Who am I ?
I'm a software security engineer by trade, from Grenoble, in the French alps. I've also lived for a while in Zürich (Switzerland).
I'm currently working at Payfit, a scale-up helping employers pay their salaries in France.
I used to work for Aircall, another scale-up in the telephony space, where my colleagues and I built a product security team from scratch. I discovered the joys of incident response, bug bounty operation, and Rails there.
Before that, I was until Feb 2020 working for Google's information security team, preventing bugs in Google's products from being written in the first place. Web security and cryptographic protocols design and reviews are my specialties, but I also wrote a lot of JavaScript and TypeScript security code in internal libraries, and integrated static analysis into developer workflows.
I defended my PhD a while back at Verimag, in Université de Grenoble, on building protocols and models to improve the security of wireless sensor networks, under Pascal Lafourcade's direction. I also have worked on distributed computing a while back.
In my own time, I'm learning german, playing a lot of videogames, cooking, climbing, and trying to fight off an incredibly tenacious squirrel trying to eat the flower seeds on my balcony.