Raphael BERLAMONT Head of Platform / Lead SRE / Senior SysOps Engineer
About Me
Independent infrastructure engineer with over 20 years of experience, helping companies transform and industrialize their IT. Kubernetes, cloud, automation, and security specialist. I led the complete infrastructure overhaul at LittleBig Connection, combining strategic vision, technical expertise, and team leadership. I focus on building and operating reliable, scalable platforms for business-critical workloads.
Experience
Little Big Connection
2019 - Present
Head of Infrastructure / Lead Infra - 100% remote
Led the transformation of the infrastructure to a highly available and secure Kubernetes platform; managed a distributed team (FR/ES/TN); security governance and deployment industrialization.
Key projects and results:
- Proxmox to Kubernetes transformation: high availability, scalability, and zero-downtime deployments.
- Implemented ArgoCD and on-demand development environments; significant release cycle acceleration.
- Security: HashiCorp Vault + External Secrets, NetworkPolicies, and CI/CD hardening (vulnerability scans).
- Implemented encrypted multi-site backups with redundant storage in France and the Netherlands, and encryption key management in Vault.
- MySQL, MongoDB, Redis, and RabbitMQ clustering; maintenance without downtime.
- Led and maintained ISO 27001 certification for infrastructure and hosting scope.
- Selected a French cloud provider to strengthen data sovereignty and customer trust.
- Coached and mentored an international team; 0 turnover over the period.
- Observability: centralized logs and monitoring (ELK/Elastic/APM, CheckMK, Grafana).
- Impact: uptime consistently near 100% on most critical components, major downtime reduction, and a move from twice-monthly releases to continuous deployments.
Technologies
Kubernetes
ArgoCD
Helm
GitLab CI/CD
Ansible
Terraform
HashiCorp Vault
External Secrets
Docker
MySQL (InnoDB Cluster)
MongoDB
Redis
RabbitMQ
Elastic/ELK
Grafana
CheckMK
Proxmox
Scaleway
Azure
THALES Global System
2019
Short-term Linux DevOps Engineer engagement
Within the standards team, my main mission was to bring my knowledge of the Ubuntu distribution.
Deliverables:
- Industrialized a hardened Ubuntu AMI per CIS recommendations.
- Installed PaSSHport in a lab.
- Built a CI pipeline to generate OVA images with Packer using GitLab and Jenkins.
Technologies
Packer
Jenkins
GitLab
Ubuntu
CIS-Assessor
AWS
git
LibrIT
2016-2018
Engineering, PaSSHport
Developed LibrIT's customer base while delivering Open Source/Linux engineering projects. Built PaSSHport, which centralizes access to Unix servers.
Deliverables:
- Dockerized PaSSHport
- Wrote gettext documentation with translations
- Monitoring training
- Implemented high availability based on heartbeat/pacemaker
- Backup server for a startup
- Evaluated fleet orchestration solutions
- Studied and deployed PaSSHport at JCDecaux
- Log centralization
- Implemented a PKI
Technologies
Docker
gettext
Read the Docs
BackupPC
HeartBeat
Pacemaker
Centreon
PERL
check_mk
Markdown
Saltstack
Ansible
PaSSHport
PostgreSQL
DRBD
GrayLog
git
bcache
EJBCA
JCDecaux
2011-2016
Lead / Linux Engineer
Contracting via my company (LibrIT), I was the Linux/Open Source lead engineer in the engineering/IT department at JCDecaux (Plaisir - 78370).
Deliverables:
- Implemented log centralization
- Upgraded the Slackware technical baseline
- Deployed the main firewall for the London subsidiary
- Led the monitoring engineering team
- Improved “client” satisfaction
- Secured monitoring of large display structures at CDG
- Level 3 support
Technologies
Graylog2
Logstash
Slackware
Centreon
Request Tracker
RedHat
Netfilter/IPTables
Pacemaker
PERL Squid
Apache
Heartbeat
OpenVPN
SquidGuard bind
Samba
OpenVPN
Bash
LibrIT
2011
Creation of the company LibrIT
SAS with a 10,000 EUR capital. Erwan Le Gall joined as a partner in 2013. LibrIT provides general Open Source/Linux services. Clients include JCDecaux, Perfony, Thales Global System, PretGo, Headoo, CDG04, CDG44 (contacts on request).
IONIS-STM (ex Master EPITA)
2009-2019
Instructor/Trainer
For 10 years, I taught each year at IONIS-STM (formerly "Masters EPITA"):
12 hours on securing network architectures ("Firewall") and 12 hours on Linux system administration.
The target audience was mainly master's-level (BAC+5) students, future graduates in information security.
OMNIKLES
2008-2011
Infrastructure Manager
From July 2008 to July 2011, I was infrastructure manager at OMNIKLES (www.omnikles.com), a SaaS software publisher. I was responsible for production, technology choices, and the internal fleet. Human relations and open systems (Debian, OpenBSD, Ubuntu) were part of my daily work.
Deliverables:
- Industrialized production releases
- Improved ROI through virtualization
- Reduced customer data loss risk to 0%
- Secured data transfers between data centers
- Implemented a ticketing tool
- Defined and implemented security best practices
- Proactive monitoring policy
Technologies
PERL
Apache
Debian
Nagios
Request
Tracker
OpenBSD
Netfilter/IPTables
DRBD
PacketFilter
Conntrackd
Apache libvirt
pfsync
KVM bind
Bash
JunOS
BackupPC
LINAGORA
2005-2008
Linux Engineer
First full-time role. Delivered multiple on-site missions and engagements for SMEs and large international groups, including defense sites.
Education / Degrees / Certifications
-
2020
Certified Kubernetes Application Developer
Issued by the Linux Foundation. Certificate available here.
-
2006
EPITA Master's Degree (IONIS-STM)
Five-year program in information security. Acquired project management, economics, and legal knowledge, in addition to specialized cybersecurity skills. TOEIC: 790.
-
2004
ISCIO Degree
Certifications such as Windows Server, Cisco CCNA, and RedHat RHCT.
-
2002
DEUST - Polytech Paris (formerly IFITEP)
Two-year integrated prep program leading to a DEUST.
-
2000
High school diploma in electronics engineering
Completed secondary education with honors.
Contact
Soft Skills
Problem solving
Proactive mindset
Management
Communication
Tech watch
Collaboration/DevOps
Critical thinking
Capable
Practicing
Enthusiastic
Passion
Hard Skills
Operating systems (mostly Linux)
Scripting
Kubernetes application development
Networking
Monitoring
Novice
Proficient
Advanced
Expert
Tools Skills
Linux environments
PaSSHport
Bash
IPTables/Netfilter
Debian/Ubuntu
RedHat/CentOS
BackupPC
Ansible
OpenSSL/TLS/Certificates
Centreon
PERL
Beginner
Proficient
Advanced
Expert
Languages
French
English
Japanese
Tools and Technologies
AWS
Ansible
Apache
BackupPC
Centreon
DRBD
Docker
Gentoo
Git
Heartbeat
IPv6
Jenkins
K8s/Kubernetes
LFS
Libvirt
Logstash
Nginx
OpenBSD
OpenVPN
PFsense
Pacemaker
Packer
Postfix
Request
Tracker
Varnish
Vault
Hobbies
Naturally curious about technology and science
Basketball
Home renovation