You're seeing this page as if you were . The main menu is still yours, though. Exit from immersion
Foudhaili M.FM

Average response time: 1 hour

Freelancer profile translated to English.
Back to original language

About Foudhaili

Offensive security expert with 8 years of total experience. OSCP certified (CISSP in progress). I was a member of the Red Team for Ernst & Young for 2 years, where I carried out multiple assignments for governments, banks and financial institutions, as well as for clients in the oil sector.
I currently lead a team of cybersecurity analysts who carry out external and internal pentest missions on web, API, mobile, and network targets (servers, Active Directory, ...).
  • French

    Fluent

  • Arabic

    Native or bilingual

  • English

    Fluent

Can work on-site
Paris (up to 50km), Lyon (up to 50km), Marseille (up to 30km), Toulouse (up to 30km), Lille (up to 30km)

Experience

  • Cobalt.io
    Cyber Security Researcher
    CONSULTING AND AUDITS
    October 2024 - Today (1 year and 10 months)
    As aSecurity Researcheron the Cobalt.io platform, I conducted numerous penetration tests (pentests) on various environments (web applications, APIs, cloud environments, mobile and internal networks) for international clients in critical sectors (finance, health, industry, tech).

    My main responsibilities:
    • Conducted comprehensive penetration tests as part of the Cobalt Core program (OWASP Top 10, configuration, business logic, privilege escalation, etc.).
    • Wrote detailed and actionable audit reports, including risk assessment, proof of exploitation, and prioritized remediation plan.
    • Collaborated closely with client technical teams for vulnerability reproduction and correction.
    API Pentest Source Code Review Security Audit risk-and-vulnerability-assessment Internal Pentest
  • Yogosha
    Cyber Security Researcher
    TECH
    September 2019 - Today (6 years and 11 months)
    Paris, France
    • Helped clients increase their security level by managing their technical security programs (Bug Bounty, Crowdsourced Pentests, and Coordinated Vulnerability Disclosure).
    • Participated in pre-sales activities, conducted technical presentations to potential clients.
    • Managed technical teams to ensure the deployment of the Yogosha security solution on-premise or on a private cloud.
    Red Team Web Pentest Vulnerability Management IT Security Security Audit
  • EY
    Cybersecurity Consultant / Red Team
    CONSULTING AND AUDITS
    February 2018 - August 2019 (1 year and 7 months)
    - Red Teaming
    - Internal and external penetration testing
    - Review and define security procedures
    - Review network, database, and source code security
    Red Teaming Social Engineering Web Pentest Internal Pentest IT Security

Recommendations

Be the first to recommend Foudhaili

Help this freelancer shine by sharing your experience working together.

These freelancer profiles also match your criteria

AgathaA

Agatha Frydrych

Backend Java Software Engineer

4.7

(3)

2

BaptisteB

Baptiste Duhen

Fullstack developer

4.6

(4)

5

AmedA

Amed Hamou

Senior Lead Developer

4

(2)

7

AudreyA

Audrey Champion

Web developer

4.3

(3)

4

Education

  • Computer Engineering
    Esprit
    2019

Certifications

  • Offensive Security Certified Professional (OSCP)
    Offensive Security
    2019
    offensive security

Skill set

Categories