Paris, Île-de-France, France
15 years of experience working in various fields of IT, mainly Ops. Currently, my area of interest is IT security, leveraging DevOps tools and methodology to make applications and infrastructures more secure. Competencies: IT security, hardening, Linux, DevSecOps, cloud computing, Docker, Ansible, Python, network protocols.
• RFP requirements analysis, solutions definition and associated cost estimates • DevSecOps attached to the network perimeter security team at AirLiquide: - Extranet security policy definition - API security policy definition - Cloud misconfiguration or compliance violations detection, reporting and remediation - Security dashboard (Splunk)
• Linux server hardening automation via Ansible playbooks • Development of an OWASP ZAP’s plugin for access control testing • Automation of RESTful APIs’ security scan in a CI/CD pipeline • Automation of security groups’ audit in cloud environment • Static Application Security Testing (SAST) Skills and tools : Git, Jenkins, Docker, Vagrant, Ansible, Cloud-init, ZAP, Pentest, Python, Postman, VMware, Openstack, SonarQube, Java
• Installation and administration of CentOS / RHEL and SUSE Linux servers • Administration of FTP servers • Migration of Xinet's Fullpress DAM from SGI Altix 450 to SGI UV 3000 Skills and tool: RHEL, Suse Linux, Sysadmin