Skills & Expertise

Cloud Platforms

AWSAzureGCPMulti-Cloud

Infrastructure

TerraformPackerCloudFormationBicepWindows ServerLinux

DevOps & Security

DockerECSECRGitHub ActionsGitLab

Work Experience

Co-Founder, CIO, Cloud Architect

Sparo Technologies | Lille, France

2018 — Present

• Co-founded Sparo Technologies and developed a platform automating interactive advertising for Twitter and its top advertisers, delivering custom advertising solutions for global brands.

• Designed and operated a robust AWS-based architecture serving millions of users and supporting large-scale advertising workloads, earning multiple industry awards.

• Built and maintained secure, scalable cloud infrastructure with a strong focus on reliability, automation, and operational stability.

• Provides consultancy services to help businesses navigate their cloud transformation journey, with a strong focus on AWS.

Cloud Infrastructure Infrastructure-as-Code Platform Engineering FinOps

Cloud Engineer, Architect

Damart | Roubaix, France

2020 — 2025

• Contributed to large-scale cloud migrations, including the move of more than 500 servers from private cloud to Google Cloud.

• Designed and implemented secure landing zones on Google Cloud, AWS (Well-Architected), and Azure.

• Engaged in cloud strategy definition, including cost analysis, service selection, and DevOps practices (Terraform, CI/CD).

• Delivered Azure Virtual Desktop on a secure and cost-optimized Azure landing zone, replacing legacy Citrix.

• Implemented identity, privileged access, and security controls (Active Directory, Entra ID, BeyondTrust).

• Applied FinOps practices to optimize cloud costs through scheduling, right-sizing, and reservations..

AWS Azure Google Cloud Terraform Docker Packer GitHub GitLab Microsoft Entra Active Directory Intune Azure Virtual Desktop Nerdio Windows Linux PowerShell Bash

System Engineer

Straton IT / Crédit Mutuel Leasing | Lille, France

2012 — 2020

• Ensured the information system fully remained operational while continuously modernizing it to improve security, efficiency, and scalability across servers, identity, security, network, and workstations.

• Upgraded the full server platform (Windows Server, Hyper-V, Exchange), deployed new virtual servers, and redesigned the Active Directory structure to simplify day-to-day operations.

• Strengthened IAM policies and implemented a new web-proxy solution to significantly reduce exposure to online threats.

• Played a key role in enabling remote work by securing and scaling VPN infrastructure, implementing MDT for workstation deployment, and rolling out a new antivirus solution.

• Built automated monitoring around backups, AD audit events, VPN logs, and storage capacity, and developed automation scripts to accelerate user provisioning and server deployment.

• Reworked the backup strategy and authored the organization’s Disaster Recovery Plan, defining procedures, priorities, test scenarios, and recovery objectives.

Hyper-V Windows Server Linux Active Directory PowerShell MS Licensing MDT Backup Exec SQL Server

Certifications

{title} badge

AWS Certified SysOps Administrator – Associate

Amazon Web Services Training and Certification

2025
{title} badge

AWS Certified Solutions Architect – Associate

Amazon Web Services Training and Certification

2023
{title} badge

Microsoft Certified: Azure Administrator Associate

Microsoft

2023
{title} badge

Microsoft Certified: Azure Solutions Architect Expert

Microsoft

2023
{title} badge

HashiCorp Certified: Terraform Associate (003)

HashiCorp

2024

Education

Master of Science in Computer Science

Supinfo | Lille

2014

English as a Second Language

City College of San Francisco | San Francisco

2013

IT Maintenance and Support Technician

CESI | Rouen

2010

Featured Projects

toto

Cloud Strategy & Operating Model

Contributed to the definition of the company’s cloud strategy, supporting executive decision-making through comparative analyses of costs, service availability, internal capabilities, and future scalability requirements. Defined the target cloud operating model and DevOps standards, including Infrastructure as Code with Terraform and CI/CD pipelines using GitHub. Accelerated cloud adoption and improved delivery consistency by establishing standardized, repeatable cloud foundations.

Cloud InfrastructureAWSAzureGoogle CloudFinOps

toto

AWS Landing Zone & Workload Migration

Designed and implemented the AWS landing zone using AWS Organizations, multi-account architecture, IAM, and VPC networking aligned with Well-Architected Framework principles. Established secure network segmentation, private connectivity, centralized logging, and monitoring to strengthen security and operational resilience. Migrated and transformed workloads into managed and cloud-native services. Applied FinOps practices, including cost allocation, rightsizing, and savings plans, resulting in improved cost efficiency and increased platform availability.

