About Sébastien
French
Native or bilingual
English
Fluent
Italian
Basic
Experience
- SENTINELISSecurity audit in a constrained environment - Cyber defense / Applied researchCONSULTING AND AUDITSApril 2026 - April 2026Clermont-Ferrand, FranceFormalization of a threat-oriented audit approach, adapted to sensitive or highly restricted environments. The objective is to assess how a malicious user with limited system access could subvert intended mechanisms: restricted client, virtual machine, network filtering, USB restrictions, controlled internet access, or application isolation.This approach goes beyond traditional vulnerability scanning. It integrates bypass scenarios, abuse of legitimate components, HID devices or microcontrollers, and discreet behaviors that may not generate obvious alerts in monitoring systems.It also relies on a reflection around persistent threats: long-term observation, attacker adaptation, exploitation of technical and organizational blind spots, and the ability to progressively bypass defenses without noisy actions.Skills applied: configuration audit, risk analysis, network security, virtualization, hardening, internal penetration scenarios, external exposure, recommendation writing, and prioritization of fixes.
- SENTINELISSecurity audit and hardening of Linux & WordPress infrastructureCONSULTING AND AUDITSMarch 2026 - March 2026Lyon, FranceComprehensive audit and progressive takeover of cybersecurity for a sensitive SME exposed to hybrid threats, operating several high-visibility WordPress sites.The mission began with an in-depth analysis of the infrastructure, including inspection of active processes, analysis of system and application logs, verification of persistence mechanisms, and search for indicators of compromise (webshells, malicious scripts, suspicious scheduled tasks).Particular attention was paid to analyzing SSH access and automated intrusion attempts to assess the server's actual exposure level.Following this investigation phase, several cleanup and attack surface reduction actions were implemented:• restricting the network exposure of MariaDB (local access only)• hardening the SSH service and protecting against brute force attacks• implementing automatic blocking mechanisms for malicious IP addresses• optimizing PHP-FPM and MariaDB configurations to improve server stability• correcting application configurations that generated recurring errors in logs.To observe the actual behavior of attacks before deploying a complete security architecture, a behavioral analysis system based on CrowdSec was deployed.This system allows detection of:• automated scans• administration interface probes• WordPress brute force attacks• malicious bots and aggressive crawlers.Hostile IP addresses are automatically blocked via a firewall bouncer mechanism.This phase is the first step before implementing a complete SOC/SIEM architecture for proactive detection and security event correlation.
- SENTINELISPentest & strategic risk assessment for an SMECONSULTING AND AUDITSFebruary 2026 - February 2026Lyon, FranceConducting a comprehensive penetration test as part of a global cybersecurity posture assessment for an SME. The engagement was conducted according to the APD (Advanced Persistent Defense) methodology, a structured approach aiming to analyze not only technical vulnerabilities but also organizational and human vectors that could constitute lasting entry points for an attacker.Technical Phase:
- Mapping of exposed assets
- Analysis of external and internal attack surfaces
- Identification of network and application vulnerabilities
- Controlled exploitation of identified flaws
- Impact assessment (confidentiality, integrity, availability)
Human Factor and Behavioral Exposure:In a realistic persistent attack scenario, a controlled social engineering test was performed to assess the organization's behavioral resilience.The simulated scenario demonstrated that the human attack surface represented a priority exposure vector, regardless of the perceived level of technical maturity.This phase helped reposition cybersecurity within its strategic dimension: an organization can be technically robust yet remain vulnerable due to its human factor.Deliverables:- Detailed technical report
- Executive summary for management
- Strategic risk analysis
- Prioritized remediation plan
- Organizational recommendations and awareness training
Result:The mission led to a global awareness and the implementation of an improvement plan integrating architecture, governance, and the human factor.
Recommendations
Be the first to recommend Sébastien
Help this freelancer shine by sharing your experience working together.
These freelancer profiles also match your criteria
Agatha Frydrych
Backend Java Software Engineer
4.7
(3)
2
Baptiste Duhen
Fullstack developer
4.6
(4)
5
Amed Hamou
Senior Lead Developer
4
(2)
7
Audrey Champion
Web developer
4.3
(3)
4
Education
- RNCP37987 – Specialist in Cybersecurity (Level 6)CSB Education Group (CSB.School)Parcours Bac+3 orienté pratique visant à rendre opérationnel sur les problématiques concrètes de cybersécurité en environnement PME/ETI : sécurisation d’infrastructures, durcissement systèmes, gouvernance des risques, détection et réponse aux incidents, ainsi que tests d’intrusion éthiques encadrés. La formation est structurée autour d’une montée en compétences progressive (réseaux, systèmes, développement, sécurité), avec une forte part de cas pratiques en conditions proches du réel : conception et sécurisation d’architectures réseau (zone entreprise/DMZ/zone industrielle), administration et sécurisation Linux/Windows, mise en place de mesures de protection de la donnée (chiffrement, contrôle d’accès), et rédaction de documentation/standards techniques. Un volet “SOC & détection” met l’accent sur l’analyse d’événements, la collecte et l’exploitation de journaux (logs), la construction de scénarios (playbooks) et l’amélioration continue des détections. Cette dimension se traduit directement en livrables utiles pour une organisation : cartographie des actifs, définition du comportement nominal, procédures de réponse et recommandations priorisées. Le parcours inclut également des mises en situation de tests d’intrusion éthiques (OSINT/discovery, reconnaissance active, exploitation encadrée, élévation de privilèges, AD, pivot), avec restitution structurée : synthèse, preuves, criticité, impacts (confidentialité/intégrité/disponibilité) et plan de remédiation. Enfin, l’intégration d’enseignements en développement et sécurité applicative (notamment Python/Rust/C, modèles web, API, cryptographie) renforce la capacité à auditer, automatiser et fiabiliser des outils internes, ainsi qu’à dialoguer efficacement avec des équipes techniques. En pratique, ce parcours soutient mes interventions chez les clients sur : audit d’exposition, durcissement, sauvegardes/PRA, segmentation réseau, sécurisation des postes/serveurs, et amélioration de la posture sécurité de manière pragmatique et documentée.