Skip to content

Instantly share code, notes, and snippets.

@mcarbonneaux

mcarbonneaux/resume-en.json

Last active December 5, 2025 10:29
Show Gist options

  • Select an option

    Learn more about clone URLs
  • Save mcarbonneaux/c324802af76138530b08aa6c2f4eb4cf to your computer and use it in GitHub Desktop.

Select an option

Learn more about clone URLs
Save mcarbonneaux/c324802af76138530b08aa6c2f4eb4cf to your computer and use it in GitHub Desktop.
Download ZIP
Raw
resume-en.json
{
"basics": {
"name": "Mathieu CARBONNEAUX OSUAGWU",
"label": "Senior Infrastructure Solutions Architect",
"photo": "https://www.ch2o.info/en/about/photocv.jpg",
"picture": "https://www.ch2o.info/en/about/photocv.jpg",
"image": "https://www.ch2o.info/en/about/photocv.jpg",
"website": "https://www.ch2o.info",
"summary": "**Introduction**\n\nPassionate about IT since childhood, I started programming at age 12 (Logo, Basic, Z80 assembler, 680x0, C/C++). My initial training, focused on electronics and industrial IT, then on management IT (client/server programming, network, system, database, and network architecture), gave me a comprehensive vision of IT from hardware to software.\n\nWith nearly 30 years of professional experience (since 1997), I have successively held roles as application developer, database administrator, system engineer, network engineer, security engineer, middleware expert, and finally Solutions Architect in very diverse business and technical contexts. **I am what's called a multipotentialite: my profile naturally overflows established boundaries.** I always manage architecture, operations, implementation, and design aspects in parallel (Architect and DevOps).\n\n**Major Technical Achievements**\n\n- **Proprietary SFR API Gateway** (since 2006): 15+ years of continuous evolution, from IBM DataPower to open source solution (Apache/mod_perl), then REST support, and finally to event-driven architecture (Zeus Traffic Manager)\n- **Multi-tier Load Balancer**: DSR (Direct Server Return) architecture based on eBPF/Cilium with Maglev consistent hashing, combining ECMP routing and L4/L7 load balancing, managed by a custom Kubernetes operator to protect access to our applications from Internet and VPN/LS interconnections\n- **Security Data Lake**: 300 TB of data (compressed to 35 TB) on ClickHouse fed by Kafka, centralizing all SFR SI security logs (FW, Router, Switch, Reverse Proxy, VPN)\n- **Pioneer of major transformations at SFR**: introduction of Linux in SI (2004), evangelization of virtualization (2006), then containers and Kubernetes (2020)\n- **Open Source Contributions**: development of Apache modules (Authmemcookie, Status Text, Chroot, Proxy FastCGI), Zabbix PHP module, JavaScript OCRA implementation for SSO\n- **Monitoring Innovation**: participation in development of major Zabbix 2.3 features (Low Level Discovery, provisioning API, JMX proxy)\n- **GCP Landing Zone** (2023): complete setup with dedicated interconnection, Keycloak SSO integration, and team support for MLOps platform\n\n**Current Expertise**\n\nCurrently, I participate in almost all SFR SI infrastructure architecture decisions. Particularly experienced in distributed client/server architecture, I master more than 10 programming languages, especially the Java ecosystem. I have worked on almost all J2EE application servers and their associated components.\n\nMy areas of expertise include:\n- SSO and IAM technologies (strong experience: SiteMinder, Arcot, Keycloak, SAML2, OpenID Connect)\n- Middleware (MFT/MOM/API Gateway)\n- Web hosting security infrastructure (Reverse Proxy, WAF, Firewall)\n- Kubernetes operator development for middleware industrialization\n- Advanced load balancing architecture (eBPF/XDP, DSR, ECMP, Maglev consistent hashing)\n- Modern networking technologies (Cilium, BGP, VXLAN, SDN)\n- Large-scale observability (Zabbix, Prometheus/Thanos, ELK, ClickHouse/OpenTelemetry)\n- Transactional infrastructures (Tuxedo, TXSeries/Encina, MQSeries, Kafka)\n\n**Perspectives**\n\nAlways passionate about new technologies, I love experimenting with new concepts and continuous learning. I am currently training in artificial intelligence to implement anti-DDoS mechanisms on our web hosting infrastructure based on Machine Learning. My personal passions include Internet of Things (returning to my industrial IT roots) and AI/ML.",
