COLLET Nicolas
SRE · DevOps · Platform Engineering

Bathed in technology since I was very young and curious by nature, I like to achieve and exceed the goals that are set for me ... Self-taught, passionate and conscientious: I am someone invested in my work. I like to listen, communicate and meet challenges: I express my full potential in difficulty and adversity. Meeting challenges and surpassing oneself is my « Leitmotif » ...

Professionnal career

Senior Site Reliability Engineer @ Aldebaran robotics (Since October 2022)
  • Infrastructure management: K8s clusters, GitLab, ArgoCD instances, CI/CD pipelines, and the implementation of cloud-native deployments.
  • Optimizing infrastructure with tools like Karpenter, implementing IAM access management and security best practices (principle of least privilege, Docker image scanning).
  • Managing HA, performance, and cost optimization (Kubecost for FinOps).
  • Logging, monitoring, and alerting using Grafana, Prometheus, and other tools.
  • Development of Helm charts and Kustomize for streamlined deployments.
  • Managing API Gateway with Ambassador Edge Stack, implementing SSO with Keycloak, and automating dependency upgrades with Renovate.
  • Building and deploying an AI stack using technologies like VLLM and Whisper for speech-to-text apps.
  • Promoting best practices such as 12-Factor App, DevOps, GitOps, and DevSecOps methodologies across teams.
  • Leading teams through technical challenges and collaborating with cross-functional teams (DevOps, Systems, QA, IT, and Agile).
Key Achievements:
  • Reduced Time to Market by implementing Continuous Delivery pipelines.
  • Simplified and unified deployment processes by using K8s controllers (e.g., Karpenter, ACK, Crossplane) to manage infrastructure needs alongside app deployment cycles.
  • Reduced technical debt and security risks by consolidating Helm forks and using ArgoCD, Helm, and Kustomize for better management and versioning.
  • Increased security by automating updates for dependencies, Docker images, and Helm charts.
  • Enhanced security management in K8s with Kyverno for resource creation, mutation, and policy enforcement.
  • Integrated E2E testing and TDD using Chainsaw to ensure the reliability and stability of apps.
Cloud / DevOps Engineer @ Additi - groupe SIPA Ouest-France (April 2020 - Sept. 2022)
  • Application performance monitoring: measurement tool proposal and advice
  • Promote the DevOps culture in teams (8 Business Units + 2 cross-functional teams ~ 50 technical profiles)
  • Build: Provide infrastructure and services for each B.U.'s projects.
  • RUN: Operational monitoring of existing infrastructures: performance, safety, incidents.
  • Proposal of tools and best practices to improve compliance, monitoring, platform productivity (tooling, CI/CD ...).
  • Compliance: Consolidation and catching up of the existing to reduce technical debt.
  • Watch: Keep up to date and adapt to the context steered by the major players. Offer an attractive technological offer.
Notable projects:
  • Definition of a standardized internal hosting offer based on a Cloud service respecting the constraints: Cloud Agnostic, Network, Security, BCP/DR; and articulated around the following technologies: MySQL, MongoDB, Gitlab CI, Kubernetes, Helm, Argo CD, ArgoCD Notifications, Prometheus, Grafana, Loki, Promtail, Ingress Nginx, Cert-Manager, Kubemod, Sealed-secrets, Vector, Minio ...
  • Definition and provision of build and deployment workflows.
  • Development of the plant allowing deploying the hosting offer, the plant is made up of specialized terraform modules by technological brick. Offer is made available in half hour.
Architect Build DevOps @ claranet (Jan. 2019 - March 2020)
  • on Premise server provisioning:
    • physical machine iDRAC
    • virtual machine (vmware, nutanix)
  • Settings firewall Juniper, load balancer F5.
  • Install middlewares thanks config management (puppet) and progressive maintenance of the modules.
  • Development of ansible scripts, use of roles (like ansistrano) to ensure the automated deployment of the client application.
  • Python development:
    • script used to request the PuppetDB API in order to standardize the generation of Ansible inventories and enrich the variables used in deployment jobs
    • provider (terraform like) allowing to provision kubernetes resources (master, nodes, storage ...) via the OVH API
    • use of this provider through a dedicated Ansible module
DevOps Engineer @ Ubiflow (Jan. 2018 - Dec 2018)
  • Ensured high availability of a platform handling 8M ads/day, supporting 500+ media, 250+ softwares and 8000+ clients.
  • Managed web infrastructure (Nginx, Apache, Galera, DNS, SSL) and critical incidents (e.g. cluster crash, abuse mitigation).
  • Automated deployments with Capistrano, Docker, and Ansible, standardizing dev environments and securing server access.
  • Maintained internal tools (GitLab, Jenkins, Redmine) and supported teams with DevOps practices.
  • Led audits and architecture improvements (reverse proxies, upgrades, service optimizations).
Back-End Developer @ Ubiflow (Feb. 2011 - Dec 2017)
PHP Back-End Developer => Customer support: translate their needs into specifications and technical requirements.
Costing, development, testing and production of gateways (data flow).
Level 2 support, drafting of internal procedures. Maintenance, evolution and correction of bugs.
PHP Frontend Developer => Maintenance and evolution of internal tool interfaces (Symfony framework).
Responsive version implementation on white label customer interface
Technologies: PHP, HTML, CSS, JavaScript, REST, docker, jenkins, capistrano.
webmaster / sys admin @ AGIR PACIFIC (2010 - 2011)
  • Managed website operations, including content publication and migration to a new hosting platform.
  • Supported deployment and customization of an ERP system (OpenERP) to streamline internal business processes.
  • Maintained a dedicated Fedora server, ensuring stability and security of hosted services.
  • Designed and operated the virtualized infrastructure using KVM and DRBD for high availability storage.
  • Implemented automated backup strategies with Bacula.
  • Secured network access through pfSense firewall and OpenVPN server.
  • Handled routing, VLAN configuration, and load balancing for internal services.
  • Administered a PostgreSQL database system supporting business applications.
IT Technician @ DIS'INFO - SPIE COMMUNICATION - BUGBUSTERS - ORANGE (2006 - 2010)
IT support in hotline / roaming (on the perimeter of the Ille-et-Vilaine department)
Customer training, follow-up and resolution of incidents, ghosts deployment.
Configuring: HP/CISCO switches, CISCO/Huawei routers and HP network printers.

