You're seeing this page as if you were . The main menu is still yours, though. Exit from immersion
William Lowe KamgaWL

William Lowe Kamga

AppSec & DevSecOps Consultant

€450/day
Paris, FR
0-2 years

Average response time: 1 hour

Freelancer profile translated to English.
Back to original language

About William

Cybersecurity engineer with a dual background in software development, I cover the entire spectrum of application security: code auditing, penetration testing (OWASP Top 10), DevSecOps integration into CI/CD pipelines, and GDPR compliance. My proximity to development (Python, JavaScript, React, Node.js) allows me to deeply understand technical challenges and propose concrete remediations, not just theoretical recommendations. Among my achievements: a complete application security audit at Scribarius (SAST/SCA/DAST, DPO function, DPA drafting), and the design of an end-to-end DevSecOps pipeline published on GitHub (Gitleaks, Semgrep, Trivy, OWASP ZAP, automated deployment with security validation at each stage). I work with both startups and established organizations, and adapt quickly to any technical context.
  • French

    Native or bilingual

Can work on-site
Paris (up to 50km)

Experience

  • Scribarius
    Application Security Engineer
    TECH
    January 2026 - April 2026 (3 months)
    Paris, France
    • Application security audit (SAST, SCA, DAST) on a Python / Flutter application integrating an AI service.
    • Code and dependency analysis with SonarQube and Trivy, identification of critical CVEs.
    • Application penetration testing (OWASP Top 10).
    • Robustness testing of an LLM service (prompt injection, jailbreak) with Promptfoo.
    • Infrastructure audit (Docker, TLS, security headers).
    • Vulnerability report writing with PoC and remediation recommendations.
    GDPR Security audit Vulnerability management Documentation Secure Coding
  • Bamara
    Development & Application Security
    E-COMMERCE
    July 2025 - January 2026 (6 months)
    Design and security of a full-stack marketplace platform, from architecture to production.

    • Platform development (React, Vite, Node.js, Express, Supabase, Cloudinary)
    • REST API security and RLS policies setup on PostgreSQL
    • Cloudflare WAF configuration and tuning
    • Authentication flow security (PKCE, token-hash)
    • Vulnerability analysis with SonarQube and Trivy
    • Monitoring and observability setup (Grafana, Prometheus)
    • Technical SEO optimization (Open Graph, JSON-LD, sitemap)
    • Payment solution integration (Monetbil)
    • Automation agent development (n8n, Claude API, Facebook Graph API)
    PostgreSQL Cloudflare Supabase NodeJS n8n
  • Revotask
    DEVSECOPS ENGINEER
    TECH
    January 2025 - April 2025 (3 months)
    Paris, France
    *CI/CD Security: Implementation and hardening of CI/CD pipelines with GitHub Actions to natively integrate security. **The goal**: reduce human errors, improve code quality, and ensure more reliable deployments.



    *Security Test Automation:Automation of vulnerability scans with OWASP ZAP via Bash scripts executed in the pipeline. Generation of actionable JSON reports to enable rapid fixing of detected vulnerabilities, without increasing developers' workload.


    *Application and Regulatory Security:Application of OWASP Top 10 best practices, code review, and integration of GDPR requirements from the development phase. This approach reduces the attack surface and ensures better regulatory compliance.



    *Monitoring and Cloud:Service supervision with Uptime Kuma and hardening of Cloud configurations, particularly on GCP, to improve visibility, availability, and security of environments.
    GDPR OWASP Top 10 Google Cloud Github Actions Secure Coding

Recommendations

AZ
AZ
Loic A.LA
Alexandre Zitouni and 2 other people have recommended William

These freelancer profiles also match your criteria

AgathaA

Agatha Frydrych

Backend Java Software Engineer

4.7

(3)

2

BaptisteB

Baptiste Duhen

Fullstack developer

4.6

(4)

5

AmedA

Amed Hamou

Senior Lead Developer

4

(2)

7

AudreyA

Audrey Champion

Web developer

4.3

(3)

4

Education

  • Master's Degree in Cybersecurity
    Nexa Digital Shool
    2025
    Mastère 2 Cybersécurité
  • Bachelor's Degree in Software Engineering
    University of the Mountains
    2023
    Licence en Génie logiciel

Skill set

Categories