Skip to content

Alexandre CooremanDevSecOps / SRE

Early-career infrastructure and fullstack engineer. I design reliable, maintainable and secure architectures, from the server to the app, and I run them in production.

DegreeExpert in Software Engineering5-year degree · RNCP level 7 · Epitech, class of 2026
In productionSelf-hosted platformoperated continuously since 2022

Available for freelance work: web, infrastructure and operations. Open to professional opportunities, remote, France and Europe.

Software engineer finishing the Epitech curriculum (5-year degree, 2026). Alongside internships, freelance work since 2023: client websites shipped and operated in production, on an infrastructure I designed and run daily. Linux, Docker, Traefik, zero-trust private network, encrypted backups.

My direction: DevSecOps / SRE. Every piece of the platform is documented here as a decision record (context, options, choice, tradeoff) and read through the same lens: reliable, maintainable, secure.

  1. Full-stack & mobile developerInternship
    TerraGrow · Sept. 2025 · ongoing

    Profitability management platform for farms: designing and shipping full-stack and mobile features (Angular, Node.js, PostgreSQL, Flutter), with a GitLab CI/CD pipeline, in a small team with strong autonomy.

  2. Infrastructure & DevOps engineerFreelance
    Freelance · July 2023 · ongoing

    Design and operation of a self-hosted production platform, managed end to end: Linux, Docker, Traefik (automated TLS), mesh VPN, internal DNS, encrypted off-site backups (3-2-1), security hardening, documentation and automation. Client sites and applications shipped, then maintained.

  3. Back-end & directory developerInternship
    Auchan · Feb. 2024 · June 2024

    Internal InOut application: authentication through an LDAP directory (Docker containers), back-end refactor (Node.js) and a filtering system for several hundred employees, in an agile setup.

  4. Security & performance developerInternship
    Koméo · Sept. 2022 · Dec. 2022

    PHP web application built solo: security hardening (SQL injection, XSS, upload validation), user permissions and progressive loading over tens of thousands of records.

Languages
CC++TypeScript / JavaScriptPythonPHPC#DartSQLBashPowerShell
Systems & networking (Epitech / UQAR foundation)
Unix systems programmingLinux administrationNetwork programmingSystems architectureLow-level (x86 assembly)
Back end
Node.jsNestJSExpressPostgreSQLPrismaSequelizeREST APIs & webhooksLDAP auth (OpenLDAP)Event-driven systems
Front & mobile
AngularReact / Next.jsAstroTailwind CSSFlutter (iOS & Android)UI/UX & design systemsSEO
Infra / DevOps
Docker & Docker ComposeReverse proxy (Traefik, nginx), Let's Encrypt TLSCI/CD (GitLab CI)Zero-trust networking (Tailscale, WireGuard)Split-horizon DNS (CoreDNS, AdGuard)Backup & restore (3-2-1, encrypted)Monitoring & notificationsDay-to-day operationsSynology NAS (deployment, SMB/rsync migration)
Security
Linux & Docker hardening (least privilege)Firewalls & network segmentationSecrets managementApplication security (OWASP: SQLi, XSS, CSRF)Authentication (OAuth 2.0, tokens)Encryption (TLS, backups)Anti-bot (Cloudflare Turnstile)
Methods
Git (GitHub, GitLab)Agile (Jira)Code reviewsAutomated testingDocumentation & runbooksAI: agents & workflows (Claude Code)
Currently learning (SRE roadmap)
Observability (Prometheus, Grafana, Loki)Kubernetes (k3s)IaC (Terraform, Ansible)Managed cloud (AWS)

The detail and the method: the SRE roadmap.