Nicolas Couture - Linux, BASH, Python, JS, TS, Cloud, DevOps, SRE, Network, Security IAM/PAM

• Google Cloud Platform
• Azure
• AWS

• CI/CD pipelines
• Infrastructure automation
• BASH, Python, HCL
• Docker, Podman, Containers
• Terraform, Infrastructure as Code (IaC)
• ARM, Bicep, Vault, Packer
• PowerShell, YAML, ELisp

• Identity and Access Management (IAM)
• Privileged Access Management (PAM)
• Secret Management

• Linux Kernel
• Packaging (DEBs, RPMs)
• Managing Standard Internet Services
• Networking
• Database Administration
• Debian, RHEL
• Security / Hardening
• Configuration Automation
• Deployment Automation
• Containerization
  • Docker, Podman
  • Compose, Swarm, Kubernetes
• Orchestration

• Proactive approach to system health and performance

• Offering expert services in building resilient teams
• Implementing automation tools for small and medium businesses
• Develop workshops on my latest deliveries
• Increase team expertise by developing and presenting workshops
• Serious about performance and strong team player
• Building, optimizing, and troubleshooting:

Technologies: Software development, Terraform IaaC, BASH, Github Actions CI/CD pipelines, Google Cloud, Architecting Asynchrounous Event-Driven Workflows, IAM, PAM, WIF, ABAC, RBAC, Secret Management, OAuth2 Client and Provider, OpenID Connect, MFA, Certificate Management, Single Sign-On (SSO), Identity Federation, and Privileged Access Management

• Designed and implemented robust hybrid cloud solutions for Ubisoft's game development environment, leveraging Azure expertise
• Automated provisioning, configuration management, and application deployments using Azure DevOps pipelines across a hybrid multi-cloud Dotnet microservices infrastructure
• Managed infrastructure as code (IaC) with Bicep and Terraform, ensuring consistent, scalable deployments across on-premises, Azure, Google Cloud, and AWS environments
• Collaborated with senior development managers to integrate Azure, GCP, AWS, and Alibaba Cloud services, enhancing security and performance of game deployments
• Configured MultiClusterIngress for GKE Services with Anthos Service Mesh, deploying both external and internal Google Load Balancers (GCLB/ILB) for efficient traffic management
• Deployed Locust for comprehensive load testing across regions, simulating millions of user sessions to ensure game readiness, facilitated by ASM ingress gateways
• Improved load-testing deployment processes, cutting deployment time by >50% and reducing errors through optimized CI/CD pipelines, utilizing CI/CD container automation in Gitlab, Hashicorp Vault, Artifact registries, etc.

Technologies: Linux, DevOps, Google Cloud, Google Kubernetes Engine, Python, Locust, E2E/End-to-End Load Tests, Advanced GitLab CI/CD pipelines, HashiCorp Vault, Writing Dockerfiles, Automating builds, Advanced CI/CD pipelines, GitLab, Secret Management, Alibaba Cloud, IAM, PAM, Azure DevOps, ARM Templates, Bicep, Anthos Service Mesh, Terraform, AWS, Hybrid Cloud Solutions, MCI, Google Load Balancers (GCLB/ILB)

• Joined Invue at a strategic time when the Software Engineering department was focused on converting a Node.js monolith into microservices
• Migrated the monolith's legacy infrastructure from AWS to Google Cloud, transitioning from inefficient, costly Compute Engine instances to Kubernetes
• Facilitated the migration of the microservice architecture running on Kubernetes to Microsoft Azure Cloud
• Architected a streamlined microservice infrastructure by automating the build and containerization of existing microservices
• Developed an MVP of the cluster's infrastructure using Docker Compose, which allowed developers to run the entire setup locally in a consistent and reproducible manner, thereby eliminating the need for shared, costly cloud-based development environments
• Enhanced developer proficiency in DevOps practices as measured by a 100% increase in contributions to CI/CD pipelines skill use by developers after conducting workshops and training sessions
• Implemented CI/CD pipeline processes to improve code quality, security, and automated tests
• Modernized their DevOps practices by adopting sound CI/CD pipelines effectively replacing Ansible with Terraform and brought Terraform Cloud into the enterprise, as well as Hashicorp Vault, leading to significant reductions in manual interventions and enhanced consistency in provisioning
• Elevated security as measured by improved secret management protocols and cloud IAM processes, enhancing the overall security posture

Technologies: JavaScript, TypeScript, Advanced Build Processes, Security, Secret Management, Identity and Access Management, Docker, Github, Github Actions, Kubernetes, Google Kubernetes Service, Azure Kubernetes Service, Amazon Kubernetes Services, Spinnaker, Automation, BASH, Terraform, Terraform Cloud, Hashicorp Vault, Linux, DevOps

