Fleury-Dryan Havyarimana

Results-driven professional with expertise in information systems security, Cloud Architecture, Infrastructure Architecture, vulnerability management, and penetration testing. Skilled in research, collaboration, and security policy enforcement. Holds certifications in AWS Solutions Architect - Associate Level, Microsoft Azure Infrastructure Solutions AZ-305, CEH, CompTIA Security+, and more.

WORK EXPERIENCE:

Desjardins (Contrat) 

Sept 2023 

DevSecOps

Montréal, Québec, Canada

• Assist in architecting large-scale secure solutions for our teams products
• Design, develop, and support critical security services, libraries and frameworks that are highly reliable and easy to use
• Develop, test, deploy, maintain, and enhance software solutions
• Participate in, or lead design reviews with peers and stakeholders to decide amongst available technologies
• Build high-quality and highly reliable software to meet the needs of a fast growing company in a multi-cloud environment
• Analyze and understand reliability, performance and scalability bottlenecks in the system and solve them
• Review code developed by other developers and provide feedback to ensure best practices (e.g., style guidelines, checking code in, accuracy, testability, and efficiency)
• Build automated deployment pipelines, monitoring and failovers and use automation to bring scalability and efficiency to our systems
• Automate the configuration and management of infrastructure and applications with modern orchestration tools
• Maintain monitoring of our systems and provide solutions that can react to those alarms to minimize client impact and manual intervention
• Contribute to existing documentation or educational content and adapt content based on product/program updates and user feedback

TECH STACK:

• Jira, Git, Jenkins, Terraform, Agile (Kanban, Scrum)
• Azure Monitor, Azure Traffic Manager, Azure Network Watcher, Azure Resource Manager, Azure Policy, Azure Automation, Azure Advisor, Azure Automanage, Azure Blueprints, Hibernate Query Language (HQL).
• VMware Cloud DRaaS, VMware Cloud Migration, VMware Aria Multi-Cloud Management, JAX-WS and JAX-RS
• Amazon Elastic Container Service, AWS Lambda, AWS CloudFormation, AWS OpsWorks, AWS Systems Manager, AWS Config, Amazon CloudWatch, AWS X-Ray
• AWS CloudTrail, AWS Elastic Beanstalk, AWS CodeCommit, Redis, AWS control tower, Cloud Data, Autosys, vSphere, VMware, Azure Devops, mySQL, Docker, Kubernetes, maven, groovy, ant, Ansible

DELAN - Consultant in Development and Infrastructure (Contract) 

August 2018 to September 2023 

  Remote, Canada

• Mandate to work for different clients, as a contractor in roles linked to infrastructure, DevOps, and SRE. The clients include: AIM-Recycling, TS Imagine, Global Payments Inc, Manulife, and Sherweb.
• Tech stack, and roles description will be provided/listed below

AIM: infrastructure Architect 

(Delan Contract)

March 2023– to Sept 2023

Montreal - Canada

• Analyze business and technical requirements, assessing existing environment for Cloud enablement, advising on Cloud models, technologies and risk management strategies
• Design application architecture, cloud solutions to address scalability, performance, security, availability, cost transformation requirements
• Monitor and evaluate effectiveness of existing systems, and provide feedback on improvements, where applicable.
• Design, develop and test software components, and document and diagram application functionality from business requirements
• Maintain source code/components, and modify and/or upgrade code as necessary
• Ensures that software is developed to meet functional, non-functional, and compliance requirements
• Codes solutions, unit tests, and ensures the solution can be integrated successfully into the overall application/system with clear, robust, and well-tested interfaces
• Conduct technical audits of existing architectures (Infrastructure, Performance, Developing data security as a function of design, as well as Scalability and more)
• Architect and implement cloud solutions for various application architectures, and programmatic integration of cloud applications, data services, and infrastructure. Develop application data architecture models to further enable effective service-oriented delivery
• Partner with other stakeholders to drive the creation of Cloud migration & transformation strategy and infrastructure roadmaps across application, information, business and technology landscapes
• Provide leadership in infrastructure migration methodologies and techniques including application movements into the cloud including implementation of Azure or AWS within global enterprise environments.
• Collaborates with Data Architecture, Application Architecture, Security Architecture, IT Security & Risk teams and Infrastructure SMEs to ensure that all aspects of the solution architecture comply with standards, while delivering value to the business.
• Assist in maintaining and testing business continuity / disaster recovery plans, processes, and procedures necessary to recover services in the event of a declared disaster.
• Respond to security alerts and threat detections from Cloud Environment's Intrusion Detection/Prevention Systems and apply fixes or security patches to products.
• Implement tailored IaC and CI/CD solutions for organization-wide initiatives involving new technology and best cloud practices.
• Maintain existing monitoring, alerting, and logging solutions, and extend them to ensure system availability and performance
• Identify problem areas and perform root cause analysis of architectural design and solutions and provide relevant solutions to the problem
• Collects and maintains documentation across various Technology components and develops an up-to-date repository of technology documentation.
• Conducts current state assessment on all Technology components such as Platform, Network, Security, Data
• Define the security controls for a variety of cloud and on premise workloads, by closely working with our Information Security team
• Design enterprise Disaster Recovery / Business Continuity systems recommendation, implementation and maintenance.