"location": {
"city": "Paris",
"countryCode": "FR",
"region": "Île-de-France"
},
"profiles": [
{
"network": "Home Page",
"username": "My Personal Website",
"url": "https://www.ch2o.info"
},
{
"network": "Github",
"username": "My Github",
"url": "https://github.com/mcarbonneaux"
},
{
"network": "Github",
"username": "My Open Source Projects",
"url": "https://github.com/ZenProjects"
},
{
"network": "Linkedin",
"username": "My Linkedin",
"url": "https://www.linkedin.com/in/mcarbonneaux/"
}
]
},
"work": [
{
"company": "SFR",
"location": "Paris, France",
"description": "Telecom operator and Internet service provider",
"position": "Monitoring Tools Expert",
"website": "www.sfr.com",
"startDate": "2014",
"endDate": "",
"summary": "**Introduction and evolution of large-scale monitoring tools**\n\nI introduced Zabbix at SFR to replace Cacti for SNMP monitoring of network equipment. In this context, I collaborated with Zabbix publisher to develop major features that were integrated into version 2.3: Low Level Discovery (LLD), provisioning API, and JMX proxy.\n\nIn 2017, I participated in migrating monitoring tools to a modern Prometheus/Thanos/Grafana stack for metrics.\n\nIn parallel, I implemented massive use of ELK (Elasticsearch/Logstash/Kibana) for storing and analyzing hosting infrastructure logs.\n\nIn 2020, I designed and deployed a data lake based on ClickHouse (much more efficient than ELK for our volume), coupled with Kafka for real-time ingestion and Grafana for visualization. This platform currently stores all production logs, over 300 TB of data (compressed to 35 TB), enabling historical and real-time analysis of the entire SI.",
"highlights": [
"Introduction of Zabbix and contribution to v2.3 development",
"Migration Cacti → Zabbix → Prometheus/Thanos → ClickHouse",
"Implementation of 300+ TB data lake on ClickHouse/Kafka",
"Complete observability stack (metrics, logs, traces)"
]
},
{
"company": "SFR",
"location": "Paris, France",
"description": "Telecom operator and Internet service provider",
"position": "Infrastructure Solutions Architect",
"website": "www.sfr.com",
"startDate": "2010",
"endDate": "",
"summary": "**SI standardization and architectural guidance**\n\nStandardization and guidance for SOA (Service Oriented Architecture): definition of SOAP and REST standards, API governance.\n\nArchitect of the Web hosting platform: design of complete architecture (load balancing, reverse proxy, WAF, high availability).\n\nParticipation in defining network standards for implementing our new Datacenters (BGP, ECMP, multi-tier architecture).\n\nRefactoring of major SFR projects: V&S (Sales & Services), BIOS (Back office), SIGC (Commercial Management Information System).\n\nStandardization of programming language usage and evangelization of Open Source for production monitoring.\n\nEvangelization of key technologies: SNMP for network monitoring, Linux instead of proprietary Unix (Solaris/AIX/HP-UX), virtualization (2006), then containerization and Kubernetes (2020).\n\n**Major infrastructure projects**\n\n**2020**: implementation of a **security data lake** centralizing all SFR SI security logs (Firewalls, Routers, Switches, Reverse Proxy, VPN) on a ClickHouse cluster fed by Kafka.\n\n**2021**: design of a **new hosting architecture** based on Kubernetes (Talos/Cilium), HAProxy, and an internal operator to manage SFR hosting industrially, including a **multi-tier load balancer** with DSR based on eBPF/Cilium and Maglev consistent hashing.\n\n**2023**: implementation of **SFR Landing Zone on Google Cloud Platform**, including dedicated connection to GCP and SSO integration with our Keycloak. Team support in Landing Zone design, particularly on MLOps platform design aspects.\n\nIn parallel: connection of Salesforce to Keycloak SSO for centralized authentication.\n\n**Research and innovation**\n\nCurrently, I am training in artificial intelligence to implement anti-DDoS mechanisms on our web hosting infrastructure based on Machine Learning. The 300+ TB security data lake was designed in anticipation of this research work.",
"highlights": [
"SOA/API Architect and SI standardization",
"300+ TB Security Data Lake (ClickHouse/Kafka)",
