Freelancer profile translated to English.
Back to original languageAbout Riadh
IT engineer with 19 years of experience, certified AWS, CSA, and ITIL, recognized for successfully leading and deploying complex Cloud projects. Expert in securing Cloud infrastructures and designing innovative DevOps and DevSecOps strategies, I implement cutting-edge technologies and best practices to ensure performance, compliance, security, and operational excellence.
English
Native or bilingual
Can work on-site
Paris (up to 50km)
Experience
- BPIAWS DevSecOps Cloud ReferentBANKING AND INSURANCEApril 2022 - March 2025 (2 years and 11 months)Paris, FranceContext:I am the referent for all Cloud projects within the Safe MetaGar train, which manages the service offering for BPI's Guarantee business line. My main tasks include setting up infrastructure on AWS Cloud and Kubernetes, securing, optimizing, and monitoring Cloud resources, and supporting agile teams in adopting DevOps and DevSecOps practices.Achievements:• Managed landing zones on scalable infrastructures, automating multi-account administration.• Implemented VPCs, network and security rules via FirewallManager, NACLs, Security Groups, and WAF.• Evaluated vulnerabilities and detected threats in the Cloud using AWS Security Hub, GuardDuty, and Inspector; encrypted data on HSM and KMS.• Secured, monitored, and optimized resources for EKS Kubernetes clusters; secured containerized applications.• Reduced cloud consumption costs by removing unused resources, utilizing EC2 and RDS autoscaling, archiving data on S3, and using Cost Explorer and Compute Optimizer services.• Adopted DevSecOps culture and best practices to integrate security into the application delivery chain, using SAST and IAST tools.• Developed IaC projects with Terraform, automating the provisioning and management of AWS resources across multiple environments.• Utilized CloudFormation stacks in Cloud migration projects, reducing manual provisioning time by 50% and improving resource management.• Secured containerized applications: managed Docker images on registries and handled secrets.• Supported agile teams in implementing DevOps best practices.
- Société GénéraleSenior DevOps/DevSecOps ConsultantBANKING AND INSURANCEMarch 2021 - April 2022 (1 year and 1 month)Paris, FranceContext:A member of the DevSecOps team focused on the technical management of SG Connect, the central authentication and authorization solution for all SG applications. My main responsibilities included industrializing and deploying SG Connect modules, securing the deployment chain, and monitoring and managing incidents.Achievements:• Defined technical and architectural choices for the SG Connect SSO solution, improving security and performance.• Deployed the SG Connect solution based on the Forgerock product in a private cloud environment with complete automation of configuration processes.• Significantly strengthened the resilience of IAM, DS, and AM components.• Fully automated infrastructure provisioning via Terraform and Ansible, reducing manual errors and accelerating deployments.• Coded Python scripts to automate the configuration of assets on the private cloud and manage user data in Data Stores.• Identified, thoroughly diagnosed, and rapidly resolved technical incidents related to IAM, implementing automation scripts for remediation.• Implemented and integrated the Checkmarx SAST tool into CI/CD pipelines for automated detection and correction of source code vulnerabilities.• Deployed a comprehensive infrastructure monitoring solution based on the ELK stack, ensuring proactive detection and automated security alert reporting.Technical Environment:Agile, ForgeRock, IAM, Saml, OAuth2, VMWare, Linux, Terraform, Ansible, Jenkins, Java, IAST, SAST, CheckMarx, ELK, Python, SonarQube, Shell
- Orange BankSenior Cloud ConsultantBANKING AND INSURANCEMarch 2018 - March 2021 (3 years)Paris, FranceContext:A member of the Cloud team responsible for managing applications in AWS Cloud. My role was to ensure the deployment of infrastructure components, implement DevOps and DevSecOps best practices, set up pipelines, and support developers in generalizing SDLC.Achievements:• Architected and managed AWS Cloud applications leveraging VPC, Route 53, ELB, Lambda, and API Gateway services to implement robust and secure cloud solutions.• Deployed infrastructure components with Terraform and Ansible, using automated pipelines for transitions between test and production environments.• Implemented automation scripts using Python and Go to improve operational workflows and increase efficiency.• Monitored infrastructure and applications via Dynatrace and Centreon to ensure optimal performance and resilience.• Efficiently handled infrastructure incidents to maintain application stability.• Provided strong support to Agile teams to foster a collaborative and effective work environment.Technical Environment:Kubernetes, Docker, AWS, Lambda, CloudWatch, CloudTrail, FinOps, Route53, S3, VPC, CLB, EC2, APW, ELK, Python, Golang, GitFlow, Shell, PowerShell, Agile
Recommendations
Be the first to recommend Riadh
Help this freelancer shine by sharing your experience working together.
These freelancer profiles also match your criteria
Agatha Frydrych
Backend Java Software Engineer
4.7
(3)
2
Baptiste Duhen
Fullstack developer
4.6
(4)
5
Amed Hamou
Senior Lead Developer
4
(2)
7
Audrey Champion
Web developer
4.3
(3)
4
Education
- National Engineering DiplomaSuperior School of Engineering and Technology2012Diplôme National d'ingénieur
- License in TechnologyHigher Institute of Technologies2006Licence en Technologie
Certifications
- Certificate of Cloud Security KnowledgeCSA2024
- AWS Certified Security - SpecialtyAWS2024