← Home
Français Español

Experience

AWS DevOps Engineer

Nuagic

01/2022 - 06/2025

Clients: allianceblock.io, projectzero.io, evergonlabs.com, compilot.ai

Multi-service AWS infrastructure for a blockchain/fintech ecosystem of 8 companies.

  • AWS multi-services (Lambda, ECS, StepFunctions, EKS, RDS, DocumentDB, DynamoDB, S3, VPC, API Gateway) with Terraform IaC on multi-account Organizations architecture
  • Cloud security: IAM (OIDC, SCPs), WAFv2, GuardDuty, Config, KMS, Secrets Manager
  • CI/CD: Jenkins, GitHub Actions, CodePipeline — Observability: CloudWatch, Grafana
  • Infrastructure management for 8 companies: access, security, interconnections, cost optimization
  • DevOps lead across all entities
  • Tailscale VPN administration
  • Jira ↔ GitHub ↔ Jenkins workflow integration
  • TimescaleDB migrations: EC2 → Timescale Cloud / Tiger Cloud
  • Appsmith/Retool administration, low-code interface development
  • Databricks administration
  • Terraform design and deployment of AWS Step Functions workflows (parallel orchestration on Lambda + ECS)
AWS Terraform Lambda ECS EKS Step Functions RDS DynamoDB DocumentDB S3 VPC API Gateway IAM WAFv2 GuardDuty KMS Jenkins GitHub Actions CodePipeline CloudWatch Grafana Tailscale TimescaleDB Appsmith Retool Databricks

AWS Solution Architect

Nuagic

03/2018 - 12/2022

Clients: Crédit Agricole (CAGIP), La Poste (Digital Division), Lagardère, Paylead

Lead AWS architect, IaC design and security for enterprise and startup clients.

  • Crédit Agricole: private AWS via Direct Connect, AWS lead in the Cloud team
  • DevOps & security evangelization (Vault, Checkov, Terraform code analysis in CI)
  • Feasibility studies, consulting and IaC implementation (Terraform, Packer)
  • Created a shared library of optimized Terraform modules
  • Python service consuming ELK topics, routing to HPOMi alerting
  • Shared Lambdas: DailySavingTime, CloudWatch cleanup, scheduled start/stop, AMI lifecycle management
  • Real-world case: Datasynapse (TIBCO) compute grid — Packer AMIs via GitLab CI, branch/account-aware deployment, HPCCA autoscaling
  • La Poste: Terraform IaC, VPC Peering → Transit Gateway migration, Lambda Edge, serverless
  • Jenkins master on ECS (DSL/Groovy), on-demand EC2 workers, EFS shared storage
  • OpenVPN with auto-renewed cert via Lambda/Let's Encrypt + Aurora
  • LAN/WAN management: Fortinet Fabric, FortiAuthenticator (SAMLv2), Cisco
  • Lagardère: AWS platform management, Terraform, Packer, Ansible/Puppet
  • Paylead: HA cloud platforms on AWS, CDN, Docker, CodePipeline/CodeBuild
AWS Terraform Packer Ansible Puppet Direct Connect Lambda Lambda Edge ECS EFS VPC Transit Gateway CloudFront S3 RDS Aurora Jenkins GitLab CI Groovy Python Vault Checkov Fortinet Cisco Docker CodePipeline CodeBuild

IT Consultant

Shinrai

04/2017 - 03/2018

Clients: Viaccess-Orca (Orange subsidiary)

IT infrastructure management and consulting for an Orange subsidiary.

  • IT infrastructure management and consulting
  • VMware / NetApp / Microsoft environment (AD, Exchange, Skype, EOP, BackupExec)
  • Multi-site: Rennes, Israel, Finland
  • Palo Alto PAN-EDU-311 training
VMware NetApp Windows Server Active Directory Exchange Palo Alto

Systems Administrator

Cloudwatt / Orange

04/2014 - 04/2017

MCO/OPS team — deployment, operation and maintenance of an OpenStack platform.

  • OpenStack platform deployment, operation and maintenance
  • Application containerization with Kubernetes
  • Built client management tools for the support team
  • Shell, Python, Ruby scripting
  • Technical documentation writing
OpenStack Kubernetes Docker Shell Python Ruby

Network Architect

e-Merchant (Pixmania group)

06/2010 - 04/2014

AS42881 management and network infrastructure for a major e-commerce player.

  • AS42881 management (BGP)
  • Cisco: Catalyst 6500, FWSM, 4948, ASA 5520, Nexus 5010
  • F5 Big-IP GTM/LTM (1600/3900/6900)
  • Juniper ISG 1000/2000, HP Procurve 5406zl
  • Network deployment for ~30 retail stores (copper, WiFi, outband ADSL/3G)
  • ARBOR traffic management (DDoS mitigation)
  • Dark fiber management between sites (datacenters ↔ HQ)
  • Network config backup (RANCID)
  • HP/Foundry → Cisco migration
Cisco F5 Juniper HP Procurve BGP OSPF ARBOR RANCID Fortinet

Systems & Network Administrator

e-Merchant (Pixmania group)

07/2005 - 06/2010

Systems and network administration for large-scale e-commerce infrastructure.

  • Shell scripts for production deployments
  • MySQL administration (cli, phpMyAdmin)
  • IPSEC VPN (ZyXEL, OpenSwan, Fortinet)
  • Firewalls: iptables, pf, Fortinet, Juniper ISG
  • Monitoring: Nagios, Cacti, Munin, Collectd, rrdtool
  • Services: FTP, SFTP, Apache, Nginx, Lighttpd, Tomcat, Postfix, LDAP
  • IronPort (SMTP relay, DKIM)
  • Xen virtualization, Heartbeat HA, NetApp storage
  • Deployment automation via Puppet
  • 5,000m² warehouse network expansion (fiber optics, SFP, copper)
Linux Shell MySQL Nagios Puppet Xen NetApp Nginx Apache Fortinet Juniper iptables

Internship

DATEX DSM

10/2002 - 08/2004

LAN/WAN security, system administration and web development.

  • LAN/WAN security on Linux (iptables, DNS, DHCP, proxy, mail)
  • PHP/MySQL web development
  • IT security awareness (CERTA recommendations)
Linux iptables PHP MySQL DNS DHCP

Internship

Citroën / PSA

03/2001 - 01/2002

Content management and development for www.citroën.fr.

  • Website content management for citroën.fr
  • Video streaming conversion
  • Flash development (ActionScript)
  • HTML training for users
  • CD-ROM design for C3 and C5 vehicles
HTML Flash ActionScript