CV/Mission d'Expert Blue Prism freelance

Exemple de missions de Cao Truong,
Expert Blue Prism habitant les Yvelines (78)

• Cloud Cyber Security & DevSecOps Leader – full time

  ENGIE GEMS
  Jan 2024 - aujourd'hui

  § Wrote security rules, security policy.
  § Defined security process (RACI) and security KPI.
  § Defined security sheet for cloud resources.
  § Developed and provided DevSecOps toolkit and services based on security policy and tools such as
  Prisma Cloud and ETF4Security.
  § Conducted demos to present the DevSecOps toolkit and services to various delivery teams within GEMS.
  § Supported various delivery teams in onboarding the DevSecOps toolkit into the CI/CD pipelines (Azure
  DevOps, GitHub) and remediating identified security issues.

• Co-founder and technical director

  DeepK2
  Jan 2023 - aujourd'hui

  § Designed and implemented AWS landing zone.
  § Studied, designed, and automated an AI and ML solution in AWS (SageMaker, Textract, Lambda). This
  solution classifies documents into different categories and extracts their metadata into a database for later
  control.
  § Studied, designed, and automated the deployment of the AI user interface in AWS.

• Cloud, DevSecOps, GitOps Architect & Technical Leader - full time

  Amadeus
  Jan 2023 - Jan 2024

  § Audited and consolidated the current high-level design (HLD) and low-level design (LLD) of Cytric Travel's
  on-premise infrastructure. The goal is to assess and identify the initial components to be migrated to Azure
  Cloud and OpenShift hosted in Azure.
  § Audited, redesigned, and automated the deployment of Cytric's test environment into the cloud Azure and
  OpenShift.

  § Employed a GitOps and DevSecOps approach with tools such as ArgoCD, GitHub, Helm, Terragrunt, Terraform, Packer, Ansible, and JFrog Artifactory

• VMWare, Cloud & DevSecOps Architect, Technical Leader – full time

  Thales Global Services
  Jan 2022 - Jan 2023

  & DevSecOps Architect, Technical Leader – full time
  § Designed and developed the Factory Deployment Automation (FDA) product.
  § Conducted demos to present the product to various internal audiences within the group.
  § Contributed to the creation of the Infrastructure Solution Design (ISD) for different Factories.
  § A factory is an engineering workbench delivered as a service. For example, a DevOps factory includes all
  tools for DevOps such as GitLab, Jira, WIKI, SonarQube, JFrog, etc.
  § The FDA product provides:
  1. Guidelines for packaging a factory based on best practices using Terraform and Ansible for IaaS,
  and Helm for KaaS.
  2. Hosting specifications for public clouds (Azure, AWS) and private clouds (vRA 8 and Tanzu).
  3. GitLab CI libraries to fully automate the deployment of a factory (infrastructure, middleware, and
  applications) into various public and private clouds, and manage the factory's lifecycle (upgrade,
  rollback, and post-deployment testing).

• AWS & DevSecOps Expert/Architect - part time

  CANON
  Jan 2022 - aujourd'hui

  Duties:
  § Provided advice, expertise, and solutions on Network, Security, AWS, and DevSecOps for various
  projects.
  § Implemented a DevOps platform, including GitLab Server, GitLab Runners, and SonarQube.
  § Established a Git strategy using Gitflow and trunk-based development.
  § Set up CI/CD pipelines via GitLab to automate the deployment and testing of Java applications.
  § Designed the Hub & Spoke architecture in AWS.
  § Contributed to the design of various applications on AWS.
  Projects:
  § NEO:
  Study, design, develop, and deploy an event-driven solution in AWS to transmit data from the
  LOREAL platform to the ThereFore solution.

  Technologies: Kafka, SQS, SES, SNS, Lambda Function, Secrets Manager, EventBridge, CloudWatch, DynamoDB, Python, etc. o The solution is deployed automatically with IaC (CloudFormation and AWS SAM) via GitLab CI.

• AWS & DevOps Expert – part time

  Essilor International
  Jan 2022 - Jan 2022

  § Conducted analysis, audit, PoC, and migration of a large Team Foundation Server 2019 collection hosted
  in AWS to Azure DevOps.
  § The collection included approximately thirty projects with multiple pipelines, releases, repositories, and
  artifacts.
  § Refactored and evolved pipelines and releases post-migration.

