Med Rafik BEN MANSOUR
Senior SRE/Devops Engineer
78600 Maisons-Laffitte, France
Senior DevOps Engineer, Experience gained on high traffic and critical projects, seeking to share my beliefs on the “you build it, you run it” and “Craftsmanship”.
Work Experience
September 2019 - Present
Senior Devops SRE Engineer — Renault Digital
- Automated implementation of an API gateway based on kong to give access to internal resources (Terraform + Ansible)
- Sophisticated per client monitoring (python, gcp monitoring, grafana)
- platform monitoring (dynatrace)
- Architecture proposal based on the used solution (disk (types/syze), VM ...)
- Set up and automation of a messaging solution (Solace)
- SLO (Service Level Objective) implementation for availability and message discards
- Dynatrace plugins development (to ease SLO implementation) using python
- Slo-generation (adaptation) based on the google slo-generator
- Infrastructure setup using terraform
- Solution deployment using Ansible
- Clients support
Technical environment : GCP, AZURE, Ansible, Terraform, Cloud Functions, app function Python, GitlabCI, Dynatrace, Solace, Bigquery, Datastudio, Cloud monitoring ...
May 2019 - September 2019
Senior DEVOPS Engineer — Groupe Renault
Cloud transformation of Groupe Renault's applications and infrastructure
Technical environment : GCP, Kubernetes, Helm, gitlabci, terraform.
November 2018 - April 2019
Senior DevOps Engineer — HUBSIDE
Setup and maintenance of hubside.fr a platform to create your own website.
Technical environment : GCP, helm, terraform, Kubernetes, gitlabCI, cloudflare.
August 2018 - October 2018
Senior Devops Engineer — Kisio
- Migration of existing puppet deployments to Ansible
- Creation of a kubernetes cluster poc
- Setup on premise kubernetes
- Containerize the CI (jenkins and jenkins slaves) under the kube cluster
- Writing Jenkins pipeline templates for later use
Technical environment : Kubernetes, Ansible, docker, Jenkins, groovy
May 2018 - July 2018
DevOps Engineer consultant Cabestan — Live Marketing Platform
FS to Kafka notifications project :
A small microservices ecosystem was built to push FS events to a Kafka
Queue whenever a change in the file system is made. The chain is built like
below :
- A dockerized SFTP server used by endpoint users
- A dockerized python script using an Inotify wrapper and a Kafka producer which points on the sftp volume to detect changes and push events to Kafka
- A dockerized zookeeper and 2 Kafka brokers
- A dockerized Kafka manager to monitor the Kafka cluster
- A dockerized nginx with auto password generation to expose FS resources
Technical environment : Docker-compose, Rancher, Concourse, micro-services, Linux
Interconnect CRM microservices in DCOS project :
Integrate Traefik into DCOS to ease the interconnection of the CRM
Technical environment :DCOS, Marathon, Traefik, micro-services
Monitoring project :
Initiation of the monitoring stack On Rancher :
- Prometheus data collection
- Grafana data presentation and alerting
- Different exporters for Prometheus (Nginx, Kafka ...)
The stack is deployable by concourse CI using Ansible.
Technical environment : Rancher, Ansible, Concourse, Docker-compose, Prometheus, Grafana .
February 2017 - April 2018
Devops engineer consultant — Le Groupe La Poste
Log concentration project
- Install, configure, create Ansible roles and dockerize log shipper (Filebeat)
- Install, configure and dockerize a publish/subscribe tool :
+ Kafka cluster of 3 nodes
+ Monitored by kafka-manager
+ Orchestrated with zookeeper
- Install, configure and dockerize Elasticsearch cluster of 4 nodes
- install, dockerize, index templates injection in container startup, cluster creation, node jobs re-partition and cluster scaling with a button push
- TuneUP ES :
Number of shards and replicas per index
+ Data groupment in indexes per type
+ Old data rotation using curator for ES
+ Install, configure and dockerize log parsers :
+ Logstash regex, conf, threads repartition.
- Install, configure and dockerize Kibana dashbord
E-boutique project HYBRIS
- Create and maintain Jerkins shell/groovy/pipeline jobs
- Create and maintain Jenkins declarative or multi branch pipeline
- Refactoring of the existing shell scripted jobs into declarative pipeline
- Deploy Eboutique versions on various platforms
- Hightly automatic deployment
- Centralized merged jobs for all branches of the project
- Personalized docker Jenkins slaves for specific jobs
- Automated Unit tests with various reports for application stability under Jenkins
Technical environment : DCOS PAAS, Mesos container scheduler, Ansible, docker, jenkins, gitlab, marathon, kafka, filebeat, logstash, zookeeper, Kibana, artifactory, elasticsearch .
June 2014 - February 2017
Dev/Devops Engineer — STMicroelectronics
- Continuous delivery for Tuleap instances using Jenkins, Ansible .
- bugzilla's installation support L3 and plugin development using Perl, theme modification using template toolkit .
- Tuleap open ALM installation, configuration, support, development using PHP5 in addition to js, css, bootstrap . with the tuleap FOSS community
- Gerrit code review installation, administration, configuration, support.
- Jenkins Continuous integration installation, connection with gerrit using web hooks to trig builds.
- Automation tests for the open ALM Tuleap using the selenium webdriver ruby rspec
- Server polling reduction (install, configure and component development
jails, filters, custom scripts for fail2ban to catch and ban users based on the rest API not on the 3rd layer of the OSI model, which is its natural behaviour. This was done on tuleap using gitolite logs and Gerrit using Sshd logs)
Technical environment: Tuleap, Gerrit, Bugzilla, Automation tests, PHP5, Ruby, Perl,
Linux, Shell, Bootstrap, js, css, RHEL
Education
2011 - 2014
ISSATSO
Computer Science Engineer
Skills
Languages
- Continuous Integration
- Google Cloud Platform
- Kubernetes
- Security
- Craftsmanship
- Docker
- Python
- RESTful WebServices
- Ansible
- Terraform ...
- English — Professional
- French — Native or Bilingual
- German — Intermediate
