Freelancer profile translated to English.
Back to original languageAbout Henri
Cybersecurity engineer with over 3 years of experience, specializing in:
Application Security:
- Source code auditing (SAST, DAST)
- Security integration in CI/CD pipelines (DevSecOps)
- Code review, OWASP vulnerability analysis, Web penetration testing
- Vulnerability management (Tenable, Hackuity)
Governance and Compliance:
- EBIOS RM risk analysis
- Implementation of Information Security policies
- Knowledge of ISO 27001 & 27002 standards
I am also apart-time lecturerin several engineering schools, which allows me to simplify technical topics and pragmatically impart security culture.
Proficient Tools & Environments:
- AppSec: Tenable, Hackuity, GitLab CI, SonarQube, Tenacy, WAF
- SOC: SIEM Logpoint, ELK, Darktrace, Palo Alto, Sophos, Wallix, Forensics
- Pentest: Burp Suite, Nmap, Metasploit, Kali Linux
- Methodologies: OWASP, MITRE ATT&CK, ISO 27001
Available for missions:
- Application Security / DevSecOps
- Implementation of security frameworks (technical and GRC) / Documentation
- Web Penetration Testing
- Awareness / support for development teams on "Security by Design"
French
Native or bilingual
English
Fluent
Can work on-site
Bordeaux (up to 50km), Paris (up to 10km), Lyon (up to 10km)
Experience
- TESSI DIGITAL SERVICESApplication Security EngineerSeptember 2024 - Today (1 year and 9 months)Bordeaux, France
- Analyze vulnerability scan reports, penetration tests, and code reviews to identify and prioritize security flaws.
- Coordinate corrective actions with application owners, ensuring security risks are addressed.
- Support development teams: SonarQube administration, security tool integration, and vulnerability remediation.
- Organize and conduct technical workshops to enhance application security.
- Participate in client relations by responding to security questionnaires and compliance requirements.
- Tessi FranceOperational Security AnalystOctober 2022 - October 2024 (2 years)Bordeaux, France
- Implementation of a digital forensics protocol and evidence collection.
- Advanced monitoring and investigation of security incidents via SIEM, EDR, IPS, and other tools, through to resolution.
- Contribution to SOC optimization: creation of detection scenarios, tuning of correlation rules, and expansion of monitoring coverage.
- Continuous monitoring of cyber threats.
- ZiwitCybersecurity ConsultantApril 2022 - October 2022 (6 months)Montpellier, France
- Web penetration testing and internal audits (AD and workstation audits).
- User awareness training on cyber best practices.
- Audit and SSI compliance of network and system architectures.
- Implementation and monitoring of operational procedures for analyzing, escalating, and assisting in the remediation of security incidents.
- Security monitoring.
Recommendations
Be the first to recommend Henri
Help this freelancer shine by sharing your experience working together.
These freelancer profiles also match your criteria
Agatha Frydrych
Backend Java Software Engineer
4.7
(3)
2
Baptiste Duhen
Fullstack developer
4.6
(4)
5
Amed Hamou
Senior Lead Developer
4
(2)
7
Audrey Champion
Web developer
4.3
(3)
4
Education
- Master, Sécurité des systèmes informatiques, labellisé SecNumEdu par l'ANSSI.Université de Rouen Normandie2022Master, Sécurité des systèmes informatiques, labellisé SecNumEdu par l'ANSSI.
- Licence, InformatiqueUniversité de Rouen Normandie2020Licence, Informatique
Certifications
- Certified DevSecOps Professional (CDP)Practical DevSecOps2026