Freelancer profile translated to English.
Back to original languageAbout Houssem Eddine
OSCP certified offensive cybersecurity engineer with over six years of experience in identifying and exploiting vulnerabilities, building robust security solutions, and protecting information systems against advanced attacks.
I possess in-depth expertise in penetration testing (based on PTES and OWASP methodologies), code analysis, Red Team exercises (assumed breach and table-top), as well as custom tool development. My background has allowed me to collaborate with large companies from various sectors such as insurance, banking, healthcare, and information technology. I have had the opportunity to work for major players such as AXA Assurance, Natixis Banque, Dassault Systèmes, Ernst & Young (EY), Deloitte, CMA-CGM, and QAPCO.
French
Native or bilingual
English
Fluent
Can work on-site
Paris (up to 50km)
Experience
- Dassault SystèmesSenior Pentester / Red TeamSOFTWARE PUBLISHINGOctober 2024 - Today (1 year and 8 months)Vélizy-Villacoublay, France
- Conducted in-depth penetration tests on various perimeters (Web, Mobile, Infrastructure).
- Led Red Team campaigns in assumed breach and full scope modes, with realistic simulation of advanced threats.
- Performed security analysis of source code (manual review and SAST tools) to identify logical or technical vulnerabilities.
- Developed internal scripts and tools to automate recurring tasks (reconnaissance, exploitation, reporting).
- Simulated internal attacks: malicious user compromise (insider), targeted phishing campaigns, physical access tests.
- Wrote detailed technical reports accompanied by clear executive summaries for non-technical stakeholders.
- Formulated concrete remediation recommendations, prioritized by criticality and adaptable to business constraints.
- AMD ConsultingSenior PentesterDIGITAL AND ITNovember 2021 - Today (4 years and 7 months)Paris, France
- Collaborated with development teams to integrate security practices from the beginning of the software development lifecycle.
- External / internal / Web and mobile network penetration testing.
- Source code review.
- Network security configuration and architecture audit.
- Conducted awareness campaigns through social engineering scenarios.
- Developed detailed audit reports and recommendations to improve security.
- Participated with the Cyber Defense team in incident resolution.
- Trained and mentored junior team members on best practices in penetration testing and information security.
Tools:Metasploit / BurpSuite Pro / Frida / Nmap / Sqlmap /Nessus Pro/ Nikto / Sublister /Dirbuster / Maltego / Wfuzz / John the Ripper / Recon- ng/ GDB / Ghidra / Amass / Enum4linux / linpeas / Docker / wpscan/ Bloodhound / PowerView / Mimikatz / CrackMapExec / Python- impacket / Acunetix Pro / Netsparker/SqlMap /Wireshark - EYSenior PentesterCONSULTING AND AUDITSMay 2021 - November 2021 (6 months)Paris, France
- Managed penetration testing projects.
- Conducted Red Team operations.
- Performed external / internal / Web and mobile network penetration tests.
- Network security architecture review.
- Conducted OSINT (Open Source Intelligence) tests.
- Report review.
- Contributed to the "Ey internal tools" project by developing advanced reporting tools.
Tools:Metasploit / BurpSuite Pro / Frida / Nmap / Sqlmap /Nessus Pro/ Nikto / Sublister /Dirbuster / Maltego / Wfuzz / John the Ripper / Recon- ng/ GDB / Ghidra / Amass / Enum4linux / linpeas / Docker / wpscan/ Bloodhound / PowerView / Mimikatz / CrackMapExec / Python- impacket / Acunetix Pro / Netsparker/SqlMap /Wireshark
Recommendations
These freelancer profiles also match your criteria
Agatha Frydrych
Backend Java Software Engineer
4.7
(3)
2
Baptiste Duhen
Fullstack developer
4.6
(4)
5
Amed Hamou
Senior Lead Developer
4
(2)
7
Audrey Champion
Web developer
4.3
(3)
4
Education
- 5, Computer Software EngineeringHigher Institute of Applied Sciences and Technology of Sousse - ISSAT Sousse20195, Computer Software Engineering
Certifications
- Offensive Security Certified Professional (OSCP)Offensive Security2020