Open to freelance projects

JulesTHIBAULT

DevSecOps by trade. Building secure things on the side.

DevSecOps Engineer
About

Security built in, not bolted on

DevSecOps practitioner with 5 years of experience — and a growing freelance practice.

5 years of experience in cybersecurity, with a focus on DevSecOps: securing pipelines, hardening infrastructure, and shifting security left.

Alongside my day job, I take on freelance missions — building custom web apps, headless e-commerce, and cloud infrastructure for various clients.

France, Pariscontact@julez.cat
0
Years of experience
0
Projects showcased
0
Freelance missions delivered
0
Coming soon
Experience

Where I've worked

5 years across banking, defense, and retail — DevSecOps, AppSec, pentest, and development.

BNP Paribas (via Metanext) logo

AppSec Consultant

Current
BNP Paribas (via Metanext)Paris, France
Nov 2025 – Present

AppSec referent within a Cyber Competence Center — harmonizing security practices across a post-merger context and shifting security left.

  • Single point of contact for application security across projects (SSDLC advisory)
  • Harmonized AppSec processes and tool configurations across two merged entities
  • Designed Go/No-Go workflows with security gates for production releases
  • Supported dev teams on vulnerability triage, remediation, and risk exceptions
  • Piloted GitLab Ultimate Vulnerability Management migration
  • Ran Security Champions community and security awareness sessions
GitLabFortifySonatypeSSDLCPythonJenkins
Metanext logo

Consultant DevSecOps

Current
MetanextParis, France
Nov 2025 – Present

CNAPP integration pilot — evaluating and securing multi-cloud and Kubernetes environments.

  • Deployed and configured Sysdig (CSPM / CWPP) on AWS and Azure
  • Built an automated vulnerable K8s lab with Ansible for detection rule testing
  • Contributed to pilot deliverables and internal CNAPP offering improvement
SysdigKubernetesAnsibleAWSAzureCNAPP
Thales Cyber Solutions logo

Consultant DevSecOps & Pentest

Thales Cyber SolutionsFrance
Sep 2023 – Sep 2025

Mixed pentest and DevSecOps role — security audits, training, and tooling R&D in an autonomous cross-functional team.

  • Web and thick-client penetration tests with client-facing reports
  • Manual and tool-assisted source code reviews (Java, Python, .NET)
  • Secure development training based on OWASP Top 10 (3-day workshops)
  • Security maturity assessments (DSOMM, SAMM) and DevSecOps tooling benchmark
  • Built vulnerable training apps and automated cloud lab infrastructure
Burp SuiteOWASPSnykVeracodePythonAWSKubernetes
Decathlon logo

DevSecOps Engineer

DecathlonFrance
Jan 2023 – Sep 2023

Security referent for ~20 applications within a 120-person business unit — bridging Dev, Ops, and Product teams.

  • Benchmarked and integrated SAST/SCA tools (Snyk, Veracode, Checkmarx) into GitHub Actions pipelines
  • Docker image scanning (Grype, Trivy) and patch management tracking
  • Web penetration tests and cloud security standards (AWS, GCP)
  • Ran Security Champions community and organized a CTF challenge
GitHub ActionsSnykTrivyGrypeAWSGCPDocker
Decathlon logo

Web Developer

DecathlonFrance
Oct 2021 – Aug 2022

Full-stack developer on an international e-commerce project from architecture to production.

  • Built an internal reusable Node.js package with i18n support (Svelte)
  • Integrated the module across Decathlon e-commerce sites in 5 countries
  • Collaborated in Agile sprints with PM, DevOps, and UX teams
SvelteNode.jsTypeScriptDockerGCP
Independent / GamersOrigin logo

Professional Esport Player

Independent / GamersOriginFrance / Europe
Feb 2018 – Apr 2020

Competitive esports career with a professional contract — high-performance training, teamwork, and consistency under pressure.

  • Professional contract with GamersOrigin (Sep 2018 – Apr 2019)
  • 4 major French tournament wins
  • Major podiums: Gamers Assembly 2018 (1st), OMEN by HP Trophy 2018 (1st), HFLAN 17 (1st), DreamHack Sevilla 2018 (2nd)
  • International performances: ESL Katowice Royale (top 20), multiple FNCS heats qualifications
EsportsTeamworkPerformanceDisciplineCompetition
Projects

Selected work

Personal projects and freelance gigs — things I've built on my own time.

Personal

CodeGeist

Upload a codebase as a .zip and run security analysis via local models or cloud providers (Gemini, Claude, OpenAI). Detects vulnerabilities with detailed write-ups and remediation guidance — built to help developers fix issues, not just flag them.

4+
AI providers
AppSec
Focus
SvelteBunLocal AIGeminiClaudeOpenAI
2025
Personal

GhostLink

End-to-end encrypted sharing: data is encrypted in the browser before upload, stored on the server without any decryption key, and only recoverable client-side by whoever holds the secret. Built with a security-first architecture.

Client-side
Encryption
Zero-knowledge
Server
SvelteExpressMongoDBGridFSE2E Encryption
2025
Personal

Ledgerly

A full personal finance dashboard with spending visualizations, budget projections, AI-powered expense breakdowns, and investment advice. Built with Supabase and Svelte — developed with AI assistance.

