Fabrice is a cloud architect, DevOps engineer, and software developer with over 20 years of experience. He worked for clients such as Armedia, Topps, and MyDocSafe, and specializes in designing secure, highly available, scalable, and cost-effective solutions on AWS and Kubernetes. Fabrice also assumed managerial positions in the past as a team leader and release manager. He is very keen on automation, IaC, and CI/CD, and he can code in Python.
Deployed and maintained various environments for a tenant of our platform solution, which is based on Amazon EKS, Amazon RDS, Terraform, Hashicorp Vault, GitLab CI, Helm, Prometheus and Grafana.
Investigated issues experienced by the tenant and resolve them as appropriate.
Improved the platform solution itself by investigating and fixing bugs, implementing new features, and updating the documentation.
Modernized the architecture of ArkCase, a case management system. The architecture was monolithic, with ArkCase and half a dozen dependent services running on the same server.
Moved to a modern architecture based on Kubernetes, microservices, and Infrastructure-as-Code. Additionally, helped the company build an AWS Marketplace offering for ArkCase.
Dockerized various services and wrote Helm charts for various services.
Secured the Kubernetes cluster using network policies and RBAC and installed and configured Istio and observability tools. Built an internal PKI using CloudFormation.
Designed, implemented, and tested a back-end microservice in Python 3.6 running on Elastic Beanstalk in AWS.
Implemented new services based on Flask and SQLAlchemy as part of a microservice architecture consisting of back-ends to mobile applications allowing users to trade virtual cards.
Wrote extensive unit tests using Pytest for a number of microservices.
Worked on the next generation of surveillance camera running on ARM9 with embedded Linux.
Designed and developed the subsystems managing the date/time, mass storage, and multiplexing of the audio (AAC) and video (H.264) into a Flash file (FLV).
Implemented automated unit-testing for the above subsystems.
Refactored Terraform scripts to minimize the update anxiety.
Advised on the best network architecture involving a Transit Gateway, multiple VPNs, and multiple AWS accounts for a complex flow of IoT data with the right balance between simplicity and efficiency, also being future-proof.
Set up AWS Client VPN using Terraform with mutual authentication.
Amazon Web Services (AWS)
TerraformVPNAWS Transit Gateway
A shopping-site startup in the Middle East
DevOps Engineer
Present (2025 years)
, Remote
Designed and implemented workload architecture on AWS suitable for the startup requirements based on Docker and ECS.
Designed and implemented a complex system to generate and manage SSL certificates for this multi-tenant application.
Automated workload provisioning using infrastructure-as-code (CloudFormation) such that white labeling would be possible.
Migrated ThinkAlpha's services from on-premise, physical servers to AWS Cloud, improving their operational efficiency and increasing resiliency.
Employed Terraform as Infrastructure-as-Code tool to construct environments and digitize each service sequentially; used Fargate ECS clusters to run Node-based applications and CloudFront for managing static websites on S3 buckets.
Implemented Continuous Deployment via CircleCI, updating scripts to perform server transition, and generated service templates to facilitate the handover of the infrastructure to ThinkAlpha.
SIBOTest shifted from a monolithic structure to a robust and scalable Docker microservices architecture.
Implemented load balancers, separated production and staging environments, moved databases to a separate subnet, Dockerized application, and set up a Jenkins-based CI system for automatic Docker image builds.
Ensured security and automation using Ansible scripts for new servers provisioning and docker image deployment. This led to a reliable multitier architecture with no reported downtime.
MyDocSafe required expert help to design a custom monitoring system and resolve instability issues. They also needed to design and implement a highly available and scalable architecture on AWS.
Work included writing Ansible roles and playbook for installing CloudWatch Agent on EC2 instances, tweaking Apache configuration to prevent crashing under heavy load, and employing Let's Encrypt SSL certificates. AWS SNS and CloudWatch were configured for alerts. The ELK stack was installed and configured to monitor Apache logs.
The project also required the design of a scalable architecture to reliably run complex workloads and the migration of the existing system to this new architecture, which was eventually employed in production.
Played an integral role in a systems team, releasing set-top-box software to a major EU broadcaster and was responsible for maintaining software tools for continuous integration process.
Established the Coverity static analysis and enabled nightly automation using Jenkins, configured Nagios, and set up an NRPE with custom Git checks.
Worked in a Scrum process with a globally distributed team on a codebase of over 20 million lines, automating tasks with Cron/Jenkins jobs using Bash/Python and utilizing numerous technologies like Linux, CentOS, and more.
Armedia required AWS and DevOps expertise for modernizing the ArkCase architecture, transitioning from a single server to a Kubernetes and microservice-based architecture with Infrastructure as Code (IaC)
Tasks included dockerizing services, securing Kubernetes cluster, configuring Istio and observability tools, writing CloudFormation templates, Lambda functions in Python, and modifying Ansible roles
Another task was to build an internal PKI on AWS with serverless services for automatic renewal of certificates upon expiration
Education
Master of Science Degree in Computer Sciences Applied to Earth Sciences