You're seeing this page as if you were . The main menu is still yours, though. Exit from immersion
Parfait Z.PZ

Parfait Z.

IAM DevSecOps Consultant

€650/day
Paris, FR
8-15 years

Average response time: 1 hour

Freelancer profile translated to English.
Back to original language

About Parfait

IAM Consultant, DevSecOps and Cloud Computing Specialist with over 9 years of professional experience. I have a perfect command of Privileged Access Management (PAM) and Identity Security. Expert in deploying cloud/on-premise infrastructures, integrating complex security stacks, and automating CI/CD processes. Solid expertise covering system administration, Active Directory integration, and SIEM systems, ensuring optimal security for critical systems. I pursue my career in the IT field where there are good chances of achieving satisfactory results through the use of my significant skills and experiences.
  • French

    Native or bilingual

  • English

    Native or bilingual

Can work on-site
Paris (up to 50km)

Experience

  • BNP PARIBAS
    IAM DevSecOps Consultant
    BANKING AND INSURANCE
    August 2024 - December 2025 (1 year and 4 months)
    Levallois-Perret, France
    Context: IAM team lead, reference, and definition of new IAM & encryption roadmaps.
    Strengthening security and updating the naming convention for IT resources and migration of application and middleware deployment automation platforms, ensuring the continuity and optimization of CI/CD processes for 30 applications with varied architectures (microservices and monoliths).

    Assignments:
    • IAM, AIM, PAM, PSM, and CPM incident administration and management under CyberArk
    • SLA, KPI, and PKI monitoring
    • Organization of rights and identity recertification campaigns every 6 months
    • Ansible: server patching (Linux, PSM-SSH)
    • Access review via PowerBI, Excel, and SailPoint reporting
    • Implementation of CyberArk user profiles (SafeManager, GlobalAdmin, User Advance, User Standard, User Workflow, and UserWorkflowApprover)
    • Ticket creation (Changes, Incidents, RITM)
    • Automation of integration via PowerShell PACLIENT scripts
    • Integration and LCM (LDAP, Active Directory, CyberArk, PKI) and SIEM observability (Microsoft Sentinel, Defender)
    • Management of password rotation policy and documentation updates
    • Server and application monitoring and protection (Dynatrace)
    • Rights reconciliation (CyberArk <=> SailPoint IdentityIQ / IdentityNow)
    • SailPoint administration (workflows, lifecycle management)
    • Updating access validation processes and request tracking
    • Management of MFA, SSO, SAML, OAuth, OIDC connectors
    • Java feature development
    • Automation log management
    • Initiation of SAST and DAST testing strategies (OWASP ZAP)
    • Plugin analysis and updates
    • Linux system administration
    • Workshop facilitation, backlog management
  • TCS
    IAM SECURITY CONSULTANT
    BIOTECH
    January 2026 - Today (7 months)
    Gif-sur-Yvette, France
    • Implementation and configuration of SailPoint IdentityIQ for identity lifecycle management.
    • Development of connectors and rules for asset integration
    • Implementation of access certification campaigns.
    • Administration and maintenance of CyberArk and its components
    • Management of privileged accounts and server integration into
    • CyberArk/SailPointIIQ LCM
    • Automation of provisioning processes via API and PowerShell scripts.
    • Collaboration with security, infrastructure, and business teams.
    • Management of access requests and administration of rights
  • Ministère de l'Éducation Nationale
    Azure DevSecOps
    EDUCATION AND E-LEARNING
    August 2018 - July 2023 (4 years and 11 months)
    India
    Context: Proactive monitoring and management of incidents and security vulnerabilities, ensuring the smooth operation of operations and migration to Azure cloud.
    • SIEM evolution towards production
    • Standardization of Terraform modules (network, storage)
    • Multi-cluster Kubernetes deployment on VNet network
    • Writing functional and technical specifications
    • Agile IAM methodology work:
    • Operational maintenance of applications, networks, and clusters
    • Deployment of applications in test and production environments
    • Log analysis and service interruptions
    • Integration of monitoring scripts (health check)
    • Infrastructure lifecycle management
    • Resolution of production incidents
    • Implementation of dashboards and observability
    • Migration to Azure AD with MFA (2000 users)
    • Design of hybrid cloud identity architectures
    • Training of Azure IAM teams
    • Azure AD deployment (5000+ users)
    • GDPR, ISO 27001, NIST compliance
    • Microsoft Sentinel (SIEM) integration
    • Audit log management
    • PIM implementation (sensitive role management)
    • Creation of conditional access policies
    • SSO integration (30+ applications)
    • Participation in audits and access governance
    Tools: CyberArk, Docker, Azure DevOps, Linux, Nginx, PostgreSQL, Kubernetes, ELK, Helm Chart, GraphQL, Entra ID, ServiceNow, Git, Azure Pipeline, Bash, PowerShell, GitLab, Python, Agile Scrum

Recommendations

Be the first to recommend Parfait

Help this freelancer shine by sharing your experience working together.

These freelancer profiles also match your criteria

AgathaA

Agatha Frydrych

Backend Java Software Engineer

4.7

(3)

2

BaptisteB

Baptiste Duhen

Fullstack developer

4.6

(4)

5

AmedA

Amed Hamou

Senior Lead Developer

4

(2)

7

AudreyA

Audrey Champion

Web developer

4.3

(3)

4

Education

  • PHD, COMPUTER SCIENCES & ENGINEERING
    KL UNIVERSITY
    2022
    PHD, COMPUTER SCIENCES & ENGINEERING
  • MASTER
    EDHEC
    2018
    MASTER

Skill set

Categories