DevSecOps
DevOps-driven optimization and automation of a SIEM for the banking sector
Continuous improvement of a banking SIEM through automation, adaptive maintenance, and a DevOps approach.
Presentation :
From November 2022 to October 2025, I contributed to the maintenance and evolution of a critical banking SOC/SIEM platform as an employee, within a cybersecurity-focused environment. Over nearly three years, I worked as a DevOps and infrastructure engineer, ensuring the platform’s stability and compliance in a highly regulated sector that demanded security, availability, and full traceability.
Technical Environment :
SIEM & SOC: RSA NetWitness, Microsoft Sentinel, MISP
Cloud & Monitoring: Azure, Log Analytics, Grafana, NRPE
Infrastructure & Virtualization: Proxmox, VMware, Dell OME (hardware management), HA/PCA
Automation & DevOps: Ansible, GitLab CI, Docker, Terraform
Languages & Scripting: Python, Bash, JavaScript
Systems: Linux (RHEL, Debian), MongoDB
Compliance & Security: Patch management, CVE handling, regulatory constraints
Challenge :
Ensuring stability and security of a critical SIEM: Level 3 engineering and incident management, log/IOC integrations, version validation and deployment, on-call duties, and disaster recovery/HA planning.
Automating operations: Reduced production deployment times from several hours to minutes through Python scripts, Ansible playbooks, and GitLab CI pipelines.
Architecture & industrialization: Containerization of internal services, physical server lifecycle management (Dell), OS/hardware upgrade campaigns, and PCA/HA architecture for resilience.
Observability & integrations: Custom monitoring and dashboards (Grafana, NRPE), proactive supervision, log and IOC ingestion into Azure Log Analytics and Sentinel, tool benchmarking, and continuous technology watch.
Team support & documentation: Mentored and assisted Level 2 technicians, produced operational documentation, and contributed to knowledge transfer to strengthen day-to-day operations.
Summary :
This mission strengthened my cross-functional expertise in DevOps, infrastructure, and cybersecurity within a demanding banking context. I contributed to the robustness, automation, and continuous improvement of a critical SOC/SIEM platform, while meeting strict regulatory and high-availability requirements inherent to the financial industry.
More Projects
DevSecOps
DevOps-driven optimization and automation of a SIEM for the banking sector
Continuous improvement of a banking SIEM through automation, adaptive maintenance, and a DevOps approach.
Presentation :
From November 2022 to October 2025, I contributed to the maintenance and evolution of a critical banking SOC/SIEM platform as an employee, within a cybersecurity-focused environment. Over nearly three years, I worked as a DevOps and infrastructure engineer, ensuring the platform’s stability and compliance in a highly regulated sector that demanded security, availability, and full traceability.
Technical Environment :
SIEM & SOC: RSA NetWitness, Microsoft Sentinel, MISP
Cloud & Monitoring: Azure, Log Analytics, Grafana, NRPE
Infrastructure & Virtualization: Proxmox, VMware, Dell OME (hardware management), HA/PCA
Automation & DevOps: Ansible, GitLab CI, Docker, Terraform
Languages & Scripting: Python, Bash, JavaScript
Systems: Linux (RHEL, Debian), MongoDB
Compliance & Security: Patch management, CVE handling, regulatory constraints
Challenge :
Ensuring stability and security of a critical SIEM: Level 3 engineering and incident management, log/IOC integrations, version validation and deployment, on-call duties, and disaster recovery/HA planning.
Automating operations: Reduced production deployment times from several hours to minutes through Python scripts, Ansible playbooks, and GitLab CI pipelines.
Architecture & industrialization: Containerization of internal services, physical server lifecycle management (Dell), OS/hardware upgrade campaigns, and PCA/HA architecture for resilience.
Observability & integrations: Custom monitoring and dashboards (Grafana, NRPE), proactive supervision, log and IOC ingestion into Azure Log Analytics and Sentinel, tool benchmarking, and continuous technology watch.
Team support & documentation: Mentored and assisted Level 2 technicians, produced operational documentation, and contributed to knowledge transfer to strengthen day-to-day operations.
Summary :
This mission strengthened my cross-functional expertise in DevOps, infrastructure, and cybersecurity within a demanding banking context. I contributed to the robustness, automation, and continuous improvement of a critical SOC/SIEM platform, while meeting strict regulatory and high-availability requirements inherent to the financial industry.
More Projects
DevSecOps
DevOps-driven optimization and automation of a SIEM for the banking sector
Continuous improvement of a banking SIEM through automation, adaptive maintenance, and a DevOps approach.
Presentation :
From November 2022 to October 2025, I contributed to the maintenance and evolution of a critical banking SOC/SIEM platform as an employee, within a cybersecurity-focused environment. Over nearly three years, I worked as a DevOps and infrastructure engineer, ensuring the platform’s stability and compliance in a highly regulated sector that demanded security, availability, and full traceability.
Technical Environment :
SIEM & SOC: RSA NetWitness, Microsoft Sentinel, MISP
Cloud & Monitoring: Azure, Log Analytics, Grafana, NRPE
Infrastructure & Virtualization: Proxmox, VMware, Dell OME (hardware management), HA/PCA
Automation & DevOps: Ansible, GitLab CI, Docker, Terraform
Languages & Scripting: Python, Bash, JavaScript
Systems: Linux (RHEL, Debian), MongoDB
Compliance & Security: Patch management, CVE handling, regulatory constraints
Challenge :
Ensuring stability and security of a critical SIEM: Level 3 engineering and incident management, log/IOC integrations, version validation and deployment, on-call duties, and disaster recovery/HA planning.
Automating operations: Reduced production deployment times from several hours to minutes through Python scripts, Ansible playbooks, and GitLab CI pipelines.
Architecture & industrialization: Containerization of internal services, physical server lifecycle management (Dell), OS/hardware upgrade campaigns, and PCA/HA architecture for resilience.
Observability & integrations: Custom monitoring and dashboards (Grafana, NRPE), proactive supervision, log and IOC ingestion into Azure Log Analytics and Sentinel, tool benchmarking, and continuous technology watch.
Team support & documentation: Mentored and assisted Level 2 technicians, produced operational documentation, and contributed to knowledge transfer to strengthen day-to-day operations.
Summary :
This mission strengthened my cross-functional expertise in DevOps, infrastructure, and cybersecurity within a demanding banking context. I contributed to the robustness, automation, and continuous improvement of a critical SOC/SIEM platform, while meeting strict regulatory and high-availability requirements inherent to the financial industry.