Freelancer profile translated to English.

Description

With 8 years of experience in access management and LDAP directories. My expertise covers access management for employees and CIAM customers, template development, and automation of IAM-related processes. I also have solid experience in identity federation management, directory migration, IAM and PKI solution implementation, Level 3 technical support, log exploitation and dashboard creation, as well as alert configuration on Splunk.

Functional Skills:

● Implementation, version upgrade, migration, and operational maintenance management (MCO) of LDAP directories and SSO authentication solutions

● Implementation of a vault solution and SSPR

● Industrialization and automation of IAM and LDAP processes

● API test automation

● SSO implementation (SAML / OpenID / OAuth)

● PKI implementation

Major Projects Completed and Key Skills:

● Migration from ODSE directory to PingDirectory, execution of 8 MCOs for PingDirectory and

PingFederate. Migration of authentication solution from IBM ISAM v9 to ISAM v10. Migration of PingDirectory and PingFederate infrastructure from Red Hat 6 to Red Hat 9.

● Implementation of: ISDS directory, PingDirectory, OpenDJ, EJBCA PKI and migration of authority and server certificates, ADSSP, PingFederate, PingOne MFA, WAM Evidian.

● Automation of identity extraction, obsolete account purging, leaked accounts, password reset, and entitlement management.

● Customization and creation of dashboards and alerts on Splunk.

● Development and customization of templates in Java and Python.

● Automation of API tests and OAuth/OIDC flows using Postman, Newman, and JavaScript.

Industry field of expertise

Languages

French
Native or bilingual

Workplace preferences

Can work on-site

Paris (up to 50km), Niort (up to 10km), Toulouse (up to 10km), Lille (up to 10km), Nantes (up to 10km)

BNP-Paribas
CIAM Consultant - PingIdentity Technical Lead
December 2025 - Today (6 months)
Paris, France
• Automation of PingDirectory deployment and administration with Ansible (playbook and role design, inventory management, CI/CD integration)
• Development of Spring Boot APIs and batches for identity lifecycle management.
• Migration of the existing authentication solution to PingFederate.
• Level 3 support.
• Resolution of PingFederate authentication and PingDirectory LDAP incidents.
PingFederate PingDirectory Ansible Java Spring boot
Cour des comptes
IAM Consultant, Fixed-Price Project
September 2025 - December 2025 (3 months)
Paris, France
• Facilitation of workshops.
• Integration of RHBK “Keycloak” into the information system and design of the technical architecture for deployment.
• Internal organization of RHBK objects (realms, users, groups, and roles).
• Study and design of the authorization centralization model in RHBK.
Keycloak RHBK OAuth2 SAML
MACIF
IAM and CIAM Consultant - SSO and LDAP Technical Lead
BANKING AND INSURANCE
June 2022 - July 2025 (3 years and 1 month)
Niort, France
• Connecting applications within the SSO (Single Sign-On) authentication infrastructure using SAML, OIDC, and OAuth protocols on the PingFederate solution, and supporting application teams in implementing centralized authentication solutions.
• Implementation and operational maintenance management (MCO) of PingFederate solutions and the PingDirectory LDAP directory, including migration of the RedHat 6 infrastructure to RedHat 9 and version upgrades of the PingDirectory and PingFederate directory.
• Execution of several MCO operations on MacifConnect CIAM employee and customer environments.
• Development of Python scripts to automate identity extraction processes, account purging, password resets, etc.
• Creation of processing chains in Control-M to orchestrate task execution and ensure their smooth running.
• Customization and development of Java Templates dedicated to the Macif Connect application, to meet Macif's specific requirements.
• Conducting training sessions on PingFederate and PingDirectory products.
• Handling on-call duty (HNO - Off-Hours) to ensure the continuity of PingFed and PingDir services.
• Providing Level 3 support for PingFederate, PingDirectory, PingID, and PingOne MFA products, incident resolution.
• Customization of logs for PingFederate and PingDirectory, integration into Splunk, creation of monitoring dashboards.
• Migration to GitLab: Migration of scripts and developments to GitLab and training the team on version control and project management using Git. Technical environment: PingFederate, Ping Directory, ODSEE, LDAP, SCIM, OAuth 2.0, OpenID Connect, SAML, Kerberos, PingOne MFA, PingID (MFA), Shibboleth, CyberArk, AWS, Splunk, PostgreSQL, MySQL, Postman, Git, CI-CD, JAVA, Perl, Python.
PingFederate PingDirectory PingOne DevOps AWS