4-Year Performance Summary: Alban Andrieu (2022–2025)

Executive summary & year-by-year delivery at Jusmundi

Executive summary

Over the past 4 years, I have completed 300+ tracked tasks across infrastructure, security, databases, CI/CD, and platform engineering—demonstrating consistent delivery and technical leadership in cloud platform operations. With no significant downtime, night and weekend workload.

Key achievements by strategic theme

1. Infrastructure modernization & cloud platform

2022–2025

2022: Foundation building – Nomad, Consul, Vault, Terraform IaC.

2023: Observability – Victoria Metrics, Loki, Vector pipeline, Grafana dashboards.

2024: Security & performance – Cloudflare WAF, TLS 1.3, DataDog APM, cost optimization.

2025: Next-generation platform – Infrastructure v2 assessment, US hosting (DNS, Kubernetes), cost optimization, Kubernetes migration PoCs.

2. Security & compliance

2022–2025

  • Keycloak authentication (upgrades to LTS), anti-scraping/WAF, OpenVAS, Trivy, Mega-Linter, Semgrep, GitLeaks, GitLab Ultima Sec, firewall reviews, 2FA, ISO 27001 preparation, DMARC.
  • Impact: Blocked major DDoS (2025), fixed Web Cache Deception (Discovered with pen test), Keycloak brute-force protection, TLS 1.3 enforcement.

3. Database excellence

2022–2025

PostgreSQL tuning, monitoring, autovacuum and cache hit improvements; 20+ critical disk space emergencies resolved; ISO Prod DB scripts; read-only users; foreign key restorations.

4. CI/CD & DevOps excellence

2022–2025

Mega-Linter, Semgrep, CodeClimate, PHPStan, JUnit, GitLab templates, Trivy, token renewal automation, Data Science template, container scanning.

5. AI/ML platform support

2023–2025

Elasticsearch clusters, GPU nodes, assistant service, legal-research-assistant, document classification/NER; enabled AI search across 1M+ documents, <2s response time, 2+ instances HA.

6. Observability & site reliability

2023–2025

Victoria Metrics, Loki, Grafana; DataDog tracing; SLA-based alerts; 60% alert noise reduction; dead letter queues; SLO-based availability monitoring.

Standout technical achievements

  • Anti-scraping protection (2024–2025) – Bot traffic reduced 75%, SEO preserved, ~€50K/year savings.
  • Observability platform (2023–2025) – Victoria Metrics, Loki, 30+ Grafana dashboards; MTTR from hours to minutes.
  • Keycloak modernization (2022–2025) – Legacy auth → Keycloak upgrade, SSO, 2FA, brute-force protection.
  • Infrastructure as Code (2022–2025) – 100% Terraform, GitLab IaC; ~90% reduction in manual configuration errors.

Career progression evidence

2022–2023: Senior platform engineer – Foundational migrations, CI/CD, observability, operational best practices.

2024–2025: Staff/principal platform engineer – Strategic initiatives (Infrastructure v2, US hosting), security architecture (WAF, Keycloak), cost optimization, mentoring (RFCs, training).

Impact multipliers: Force multiplier (templates, automation), technical leadership (RFCs), business impact (attacks prevented, cost savings, US market), reliability champion (MTTR, monitoring).

Performance summary by numbers

  • 325+ tasks completed over 4 years
  • 20+ critical incidents resolved with minimal downtime
  • 8 major strategic projects delivered in 2025
  • 99.9%+ platform availability maintained
  • €50K+ annual savings from cost optimizations
  • 90% reduction in manual configuration errors via IaC
  • 60% reduction in alert noise
  • Zero security breaches across 4 years
  • US services migrated to modern infrastructure