• Collaborated within a multidisciplinary team to enhance security for Desjardins' Big Data solutions in Google Cloud Platform, Google Workspace, and Google Marketing solutions (Analytics, AdWords, Search Console, Maps)
• Led a large-scale account and access management migration project, synchronizing Desjardins' user identities for Single Sign-On (SSO) and transitioning access from user-owned to corporate accounts, ensuring uninterrupted service for thousands of users
• Developed a governance strategy for unmanaged accounts, eliminating consumer-type accounts with access to corporate resources and ensuring all corporate identities were securely managed
• Automated data mining tasks for user data migration using advanced LDAP queries with Active Directory, enhancing efficiency and accuracy
• Identified and disabled consumer-type accounts, securing Google Cloud resources owned by the firm
• Created proof of concepts to evaluate Big Data solutions for marketing and analytics teams using Google Cloud technologies

Technologies: Google Cloud Identity, Active Directory, LDAP, SAML, Terraform, Vault, Linux, GitLab, BigQuery, BASH, Python, Cloud Operations, Apache Beam, Apache Airflow

• Ensured e-commerce infrastructure availability around the clock
• Maintained infrastructure-as-code and performed manual system administration on legacy infrastructures
• Designed a multi-cloud solution used to facilitate the migration of the platform to a different cloud vendor
• Centralized application logging and implemented log-based metrics used to create dashboards and visualize data
• Implemented system monitoring and service health checks
• Increased e-commerce average page load speed by >30%

Technologies: Terraform, Linux, Gitlab, Docker, Docker Compose, Kubernetes, AWS, GCP, Apache, NGINX, Python, PHP, BASH, Django, Redis, Github Actions, Slack API

• Deployed and configured multi-regional Kubernetes clusters with Istio service mesh using Google Kubernetes Engine, and Helm
• Implemented multi-regional, Spinnaker k8s clusters for continuous delivery and canary deployments with automated pipelines triggered by container image tags

Technologies: Google Kubernetes Engine (GKE), Istio Service Mesh, Helm, Spinnaker, NGINX Load Balancer, Istio RouteRules, Private Container Registry, Kubernetes, Continuous Delivery, Canary Deployments, Blue/Green Deployments, Automated Pipelines

• Founded a next-generation business assistant as a service business—https://www.kisscalls.com—bridging the gap between online to offline conversions

Technologies: Python, Django, REST framework, OAuth2, Dialogflow, Google Assistant, App Engine, Polymer, Material Design, WebRTC, Firebase Hosting, Firebase Database, Cloud Functions, Express.js, Twilio, GCP, Github, Google Data Studio, Sendgrid

• Acceptance testing of provincial-wide, multi-vendor, RIS, PACS, DIR solution
• Installation and migration of large scale on-prem Oracle databases servers with replication across 3 central locations in the province of Quebec via private WAN
• Automated asynchronous load and conformance tests
• Developed a domain-specific language to automate end-to-end tests by writing YAML instead of a programming language

Technologies: Linux, DICOM, HL7, RIS, PACS, XDS, Python, BASH, Agfa IMPAX, dcm4chee

• Supported 5 enterprise web portals (50k daily users)
• Performed manual production rollouts on the products I owned
• Automated a subset of these production upgrades and progressive rollouts
• Developed our groups' IAM strategy during the first firm-wide rollout of MS's proprietary Identity and Access Management system
• Created a firm-wide wiki that lives on to this day and has had hundreads of daily users during my stay

Technologies: Linux, Organizaional skills, Self-driven, Read and wrote documentation, Tomcat, Java, PostgreSQL, Adobe Experience Manager, Oracle Database Server on-prem administration, Python, BASH, Identity and Access Management

• Tailored identity and access management solution for fortune 500 companies

Technologies: Windows Server, Active Directory, Database Management, Oracle Database <12, Lotus Notes, Solaris, Linux, AS/400, LDAP, Python, Twisted, Identity and Access Management, HTML, LaTeX, m4, BASH

• Deployed laboratory information systems

Technologies: Windows 2008 R2, RedHat Enterprise Linux, Solaris, AIX

• Deployed and upgraded large scale digital radiology software (100+ servers, 300+ RPMs)
• Investigated and documented system issues working closely with developers

Technologies: Linux, RHEL, BASH, Perl, Python, DICOM, HL7

• Installation, configuration, and administration of Linux servers, Linux Terminal Server (thinclients), shell scripting automation

Technologies: Debian, RedHat, Cyrus, LTSP, Sendmail, Popa3d, Courier-IMAP, Bind (DNS), Yellow Pages (NIS), Firewall (IPTables), Nagios, Postfix, PostgreSQL

• Google Developer Profile
• Developing a Google SRE Culture Coursera
• Reliable Google Cloud Infrastructure: Design and Process (Coursera)
• Google Cloud Fundamentals: Core Infrastructure (Coursera)
• Preparing for your Professional Cloud Architect Journey (Google) - Jun. 2024
• Generative AI with the Vertex AI Gemini API (Google) - Jun. 2024
• Developing a Google SRE Culture (Google) - Feb. 2024
• Managing Cloud Infrastructure with Terraform (Google) - Jan. 2024
• Google Cloud Fundamentals: Core Infrastructure (Google) - Feb. 2024
• Kubernetes in Google Cloud ((Google)) - Feb. 2020
• Baseline: Data, ML, AI (Google) - Feb. 2020