TECH STACK:

• Jira, Confluence, Putty (Unix), anaconda (python 3.9)
• Unix, Linux systems, Git, Jenkins, Terraform, Agile (Kanban, Scrum)
• Azure Monitor, Azure Traffic Manager, Azure Network Watcher, Azure Resource Manager, Azure Policy, Azure Automation, Azure Advisor, Azure Automanage, Azure Blueprints, Hibernate Query Language (HQL).
• VMware Cloud DRaaS, VMware Cloud Migration, VMware Aria Multi-Cloud Management, JAX-WS and JAX-RS
• Amazon Elastic Container Service, AWS Lambda, AWS CloudFormation, AWS OpsWorks, AWS Systems Manager, AWS Config, Amazon CloudWatch, AWS X-Ray
• AWS CloudTrail, AWS Elastic Beanstalk, AWS CodeCommit, Redis, AWS control tower, CloudData, Autosys, vSphere, VMware, Azure Devops, mySQL,Docker,Kubernetes,maven,groovy,ant,Ansible

TS Imagine : Lead SaaS Engineer/Devops

(Delan Contract) 

May 2022– to March 2023

Canada

• Provision new environment from development to production and automate where needed
• Accountable for designing, building, and optimizing automation systems for CI/CD
• Collaborating with development teams to plan, develop, deploy, maintain, troubleshoot, and monitor delivery pipelines.
• Create, maintain and operate C# micro services deployed in Azure
• Manage environment accesses, controls, and features
• Develop and present justifications for project(s) and/or the approaches used on the project.
• Lead multidisciplinary stakeholder groups to conceptualize processes and application of information technology as a strategic asset.
• Manage project planning, analysis, design, construction, implementation, and closure processes.
• Writing design proposals, reports, manuals, and other technical documents.
• Design, and implement application security and privacy by design standards and policies in accordance with industry frameworks.
• Continue to mature the vulnerability management program.
• Lead the development of a new microservices using Java Spring Boot
• Build dynamic and static code analysis and scanning into the CI/CD pipeline.
• Manage third-party web application security testing engagements.
• Design, enable and deliver scalable and automated strategy - infrastructure as code
• Contribute to process automation and develop automation tools
• Communicate at many levels, both internal and external to the client, including client executive and sponsors, Online executive, and the delivery team.
• Define the DevSecOps strategy and partner with application teams for adoption and continuous security posture improvement.
• Ensure high-quality programming of software components in Java
• Apply service-oriented security architecture principles to ensure confidentiality, integrity, and availability requirements are met.
• Identify metrics and Key Performance Indicators (KPIs) for application security program.
• Help with integration and deployments both on Azure and AWS

• TECH STACK:

• Proficiency in working with Jira, Confluence, Unix, Linux systems, Git, Jenkins
• Spring boot, Micro Services, zabbix, EFK
• REST APIs, Bit bucket Pipeline, RBAC models, SSO solutions, Cyber Ark, identity stores and directory services (SAML 2, OAuth 2,OIDC), CVSS, OWASP, NIST, SAST, 
• Terraform, Agile (Kanban, Scrum), Redis and Gem fire
• Amazon ECS Container Service, Amazon Cloudwatch, Amazon route S3, Amazon CDK, Amazon RDS, Amazon Lambda, Cloud SDK, Cloud Spanner, AlloyDB for PostgreSQL, Cloud Composer, Dataflow, Pub/Sub, Dataprep by Trifecta
• Dataproc, Cloud Data Fusion, Artifact Registry, Google Kubernetes Engine, App Engine, Actifio, Cloud Build, Google Cloud Deploy
• Helm charts, Cluster installs, Jobs configuration, OpenShift
• Grafana, Prometheus, TeamCity, Elastic search, mongo dB, Web Services, Farms(python), zookeeper, Cloud DataAutosys, Azure Devops, SQL,vSphere, VMware, Magneto 2, Docker, Kubernetes, maven, groovy, ant, Ansible, AWS control tower
• Bit bucket, service mersh, ELK, envoy, Jenkins, veracode, cisco container platform