AWSAzureGoogle CloudTerraformDockerCI/CD

toto

Design and implement Azure Landing Zone

Designed and deployed a secure, resilient, and cost-optimized Azure Landing Zone from scratch, aligned with Cloud Adoption Framework recommendations. Established enterprise-grade governance through management group hierarchy, subscription design, RBAC model, and naming and tagging standards. Implemented secure networking with hub-and-spoke topology, network segmentation, private endpoints, and controlled egress. Integrated centralized monitoring and logging using Azure Monitor and Log Analytics. All core services were deployed via Infrastructure as Code using Bicep and Terraform, with GitHub Actions enabling controlled CI/CD deployments and versioned infrastructure changes across environments.

AzureBicepTerraformGitHub ActionsCloud Adoption Framework

toto

Citrix to Azure Virtual Desktop Migration

Led the migration from Citrix to Azure Virtual Desktop to modernize the virtual desktop platform and reduce operational costs. Designed and deployed the full AVD architecture, including host pools, session hosts, FSLogix profiles, networking, identity integration, and security controls. Implemented autoscaling and capacity management policies to dynamically align compute resources with user demand, significantly improving cost efficiency while maintaining performance and availability.

AzureAzure Virtual DesktopTerraformGitHub Actions

toto

Nerdio integration

Implemented Nerdio to enhance and operationalize Azure Virtual Desktop. Automated environment configuration and lifecycle management using PowerShell scripts. Utilized intelligent autoscaling to align compute capacity with user demand, delivering measurable cost savings while improving end-user experience through faster login times, improved session stability, and increased platform availability, supported by enhanced observability via built-in workbooks and monitoring dashboards.

NerdioAzureAzure Virtual DesktopPowerShellGitHub

toto

FinOps practices integration

Led the implementation of FinOps practices across Azure and AWS to optimize and control cloud spending. Introduced VM scheduling and shutdown policies, resource right-sizing, intelligent storage tiering, and the adoption of savings plans and reservations. Achieved double-digit cost reductions while improving cost visibility, forecasting accuracy, and financial accountability across teams.

FinOpsAutomationObservabilityOptimizationAWSAzure

toto

Identity & Access Management

Managed multi-domain Active Directory environments with synchronization to Entra ID. Designed Enterprise Applications and implemented OpenID Connect to secure application access and CI/CD pipelines. Enforced Conditional Access policies to strengthen authentication and reduce identity-based attack surfaces. Led the phased decommissioning of legacy domains, significantly reducing security risk, standardizing identities, and improving compliance posture and audit readiness.

Active DirectoryEntra IDPowerShell

toto

Privileged Access Management (BeyondTrust)

Implemented BeyondTrust Privileged Remote Access to secure administrative access to servers. Designed and enforced privileged access policies integrated with Entra ID authentication. Automated provisioning and lifecycle management using Terraform and GitHub Actions, significantly reducing standing privileges, improving audit readiness, and strengthening compliance with internal security controls and external audit requirements.

BeyondTrustIdentity ManagementTerraformGitHub Actions

toto

Backup Strategy & Disaster Recovery Planning

Designed and implemented enterprise backup strategies defining backup frequency, retention, security controls, and recovery objectives (RPO/RTO) across on-premises and cloud environments. Deployed and operated Veeam, AWS Backup, and Azure Recovery Services. Performed regular restore and disaster recovery tests to validate data integrity and consistently meet defined RPOs while improving RTO compliance. Documented standardized restoration procedures, recovery sequencing, and roles and responsibilities to support an effective, auditable Disaster Recovery Plan.

Backup StrategyDisaster Recovery PlanAWS BackupAzure Recovery Service VaultVeeam

toto

Migration private cloud to Google Cloud

Contributed to the design and implementation of a secure Google Cloud landing zone, including project hierarchy, IAM model, shared services, and network segmentation. Led the migration of 250 servers from a legacy VMware infrastructure to Google Cloud, using lift-and-shift to dedicated hosts for VMware-dependent workloads and re-platforming to native compute instances where feasible. Implemented private connectivity, controlled network access, and centralized logging to strengthen security and operational visibility. Reduced infrastructure technical debt, improved maintainability, and increased overall platform reliability while optimizing operating costs.

VMwareGoogle CloudTerraform

Interests

Technologies
Technologies
Photography
Photography
Football
Football