"Multi-tier Load Balancer (eBPF/Cilium/Maglev)",
"GCP Landing Zone with MLOps",
"Evangelization of Open Source, Linux, Virtualization, Kubernetes",
"Major projects refactoring",
"R&D anti-DDoS with ML/AI"
]
},
{
"company": "SFR",
"location": "Paris, France",
"description": "Telecom operator and Internet service provider",
"position": "SOA Expert – API Gateway",
"website": "www.sfr.com",
"startDate": "2006",
"endDate": "",
"summary": "**Design and evolution of SFR API Gateway**\n\nI designed and developed SFR's API Gateway (and participated in SOA evangelization at SFR), initially based on IBM DataPower.\n\n**2014**: Complete redevelopment of SOAP API Gateway on open source solution (Apache/mod_perl) with in-house development to meet SFR's specific needs and reduce licensing costs.\n\n**2015**: Major evolution of API Gateway to also support REST, enabling progressive transition from SOAP to REST services.\n\n**2017**: Complete redesign of API Gateway on event-driven technology (Zeus Traffic Manager / Ivanti vTM), bringing better performance and scalability.\n\nThis API Gateway today manages all integration flows between SFR SI systems, with several thousand exposed services.",
"highlights": [
"Initial SFR API Gateway design (2006)",
"15+ years of continuous evolution",
"Migration IBM DataPower → Open Source",
"SOAP and REST support",
"Event-driven architecture",
"Management of thousands of services"
]
},
{
"company": "SFR",
"location": "Paris, France",
"description": "Telecom operator and Internet service provider",
"position": "Directory and IAM (SSO) Expert",
"website": "www.sfr.com",
"startDate": "2006",
"endDate": "",
"summary": "**LDAP directory management and SSO/IAM solutions evolution**\n\nI took charge of SFR's LDAP directory engineering with successive evolutions: Netscape Directory Server → iPlanet → Oracle Directory Server → Fedora Directory Server (389 DS).\n\n**2010**: Implementation of first SFR SSO based on CA SiteMinder.\n\n**2012-2019**: Development of proprietary SSO solution replacing SiteMinder, using certificates on workstations as second authentication factor (Arcot WebFort / CA Advanced Authentication).\n\n**2020**: Migration to modern architecture based on SAML2 and OpenID Connect standards, with Keycloak as central Identity Provider. This solution unifies authentication for all SFR applications (web, mobile, partners) and supports multi-factor authentication (MFA) with different methods: TOTP, HOTP, WebAuthn, FIDO keys (YubiKey), Passkeys.\n\n**2023**: SSO integration with Google Cloud Platform and Salesforce.\n\nToday, this SSO/IAM platform authenticates several million users (employees, customers, partners) and manages tens of thousands of applications.",
"highlights": [
"LDAP directory management (Netscape → 389 DS)",
"SSO SiteMinder → Proprietary solution → Keycloak",
"SAML2 / OpenID Connect",
"MFA: TOTP, WebAuthn, FIDO, Passkeys",
"GCP and Salesforce integration",
"Several million users"
]
},
{
"company": "SFR",
"location": "Paris, France",
"description": "Telecom operator and Internet service provider",
"position": "Web Hosting Infrastructure and Network Expert",
"website": "www.sfr.com",
"startDate": "2005",
"endDate": "",
"summary": "**Architecture and evolution of web hosting infrastructure**\n\nI managed SFR's web hosting infrastructure, first on iPlanet Web Server under Solaris, then I designed the **first Apache Linux stack** at SFR, marking the beginning of migration to Open Source.\n\nI then participated in implementing reverse proxy and load balancer infrastructures in front of web servers: Deny All (rWeb), Zeus ZXTM (Ivanti vTM), F5 BIG-IP, Alteon, HAProxy.\n\nOn this occasion, I started working with network teams on Switch, Firewall, Router (BGP), VPN, and Proxy equipment of SFR SI, acquiring deep expertise in carrier-grade network architecture.\n\n**2021**: Design of a **new hosting architecture** based on Kubernetes (Talos/Cilium), HAProxy, and a **custom Kubernetes operator** to manage SFR hosting industrially. This architecture includes a **multi-tier load balancer** using:\n- ECMP routing with BGP for router-level distribution\n- L4 load balancing with DSR (Direct Server Return) based on eBPF/XDP (Cilium) and Maglev consistent hashing\n- L7 load balancing with HAProxy for TLS termination and application routing\n\nThis solution protects access to our applications from Internet and our VPN/Leased Lines interconnections with partners, offering high availability, scalability, and robustness to infrastructure changes.",
