Freelancer profile translated to English.

Back to original language

Description

I work on your sensitive environments to audit, secure, and automate your critical systems:

Risk Analysis & Security Governance (EBIOS RM)
Compliance with NIS2, DORA, CRA, ISO 27001/27005, ANSSI frameworks
Management of security policies & risk treatment plans
System hardening & security maintenance

I also support your teams with operational recommendations to manage risks.

Languages

French
Native or bilingual
English
Native or bilingual

Workplace preferences

Can work on-site

Toulouse (up to 50km)

AIRBUS Defence & Space
Cybersecurity & Systems Engineer
AVIATION AND AEROSPACE
November 2024 - Today (1 year and 7 months)
Toulouse, France
External consultant on a project to secure and make reliable a critical testing platform (space sector - 50+ VMs)
Strengthening IS security governance, risk management, and regulatory compliance for a classified industrial environment, in a space context with high operational and state requirements.

Achievements:
Structuring cyber risk management according to ISO/IEC 27005 and NIS2, reducing untreated critical risks by approximately 40% and prioritizing CVEs based on their operational impact.
Improving program GRC (Governance, Risk, Compliance) management through the formalization of IS security impact analyses, updating the compliance framework, and concise reporting, reducing security decision-making times by ~30%.
Aligning security with space systems engineering by integrating IS security requirements into the system lifecycle (ECSS), limiting operational compliance gaps.
Enhancing the assurance level of critical components by considering Common Criteria requirements (ISO/IEC 15408).
Operation and Maintenance (MCS/MCO) of a virtualized platform (Proxmox, Linux/Windows), ensuring operational availability > 99% during testing campaigns.
Improving detection and monitoring through centralized supervision (logs, metrics), reducing incident detection time by approximately 35%.
Reducing vulnerability exposure through hardening (N2/N3), security remediation, and secure-by-default automation, with a -50% reduction in critical vulnerability backlog.

Environment:
Linux (RHEL/Debian), Proxmox, PXE, Puppet, GitLab CI, Graylog, Nagios, CVE management,
ISO/IEC 27001, ISO/IEC 27005, ISO/IEC 22301, ISO/IEC 15408, ECSS, NIS2, CRA principles,
enterprise GRC platforms (SAP ecosystem, internal tools), MCO/MCS, Confluence, Jira.
Linux DevSecOps Cybersecurity Governance ISO 27001
LE CNAM
Cybersecurity & Systems Engineer - CyberRange Project
EDUCATION AND E-LEARNING
November 2023 - October 2024 (11 months)
Paris, France
External consultant on a project for attack scenario creation and automation of an open-source CyberRange, presented in a European context due to its high educational and technical value.

Achievements:
Project led as part of a thesis titled "Attack Scenario Creation on an Open-Source CyberRange, Including Modeling", automation, and design of complete educational paths.
Presentation of the project at the European level, highlighting the relevance and innovation of the developed educational and technical model.
Deployment of a CyberRange based on KYPO with realistic attack scenarios, increasing capacity while reducing workshop preparation times.
Integration of OpenStack to virtualize and isolate three critical environments, enhancing resilience and security in accordance with NIS2 requirements (segmentation, hardening, availability).
Advanced automation via Python/Bash and integration of ML/Deep Learning methods for anomaly detection.
Implementation of NLP/AI solutions based on Vertex AI and LangChain to automate labeling, simplify scenarios, and accelerate the production of educational content.

Environment:
KYPO, OpenStack, Python, Bash, ML/Deep Learning, LangChain, Vertex AI, NIS2.
Cybersecurity Linux DevSecOps NIS2 Docker
Lavido SAS
Cybersecurity & Systems Engineer
HUMAN RESOURCES
October 2020 - October 2023 (3 years)
Alès, France
Securing and optimizing microservices - HRIS sector

Achievements:
Strengthened the security of Node.js and Symfony microservices through access controls and endpoint hardening.
Secured and optimized MySQL databases with prepared statements and a coherent data model.
Maintained >95% unit test coverage focused on security.
Wrote a thesis on the scalability and security of microservices (comparing 14 languages).
Implemented caching and protections against load spikes to improve resilience.
Deployed centralized monitoring via Prometheus and Grafana.
Conducted ISO 27005 risk analyses using EBIOS RM.
Modernized the infrastructure by replacing a monolithic Debian environment with a cloud-ready stack using Docker, Kubernetes, Ansible, and Terraform to support scaling.
Implemented a secure CI/CD pipeline under GitLab CI/CD (linting, tests, security scans, automated deployments).

Environment:
Node.js, Symfony, MySQL, Docker, Kubernetes, Ansible, Terraform, GitLab CI/CD, Linux (Debian), Git, Nginx, Apache, Prometheus, Grafana, DevOps/DevSecOps, centralized monitoring, logging, containerization, scalability, microservices, Confluence, Jira.
DevSecOps Cybersecurity ISO 27001 Governance Linux

Check out Thomas's experience

Be the first to recommend Thomas

Help this freelancer shine by sharing your experience working together.

Agatha Frydrych

Backend Java Software Engineer

4.7

(3)

Baptiste Duhen

Fullstack developer

4.6

(4)

Amed Hamou

Senior Lead Developer

(2)

Audrey Champion

Web developer

4.3

(3)

Signup to reveal

Master 2, Computer Science Engineer, Cybersecurity specialization
Conservatoire National des Arts et Métiers
2025
Formation centrée sur la cybersécurité appliquée aux environnements critiques : gestion des risques, sécurité des systèmes, forensic et sécurisation opérationnelle. Mémoire : optimisation des performances et renforcement de la cybersécurité des services web lors d’un changement technologique (comparaison de 14 langages différents dont Rust, Go, C++, analyse des vulnérabilités, modélisation d’attaques et contre-mesures). Travaux pratiques : déploiement d’environnements OpenStack, automatisation Python/Bash, supervision, audits de sécurité, projets en méthodes agiles. Ingénieur Informatique - Parcours Cybersécurité Niveau RNCP 7 (Bac+5)
Master 1, Cybersecurity Architect
Conservatoire National des Arts et Métiers
2022
Approfondissement des politiques de sécurité, architecture sécurisée, hardening et supervision. Travaux réalisés : conception d’architectures résilientes, modélisation de menaces, tests d’intrusion appliqués, validation de mesures de sécurité. Architecte en Cybersécurité Niveau RNCP 6 (Bac+4)

Check out Thomas's education

Google Cloud - Professional Cloud DevOps Engineer
Google
2025
DORA Lead Manager
PECB
2023

Thomas's certifications are only visible to Malt Community members

Thomas Doberva

Cybersecurity & Governance Engineer

About Thomas

Experience

Recommendations

These freelancer profiles also match your criteria

Education

Certifications

Skill set

Categories