Global Payments : Senior Operations Engineer – Devops integrator

(Delan Contract)

July 2021 – to July 2022

Remote - Canada

(Was Doing mainly new employee training since April 2022 - 4 Hours a day)

• Establish automated security configurations to support product user access controls.
• Lead team collaboration to design, develop and deploy high quality, sophisticated, and highly scalable systems
• Work with the infrastructure engineering and product teams to conduct and complete security architecture reviews and designs for the product requirements.
• Responsible for developing and delivering complex software requirements to accomplish business goals in Java
• Enhance and maintain automation of cloud tools and DevOps process
• Perfect the operation of the infrastructure by improving the use of best practices in monitoring, cloud coding and scripting.
• Automate migration processes to cloud environments.
• Implement cloud governance, development, deployment and monitoring standards.
• Participate in code reviews and brown bag sessions to foster a culture of growth and learning within the organization
• Provide technical leadership on the implementation, deployment and delivery planning and operations of the technical solution.
• Build and maintain tools and frameworks that support deployment, automation, application health monitoring, and remediation/upgrade activities.
• Perform threat simulations and penetration tests to identify and detect possible risks
• Help Deploying Micro-services in Azure Service fabric and AKS
• Provide security recommendations on service design and application development and coding
• Help guide the architecture and growth of a platform with a focus ontestabilityand maintainability.
• Develops or recommends modifications to application development, database design,networking,orinfrastructurearchitecturewiththegoalofcomplyingwithinternalinformationsecuritypoliciesandstandards.
• Monitors emerging products, technologies or best practices that will improve security for the organization and its stakeholders.
• Help with continuous monitoring
• Help with continuous security
• Build and maintainour CI / CD pipeline
• Automate our infrastructure using Terraform and Ansible

TECH STACK:

• Proficiency in settingup and working with Kibana,Grafana, Devhubs, logpoint and sentinel, SonarQube and Veracode, Java Spring Boot, Java Spring Web MVC framework
• Jira, Confluence, Jenkins, SailPoint, API testing with with postman, Mongo dB, Web Services, NAS, WooCommerce, Shopify, Googlepay, Apple pay, Amex Safe key, PayPal,GitHub, CRM, WordPress, Netapp, Lambda, Docker, Kubernetes, maven, groovy, Salt, Ansible, AWS control tower vSphere, VMware, Puppet.
• Amazon ECS Container Service, Amazon Cloudwatch, Amazon route S3, Amazon CDK, Amazon RDS, Amazon Lambda, Cloud SDK, Cloud Spanner, AlloyDB for PostgreSQL, Cloud Composer, Dataflow, Pub/Sub, Dataprep by Trifecta
• Dataproc, Cloud Data Fusion, Artifact Registry, Google Kubernetes Engine, App Engine, Actifio, Cloud Build, Google Cloud Deploy
• Defender, Sentinel, Entra, Purview, Priva,Endpoint Manager, CIS and NIST securityframeworks, and SOX compliance controls, 3D Secure, Pre-Auth Solutions
• Git and Git hub, Javascript, Typescript 3, node.js, restful API Design with Node, Express.js ,Bootstrap, postman, and ELK stack
• Spring boot, Hibernate, Spring Web MVC framework), Keberos

Manulife : Site Reliability Engineer

(Delan Contract)

