You're seeing this page as if you were . The main menu is still yours, though. Exit from immersion
Ayoub L.AL

Ayoub L.

Embedded Systems & Cybersecurity Engineer

€500/day
Paris, FR
3-7 years

Average response time: 1 hour

Freelancer profile translated to English.
Back to original language

About Ayoub

Embedded systems engineer specializing in connected systems and embedded cybersecurity, with over 6 years of experience in critical automotive and industrial environments.

I am involved in the entire development cycle:
- Requirements analysis,
- Software design,
- Embedded development in C,
- Integration,
- Validation,
- Test automation,
- Low-level system debugging.

I participated in the development and validation of critical features related to:
- Smart Access / Digital Key,
- Plug & Charge for electric vehicles,
- Secure provisioning,
- PKI / HSM / certificate management,
- Embedded diagnostics,
- Gateways and connected systems.

My experience covers:
- AUTOSAR Classic,
- CAN / diagnostics,
- Embedded Linux,
- STM32 / RTOS / bare metal,
- Python for validation and tooling,
- Distributed security architectures,
- ECU ↔ cloud ↔ mobile communication.

Accustomed to demanding environments requiring:
- Traceability,
- Rigorous validation,
- System/software collaboration,
- Complex cross-layer debugging,
- Technical ownership.

Main Technologies: C, Python, AUTOSAR, Embedded Linux, STM32, CAN, BLE, NFC, PKI, OTA, diagnostics, Trace32, CAPL, DOORS, Git, Jira, Confluence.
  • French

    Native or bilingual

  • English

    Fluent

Can work on-site
Paris (up to 50km)

Experience

  • Thales Digital Identity and Security
    Embedded Software Engineer
    October 2025 - Today (10 months)
    Gémenos, France
    Cryptography & Key Management
    - Implemented cryptographic workflows (AES-GCM/CBC, RSA, ECC) within secure communication and key management systems
    - Developed key lifecycle mechanisms (KEK/DEK derivation, IV management, secure token generation)
    - Contributed to PKI-based trust models and tokenized security architectures (payment, identity systems)
    - Applied HSM-oriented principles to enforce strict separation between key material and application layers

    System Debugging & Cross-Layer Analysis
    - Investigated and resolved complex issues in C-based cryptographic implementations (encryption flows, key handling, authentication)
    - Developed Python reference models to reproduce, validate, and challenge cryptographic workflows and design decisions
    - Ensured consistency between embedded and backend system components during integration phases
    - Collaborated with security, backend, and firmware teams to resolve cross-layer integration issues

    Tooling & Automation
    - Developed Python tools to automate PKI generation and validation workflows, replacing manual OpenSSL-based processes
    - Built YAML-based pipelines for automated testing and CI integration
    - Refactored internal tooling to improve modularity, maintainability, and reproducibility

    Engineering Impact
    - Operated with high autonomy in validation and debugging activities within security-critical systems
    - Contributed to process improvements and technical documentation aligned with team practices
    - Improved knowledge sharing and team alignment through structured documentation and reusable tooling

    Tools & Technologies
    - Crypto: PKI, X.509, AES-GCM, RSA/ECC, HSM
    - Languages: C (Embedded), Python (Validation & Tooling)
    - QA: VTP, Code Coverage, Traceability
    - Environment: Git, Jira, Confluence, CI/CD
    Python Cybersecurity C QA Testing Crypto
  • Ampere
    Embedded Software Engineer — Cybersecurity Validation (CKVM)
    March 2025 - September 2025 (6 months)
    Paris, France
    Provisioning & Security Workflow Analysis
    - Configured and operated a multi-ECU validation environment (Multiverse bench) to perform end-to-end testing of connected vehicle security features
    - Executed and analyzed provisioning workflows via diagnostic services, validating secure vehicle access using JWT-based authentication mechanisms
    - Developed Python tools to simulate, reproduce, and validate provisioning and authentication scenarios
    - Investigated ECU and Android logs to analyze issues in provisioning, authentication, and secure communication flows
    - Collaborated with ECU development teams to reproduce, debug, and resolve system-level issues identified during end-to-end validation
    - Resolved cross-layer integration issues across diagnostics, backend communication, and ECU interaction layers
    UDS JWT Risk Analysis
  • Continental
    Embedded Software Engineer – Cybersecurity & Embedded Systems
    September 2021 - February 2025 (3 years and 5 months)
    Toulouse, France
    Embedded Security & AUTOSAR Engineer — Continental

    - Designed, developed, and validated AUTOSAR software components for safety- and security-critical ECUs, contributing to ISO 26262 and MISRA-compliant systems
    - Acted as a key technical contributor on security-critical features, performing cross-layer design, implementation, and debugging across AUTOSAR, diagnostics, and cryptography domains

    Plug & Charge (PnC) — Certificate Handling & Diagnostics
    - Led development of an AUTOSAR SWC for secure reception, parsing, and validation of digital certificates (X.509, ASN.1, DER/PEM)
    - Defined component architecture from system requirements (SRS → SDD), ensuring traceability and compliance
    - Implemented diagnostic services (DIDs, DTCs) to monitor certificate integrity and system behavior
    - Acted as technical reference for cross-layer debugging across AUTOSAR, diagnostics, and cryptographic layers
    - Developed automated validation scripts used by system teams for integration testing

    Secure Network Management ECU
    - Integrated CAN NM / OSEK NM modules and developed monitoring SWC to manage secure network state transitions
    - Resolved cross-layer integration issues, improving system robustness and stability
    - Provided architectural recommendations to handle edge cases and improve system reliability

    Smart Access (BLE/NFC)
    - Developed AUTOSAR SWCs enabling secure vehicle access via BLE/NFC, including provisioning and contract handling
    - Integrated cryptographic and certificate-based authentication mechanisms
    - Contributed to feature design and resolved security-related issues across communication and cryptographic layers

    Testing & Engineering Practices
    - Performed unit, integration, and system-level testing using Robot Framework, CAPL, CANoe, and Trace32
    - Contributed to Agile processes (planning, refinement, defect triage) aligned with safety and security priorities
    Python Crypto Embedded Systems Cybersecurity JWT

Recommendations

Be the first to recommend Ayoub

Help this freelancer shine by sharing your experience working together.

These freelancer profiles also match your criteria

AgathaA

Agatha Frydrych

Backend Java Software Engineer

4.7

(3)

2

BaptisteB

Baptiste Duhen

Fullstack developer

4.6

(4)

5

AmedA

Amed Hamou

Senior Lead Developer

4

(2)

7

AudreyA

Audrey Champion

Web developer

4.3

(3)

4

Education

  • Embedded Systems and C
    Embedded Systems and C
  • Telecommunications Engineering
    des Postes et Télécommunications
    2018
    Telecommunications Engineering

Skill set

Categories