Julien - Architecte WINDOWS
Ref : 210302P001-
78220 VIROFLAY
-
Architecte, Consultant cybersécurité, Consultant technique (45 ans)
-
Télétravail uniquement
-
Mandataire social de sa structure Freelance (SARL, SAS, EURL, etc)
PROFESSIONAL EXPERIENCES
CAPGEMINI
April 2021 - Current
Lead Architect Engineering Platform & UE Consolidation
Architecture of engineering projects platform / PM for transformation
Audit of Active Directory platforms – Security analysis and remediation
Devices Management/Hardening/Governance/Troubleshooting
Advisory to network/dc/endpoints/cyber streams
Architecture design and Azure planning + Ping Identity/CrowdStrike
Migration/consolidation planning for Europe
LAPEYRE CARVE-OUT - CLARANET
Sept-Oct. 2021
IT Architect Identity
Powershell scripting for AD security
AD and AAD design
SOCIETE GENERALE MONACO PRIVATE BANKING
March 2021 – Oct./Nov. 2021
IT Architect Identity
Audit of Active Directory platforms
Remediation plan for ANSSI grade 3 validation/LPM
Remote scripting of remediation actions
CyberArk setup/optimizations for Tier-0
Azure Roadmap
SODEXO GROUP
October 2020 to Feb. 2021
IT Architect Identity
Identity Provider Study for WW Group (Azure AD/Okta/Open ID connect)
~50 WW interviews with stakeholders (business & IT)
Documentation to decision-makers
On-Premise hardenning strategy and Security Recovery Plan for Active Directory
DANONE SA GROUP
June 2019 to September 2020
Lead IT Architect WW Digitalization of factories - IT/OT
Security and Digitalization of factories - World Technical Strategy for Securing/Digitalization of 200 Industrial Sites
Coordination of a 50 people virtual team - 15 technological streams
WAN/LAN/Sec/Fortinet/SEP/WSUS/VUDIP/CyberVision/AD/Azure/Bomgar/BeyondTrust PRA/IIoT/InTune/Wifi/VPN/Hardenning
SCCM/InTune study for Danone Industrial (business value, use cases Corp/Byod, design, PoC)
Integration documents of industrial solutions
Third-party solution evaluations (Metron/Poka/InTune/Solvace/LineView…)
Data strategy for OPC-UA/IIOT (network + data core model)
Design workshops on 15 streams – Pilot driver at factories
Coordination Factories/IT central, cross WBU, focus PAM/AD/Apps/Cloud/Processes
Functional studies - Use cases plants
RPA study and infra design/setup (UIPath)
Applicative and infrastructure migration /Netapp in Montpellier datacenters
SODEXO GROUP
October 2002 to present
IT Architect Identity
❑ Identity Provider Study for WW Group (Azure AD/Okta/Open ID connect)
❑ ~50 WW interviews with stakeholders (business & IT)
❑ Documentation to decision-makers
❑ On-Premise hardenning strategy and Security Recovery Plan for Active Directory propositions
DANONE SA GROUP
June 2019 to September 2020
IT Architect WW DIGITALIZATION OF FACTORIES - IT/OT
❑ Security and Digitalization of factories - World Technical Strategy for Securing/Digitalization of 200 Industrial Sites
❑ Coordination of a 50 people virtual team - 15 technological streams
❑ WAN/LAN/Sec/Fortinet/SEP/WSUS/VUDIP/CyberVision/AD/Azure/Bomgar/BeyondTrust
PRA/IIoT/InTune/Wifi/VPN/Hardenning
❑ SCCM/InTune study for Danone Industrial (business value, use cases Corp/Byod, design, PoC)
❑ Integration documents of industrial solutions
❑ Third-party solution evaluations (Metron/Poka/InTune/Solvace/LineView…)
❑ Data strategy for OPC-UA/IIOT (network + data core model)
❑ Design workshops on 15 streams – Pilot driver at factories
❑ Coordination Factories/IT central, cross WBU, focus PAM/AD/Apps/Cloud/Processes
❑ Functional studies - Use cases plants
❑ RPA study and infra design/setup (UIPath)
❑ Applicative and infrastructure migration /Netapp in Montpellier datacenters
SAFRAN / ZODIAC
November 2018 to May 2019
IT Architect
❑ Security maturity assessment of Zodiac identities/Audit and remediation – Azure AD integration
❑ Constraints assessment and proposals for scenarios to harden identity services
❑ AMOA and technical migration messaging FR and US to 0ffice 365
❑ Change management
❑ Identity security architecture file
❑ Network Troubleshooting
MICROSOFT FRANCE for CREDIT AGRICOLE
November 2018 – June 2019
AD Architect
❑ HLD and LLD of a federation design for Credit Agricole Branch subsidiaries in EU
❑ Applicative and functional tests book, security measures
GROUPE CANAL
March 2018 to November 2018
IT Architect
