Fabrice T.

Fabrice T.

London, United Kingdom
Hire Fabrice T. Hire Fabrice T. Hire Fabrice T.

About Me

Fabrice is a cloud architect, DevOps engineer, and software developer with over 20 years of experience. He worked for clients such as Armedia, Topps, and MyDocSafe, and specializes in designing secure, highly available, scalable, and cost-effective solutions on AWS and Kubernetes. Fabrice also assumed managerial positions in the past as a team leader and release manager. He is very keen on automation, IaC, and CI/CD, and he can code in Python.

Backend

Database

DevOps

Docker Terraform Amazon Web Services (AWS) AWS CloudFormation Amazon CloudWatch AWS CLI AWS IAM Kubernetes

Workflow

Other

Work history

HMRC
HMRC
DevOps Engineer
2023 - 2024 (1 year)
Remote
  • Deployed and maintained various environments for a tenant of our platform solution, which is based on Amazon EKS, Amazon RDS, Terraform, Hashicorp Vault, GitLab CI, Helm, Prometheus and Grafana.

  • Investigated issues experienced by the tenant and resolve them as appropriate.

  • Improved the platform solution itself by investigating and fixing bugs, implementing new features, and updating the documentation.

Home Office
DevOps Engineer
2022 - 2023 (1 year)
, Remote
  • Took over a major security system with most of it running on Kubernetes.

  • Imported code repositories into GitLab and configured CI/CD pipeline on them.

  • Enabled automatic exportation of secrets stored in AWS Secrets Manager into Kubernetes secrets.

  • Built various Docker images and automated such builds as part of CI/CD pipelines. Deployed various apps into Kubernetes.

KubernetesAmazon Web Services (AWS) GitlabDrone CI
HMRC
DevOps Engineer
2021 - 2022 (1 year)
, Remote
  • Collaborated with the team, building architectures and making them available to other teams.

  • Took charge of short-term tasks related to designing, implementing, and maintaining cloud architectures for various products used within HMRC.

  • Involved with tasks for on-premise infrastructure as well.

Amazon Web Services (AWS) VaultTerraformAnsibleGitlab
Armedia LLC
DevOps Architect
2020 - 2021 (1 year)
, Remote
  • Modernized the architecture of ArkCase, a case management system. The architecture was monolithic, with ArkCase and half a dozen dependent services running on the same server.

  • Moved to a modern architecture based on Kubernetes, microservices, and Infrastructure-as-Code. Additionally, helped the company build an AWS Marketplace offering for ArkCase.

  • Dockerized various services and wrote Helm charts for various services.

  • Secured the Kubernetes cluster using network policies and RBAC and installed and configured Istio and observability tools. Built an internal PKI using CloudFormation.

SIBOTest
DevOps Engineer
2019 - 2020 (1 year)
, Remote
  • Performed various system administration tasks, especially related to SSL certificates.

  • Dockerized the Ruby-on-Rails web application in order to facilitate deployments.

  • Designed and implemented a MySQL NDB cluster in order to increase the database resiliency.

  • Designed a highly available, microservice-based cloud architecture for the SIBOTest website.

DockerRuby on Rails (RoR) MySQLDigitalOcean
Topps Digital
Software Developer
2018 - 2020 (2 years)
, Remote
  • Designed, implemented, and tested a back-end microservice in Python 3.6 running on Elastic Beanstalk in AWS.

  • Implemented new services based on Flask and SQLAlchemy as part of a microservice architecture consisting of back-ends to mobile applications allowing users to trade virtual cards.

  • Wrote extensive unit tests using Pytest for a number of microservices.

Blocknet
Blockchain Specialist
2017 - 2018 (1 year)
, Remote
  • Inspected C++ code for the BlocknetDX wallet and advised on improvements.

  • Designed a protocol for the atomic exchange of bitcoins and ethers, including code for smart contracts.

  • Designed a protocol for the atomic exchange of Ethereum colored coins following the ERC20 standard.

  • Advised on the Ethereum side of things for the Blocknet whitepaper: https://blocknet.co/whitepaper/Blocknet_Whitepaper.pdf.

Cisco
DevOps Engineer
2016 - 2017 (1 year)
, Remote
  • Worked as part of the system team—releasing STB software to a major EU broadcaster.

  • Helped design and implement a black box STB test framework written in Python.

  • Set up and maintained a variety of software tools to enable the smooth running of the continuous integration and development/testing work.

  • Set up Coverity static analysis and nightly automation using Jenkins.

  • Set up Black Duck open source code matching.

  • Configured Nagios and set up of NRPE with custom Git checks.

  • Implemented various Cron/Jenkins jobs in Bash/Python to automate tasks.

  • Installed and configured a DHCP server.

  • Worked within a Scrum process with six weeks iterations, and the team was spread over three countries.

  • Worked with a code base with 20 million+ lines of code.

  • Detected and responded to system problems.

V-Nova
Release Manager
2015 - 2016 (1 year)
, Remote
  • Worked on the Perseus-based contribution encoder.

