-
RSI
- Expert Technique / Architecture & Sécurité
Montbonnot
2012 - maintenant
Technical Architecture (Env. mainly Linux SLES ; Ecosystem mainly Java)
Security (IAM, SSO, PKI)
Recruited to maintain and improve enterprise-wide Authentication & Access means to the Information Systems.
- Realize risks management analysis (according to EBIOS Methodology).
- Assess projects compliance with security requirement and IS Security Policy.
- Design technical solutions fitting constraints in terms of security, technology, cost and delay.
- Write security requirements documentation, most recently for our Virtual Desktop Infrastructure.
- Collaborate with external auditors to conduct compliance audits and penetration testing.
- Coordinate and monitor IT services contractors in my field (IAM, PKI & Certificate lifecycle).
- Investigate new trends to anticipate business needs / to address security issues (Technological & regulatory watch, PoC).
-
NORSYS/RSI
- Expert Technique
2011 - 2012
Technical Architecture (Env. mainly Linux SLES & RHEL ; Ecosystem mainly Java)
Security (IAM, SSO)
Promoted to design technical solutions fitting constraints in terms of security, technology, cost and delay.
- Built and presented proof of concept to senior management to improve existing processes.
- Wrote and contributed to project documentation.
- Supervised small teams of developers (1-3).
- Delivered tier III support.
(SLES 11SP1, Java 1.6, Tomcat 6.0.33, CAS 3.4.10, Shibboleth 2.4.3, Apache 2.2.22, Openldap 2.4.30, Oracle 11G R2, Implementation of InterOps (French standard of interoperability across Social Protection Organizations) and webervices (CXF).
-
NORSYS/FNMF
- Expert Technique
2010 - 2011
Mise en place d'un portail d'authentification sécurisée (WebSSO) qui constitue le point d'accès à des services (Gestion Documentaire, FTP, applications métier ...) disponibles selon les habilitations reçues par l'utilisateur.
Rédaction des Dossier d'Architecture Technique, documents de mise en service des composants, intégration des composants techniques d'infrastructure (RHEL 5.3, Java 1.6, Tomcat 6.0.20, CAS 3.4.2.1, Shibboleth 2.2.0, Apache 2.2.17, Openldap 2.4.21) et de webervices spécifiques (Axis et CXF). Réalisation des interfaces d'échange entre le référentiel de sécurité et les applications tierces (Talend 4.0)
-
NORSYS/EIFFAGE
- Expert Technique
2010 - 2010
Dans le cadre de la mise en place d'un outil MDM (ebx.platform), réalisation des interfaces de communication entrante et sortante (DataStage 8 PX, webservice, xml/xslt) et développement spécifique sur les modules workflow et habilitations (Java 1.6)
-
NORSYS/RSI
- Expert Technique
2009 - 2010
Projet Portail d'Authentification, mise en place d'une architecture sécurisée d'authentification en utilisant des composants open source (Apache 2.2.14, Tomcat 5.5.28, Liferay 5.2.3, Java 6, Mysql 5.1.39, OpenLdap 2.3.43, CAS 3.3.4, Shibboleth 2.1.2, Talend 3.3, Suse 10.2)
-
NORSYS
- Ingénieur Etudes et Développement
2004 - 2009
Praticed on J2SE 1.4 through J2SE 6.0 for various clients from the Public Sector and Social Protection domain such as CNAMTS, RSI (ex CANAM), CNSA...
- Analyzed and clarified client needs in order to write requirements/specifications.
- Authored and contributed to procedures pertaining to technical development.
- Coded web services and web applications, mainly DAO and business layers, using dedicated frameworks (Spring,Hibernate)
- Performed functional and technical testing (Junit, Jmock, SoapUI)
- Developed packaging tasks and routines (Ant, Maven)