Contact


Nicolas COLLET

RENNES, France

nicolas.collet.pro at proton.me

MalibuKoKo

OuestFrance-Multimedia

nicolas-collet

+33 6 58 19 69 18

years old

driver license cat. B

French (native) / English (B1)

Personality traits

curious
passionate
rigorous
autonomous
taste for challenge

Skills

Public Cloud
GCP, AWS.

CI / CD
ArgoCD, Gitlab CI, Jenkins.

Containers & Orchestration
Docker, Kubernetes, EKS, GKE, k3s, kind.

Cloud Native & Serverless
Knative, Karpenter, CloudNativePG.

AI & Model Serving
KServe, vLLM, Open WebUI, Whisper.

Infrastructure as code
Terraform, Ansible, Puppet, Helm, Crossplane.

Observability
Prometheus, Thanos, Grafana, Loki, OpenTelemetry, Kubecost.

Security
Keycloak, kyverno, Sealed Secret, Falco, Vault.

Networking
Ingress Nginx, Ambassador Edge Stack API Gateway, Envoy, Cert-Manager, Istio.

Development & Scripting
Bash, Python, Rust, Golang, PHP, HTML/JS

Linux & OS
Debian-based, Alpine Linux

School curriculum

BTS IRIS
@ Institution Immaculée Conception (2006)
BAC STI Électronique
@ Institution Immaculée Conception (2004)




Version: 1.0.0