  • Acted as the link (release manager) between the development and the product teams.

  • Translated high-level business requirements into technical requirements.

  • Established timelines and work breakdown structures in collaboration with the development team.

  • Reported on the progress on a weekly basis and detected and reported impeding difficulties.

  • Devised an Agile process with weekly iterations (based on Scrum).

  • Changed the supplier of video cards to a cheaper product with much better support.

  • Coded new features; including debugging and fixing of bugs and also integrated a TS muxer.

Kernel BoostStandard Template Library (STL) ScrumAgile H.264GitLinuxC++11 C++
Ovation Systems Ltd
Senior Software Engineer
2013 - 2015 (2 years)
, Remote
  • Worked on the next generation of surveillance camera running on ARM9 with embedded Linux.

  • Designed and developed the subsystems managing the date/time, mass storage, and multiplexing of the audio (AAC) and video (H.264) into a Flash file (FLV).

  • Implemented automated unit-testing for the above subsystems.

SQLiteH.264GitEmbedded Linux ARMC
e2v
Lead Software Engineer
2011 - 2013 (2 years)
, Remote
  • Worked on a modulator for a radiotherapy cancer treatment machine.

  • Worked with a team of 15 people (including five who were under my direct management).

  • Developed software that controls the modulator, from requirements to specifications, design, implementation, unit tests, and integration tests.

  • Made all the critical decisions: choosing the programming language (C++), software compilation suite, coding standards, and RTOS vs bare metal.

  • Defined C++ coding guidelines adapted to this high-integrity software.

  • Designed the software architecture, including the structure of a 1 kHz control loop with hard real-time requirements.

  • Verified the progress against time estimates and regularly reported to the project manager.

  • Demonstrated successfully a proof of concept.

DOORSASM Embedded CRS-232 Serial Peripheral Interface (SPI) I2CXMLTCP/IPUMLRedmineSubversion (SVN) Embedded Linux BeagleBone Black DSP Software ArchitectureProject ManagementC++
Megger
Software Engineer
2009 - 2010 (1 year)
, Remote
  • Worked on the next generation of a portable appliance tester running on Integrity.

  • Designed and developed some GUI screens and widgets.

  • Designed and developed C++ classes to access SQLite databases; also designed the database schemas.

  • Proposed an agile iterative software development process; it was partially adopted.

  • Developed a USB printer class driver.

  • Developed a Win32 PC application allowing the user to upgrade the PAT SW.

  • Developed various device drivers: SPI driver, RTC driver, keyboard driver, and more.

  • Made some modifications in U-Boot.

  • Developed a .NET PC application to automate the programming of boards.

Amino
Software Engineer
2007 - 2009 (2 years)
, Remote

Performed various jobs on the next generation of IPTV STB, including a CA integration and MPEG Demux driver.

Linux Kernel Embedded Linux IPTVC
Imagination Technologies
Software Engineer
2006 - 2007 (1 year)
, Remote
  • Integrated GStreamer to the next generation of digital radios able to play internet audio streams.

  • Developed the following: an RTSP/RTP/RDT stack, ASF Demux, Real Media Demux, and a HTTP streaming client.

Ezurio
Software Engineer
2005 - 2006 (1 year)
, Remote
  • Developed various software components for a tiny WiFi board.

  • Delivered successfully an SW—allowing the demonstration of the smallest WiFi board on the market to a key trade exhibition.

WiFi TCP/IPC
Sagem
Networking Software Engineer
2004 - 2005 (1 year)
, Remote
  • Wrote for an ADSL modem a Linux Bluetooth API calling VxWorks.

  • Developed an ethernet bridge making use of the network processor.

MIPSTCP/IPEthernet VxWorksLinux Kernel Embedded Linux C
Philips CE
Software Engineer
2003 - 2004 (1 year)
, Remote
  • Worked on the next generation of high-end Philips Digital TV.

  • Integrated the VxWorks USB stack.

  • Developed various plug-ins.

Philips MP4NET
Software Engineer
2001 - 2002 (1 year)
, Remote
  • Developed a network tool to replicate a distant video session.

  • Maintained a video streaming server.

Alcatel Optronics
Software Engineer
2000 - 2001 (1 year)
, Remote

Developed software that was embedded on transmitting laser chips to control the laser's wavelength.

Oscilloscopes & Tester Equipment MPLAB C
Sagem
Software Engineer
1998 - 2000 (2 years)
, Remote

Developed various software modules embedded on military vehicles and planes.

SolarisCVSRPMMicrosoft SQL Server LinuxC
Hatchdata
Cloud Architect
Present (2025 years)
, Remote
  • Refactored Terraform scripts to minimize the update anxiety.

  • Advised on the best network architecture involving a Transit Gateway, multiple VPNs, and multiple AWS accounts for a complex flow of IoT data with the right balance between simplicity and efficiency, also being future-proof.

  • Set up AWS Client VPN using Terraform with mutual authentication.

