About William
French
Native or bilingual
Experience
- ScribariusApplication Security EngineerTECHJanuary 2026 - April 2026 (3 months)Paris, France
- Application security audit (SAST, SCA, DAST) on a Python / Flutter application integrating an AI service.
- Code and dependency analysis with SonarQube and Trivy, identification of critical CVEs.
- Application penetration testing (OWASP Top 10).
- Robustness testing of an LLM service (prompt injection, jailbreak) with Promptfoo.
- Infrastructure audit (Docker, TLS, security headers).
- Vulnerability report writing with PoC and remediation recommendations.
- BamaraDevelopment & Application SecurityE-COMMERCEJuly 2025 - January 2026 (6 months)Design and security of a full-stack marketplace platform, from architecture to production.
- Platform development (React, Vite, Node.js, Express, Supabase, Cloudinary)
- REST API security and RLS policies setup on PostgreSQL
- Cloudflare WAF configuration and tuning
- Authentication flow security (PKCE, token-hash)
- Vulnerability analysis with SonarQube and Trivy
- Monitoring and observability setup (Grafana, Prometheus)
- Technical SEO optimization (Open Graph, JSON-LD, sitemap)
- Payment solution integration (Monetbil)
- Automation agent development (n8n, Claude API, Facebook Graph API)
- RevotaskDEVSECOPS ENGINEERTECHJanuary 2025 - April 2025 (3 months)Paris, France*CI/CD Security: Implementation and hardening of CI/CD pipelines with GitHub Actions to natively integrate security. **The goal**: reduce human errors, improve code quality, and ensure more reliable deployments.*Security Test Automation:Automation of vulnerability scans with OWASP ZAP via Bash scripts executed in the pipeline. Generation of actionable JSON reports to enable rapid fixing of detected vulnerabilities, without increasing developers' workload.*Application and Regulatory Security:Application of OWASP Top 10 best practices, code review, and integration of GDPR requirements from the development phase. This approach reduces the attack surface and ensures better regulatory compliance.*Monitoring and Cloud:Service supervision with Uptime Kuma and hardening of Cloud configurations, particularly on GCP, to improve visibility, availability, and security of environments.
Recommendations
These freelancer profiles also match your criteria
Agatha Frydrych
Backend Java Software Engineer
4.7
(3)
2
Baptiste Duhen
Fullstack developer
4.6
(4)
5
Amed Hamou
Senior Lead Developer
4
(2)
7
Audrey Champion
Web developer
4.3
(3)
4
Education
- Master's Degree in CybersecurityNexa Digital Shool2025Mastère 2 Cybersécurité
- Bachelor's Degree in Software EngineeringUniversity of the Mountains2023Licence en Génie logiciel