❑ Active Directory/Azure AD and Office 365 Security Assessment and remediation
❑ Active Directory/Azure AD Security Optimizations
❑ Office 365 troubleshooting and optimizations
❑ Change Management
❑ Architectural file for O365/AAD
AIRBUS CYBERSECURITY
January 2018 to March 2018
Security Lead
❑ Analysis of the existing
❑ Evaluation of the maturity of the client IS
❑ Presentation of possible design and architectural record
❑ Automation of the deployment of security means via PowerShell
❑ Azure AD deployment scenario proposal along with Security measures
BOUYGUES TELECOM
March 2016 to January 2018
Active Directory Security Architect – Raising ByTel overall security based on PenTesting
❑ Active Directory Security Assessment and Consolidations/Harmonization
❑ Azure AD deployment design
❑ Business case developed for supervision and security upgrades
❑ Hardening directory and CyberArk services
❑ Change Management
❑ Troubleshooting AD/O365
❑ Cross BU documentation & coordination
THALES
From September 2014 to March 2016
Active Directory Security Architect, ISS/SecAD Program
❑ Proposals for migration and forest consolidation solutions (10,000 users) with the development of standards,
documentation, and operations
❑ AD architecture files
❑ Securing and rallying to a core of trust (Microsoft/ANSSI Method) of Thales subsidiaries
❑ Active Directory Environment Switch (Microsoft/ANSSI Method)
❑ Setting up an advanced VMWare lab platform on NAS NetApp
❑ Proposals for migration scenarios and securing critical application environments
MOTUL GROUP
August 2014 to September 2014
Architect Active Directory
❑ Project framing
❑ Proposals for migration solutions with pros/cons
❑ Design Active Directory & ADFS
BANQUE DE FRANCE
April 2014 to July 2014
PMO / Exchange platform Manager
❑ Piloting the Exchange 2010 migration to Exchange 2013
❑ Hybrid cloud messaging platform study
❑ Managing security operations (Encryption and authentication solutions)
❑ Performance management
SERVIER GROUP
May 2014
Pre-sale Architect - Metsys/Ozitem/Stedia
❑ Redesign proposal for WW AD, messaging, WW security, successful
PATHE
April 2014
Expert SCCM 2012
❑ SCCM 2012 platform troubleshooting
❑ Auto deployment of security updates
❑ Setting up and coaching on application deployment and OSD
AREVA INTERNATIONAL
December 2013 to March 2014
PMO RUN
❑ Piloting the Windows 7 deployment project on international sites
❑ Tracking related projects (secure printing, compatibility, application)
❑ Development of business case that led to the saving of 1M euros
SUPMECA
September 2013 to November 2013
Technical architect
❑ Total overhaul of the customer's IS
❑ Implementation Windows 2012 R2 in Hyper-V cluster with high-availability virtual machines (all services migrated,
1000GB of ram/30TO of VMs) and migrations
❑ Deployment Exchange 2013, migration since Exchange 2010
❑ Lync 2013 and SCCM 2012 R2 Deployment
VEOLIA
From May 2013 to August 2013
PMO
❑ Lead inter-team (network/trades/AD/customer positions)
❑ Definition and implementation of the AD structure for consolidated iso-experience
❑ Support for data migration
❑ Network Troubleshooting
❑ Assistant du program lead
CHEQUE DEJEUNER
April 2013
❑ VDI platform audit
❑ Global advice on processes and tools
❑ Optimizing the Hyper-V Clustered Platform
❑ Troubleshooting existing problems
DEXIA
February 2013 to March 2013
IT Architect
❑ AD 2008 R2 Target Structure Design
❑ Exchange Design and Sizing 2010
❑ Test book and deployment guide
AXA
From July 2012 to December 2012
Technical Lead
❑ Coordination PMO inter-filiales (pays)
❑ Exchange migration strategy 2003 to Exchange 2010 for major OpCo's
❑ Detailed procedures, detailed requirements with checklists and On-Premise/O365 preparation tasks
SPIE BATIGNOLLES
July 2012
Technical Lead
❑ Implementation of a national DB2 service on Windows 2008 R2 cluster on VMWare 5.1
CHOREGIE
March 2012 to June 2012
IT Architect
❑ Audit of AD/Group Policy operating governance
❑ In-depth analysis of 666 strategies in production, consolidation and optimization in 40 GPOS
AREVA
October 2011 to March 2012
Technical PMO
❑ PMO WW AD on the rights overhaul part, stress assessment, target model proposals
❑ PMO WW (DE, US, Mining, TA) on good safety practices
❑ Leading the rollout of the new AD and Exchange governance and security model
