Security Engineer & IoT Security Lead
Cybersecurity · IoT & Embedded · Blockchain · Automation
- Based in France, working on IoT, mobile and cloud security
- Leading IoT security evaluations for real products (routers, connected devices, embedded systems)
- Active on standards, regulations & methodology (IoT security, certifications EN18031 - ETSI - EUCC - SBOM, compliance tooling)
- Exploring blockchain / Web3 and AI-assisted security automation
- Contributor and maintainer of internal tools, CTF challenges and training content
- IoT & embedded security experiments and evaluations
- Work around security standards, guidelines and regulations
- Blockchain and Web3 proof-of-concepts (smart contracts, DeFi mechanics, on-chain automation)
- Security tooling, scripts and automation to support evaluations and pentests
- CTF-style challenges and training material for security teams and trainees
- Security engineer with a focus on IoT and connected systems
- Comfortable moving between hands-on technical work (reverse engineering, testing, scripting)
and structured work (methodologies, reports, standards, EU projects) - Hack The Box enthusiast, using labs and challenges to keep skills sharp
- Strong believer in repeatable security processes rather than one-off heroics
As a Hack The Box enthusiast, I’m committed to constantly learning and growing as a cybersecurity professional. I’ve learned a lot from the open-source community and believe in its potential to drive practical, positive change in how we build and secure systems.
View the WhoAmI snippet
class WhoAmI:
user = 'Paul'
current_work = 'Senior IoT Security Evaluator and Blockchain Manager'
profile_overview = (
'Security engineer working on IoT, mobile and cloud security, and blockchain.'
)
description_profile = (
'IoT security evaluations, contribute to standards and EU projects, '
'and build tools and processes that make security work repeatable and practical.'
)
hobbies = [
'Building and breaking IoT devices',
'Blockchain / Web3 experiments',
'Designing CTF-style training challenges',
'Skiing and travelling',
'Ping pong',
'Learning and teaching new things'
]
def getCountry(self):
return "France"
def Ambitions(self):
MakeIoTSafer()
BuildHelpfulSecurityTools()
GrowAndMentorSecurityTeams()
BridgeResearchAndRealWorld()
KeepLearningEveryYear()
# + many more long-term projects in security and techTechnology
Technology is deeply embedded in our lives and infrastructure. With the right intent and discipline, it can be a force for resilience and progress instead of complexity and risk.
Day to day, I work on making security part of how products are actually built, shipped, and maintained — not just a checkbox. That means combining engineering, standards, and process so that security is systematic and repeatable.
Cybersecurity
Cybersecurity is what makes digital transformation sustainable. It’s the difference between innovation that lasts and innovation that gets rolled back after the first incident.
I enjoy the mix of technical depth (reverse engineering, pentesting, automation) and higher-level structure (risk, governance, repeatable methodologies). My focus is on building approaches and tooling that teams can actually use, across many products and evaluations.
Internet of Things
IoT is where security becomes tangible: devices in homes, hospitals, factories, cities. A misconfiguration or weak design is no longer just “data risk” — it can affect safety, privacy, and operations.
I work on IoT security evaluations and documentation for connected products, aligning with standards and regulatory expectations and helping manufacturers understand both the technical and practical sides of securing their devices. I also build hands-on demos and CTFs to train others on how these systems can be attacked and defended.
Blockchain
Blockchain sits at the intersection of cryptography, economics and software engineering. I’m particularly interested in:
- Decentralized finance (DeFi) mechanics and the security assumptions behind them
- Smart contracts that automate interactions and enforce rules transparently
- On-chain components for tracking software artifacts, SBOMs or device identities
Beyond classic DeFi, I explore how blockchain and smart contracts can be used for auditability, automation and transparent coordination — especially when combined with IoT and security use cases.
“There is no power for change greater than a community discovering what it cares about.”
— Margaret J. Wheatley
More breakdown
Off-duty
Currently listening
A bit of developer humor