"highlights": [
"Design of first Apache Linux stack at SFR",
"High availability hosting architecture",
"Multi-tier Load Balancer (BGP/ECMP/eBPF/Cilium/HAProxy)",
"DSR with Maglev consistent hashing",
"Custom Kubernetes operator",
"Carrier-grade network expertise (BGP, VPN, Firewall)",
"Technologies: Talos, Cilium, F5, Zeus vTM, Deny All, Alteon"
]
},
{
"company": "SFR",
"location": "Paris, France",
"description": "Telecom operator and Internet service provider",
"position": "Unix AIX and Linux Platform Expert",
"website": "www.sfr.com",
"startDate": "2004",
"endDate": "",
"summary": "**System engineering and industrialization**\n\nI ensured engineering of Unix AIX and Linux systems, including industrialization, building installation masters, and software packaging. **I introduced Linux in SFR SI**, progressively enabling replacement of proprietary Unix (Solaris, AIX, HP-UX) with Open Source solutions.\n\nI collaborated with colleagues on Solaris and HP-UX to standardize software packaging across different Unix platforms (RPM, LPP, SD, pkg).\n\nTechnologies used:\n- Packaging: RPM (Linux), LPP (AIX), SD (HP-UX), pkg (Solaris)\n- Automated installation: Kickstart (Red Hat/CentOS), AutoYaST (SUSE Linux), NIM (AIX), VMware Templating, Foreman\n- Infrastructure: TFTP/DHCP/Bootp/PXE for automated deployment\n\n**2006**: Participation in evangelization of virtualization and generalization of Linux usage (instead of Unix Solaris/AIX/HP-UX) and virtualized Windows within SFR SI.\n\n**2020**: Participation in evangelization of containers (Docker) and Kubernetes, marking a new major transformation of SFR infrastructure.",
"highlights": [
"Introduction of Linux at SFR (2004)",
"Virtualization evangelization (2006)",
"Containers/Kubernetes evangelization (2020)",
"Multi-platform industrialization and packaging",
"Deployment automation (Kickstart, AutoYaST, NIM, Foreman)",
"Proprietary Unix → Open Source Linux migration"
]
},
{
"company": "SFR",
"location": "Paris, France",
"description": "Telecom operator and Internet service provider",
"position": "OLTP Tuxedo, IBM TXSeries/Encina and MOM IBM MQSeries Technical Expert",
"website": "www.sfr.com",
"startDate": "2003-04-01",
"endDate": "",
"summary": "**Expertise in transactional systems and message-oriented middleware**\n\nI worked as a transactional systems expert, ensuring engineering, administration, and L3/L4 support of SFR's transactional platforms (Tuxedo and IBM TXSeries/Encina).\n\nI also worked closely with database administrators (Informix, Oracle) and on IBM MQSeries, due to the strong link between:\n- Transactional databases\n- MQSeries (which is transactional)\n- OLTP (XA two-phase commit protocol)\n\nThis expertise in distributed transactions and XA protocols allowed me to deeply understand critical transactional architectures that are at the heart of billing and customer management systems for telecom operators.\n\n**2017**: Participation in building our Kafka infrastructure to progressively replace MQSeries on new projects, bringing modern Pub/Sub model and better horizontal scalability.",
"highlights": [
"L3/L4 support Tuxedo and TXSeries/Encina",
"Distributed transactions expertise (XA, 2PC)",
"MQSeries administration",
"Close collaboration with DBAs (Informix, Oracle)",
"MQSeries → Kafka migration",
"Critical billing systems"
]
},
{
"company": "CEGETEL / SFR",
"location": "Paris, France",
"description": "Telecom operator",
"position": "DCE TXSeries/Encina Technical Expert",
"website": "www.sfr.com",
"startDate": "2001-03-01",
"endDate": "2003-03-31",