July 2020 - to July 2021

Remote Canada

• Conduct and execute security infrastructure assessments and upgrades
• Staying abreast of current threats, vulnerabilities and best practices
• Review and evaluate new information technology developments in the field of network security
• Maintain services once they are live by measuring and monitoring availability, latency and overall system health.
• Develop tools & automation on top of Azure & AWS to continuously reduce the need for manual intervention.
• Scale systems sustainably through automation and evolve systems by pushing for changes that improve reliability and velocity.
• Oversee the operation, maintenance and ongoing development of data protection assets for their entire lifecycle
• Develop and maintain the program (processes, procedures, schedule, etc.) to ensure the operational excellence of data protection assets and an optimal user experience
• Work with cross-functional teams to identify and prioritize security requirements and design and implement security controls to protect against security threats.
• Implement automated solutions for continuous integration and delivery (CI / CD).
• Implement monitoring, Logging, alerting and SLA Reporting.
• Implement service-monitoring dashboards displaying key metrics.
• Build systems for declarative application and infrastructure lifecycle management: continuous deployment, continuous integration, and Kubernetes cluster management, service and workload inventory.
• Contribute to setting the direction for the Site Reliability Engineering team; clearly establish goals that are aligned with Clover's company-level goals.
• Implement and maintain security best practices and standards across the Cloud Security Engineering POD.
• Monitor network performance, availability and security, and audit existing network designs.

TECH STACK:

• Helm, Cyberark, OpenShift, Amazon Virtual Private Cloud (VPC), AWS control tower vSphere,
• Azure Front Door, Azure API Management, Azure Kubernetes Service (AKS), Azure Application Gateway, Azure Spring Apps for Java-based microservices
• Amazon Elastic Container Service, AWS Lambda, AWS CloudFormation, AWS OpsWorks, AWS Systems Manager, AWS Config, Amazon CloudWatch, AWS X-Ray
• AWS CloudTrail, AWS Elastic Beanstalk, AWS CodeCommit
• Amazon ECS Container Service, Amazon Cloudwatch, Amazon route S3, Amazon CDK, Amazon RDS, Amazon Lambda
• Azure Service Fabric, Azure Storage, Azure Data Lake Storage, Azure Cosmos DB and Azure SQL, Azure Functions for serverless API services, Amazon Simple Storage Service (S3), Amazon Route 53
• Azure Monitor, Azure Traffic Manager, Azure Network Watcher, Azure Resource Manager, Azure Policy, Azure Automation, Azure Advisor, Azure Automanage, Azure Blueprints
• Sybase, DB2, zookeeper, Lambda, Autosys, SQL, Magneto 2, Zabbix, Kibana, Grafana, Netapp, Steve Tool, Nessus, SIEM, Nagios and Checkmk;

Sherweb : MicrosoftAzure Engineer

(Delan Contract)

August 2019 - to July 2020 

Montreal, QC

• Cloud Solution Architecture: Collaborate with stakeholders to understand business needs and translate them into effective Azure cloud solutions.
• Design scalable and secure architectures that encompass various Azure services, ensuring high availability, fault tolerance, and disaster recovery. 
• Azure Infrastructure Design and Deployment: Define and implement Azure infrastructure components, including virtual networks, storage accounts, virtual machines, and resource groups. 
• Application Migration and Modernization: Assess existing applications and infrastructure to identify opportunities for migration to Azure. 
• Develop migration strategies and oversee the execution of application and data migrations, ensuring minimal downtime and maximum performance.
• Security and Compliance: Implement robust security measures and adhere to compliance requirements in Azure environments.
• Design and configure identity and access management, network security, data encryption, and monitoring solutions to protect sensitive data and prevent unauthorized access.
• Cloud Governance and Best Practices: Establish and enforce cloud governance policies and best practices to ensure consistent and efficient use of Azure resources.
• Define resource naming conventions, tagging standards, and access controls. Conduct regular audits, implement monitoring solutions for performance optimization, and cost management.
• Automation and DevOps Integration: Leverage Azure automation tools, such as Azure DevOps, Azure Resource Manager templates, and PowerShell scripting, to automate deployment, configuration, and management tasks.
• Promote DevOps practices and integration of CI/CD pipelines in Azure environments. 
• Cloud Consulting and Collaboration: Serve as a subject matter expert on Azure cloud technologies, providing guidance and recommendations to stakeholders and development teams. 
• Collaborate with cross-functional teams to align cloud strategies with business goals and ensure successful project delivery.
• Cloud Performance Optimization: Monitor and analyze Azure infrastructure performance, identifying bottlenecks and areas for optimization.
• Implement scalability and load balancing strategies to accommodate growing workloads and ensure optimal resource utilization.
• Participate in evaluation, testing, selection, and deployment of foundational network security elements
• Participates in security audits, identifies security gaps, and develops and implements risk mitigation solutions
• Performs as the subject matter expert in relation to network, data, application and or cloud security and liaises with other areas of IT in the dissemination of this information to counter threats and internal and external vulnerabilities.

