Jean Prat - SRE, Devops, Systems and networks expert

About me

Infrastructure and security engineer with more than twenty years of experience in critical environments. Specialized in SRE, Devops and Devsecops, I improve platform reliability, security and performance through automation, observability and modern cloud architectures.

I have worked across organizations of all sizes, including startups, scale ups, SMBs and large enterprises, which has enabled me to adapt my practices to diverse levels of maturity and constraints.

Expert in Linux, cloud, CI CD, security and observability, I operate across the entire production lifecycle. My strong interest in software development (Typescript, Effect.ts, Python, Bash) helps me industrialize environments and improve system reliability in depth.

I am seeking an SRE, Devops or Devsecops role within teams aiming to enhance the quality, security and resilience of their platforms.

My background includes highly regulated sectors such as finance, personal data protection and PCI DSS audits. I value automation, collective understanding and transparency.

Core expertise

Operating systems: Linux, Unix

Cloud: Google cloud (GCP), AWS, OVH, Fastly

Containers: Kubernetes, GKE, Gateway API, Nomad, ECS, Docker

Observability: RED method/Four golden signals, Opentelemetry, Datadog, Vector, Prometheus, Loki, Tempo

Automation: Terraform, Packer, Ansible, Github actions, Gitlab CI

Network & security: Zero trust, IAM, Consul, Vault, Load balancers, Firewalls, PCI-DSS

Databases: PostgreSQL, MySQL

Programing languages: Typescript / Effect.ts, Python, Bash

Professional experiences

2022-2025 – P00LS

Senior Devops Engineer

Reliability, observability and cloud cost reduction
  • Stability and performance
    • Stabilized high traffic workloads on GKE
    • Proactive detection through modern observability
    • Alerts understandable by every team member
  • Fast delivery
  • Cloud optimization
    • Migration from GKE Autopilot to Standard
    • Precise cost control
    • Environment simplification and industrialization
Achievements
  • Monitoring costs reduced by three using OpenTelemetry, Loki, Tempo and Prometheus.
  • Migration to GKE Standard including Gateway API, authentication, scale to zero and rate limiting.
  • Full tracing on front and back services providing client visibility and faster error detection.
  • GitHub Actions CI CD standardized across all services.
  • Web3 indexing and reliability improvements integrated into the platform.

2020-2022 – Sinch

Operations, Security and Software Engineer

Cloud migration and application resilience
  • Progressive migration
    • Bare metal to ECS transition
    • Deployment redesign using IaC
    • Removal of non critical components
  • Observability and security
    • Instrumentation of legacy services
    • Monitoring improvements
    • Security integration on key log paths
  • Enabling team
    • Knowledge sharing
    • Pair and mob programming
    • Application complexity reduction
Achievements
  • Multi region deployment of Campaigns on ECS for high availability.
  • Full automation of both physical and cloud deployments.
  • Implementation of a 24 7 business aligned on call improving reaction time.

2018-2020 – LGO

Infrastructure and Security Engineer

Secure and highly available financial infrastructure
  • IaC (Infrastructure as Code)
    • Immutable infrastructure split by business context
    • Automated tests, builds and deployments
  • Performance and security
    • Centralized logging and performance monitoring
    • Security event monitoring
    • Real threats involving several million dollars
  • XP practices
    • Pair and mob programming, code reviews
    • Participation in Agile Open and Newcrafts
Achievements
  • Self healing cloud architecture with simple update processes.
  • Zero Trust networking based on Consul Connect.
  • Distributed logging and monitoring stack including Elastic, Prometheus, Thanos and Jaeger.
  • Proactive management of the YesWeHack bug bounty program.

2013-2018 – Orange Applications for Business

Systems and Network Architecture Lead

Critical payment platforms and PCI DSS security
  • Compliance
    • PCI DSS audit, remediation and hardening
    • Secure networks and systems for card payment services
  • Secure design and administration
    • IBAN tokenization
    • SS7 payment servers
Achievements
  • PCI DSS compliant CI CD pipeline using Gitlab CI, Ansible and AWX.
  • Automated Ansible deployments for multi site active active VoIP.
  • Migration of Orange voice services to a tri site architecture.
  • Significant reduction in equipment update times.

2007-2013 – Cheops Technology France

Monitoring Lead and Level 3 Support

Monitoring of more than two thousand devices and critical production
  • 24 7 support and audits
  • Incident Manager (2008-2010)
Achievements
  • Built a full managed services offering from scratch for diverse clients.
  • Achieved Health Data Hosting certification.
  • Multi site DR and BC plan with database replication and boot on SAN.
  • Development of a GLPI and Nagios integration.
  • ELK stack processing more than two thousand messages per second.

2004-2007 – Arexia SAS

SAP, Oracle and Unix Administrator

Maintenance
  • SAP incident management
  • Automation of recurring tasks
  • Hardware and software troubleshooting

Personally

  • Self hosting: pihomecloud (now simplified).
  • Cloud free home automation enthusiast.
  • Open source is central to my practice. I contribute and share publicly on GitHub, GitHub (pihomecloud), and GitLab.
  • Experimentation: OCR, computer vision, speech recognition.

Education, training and certifications

Languages

  • French
  • English