Summary

DevOps vision holder for the mobile security department. In charge of the development of DevOps activities, the maintenance of infrastructures, the support of development teams in a collaborative approach. Propose a vision, plan and apply actions to place the mobile security department in a new technological, operational and organizational era. These are all the activities I do on a daily basis at OneSpan in the mobile security department

Achievements

• Definition of roadmaps and architectural alignments
• DevOps support for developers
• AWS Account Provisioning
• Development and deployment of Terraform recipes
• Maintains Kubernetes cluster operational status
• Promotion of Agile techniques

Summary

Leading activities, placing myself as an expert on topics is my main focus in this role but not only; sharing knowledge with my peers, stabilizing technical foundations of services under my responsibility. I am owner and accountable for those topics.
As part of my role, I am also involved into taking some architectural and mi-term directions.

Achievements

• Implementation of ArgoCD
• Development and maintenance in operational condition of Kubernetes clusters.
• Setup of a custom node drainer that avoids faults. Weaknesses exposure to AWS of their equivalent system
• Infrastructure maintenance in operational conditions
• Definition of Terraform coding standard
• Terraform agnostic modules writing
• Deployment of Terraform recipes for the development of the AWS infrastructure.
• Maintaining multiple Kubernetes clusters
• Taking into account the aspect of infrastructure costs.
• Development and improvement of the CICD platform

Summary

I had the chance, in addition to my Senior DevOps role, described above, to experience the tech lead role in interim.
I had mainly to lead technically a team of 4 persons.
Likewise, I had to manage several activities for my led peers. Lead different ceremonies such as planning, refinement. Engage and encourage the direction for each sprint. Motivate people around clear objectives.

Achievements

• AWS multi-account migration using ControlTower and Customization Framework
• Introduction of a scaling system based on external events (KEDA)
• Secured injection of IAM roles into K8S resources (IRSA)
• Simplified EFS provisioning
• Setup, automation, development and maintenance of an ingress controller: Ambassador
  
• AWS Secrets secured injection into K8S resources
  
• Helm chart and Docker resource creation

Summary

It is at SSENSE that the deepening of my DevOps profile is made possible in addition to my skills in Cybersecurity. Daily DevOps activities, including improving, updating, auditing, and maintaining production Kubernetes clusters, as well as integration and test environments. Development and maintenance of infrastructure hosted at AWS using automation tools. The implementation of projects related to application security.

The support offered to our development teams allows me to improve my ability to analyze the proposed topics and also broaden the fields of the topics covered.

Achievements

• Operations to maintain the infrastructure in operational condition
• Cluster migration from KOPS to EKS
• Setup of working techniques for securing and involving developers into better quality: introduction of SonarQube
• Definition of Terraform coding standard
• Terraform agnostic modules writing
• Deployment of Terraform recipes for the development of the AWS infrastructure. But also machine provisioning based on SaltStack
• Maintaining multiple Kubernetes clusters
• Helm chart and Docker resource creation
• Taking into account the aspect of infrastructure costs.
• Realization of IAM key management tools based on Python
• Development and improvement of the continuous integration platform (Jenkins, GoCD)
• Implementation of work techniques for securing activities concerning DevOps microservices
• Architectural redefinition of monolithic applications in microservices
• Definition of bases for operating systems

Abstract

It was with CGI that it was possible to highlight my DevOps profile and my ability to adapt: ​​implementation of continuous integration platforms (PIC); recognition as a focal point in this regard. Thanks to this level of technicality, taking responsibility for an application center. Intervention on topics related to cybersecurity with the management of an SSO for a large account with complex ramifications.
Frontal presence with the customer allows to grow and maintain customer confidence by always offering more quality in the work carried out.

Achievements

• Taking responsibility for an application center for a large account.
  • Realization and defense of quotes in direct connection with the client.
  • Implementation and maintenance of continuous integration (Jenkins, Sonar, Nexus), as well as internal development, IS based on Ansible.
  • Creation and maintenance of OpenAM SSO.
• Realization of structuring Docker containers in customer IS.
• Implementation, realization, and analysis of Performance shots based on HPPerfCenter or Gatling.
• JEE / Liferay and JEE / AEM application development for a large sensitive account.

Abstract

Development of all technical and human facets related to DevOps as well as Cybersecurity security.

A strong relationship with other project teams in view of a transverse position in the structure of the company. But also with large account customers, with IS vulnerable to industrial espionage. Application cybersecurity audit, the definition of software architectures.

Progression in a majority of development languages ​​and in-depth knowledge of Linux operating systems

Achievements

• Realization of a commercial application of Live Reporting of IS attacks based on HPFortify. Application made in PHP – Symfony.
• Implementation of application audits based on code analysis as well as penetration tests via ZAPProxy.
• Definition and realization of an application forge based on Jenkins, Redmine, and GitLab.
• Development of a Capacity Planning web application dedicated to the management of 400 people.

Abstract

Carrying out experimental research activities on micro components of sanitation networks.

Quick handling of an unknown subject not directly related to IT. Realization with a public budget of the application part of a large-scale project with high visibility.

Production

• Analytical research on the micro components of sanitation networks.
• Creation of a heavy client for the collection and analysis and reporting of the data collected
  by underground sensors.