TECH STACK:

• Manage VM Backups, Virtual Network Connectivity, Manage Virtual Networking, DNS, Network Security Groups, Azure Active Directory, Manage AD Objects, Hybrid Identities, Implement Multi-Factor Authentication (MFA), Managed Role-Based, Access Control (RBAC), Implement Azure Load Balancer
• Azure compute resources, Virtual networking, Azure identities and governance
• Azure Monitor and backup resources, Network Solution, Migration design, Compute solution
• Secure Zero Touch Provisioning (SZTP), Server virtualization - VMWare, Openstack, SailPoint
• OSI model, CyberArk, Kubernetes, Puppet,helm, Dynatrace

Specialist, Wireless Network Performance

Rogers Communication

November 2017 – August 2019

• Accountable for the RAN Performance in GTA market and support Best Network position. 
• Lead strategic initiatives related to wireless customer experience improvement and network optimization for the RAN. 
• Troubleshoot and Resolve Network issues by providing expertise support to the Regional teams. 
• Developed Monthly, Quarterly, ad-hoc reports with comments and annotations providing the insights into KPI trends and corrective actions 
• Monthly/Quartely review of KPI’s trend deviations and corrective action to add in the plan. 
• Make problems visible and bring the right stakeholders to drive the resolutions of issues 
• Drive a culture of continuous improvement by proactively identifying opportunities in our processes. Required skills / competencies

Tech Stack:

• DAS OEM platforms: TE, Mobile Access, SOLiD, CommScope,EDGE, UMTS/HSPA, LTE,
• Test equipment: Spectrum Analyzer, Signal Generator, Network Analyzer, Splunk

EDUCATIONS:

Bachelors in mathematics and Computer science

University of Montreal - Montreal,QC 

September 2019 - August 2023

CERTIFICATE IN ANALYSISAND OPERATIONAL CYBERSECURITY

Polytechnique Montreal 

Jan 2023 - Sept 2024

CERTIFICATE IN ARCHITECTURE AND CYBERSECURITY MANAGEMENT

Polytechnique Montreal                                                                                                                     

Jan 2023 – Sept 2024

MONTREAL COLLEGE OF INFORMATION TECHNOLOGY: 

A.E.C. – Specialization – Full Stack Java Developer (LEA.CK)     

June 2021 -June2022

Bachelors in mathematics and Computer science University of Montreal (Part-time) - Montreal, QC September 2019 - December 2022

CERTIFICATE IN ANALYSIS AND OPERATIONAL CYBERSECURITY
Polytechnique Montreal - Montreal, QC 
September 2022 - May 2023

MONTREAL COLLEGE OF INFORMATION TECHNOLOGY : A.E.C. – Specialization – Full Stack Java Developer (LEA.CK) June 2021 -June 2022 (Wednesday and Fridays evening 6PM to 9 PM)

Description

Introduction to the Java language and object-oriented programming (OOP) in Java
Learn the syntax and constructs of the Java programming language, the concepts behind OOP with Java packaging, Java documentation, exception handling, Java libraries (I/O, utility networking, JDBC, etc.) and Swing
Front-end web development best practices and the purpose of responsive web design, focusing mainly on HTML, CSS, and JavaScript.

Learn the concepts of relational databases and the powerful SQL programming language, introduces the DAO design pattern.
Hibernate configuration, the Hibernate mapping file, inheritance, collections, associations, and the Hibernate Query Language (HQL), popular open-source object/relational mapping (ORM) tool that helps Java developers store and access objects.
Introduction to the Spring Framework, the leading full-stack framework for Java EE applications
Learn how the Java APIs — JAX-WS and JAX-RS — deliver a set of powerful tools for developing a Service-Oriented Architecture (SOA).

BRAINSTATION- PROFESSIONAL CERTIFICATE IN PYTHON – Online
October 2021 – December 2021

Simplilearn : CYBERSECURITY Expert – Online January 2021 to May 2022

This training program enables you to:

Implement technical strategies, tools, and techniques to secure data and information for your organization, adhere to ethical security behavior for risk analysis and mitigation, understand security in cloud computing architecture in depth and comprehend legal requirements, privacy issues and audit process methodologies within the cloud environment, as well as focus on IT compliance and the integrity of enterprise systems to establish a more secure enterprise IT framework
certification courses covered include CompTIA Security+, CEH, CISM, CISSP and CCSP

Simplilearn: CLOUD ARCHITECT – Online October 2021 to January 2022

Simplilearn: DEVOPS ENGINEER– Online May 2022 to Sept 2022