"summary": "**Support and Technical Expertise Mission for DCE/Encina within CEGETEL's Technical Direction**\n\n- Technical support for development, integration teams, and LEVEL 3 and 4 production support on products: DCE, TXSeries/Encina\n- Also support for products associated with DCE and ENCINA usage: MQSeries 5.x, BBA, UNIX Sun Solaris 2.5/2.6/2.7/2.8, UNIX HP-UX 10.2 and 11, UNIX AIX 4.2 and 4.3, Windows NT, Oracle 7/8/8i, Informix 7.23, CFT 2.2.x\n- Operation of DCE and TXSeries/Encina environment in development, integration and production: approximately 30 Encina cells distributed across 40 machines\n- Installation and configuration, packaging of new platforms\n- Attended official IBM training on IBM TXSeries/Encina and IBM DCE (2 weeks)\n\n**Technical Environment**: DCE IBM 2.1/2.2/3.1 on AIX 4.x Solaris 2.x and Windows NT, DCE Transarc 1.1 on Solaris 2.x, DCE Gradient 2.0.6a on Windows NT, DCE 1.5 on HP-UX, Encina 2.5 Transarc on AIX/Solaris/HP-UX, TXSeries/Encina v4.3 on AIX and Solaris, BBA, CFT 2.2.x on AIX/Solaris/HP-UX, Oracle v7/v8/v8i on Solaris/AIX/HP-UX, Informix v7.23 on AIX, MQSeries v5.x on AIX/Solaris/HP-UX/OS390, Windows NT 4.0, C/C++, Java, HTML, Perl, PHP, KSH, TCL, Apache, Samba.",
"highlights": [
"L3/L4 support DCE and TXSeries/Encina",
"Operation of 30 Encina cells across 40 machines",
"Official IBM training (2 weeks)",
"Multi-platform: AIX, Solaris, HP-UX, Windows NT",
"Expertise MQSeries, Oracle, Informix"
]
},
{
"company": "ATOS Origin (for Bouygues Télécom)",
"position": "Outsourcing Manager - 6ème Sens Project",
"website": "https://atos.net/en/",
"startDate": "2001-01-01",
"endDate": "2001-03-31",
"summary": "**Outsourcing of 6ème sens project development** (Bouygues Télécom's multi-service WAP/WEB portal at ATOS Origin)\n\n- Organization of platform outsourcing\n- Hardware selection and purchase to set up platform at ATOS\n- Platform installation and configuration\n\n**Technical Environment**: Microsoft Windows 2000, Visual Studio, COM/DCOM, MSMQ, SQL Server.",
"highlights": [
"Outsourcing Bouygues 6ème sens WAP portal",
"COM/DCOM and MSMQ architecture",
"Complete infrastructure setup"
]
},
{
"company": "ATOS Origin (for SFR/CEGETEL)",
"position": "Technical Architect - SIMP Project",
"website": "https://atos.net/en/",
"startDate": "2000-07-01",
"endDate": "2001-12-31",
"summary": "**Technical study on SIMP (Payment Methods Information System)**\n\n- Technical study to improve SIMP performance\n- AIX, Encina, Oracle and Informix administration\n- Development in C/C++, Unix Shell\n- Migration study from Encina 2.5/Informix and AIX 4.2 to TXSeries v4.3/Oracle 8i and AIX v4.3\n\n**Technical Environment**: AMC Designer, Informix, Visual C++, C++ Builder, Encina, ESQL/C, AIX, BBA, MQSeries, CM2, VADQR, CHPN, SCCS, TITAN and BBA FT.",
"highlights": [
"SIMP performance optimization",
"Migration Encina/Informix → TXSeries/Oracle",
"Multi-platform administration",
"Payment system architecture"
]
},
{
"company": "Adesium (for SFR/CEGETEL)",
"position": "Developer and Technical Architect - SRPP/Dual Slot Project",
"website": "https://web.archive.org/web/20120806163600/http://www.adesium.com/",
"startDate": "2000-03-01",
"endDate": "2000-06-30",
"summary": "**Development of CEGETEL's SRPP Dual SLOT evolution** (recharge management via IVR by Bank Card and Voucher)\n\n- Study to improve project's n-tier architecture\n- AIX, Informix and MQSeries administration for development platform\n- Development in C/C++, Unix Shell\n- Development in ESQL/C\n- Multi-user SCCS setup\n\n**Technical Environment**: Informix, ESQL/C, AIX, BBA, MQSeries, CM2, SCCS, TITAN and BBA FT.",
"highlights": [
"N-tier recharge system architecture",
"C/C++ and ESQL/C development",
"SCCS setup",
"Real-time payment system"
]
},
{
"company": "Adesium (for SFR/CEGETEL)",
"position": "Developer and Technical Architect - SIMP Project",
"website": "https://web.archive.org/web/20120806163600/http://www.adesium.com/",
"startDate": "1999-03-01",
"endDate": "2000-02-29",
"summary": "**Redesign of CEGETEL's payment methods system** (management of control and payment by Bank Card, Voucher and Check Control)\n\n- Design of project's n-tier architecture\n- Data modeling in Merise\n- AIX, Encina, Informix and MQSeries administration for development platform\n- Development in C/C++, Unix Shell\n- Development in ESQL/C\n- Migration of file flows from TITAN FT to BBA FT\n- BBA FT flows setup\n- Study of GUI migration from Visual C++ to C++ Builder\n\n**Technical Environment**: AMC Designer, Informix, Visual C++, C++ Builder, Encina, ESQL/C, AIX, BBA, MQSeries, CM2, VADQR, CHPN, SCCS, TITAN and BBA FT.",
"highlights": [
"Complete n-tier architecture design",
"Merise modeling",
"Migration TITAN FT → BBA FT",
"Multi-payment method system"
