Freelancer profile translated to English.
Back to original languageAbout Muzamil
DevSecOps Tech Lead at BNP Paribas, I have led this type of assessment for demanding environments - including a DevSecOps maturity audit and roadmap for GRDF - and designed secure CI/CD pipelines in banking and insurance (BforBank, Omnes Groupe). I also delivered an AI agent end-to-end in production in a regulated insurance context (NSIA Vie Assurances, CIMA compliance). CKAD certified.
French
Native or bilingual
Remote only
Primarily works remotely
Experience
- NSIA Vie AssurancesInsurance Conversational AssistantApril 2026 - April 2026Côte d'Ivoire• • Design and industrialization of the agent's complete cloud infrastructure on Azure: ~165 Terraform resources distributed across 3 stacks (application, CI/CD, foundation), for reproducible Infrastructure as Code deployment.• • End-to-end AI layer development: multi-turn agent orchestration (tool calling), RAG (embeddings + semantic search), integration of Mistral Large via Azure AI Foundry.• • Client onboarding: translation of business needs into technical design - anonymous access with progressive conversion, controlled conversational persona (tone, guardrails, CIMA compliance).• • Alignment with the client's existing landing zone: least privilege RBAC, Azure DNS integration, Azure Policies arbitration, connection to centralized logging and Defender.• • Securing the delivery chain: Cosign image signing, Front Door WAF, managed identities (zero hardcoded secrets), Key Vault, multi-framework hardening (OWASP, ISO 27001, GDPR, CIMA).• • Implementation of self-hosted delivery (Jenkins, Gogs, SonarQube) and project governance: provider/client RACI, deployment runbooks, compliance documentation.Environment: Forward Deployment◦ · LLM Agents (tool calling, RAG)◦ · Qwen / Hermes/ Mistral / Azure AI Foundry Azure (Container Apps, Front Door, Key Vault, Cosmos, PostgreSQL)◦ · Terraform / IaC CI/CD (Jenkins)◦ · Cloud Security (Cosign, WAF, RBAC, Defender)◦ · Client-facing delivery Compliance (GDPR, ISO 27001, CIMA)◦ · Python◦ · FastAPI
- équipe AppSec BNP ParibasDevSecOps Tech LeadApril 2026 - Today (3 months)• • Management of the AppSec team's DevSecOps tooling platform: SAST, SCA, DAST, and IAST solutions made available to the group's development teams.• • Deployment, maintenance, and updates of solutions; ensuring their availability and proper functioning in production.• • Level 3 Support: diagnosis and resolution of incidents reported by users, assistance with tool usage.• • Point of contact for vendors (customer service / support): ticket tracking, version upgrades, and product evolutions.Environment: GitLab, Fortify, Nexus IQ, Sonarqube, Jfrog Artifactory, Seeker, OneUptime; Checkmate
- DevSecOps GRDFApplication Security EngineerDecember 2025 - February 2026 (2 months)• • Client scoping: assessment of secure development practice maturity and reporting to stakeholders.• • Design of a complete mapping of DevSecOps pipelines and associated security controls.• • Comparative study and recommendation of technologies (SAST, SCA, DAST, IAST, RASP, secret/container scanning, IaC, AI) suited to the context.• • Definition of priority control points and a pragmatic, scalable roadmap.Environment: GitLab, GitHub Actions, AWS, EKS, Trivy, SonarQube, JFrog Artifactory, Kubernetes, ArgoCD, Docker, Jira, Confluence
Recommendations
Be the first to recommend Muzamil
Help this freelancer shine by sharing your experience working together.
These freelancer profiles also match your criteria
Agatha Frydrych
Backend Java Software Engineer
4.7
(3)
2
Baptiste Duhen
Fullstack developer
4.6
(4)
5
Amed Hamou
Senior Lead Developer
4
(2)
7
Audrey Champion
Web developer
4.3
(3)
4
Education
- Certified Kubernetes Application Developer (CKAD)Cloud Native Computing FoundationCertified Kubernetes Application Developer (CKAD)
- Networks and Software Engineering Bachelor's DegreePigier2018Licence Réseaux et Génie Logiciel