Description

As a DevOps Engineer with extensive experience working in diverse environments, I specialize in cloud infrastructure, CI/CD pipelines, and containerization. My journey has taken me through significant roles at leading companies like the digital branch of La Poste Group, Breakwater Solutions, and Beyondtrust, where I've led migrations to cloud platforms, optimized DevOps processes, and implemented microservices architectures. I hold professional certifications including AWS Certified Solutions Architect, Certified Kubernetes Administrator, and HashiCorp Certified: Terraform Associate. Fluent in both French and English, I am a proactive problem-solver passionate about leveraging technology to drive efficiency and innovation. Let's connect to explore opportunities for collaboration and growth.

Industry field of expertise

Languages

French
Native or bilingual
English
Native or bilingual

Workplace preferences

Can work on-site

Paris (up to 50km)

RATP DEV
Sr. DevSecOps engineer / SA
TRANSPORTATION
September 2023 - Today (2 years and 9 months)
Paris, France
Design highly available and fault-tolerant architectures on AWS using services such as VPC, EC2, S3, RDS, EKS.
Configure and manage secure Kubernetes environments using solutions like Amazon EKS.
Automate container security scans with Trivy to identify and address vulnerabilities.
Implement security policies based on IAM roles to control access to AWS resources.
Configure security alerts and metrics with AWS CloudWatch to monitor suspicious activities. Integrate security tools like AWS Security Hub and AWS Config for continuous visibility and compliance.
Integrate Datadog with AWS and Kubernetes to collect and analyze real-time performance data.
Automate alerts in Datadog to detect performance anomalies and security issues.
Configure Karpenter to optimize cloud resources and reduce costs by automatically balancing workload demand with available capacity.
Configure DefectDojo to automatically import security analysis results, including Trivy container scans and automated security tests.
Configure SonarQube for static code analysis to identify quality and security issues.
Configure GitLab CI/CD to automate Docker image building and application deployment via argocd.
Integrate Terraform into GitLab CI/CD pipelines to automate infrastructure deployment.
Set up versioning and release management mechanisms to track Helm chart versions and facilitate updates and rollbacks.
Configure the Application Load Balancer (ALB) on AWS to distribute traffic to Kubernetes services, using ACM to manage SSL/TLS certificates and the NGINX Ingress controller to route traffic to pods.
Configure ingress rules in Kubernetes to specify traffic routing routes and options to deployed services.
Deploy, configure and maintain ELK cluster.
The Digital Branch
DevSecOps engineer / SA
E-COMMERCE
September 2019 - August 2023 (3 years and 11 months)
Issy-les-Moulineaux, France
Migrated web applications to private cloud (OpenShift) and public cloud (AWS).
Automated deployment through CI/CD pipelines. Collaborated in development, testing, and creation of functional specifications.
Created Ansible roles to prepare application environments. Implemented local development environments with docker-compose and Makefile.
Containerized applications using Docker.
Configured development environments on the Openshift CI platform.
Ensured reliability of services and provided support to developers and testers (log analysis, etc.).
Templated and versioned Kubernetes resources using Helm charts. Set up cloud-ready monitoring and log management using Datadog.
Provisioned AWS resources using infrastructure as code tools (Terraform, Ansible).
Led the complete overhaul of Legacy infrastructure to Kubernetes infrastructure.
Implemented DefectDojo as our central vulnerability management tool to track and manage security issues identified across different testing tools and stages of development.
Integrated Trivy into our CI/CD pipeline to perform automated vulnerability scans on our Docker images, ensuring that all containers were free from known vulnerabilities before deployment.
Deployed SonarQube to conduct static code analysis across multiple projects, identifying bugs, vulnerabilities, and code smells in the early stages of development.
Creation of cloud architectures and use of appropriate services to meet technical and economic requirements.
Active participation in workload migrations to the cloud to define the best options to ensure migration efficiency.
Assisting clients in transforming their operations to the cloud by implementing the best practices for operating an IT system in the cloud.
Guiding clients in the economic exploitation of the cloud (FinOps).Coaching clients in developing skills on cloud technologies.
Breakwater solutions
Devops engineer
CONSULTING AND AUDITS
January 2019 - September 2019 (8 months)
Texas, USA
Collaborated with platform, machine learning, search, data, and frontend teams to understand their DevOps and infrastructure needs.
Influenced the DevOps roadmap and led various projects.
Designed and managed multi-tenant AWS cloud infrastructure for Responsum.
Ensured scalability, performance, observability, resilience, and cost optimization.
Managed all Kubernetes clusters and service deployments.
Improved system observability and reliability through monitoring and alerting infrastructure (Prometheus, Grafana, PagerDuty, etc.).
Built and managed CI/CD pipelines using infrastructure as code for Responsum application stack across different environments.
Designed networking infrastructure with best-in-class security practices.
Enhanced privacy and security posture of the Responsum infrastructure.