- > Designed and maintained business web applications and APIs.