]
},
{
"company": "Adesium (for SFR/CEGETEL)",
"position": "Technical Architect and Coordinator - CSP to Visual Age Migration",
"website": "https://web.archive.org/web/20120806163600/http://www.adesium.com/",
"startDate": "1998-08-01",
"endDate": "1999-02-28",
"summary": "**Studies and Expertise for CSP code migration on OS/390** (non-Y2K compliant to Cobol generated with Visual Age Generator)\n\n- Feasibility study for 2-tier Client/Server with DB2 on OS/390, and RAD tools (C++ Builder and PowerBuilder)\n- Windows NT 4.0 server setup for DRDA/SNA gateways\n- DRDA DB2 client installation on Windows NT\n\n**Technical Environment**: Windows NT, C++ Builder, PowerBuilder, TSO MVS, DB2 Connect, Visual Age For Smalltalk, Visual Age Generator.",
"highlights": [
"Y2K CSP/MVS migration",
"Client/Server DB2 architecture",
"DRDA/SNA gateways",
"RAD C++ Builder and PowerBuilder"
]
},
{
"company": "Adesium (for SFR/CEGETEL)",
"position": "Project Manager - KART Project",
"website": "https://web.archive.org/web/20120806163600/http://www.adesium.com/",
"startDate": "1998-08-01",
"endDate": "1999-02-28",
"summary": "**Design and management of KART Project** (2-tier client/server architecture - distributed management of GSM network technical acceptance documents)\n\n- Project management\n- General project specification\n- Technical assistance on all technical aspects of the project\n- Data modeling in Merise\n- UNIX and Oracle administration for development platform\n\n**Technical Environment**: MS Project, AMC Designer, Oracle, Access, HP-UX, Pro*C, SQL*NET, C++ Builder, OLE AUTOMATION Word, TITAN, BBA FT.",
"highlights": [
"KART project manager",
"Distributed Client/Server architecture",
"Merise modeling",
"GSM technical document management"
]
},
{
"company": "Adesium (for SFR/CEGETEL)",
"position": "Project Manager / Developer - PACT Project",
"website": "https://web.archive.org/web/20120806163600/http://www.adesium.com/",
"startDate": "1998-04-01",
"endDate": "1998-07-31",
"summary": "**Design and Evolution of GSM ticket counting chain** (interconnection of SFR GSM network with company PABXs)\n\n- HP-UX and Oracle administration for development platform\n- Oracle 7.2/7.3 server migration\n- Windows 3.11 / NT GUI migration\n- Y2K compliance\n\n**Technical Environment**: AMC Designer, C and Pro*C Oracle, HP-UX, PowerBuilder, SQL*NET, TITAN, SCCS.",
"highlights": [
"GSM/PABX ticket counting",
"Oracle and Windows migration",
"Y2K compliance",
"Client/Server architecture"
]
},
{
"company": "Adesium (for SFR)",
"position": "Developer - SIM Center Project",
"website": "https://web.archive.org/web/20120806163600/http://www.adesium.com/",
"startDate": "1998-01-01",
"endDate": "1998-03-31",
"summary": "**Development for SFR SIM card production management (MRP) project**\n\n- Object modeling in UML\n- Data modeling in Merise\n- Evolution development in C++ under Unix and Windows\n- Development in SQL Windows\n\n**Technical Environment**: Paradigm+, AMC Designer, AIX, C++, SQL Windows, Oracle, OCI Oracle, RPC Sun, Borland C++.",
"highlights": [
"SIM card MRP",
"UML modeling",
"Multi-platform C++ development",
"RPC Sun and OCI Oracle"
]
},
{
"company": "Adesium (for SFR)",
"position": "Project Manager / Developer - PACT Project",
"website": "https://web.archive.org/web/20120806163600/http://www.adesium.com/",
"startDate": "1997-09-01",
"endDate": "1997-12-31",
"summary": "**Evolution development of GSM ticket counting chain** (SFR GSM network interconnection with company PABXs)\n\n- HP-UX and Oracle administration for development platform\n- Evolution development in C and Pro*C\n- Data modeling in Merise\n- PowerBuilder development\n\n**Technical Environment**: AMC Designer, C and Pro*C Oracle, HP-UX, PowerBuilder, SQL*NET, TITAN, SCCS.",
"highlights": [
"Ticket counting evolutions",
"C and Pro*C development",
"PowerBuilder and Oracle",
"Merise modeling"
]
},
{
"company": "Adesium (for SFR)",
"position": "Developer - SGD Project (ULYSSE Project)",
"website": "https://web.archive.org/web/20120806163600/http://www.adesium.com/",
"startDate": "1997-06-01",
"endDate": "1997-08-31",