VEOLIA
October 2011
Network expert and application performance
❑ Performance analysis and troubleshooting of a national application platform
❑ Study and implementation of a national RDS POC
INGENICO
September 2011
IT Architect
❑ Architecture for modernization Active Directory 2008 R2
❑ Architecture for new PKI/UAG/Exchange platform
IRSN
June 2011 to July 2011
IT Architect
❑ Writing of the RFP active directory and exchange for the Institute of Radiology and Nuclear Safety
❑ Assistance in comparing offers and desirable choices
AREVA
April 2011 to June 2011
IT Architect
❑ Lead AD World Project (AD/Exchange)
❑ Framing, stress assessment and business needs for HLD WW for active directory
❑ Animations of international workshops for definition and decision on the target
❑ LLD for the AD and Exchange target
❑ Security and migration study
SPIE BATIGNOLLES
January 2011 to March 2011
IT Architect
❑ Lead coordination of regional leaders
❑ DC piloting and AD upgrade
❑ New PKI infrastructure for middlewares
❑ In-house sales and adoption of DFSR file services and data migration
❑ New centralized printing service with automatic switch on incident
CHEQUE DEJEUNER
January 2011
Network expert
❑ Network performance analysis
❑ Troubleshooting ADFS
❑ Business presentation for Direct Access deployment
❑ DA support
MICROSOFT FRANCE
From May 2008 to October 2010
Major accounts technical director
❑ Microsoft's representative to 5 major accounts (industry, aerospace, defense, retail)
❑ Architecture advice, stress analysis, Pros/Cons target proposals
❑ IT strategy, roadmap based on maturity SI
❑ Customer relationship management, business functional demand management
❑ Management of Microsoft teams and on-site partners in PMO and governance
❑ Gestion d’un budget client de +800K€ de services (expertise, support projet, formations, conseil ITIL)
❑ Crisis management, product group climbing follow-up, pre-sales, proactive/reactive technical management
❑ Annual renewal of contracts, commercial follow-up
❑ Opportunity management and project framing
MICROSOFT CORP.
April 2007 to May 2008
Technical Director
❑ PMO EMEA Beta readiness project sponsored by Microsoft Corp.
❑ Management of a virtual EMEA team (27 peoples)
❑ Organizing internal and external events in the making of solo initiative
❑ Presentation and training major accounts
❑ Troubleshooting and reporting bugs to the product group
MICROSOFT FRANCE
2004 to April 2007
Security/identity and domain specialist @ Microsoft Premier
❑ High-criticity incident response to Premier Customers
❑ In-depth troubleshooting
❑ MCS support/shadow consulting at Premier Customers
❑ On site delivery of Active Directory related WorkShopPlus trainings
❑ EMEA on site interventions
AIRBUS CENTRAL ENTITY - Blagnac
2002 2003
Long Range Quality Head of Programme – Industrial Risk Management Engineer – Cabin Systems Enginer
❑ Interviews and deployment coordination at NAT’Cos
❑ Development of an industrial risk management framework
❑ Support to airlines on security-related systems
TRAININGS & CERTIFICATIONS
❑ PMP Project Management Fundamentals – International Institute for Learning – Cred. ID #1003-821200
❑ ITIL V3 FOUNDATION – Learning Tree International
❑ Microsoft MCSE windows Server 2008 Enterprise Administrator
❑ Microsoft Azure AZ-900 Azure Fundamentals
❑ ********-ff45-44b3-bdac-909a510e2262/public_url
❑ Microsoft Azure AZ-500 Azure Security
❑ ********-e9f1-4a26-b074-62e53f68bf56/public_url
EDUCATION
2002 ESME SUDRIA/IPSA: Engineering degree
KEY POINTS
❑ Identity and security expert: Microsoft Infrastructure Specialist (AD/Azure AD)
❑ Technical architect: broad technological scope (Networking/Security/Infra Management/Azure)
❑ Customer Portfolio Management (Budget 800K)
❑ Technical and project management: Team coaching and operational coordination
❑ Audits, Security Audits, ITIL/SLM approach, Incident Management, Change Management, PRA, Prince basics, ISO27001/27002 (knowledge), ANSSI, PURDUE
❑ Fluent in English (TOEIC – 2004 – Gold 965/990)
❑ Technologies: Windows Server/Active Directory, Azure, Cybersecurity (ANSSI recos.), O365, InTune/modern workplace, networking, PKI/ADFS, Microsoft Infrastructures, PAM (CyberArk/BeyondTrust), Industrial Technologies (OT), IoT, OPC-UA,