SvelteSupabaseAICharts
2026
Freelance

LA Watch Party — Merch

Built a web app for LA Watch Party (fashion week viewing sessions) connected to a headless Shopify store. Full-stack delivery: Next.js app, Shopify API integration, SEO, automated VPS deployment, and DNS configuration. The app highlights a limited-edition t-shirt available for purchase.

Next.jsShopifyHeadlessVPSDNSSEO
2026
Freelance

MINO — Music Library

Built a full music library app for MINO (mino.co), replacing Airtable. Import albums via search with auto-filled metadata (release date, cover, duration, detailed tracklist, YouTube clips). Merges data from Spotify, Discogs, and MusicBrainz. Includes listening session scheduling with automatic time calculation based on tracklist duration. Supabase backend, automated deployment, DNS setup.

Next.jsSupabaseSpotify APIDiscogsMusicBrainz
2026
Personal

SecMalloc

A malloc-style memory allocator built from scratch with security hardening.

CMemory SafetyHeapCanary
2024
Personal

hq

jq for HTML — parse and lint HTML from the CLI. `curl url | hq`

pip
Install
PyPI
Deploy
PythonCLIPyPICI/CD
2024
Personal

docker-wrapper

A Python CLI that simplifies Docker runtime interactions — list, restart, remove & more.

PythonDockerCLIPyPI
2024
Personal

Dork Generator

Google & GitHub dork generator with ready-made presets.

SvelteOSINTGoogle DorksGitHub
2024
Personal

This Portfolio

Personal site built with Next.js, Tailwind & Framer Motion.

Next.jsTailwindFramer MotionTypeScript
2026
Freelance

MINO — Cloud Infrastructure

VPS cloud migration with Dokploy, internal DNS, and VPN-secured infrastructure.

DigitalOceanVPSDokployDNSVPNDevOps
2026
Freelance

MINO — Backstage Hub

Internal hub and unified authentication for all MINO apps via Supabase.

Next.jsSupabaseAuthSSO
2026
Coming soon

MINO — Admin Platform

People & project management app with budgets, KPIs, and access control — in progress.

Next.jsSupabaseKPIsRBAC
2026
Coming soon

MINO — Showcase & Shop

Marketing site with headless Shopify shop and event ticketing — planned serverless deploy.

Next.jsShopifyServerlessTicketing
2026
Expertise

Skills & tools

What I work with day to day — no ratings, just the stack.

Security

DevSecOpsAppSecPentestVulnerability ManagementSSDLCThreat ModelingSASTSCAContainer SecurityCloud Security

Development

PythonJavaScriptTypeScriptNode.jsSvelteReactNext.jsJavaGoC

Tools & Infra

GitLabGitHub ActionsDockerKubernetesJenkinsTerraformAWSGCPSnykFortifySonatypeSysdigBurp SuiteAnsibleLinux
DevSecOps/AppSec/Pentest/Vulnerability Management/SSDLC/Threat Modeling/SAST/SCA/Container Security/Cloud Security/Python/JavaScript/TypeScript/Node.js/Svelte/React/Next.js/Java/Go/C/GitLab/GitHub Actions/Docker/Kubernetes/Jenkins/Terraform/AWS/GCP/Snyk/Fortify/Sonatype/Sysdig/Burp Suite/Ansible/Linux/DevSecOps/AppSec/Pentest/Vulnerability Management/SSDLC/Threat Modeling/SAST/SCA/Container Security/Cloud Security/Python/JavaScript/TypeScript/Node.js/Svelte/React/Next.js/Java/Go/C/GitLab/GitHub Actions/Docker/Kubernetes/Jenkins/Terraform/AWS/GCP/Snyk/Fortify/Sonatype/Sysdig/Burp Suite/Ansible/Linux/
Freelance

Side projects for clients

4 freelance missions delivered, 2 in progress.

LA Watch Party — Merch App

Full-Stack Developer

Fashion week viewing sessions — built a custom Next.js app connected to headless Shopify to showcase and sell event merch, with full deployment pipeline.

2026
Next.js web appHeadless Shopify integrationSEO & merchandisingVPS deployment & DNS

MINO — Music Library

Full-Stack Developer

Music library app replacing Airtable — album import, metadata enrichment via 3 APIs, and listening session scheduling.

2026
Airtable migrationSpotify / Discogs / MusicBrainz APIsSession plannerSupabase + auto deploy

MINO — Cloud Infrastructure

DevOps / Infrastructure

Cloud migration on VPS for scalability — Dokploy for automated deployments, internal DNS, and VPN-secured infrastructure.

2025
VPS cloud setupDokploy CI/CDInternal DNSVPN hardening

MINO — Backstage Hub

Full-Stack Developer

Internal backstage hub — unified authentication and entry point for all MINO apps.

2026
Backstage hubSupabase authInternal app gateway

MINO — Admin Platform

Full-Stack DeveloperComing soon

Admin platform for people and project management — budgets, KPIs, and role-based access control.

Starting soon
Project managementBudget trackingKPI dashboardsRBAC

MINO — Showcase & Shop

Full-Stack DeveloperComing soon

Showcase website with headless Shopify shop and external event ticketing — serverless deployment for traffic spikes.

Planned
Marketing siteHeadless ShopifyEvent ticketingServerless deploy
Contact

Let's build something extraordinary

Open to freelance web projects and DevSecOps opportunities — happy to chat even if you're not sure yet what you need.