Amazon Web Services (AWS) TerraformVPNAWS Transit Gateway
A shopping-site startup in the Middle East
DevOps Engineer
Present (2025 years)
, Remote
  • Designed and implemented workload architecture on AWS suitable for the startup requirements based on Docker and ECS.

  • Designed and implemented a complex system to generate and manage SSL certificates for this multi-tenant application.

  • Automated workload provisioning using infrastructure-as-code (CloudFormation) such that white labeling would be possible.

Amazon Web Services (AWS) Let's EncryptSSLAmazon Elastic Container Service (Amazon ECS) DockerAWS CloudFormation
G4S
Senior Software Engineer
Present (2025 years)
, Remote

Added new features to an access control system written in C++11 and Python 3.

DBus DockerGitC++11 C++Python 3 PythonUbuntuLinux
Samsung
Senior Software Engineer
Present (2025 years)
, Remote

Investigated and analyzed the performance of the OpenGL stack for WebKit.

WebKit OpenGL
AB Tools
Software Engineer
Present (2025 years)
, Remote

Made modifications to the Icecast MP3 server to seamlessly insert audio ads for internet radio.

AAC HTTPIcecast C
NXP Semiconductors
Software Engineer
Present (2025 years)
, Remote

Upgraded some software drivers from an old STB to a new one running on Linux.

JTAGMIPSLinux Kernel C
NDS
Software Engineer
Present (2025 years)
, Remote

Developed some test tools to test STB drivers that wwere developed by STB manufacturers for the US digital TV market.

Reuters Financial Software
Software Engineer
Present (2025 years)
, Remote

Maintained a server providing access services to an Oracle database.

CVSDesign PatternsStandard Template Library (STL) SolarisOracleTIBCO Rendezvous C++
MBDA
Validation Manager
Present (2025 years)
, Remote

Managed the validation of a test bench of a missile launching system.

Showcase

Migrating Services from Physical Servers to AWS
  • Migrated ThinkAlpha's services from on-premise, physical servers to AWS Cloud, improving their operational efficiency and increasing resiliency.

  • Employed Terraform as Infrastructure-as-Code tool to construct environments and digitize each service sequentially; used Fargate ECS clusters to run Node-based applications and CloudFront for managing static websites on S3 buckets.

  • Implemented Continuous Deployment via CircleCI, updating scripts to perform server transition, and generated service templates to facilitate the handover of the infrastructure to ThinkAlpha.

Modernizing a Web Infrastructure
  • SIBOTest shifted from a monolithic structure to a robust and scalable Docker microservices architecture.

  • Implemented load balancers, separated production and staging environments, moved databases to a separate subnet, Dockerized application, and set up a Jenkins-based CI system for automatic Docker image builds.

  • Ensured security and automation using Ansible scripts for new servers provisioning and docker image deployment. This led to a reliable multitier architecture with no reported downtime.

Design a Highly Available and Scalable Architecture on AWS
  • MyDocSafe required expert help to design a custom monitoring system and resolve instability issues. They also needed to design and implement a highly available and scalable architecture on AWS.

  • Work included writing Ansible roles and playbook for installing CloudWatch Agent on EC2 instances, tweaking Apache configuration to prevent crashing under heavy load, and employing Let's Encrypt SSL certificates. AWS SNS and CloudWatch were configured for alerts. The ELK stack was installed and configured to monitor Apache logs.

  • The project also required the design of a scalable architecture to reliably run complex workloads and the migration of the existing system to this new architecture, which was eventually employed in production.

Set up of CI/CD Pipelines for a Startup
  • PSD2Enabler needed CI/CD pipelines setup on GitLab for multiple projects.

  • GitLab pipelines were established for building and deploying apps to AWS using Terraform and Ansible.

  • GitLab pipelines were also created for deploying apps to Kubernetes clusters on Google Cloud Platform and AWS EKS.

Cisco | DevOps Engineering and Python Development
  • Played an integral role in a systems team, releasing set-top-box software to a major EU broadcaster and was responsible for maintaining software tools for continuous integration process.

  • Established the Coverity static analysis and enabled nightly automation using Jenkins, configured Nagios, and set up an NRPE with custom Git checks.

  • Worked in a Scrum process with a globally distributed team on a codebase of over 20 million lines, automating tasks with Cron/Jenkins jobs using Bash/Python and utilizing numerous technologies like Linux, CentOS, and more.

DevOps Architect
  • Armedia required AWS and DevOps expertise for modernizing the ArkCase architecture, transitioning from a single server to a Kubernetes and microservice-based architecture with Infrastructure as Code (IaC)

  • Tasks included dockerizing services, securing Kubernetes cluster, configuring Istio and observability tools, writing CloudFormation templates, Lambda functions in Python, and modifying Ansible roles

  • Another task was to build an internal PKI on AWS with serverless services for automatic renewal of certificates upon expiration

Education

Education
Master of Science Degree in Computer Sciences Applied to Earth Sciences
Pierre and Marie Curie University
1995 - 1998 (3 years)