"summary": "**Development for SFR distributor management project** (N-tier architecture)\n\n- C++ development\n- ESQL/C development\n- OTS development with Encina TP Monitor\n- Object modeling in OMT\n- SCCS setup\n\n**Technical Environment**: Paradigm+, AMC Designer, C/C++, Encina, DCE, ESQL/C, Informix, AIX, Visual C++, SCCS.",
"highlights": [
"N-tier architecture with Encina",
"OTS development",
"OMT modeling",
"First contact with DCE/Encina"
]
},
{
"company": "ICEP (Institut Comtois d'Enseignement Polytechnique)",
"position": "Technical Architect, Developer, Network and System Administrator",
"website": "",
"startDate": "1996-09-01",
"endDate": "1997-05-31",
"summary": "**System engineer for Training Center**\n\n- Administration of training center's network and machines\n- Software testing and technology watch\n- Development for companies working with training center in C/C++ under Unix with Oracle database access (Pro*C and PL/SQL)\n- Administration shell development\n\n**Technical Environment**: C, C++, AIX, SCO, Linux, SQL, Oracle, Access, Unix Shell, Delphi, C++ Builder, Borland C++, TCP/IP, Novell, Windows NT, Silverun CASE tool.",
"highlights": [
"Training center network administration",
"C/C++ and Oracle development",
"Technology watch",
"Multi-platform Unix"
]
}
],
"education": [
{
"institution": "ICEP (Institut Comtois d'Enseignement Polytechnique)",
"area": "Computer Science",
"studyType": "TRIO (Computer Network Technology and Organization) (Bachelor of Science)",
"startDate": "1995",
"endDate": "1996",
"courses": [
"Computer networks",
"System administration",
"Advanced programming"
]
},
{
"institution": "ICEP (Institut Comtois d'Enseignement Polytechnique)",
"area": "Computer Science",
"studyType": "Industrial IT Technical Degree (BTEC Higher National Diploma)",
"startDate": "1990",
"endDate": "1994",
"courses": [
"Industrial IT",
"Electronics",
"Automation",
"Embedded programming"
]
},
{
"institution": "Lycée Pasteur (Dole/Jura)",
"area": "Electronics",
"studyType": "Baccalaureate F2 - Electronics (Technical Diploma)",
"endDate": "1989",
"startDate": "1987"
}
],
"skills": [
{
"name": "Architecture",
"level": "Expert",
"keywords": [
"SOA standardization and guidance at SFR",
"SOAP and REST usage standardization at SFR",
"Web hosting platform architect at SFR",
"Network standards definition for new Datacenters",
"Major SFR projects refactoring: V&S, BIOS, SIGC",
"Programming language usage standardization",
"Open Source evangelization for production monitoring",
"SNMP evangelization for network equipment monitoring",
"Linux evangelization instead of proprietary Unix",
"Virtualization evangelization",
"Open Source evangelization",
"UML/Merise (ERD/LDM)",
"SSO/IAM standardization",
"Project support for infrastructure usage",
"Agile Methods: Kanban, Scrum",
"CI/CD principles evangelization",
"Cloud infrastructure standardization"
]
},
{
"name": "Large-Scale Infrastructure",
"level": "Expert",
"keywords": [
"300+ TB Data Lake (ClickHouse/Kafka)",
"Multi-tier Load Balancer (eBPF/Cilium/Maglev)",
"Production Kubernetes (thousands of pods)",
"Distributed monitoring (Zabbix → Prometheus/Thanos → ClickHouse)",
"BGP/ECMP/DSR",
"High availability architecture",
"Horizontal scalability",
"Observability (metrics, logs, traces)"
]
},
{
"name": "Middleware & SOA",
"level": "Expert",
"keywords": [
"JEE App. Server",
"MOM",
"Web Server",
"Transaction Processing App. Server",
"LDAP Directory Server",
"File Monitor Gateway",
"Tomcat",
"JBoss",
"Websphere",
"Weblogic",
"MQSeries",
"Apache",
"Nginx",
"Oracle iPlanet Web Server",
"TXSeries/Encina",
"Tuxedo",
"Oracle Directory Server",
"389 Directory Server",
"OpenLDAP",
"OpenDS/DJ",
"Axway/XFB",
"CFT",
"proftpd",
"SOAP",
"REST",
"gRPC/protobuf",
"ESB",
"Service Mesh",
"API Gateway"
]
},
{
"name": "SSO/IAM",
"level": "Expert",
"keywords": [
"SSO",
"SAML2",
"OpenID Connect",
"Keycloak",
"SiteMinder",
"Arcot",
"OAuth",
"CA Advanced Authentication",
"ADFS",
"OCRA",
"HOTP",
"FIDO Keys (YubiKey)",
"WebAuthn",
"Passkey",
"LDAP",
"Radius",
"OpenAM"
]
},
{
"name": "Network & Security",
"level": "Expert",
"keywords": [
"Reverse Proxy & Load Balancer",
"Firewall",
"Router",
"BGP",
"Direct Server Return (DSR) Load Balancing",
"eBPF and XDP",
"Checkpoint",
"Cisco FWSM",
"Linux NetFilter",
"BSD pf",
"Ivanti/Pulse/Brocade/Zeus vTM",
"F5",
"HAProxy",
"Apache",
"Envoy",
"Nginx",
"SquidCache",
"rWeb Deny ALL",
"Brocade vTM WAF",
"Alteon",
"DPDK",
"vpp.io",