• Cloud Project Manager / Cloud (Azure, AWS) & DevOps Expert – full time

  ENGIE IT
  2017 - 2022

  Duties
  § Audit applications hosted on-premise and define an action plan to manage the deprecation of their
  infrastructure (Windows Server 2008, 2010, expensive licenses for Redhat Server, Oracle and
  WebLogic,…), either by retaining them on-premise or migrating them to Azure Cloud.
  § Implemented security governance in Azure.
  § Responded to customer needs regarding web development and cloud hosting.
  § Wrote business proposals.
  § Conducted analysis, design, costing, implementation, administration, and maintenance of infrastructure
  and middleware in the cloud.
  § Implemented CI/CD pipelines using Jenkins, Azure DevOps, and GitLab.
  § Reviewed, defined, and applied best practices regarding security and FinOps.
  Validated and adjusted web application designs to comply with security policies.
  § Conducted source code audits of web applications before approving deployment.
  § Managed projects using Scrum, Agile, and DevOps methodologies.
  § Led and managed teams
  Projects
  § Migrated the Foundation App to Azure Kubernetes Services (AKS): a multi-tier web application for
  Storengy to manage and monitor gas contracts and gas technical distribution sites.
  - Audited the current IaaS and PaaS infrastructure.
  - Wrote commercial proposals.
  - Analyzed, redesigned, and migrated existing applications to AKS.
  - Implemented CI/CD pipelines using GitLab.
  - Updated the infrastructure solution design.
  § Shiny Proxy: Hosted the Shiny Proxy landing page and Shiny Apps R on Azure Kubernetes Service
  (AKS). The Shiny app landing page serves as the end-user web interface, allowing Shiny App R to perform
  calculations and report on ENGIE GREEN’s wind turbine data.
  - Analyzed and designed the solution.
  - Validated infrastructure solution privacy.
  - Wrote the infrastructure solution design.
  - Deployed the infrastructure using Terraform.
  § GitLab Migration:
  - Migrated GitLab from Azure to AWS using Infrastructure as Code with Terraform and Ansible.
  § ********: A two-tier web application (JBoss, Apache, Oracle server) to manage Eleng's and its subsidiary
  Fosmax-LNG contracts.
  - Audited the current on-premises infrastructure.
  - Wrote the commercial proposal.
  - Analyzed, redesigned, and migrated the on-premises application to Azure.
  - Migrated the Oracle server to an Azure PostgreSQL database.
  - Implemented various pipelines in Azure DevOps for infrastructure construction, middleware
  installation, configuration, and application deployment.
  § BTM: A two-tier web application (WebLogic, Apache, Oracle server) to manage ELENGY LNG terminals.
  - Audited the current on-premises infrastructure.
  - Wrote the commercial proposal.
  - Analyzed, redesigned, and migrated the on-premises application to Azure cloud.
  - Implemented various pipelines in Azure DevOps for infrastructure construction, middleware
  installation, configuration, and application deployment.
  § Feeder Market: A multi-tier web and calculation microservice application in Azure cloud.
  - Conducted an infrastructure security audit.
  - Applied security best practices, including Azure foundation, Azure application gateway (WAF),
  private endpoint, and firewall.
  - Automated the deployment of the solution using Terraform and Azure DevOps.
  - Defined and executed DRP tests in different regions (West Europe and North Europe).
  § Performe 2.0: A three-tier web application (web, API, and database) to record and process data from
  ENGIE group power plants, used for reporting by BI systems in SAP.
  - Wrote the commercial proposal.
  - Analyzed, designed, and participated in the implementation of a full PaaS solution in Azure cloud.
  § Learn Heat: A PHP and Python web application for the calculation and simulation of ENGIE Solutions
  data.
  - Wrote the commercial proposal.
  - Analyzed, designed, and migrated the application from AWS to Azure cloud.
  § AMPERE: An ASP.NET web application with SSRS for managing ENGIE GREEN projects.
  - Wrote the commercial proposal.
  Analyzed, designed, and migrated the application from the public network zone to the private
  network zone in Azure cloud.
  - Wrote technical documentation and ISP/ISD.
  § CARL: An ENGIE GREEN web/mobile platform dedicated to the operation and maintenance of wind and
  solar power plants.
  - Wrote the commercial proposal.
  - Analyzed, designed, and migrated the platform to Azure cloud.
  - Wrote ISP/ISD and technical documentation.
  - Trained the RUN team.
  § Foundation: A platform for centralization, optimization, and supervision of data from all of Storengy's other
  systems (management of alerts, failures, appointments, flows, and excess capacity).
  - Wrote the commercial proposal.
  - Analyzed, designed, and migrated the platform to HA hosting in Azure cloud.
  - Wrote ISP/ISD.
  - Implemented CI/CD pipelines and opened network flows.
  - Trained Cloud & DevOps engineers for RUN activities.
  § ********: A web application to manage the links between Elengy's LNG terminals and contracts.
  - Wrote the commercial proposal.
  - Analyzed, designed, and implemented the application in HA hosting in Azure cloud.
  - Participated in writing ISP/ISD.
  - Defined the DRP plan.
  - Automated infrastructure with Terraform.
  - Installed and configured middleware.
  - Implemented the CI/CD chain in Azure DevOps for continuous deployment.
  - Wrote technical documentation and opened network connectivity flows.
  - Train...

• aujourd'hui

  DJIN:
  o Design and deploy an AI and event-driven solution in AWS to receive various types of documents
  via an SFTP solution, then classify and extract data from the documents for later analysis.

  Technologies: SFTP, EC2, Lambda Function, SQS, Secrets Manager, EventBridge, S3, SageMaker, Textract, DynamoDB, Python, Java, etc.