You're seeing this page as if you were . The main menu is still yours, though. Exit from immersion
Malt Strategy
New report
Malt Tech Trends 2026
Mohamed BouzekriaMB

Mohamed Bouzekria

Senior Penetration Tester - Application Security

€800/day
Paris, FR
8-15 years
Penetration Testing
Code Review
Offensive Security

Average response time: 1 hour

Freelancer profile translated to English.
Back to original language

About Mohamed

I am an expert inoffensive security (07 years of experience)with over03 yearsof experience as aLead PenetrationTester. Having held various positions within different structures and in various fields of activity.

My expertise extends to several topics, including:

Vulnerability Assessment and Penetration Testing:

I perform in-depth security assessments to identify and remediate potential vulnerabilities in systems.

#Application Security:

I have solid experience in securing applications through the implementation of practices such as sSDLC, DevSecOps, and Product Security.

Secure Source Code Review:

I meticulously analyze application source code to detect potential security issues.

Architecture & Configuration Review:

I conduct in-depth reviews of system architecture and configuration to enhance their resilience against attacks.

Certifications & Training:

My skills are validated by several renowned certifications, including:

Offensive Security Certified Professional (OSCP):Demonstrating my ability to solve complex security problems.
Offensive Security Web Expert (OSWE):Confirming my expertise in securing web applications.
Certified Red Team Professional (CRTP):Attesting to my proficiency in penetration testing and attack simulation.
Certified Red Team Expert (CRTE):Recognizing my advanced level in penetration testing and security assessment.
Professional Scrum Master (PSM):Providing me with a solid understanding of agile practices for effective collaboration within development teams.

I am always looking for new exciting challenges and look forward to putting my expertise to work for your project.
Consulting and Audits
Consumer Electronics and Appliances
Insurance
Banking and Financial Services
Energy and Electricity

  • French

    Native or bilingual

  • English

    Native or bilingual

Can work on-site
Paris (up to 50km), Nice (up to 50km), Marseille (up to 50km), Montpellier (up to 50km), Lyon (up to 50km)

Experience

  • SII CONCATEL
    Senior Penetration Tester
    CONSULTING AND AUDITS
    May 2023 - Today (3 years and 1 month)
    Paris, France
    • Perform manual and automated Web Application Penetration Testing (DAST), Network Penetration Testing.
    • Adhere to the security standards and all policies and procedures identified for the project specified by the organization.
    • Conduct comprehensive security testing of mobile applications, develop testing methodologies, and provide actionable recommendations for
    vulnerability remediation.
    • Prepare and present detailed, written technical information for internal and external audiences.
    • Summarize and document results of testing for management reporting including proper disposition of test exceptions
  • Upwork
    Senior Penetration Tester
    DIGITAL AND IT
    January 2018 - Today (8 years and 5 months)
    Tékétravail
    - Perform memory investigations and reverse engineering of malware, analyze and extract IOCs (Indicators of Compromise).
    - Regularly perform security reviews of software and processes.
    - Review and create threat models.
    - Perform security code reviews and educate engineering teams on best practices for writing secure code.
    - Conduct application and infrastructure penetration testing, as well as physical security assessments and social engineering tests.
    Penetration Test Penetration Testing Penetration Testing Digital Forensics malware kali metasploit burpsuite ethical hacking
  • Realistic Security
    Lead Penetration Tester
    CONSULTING AND AUDITS
    April 2020 - May 2023 (3 years and 1 month)
    Alger, Algeria
    • Conduct targeted penetration tests during exercises and testing events by applying sophisticated attacks targeted as a simulated adversary.
    • Participate in event planning stages to develop cybersecurity assessment plans and conduct unannounced penetration tests.
    • Create supporting materials for the Red Team (e.g., probabilistic attack graphs, cybersecurity exercise playbooks, etc.).
    • Assist in onboarding new Red Team members through job shadowing and knowledge transfer sessions.
    • Support the identification of controls to remediate and/or mitigate security weaknesses identified in systems, applications, processes, and procedures.
    • Assist the audit manager in determining audit program customization requirements and corresponding program steps.
    • Perform dynamic application security testing using both manual and automated testing tools.
    • Conduct a wide range of security assessments related to applications, code reviews, mobile applications, and infrastructure.
    • Summarize and document test results for management reporting, including proper handling of identified exceptions.
    Penetration Test Penetration Testing Digital Forensics Security Malware Audit Red Team
Check out Mohamed's experience

Recommendations

Be the first to recommend Mohamed

Help this freelancer shine by sharing your experience working together.

These freelancer profiles also match your criteria

AgathaA

Agatha Frydrych

Backend Java Software Engineer

4.7

(3)

2

BaptisteB

Baptiste Duhen

Fullstack developer

4.6

(4)

5

AmedA

Amed Hamou

Senior Lead Developer

4

(2)

7

AudreyA

Audrey Champion

Web developer

4.3

(3)

4

Signup to reveal

Education

  • Master in Computer Systems Security
    University of Science and Technology Houari Boumediene
    2016
  • Bachelor's degree in Information Systems Engineering
    University of Science and Technology Houari Boumediene
    2014

Certifications

Mohamed's certifications are only visible to Malt Community members

Skill set

Penetration Testing
Risk and Vulnerability Assessment
Threat Intelligence
Security Awareness Training
Cybersecurity Incident Management
Penetration Test
Vulnerability Management
Vulnerability Management
Kali Linux
Metasploit
Active Directory
Red Team
Cloud Computing
Microsoft Azure
C#
ASP.NET
SQL
PostgreSQL
PHP
phpMyAdmin
Django
Python
JavaScript
XSS
SQL Injection
Cybersecurity
Spring Security
Network Security
Cybersecurity
Cloud Security
Security Audit
Network Security
Information Security
WordPress Security
Penetration Testing
security audit
PowerShell
Security
Windows PowerShell
Code Review
Web Security
Penetration Testing
Digital Forensics
malware
kali
burpsuite
ethical hacking
Audit
ASP.NET MVC
sSDLC
Secure Software Development Lifecycle
Security Requirements
Training
OWASP
Threat Modeling
Threat Modeling
Bad User Stories
Evil User Stories
Product Security
Microsoft Security Development Lifecycle (SDL)
Open Web Application Security Project (OWASP) Software Assurance Maturity Model (SAMM)
Building Security in Maturity Model (BSIMM)
NIST Special Publication 800-64
ISO/IEC 27034
Open Software Assurance Maturity Model (OpenSAMM)
DREAD
STRIDE
.NET
SQL Server
AZURE
jQuery
Bootstrap
CSS3
CSS
HTML5
Xamarin
Razor
CQRS
SignalR
ASP.NET Web API
ASP.NET WebServices
Entity Framework
SOA
CQRS - Command and Query Responsibility Segregation
XAML
WPF
Windows Presentation Foundation
Ext.js
Laravel
MySQL
Oracle
Wordpress
Data Science
Reverse Engineering
Antivirus
Machine Learning

Categories