"VXLAN",
"SDN",
"SD-WAN",
"K8S Overlays (CNI)"
]
},
{
"name": "Continuous Integration Platform (CI/CD) and GitOps",
"level": "Expert",
"keywords": [
"Github",
"Gitlab",
"Gitea",
"Drone",
"ArgoCD",
"FluxCD",
"Git",
"SVN",
"CVS",
"SCCS",
"Act"
]
},
{
"name": "Programming Languages",
"level": "Expert",
"keywords": [
"Java",
"C#",
"C/C++",
"PHP",
"Go",
"Shell (bash/ksh/perl/awk/sed)",
"Rust (beginner)",
"Assembly (Z80, ESP32, 680xx, x86-64, PIC, HP Saturn)",
"JavaScript",
"TCL (used in Encina/Websphere and F5)",
"Python",
"Pro*C / ESQL/C",
"PL/SQL",
"JetBrains IDEs: IntelliJ, PHPStorm, Resharper, CLion, Rider, GoLand",
"VS Code",
"GNU Compiler Suite",
"Visual Studio",
"C++ Builder",
"Visual C++",
"PowerBuilder",
"SQL Windows",
"Delphi"
]
},
{
"name": "Containers",
"level": "Advanced",
"keywords": [
"Kubernetes",
"Docker",
"Cilium",
"Flannel",
"Docker Compose",
"CRI-O",
"containerd",
"Talos"
]
},
{
"name": "Operating Systems",
"level": "Advanced",
"keywords": [
"Technical Support and Software Packaging",
"RPM on Linux SUSE/Red Hat",
"LPP on AIX",
"SD on HP-UX",
"pkg on Solaris",
"msi on Windows",
"sysprep on Windows",
"Kickstart on Red Hat/CentOS",
"AutoYaST on SUSE Linux",
"NIM on AIX",
"VMware Templating",
"Foreman",
"TFTP/DHCP/Bootp/PXE",
"Linux RHEL/SUSE/Ubuntu/Debian/Alpine",
"AIX",
"HP-UX",
"Solaris",
"FreeBSD",
"SCO Unix",
"Windows (all versions since 3.1)",
"Novell Netware",
"LAN Manager"
]
},
{
"name": "Open Source Monitoring",
"level": "Advanced",
"keywords": [
"Zabbix",
"Prometheus",
"Elasticsearch/Kibana",
"ClickHouse/OpenTelemetry",
"Nagios",
"Grafana",
"Thanos"
]
},
{
"name": "Automation",
"level": "Advanced",
"keywords": [
"Ansible",
"AWX/Tower",
"Terraform/OpenTF",
"Gitlab CI",
"Github Actions",
"Travis CI",
"Circle CI",
"Drone",
"Gitea Act"
]
},
{
"name": "RDBMS",
"level": "Intermediate",
"keywords": [
"Database administration",
"Database software packaging",
"Development support",
"Oracle (versions 7, 8, 8i, 9i, 10g, 11g, 12c, 19c)",
"MySQL",
"PostgreSQL",
"Informix (7.23 and later)",
"ClickHouse",
"DB2",
"SQL Server",
"Access",
"Interbase"
]
},
{
"name": "NoSQL",
"level": "Intermediate",
"keywords": [
"Memcached + MCRouter",
"Apache Ignite",
"Infinispan",
"CouchDB",
"Redis",
"MongoDB"
]
},
{
"name": "Legacy Telecom Middleware",
"level": "Expert",
"keywords": [
"BBA (Application Backbone)",
"TITAN FT (File Transfer)",
"BBA FT (File Transfer)",
"CM2",
"VADQR",
"CHPN",
"DCE (Distributed Computing Environment)",
"RPC Sun",
"DRDA (DB2)",
"SNA"
]
},
{
"name": "Methodologies",
"level": "Advanced",
"keywords": [
"Merise (ERD/LDM)",
"UML (OMT, Paradigm+)",
"Agile Methods (Scrum, Kanban)",
"DevOps",
"N-tier architecture",
"Client/Server",
"SOA"
]
},
{
"name": "Cloud",
"level": "Beginner",
"keywords": [
"Landing Zone",
"Network DC Interconnect",
"IAM",
"GCP",
"AWS"
]
}
],
"languages": [
{
"language": "English",
"fluency": "CEFR B1/B2"
},
{
"language": "Spanish",
"fluency": "CEFR A2/B1"
}
],
"interests": [
{
"name": "Outdoor Activities",
"keywords": [
"Kayaking",
"Canyoning",
"Climbing",
"Trekking"
]
},
{
"name": "Computer Science",
"keywords": [
"Open Source",
"IoT",
"Video games",
"Electronics",
"Retro-gaming"
]
}
],
"projects": [
{
"name": "ZenProjects",
"description": "My various Open Source projects contributing to the community",
"highlights": [
"Zabbix PHP Module - Extension for Zabbix monitoring",
"Apache Authmemcookie Module - Distributed authentication based on Memcached",
"Apache Status Text Module - Metrics export in text format",
"Apache Chroot Module - Security through isolation",
"Apache Proxy FastCGI Module - Experimental FastCGI proxy",
"PHP SPF Extension - SPF validation for PHP",
"Chromium Web Page Screensaver - Chromium-based screensaver",
"phpSMTPd - SMTP server in PHP (experimental project)",
"JavaScript OCRA Implementation - OCRA implementation for SSO"
],
"keywords": [
"Open Source",
"C/C++",
"PHP",
"JavaScript",
"Apache Modules",
"Security",
"Authentication"
],
"startDate": "2006",
"endDate": "",
"website": "https://github.com/ZenProjects",
"roles": [
"Creator and main maintainer"
],
"entity": "Personal Open Source Projects",
"type": "application"
}
],
"meta": {
"theme": "even",
"version": "v2.0.0",
"lastModified": "2024-12-03"
}
}
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment