Christophe Tafani-dereeper is a Staff Cloud Security Researcher & Advocate with 11 years of experience blending hands-on software engineering, cloud infrastructure, and offensive security research. Based in Switzerland and educated at EPFL, he has progressed through roles at Datadog and Nexthink where he shaped cloud security posture, threat emulation, and developer-facing security tooling. An active open-source contributor, his work includes substantive backend contributions to HashiCorp’s Terraform AWS provider and security-focused projects like Datadog’s stratus-red-team and the Sigma rule repository, demonstrating deep familiarity with AWS, Elasticsearch, and adversary emulation. He pairs practical engineering—implementing resources, CRUD semantics, and test adjustments—with security research that produced new cloud persistence and exfiltration techniques. Colleagues rely on him to translate complex cloud risks into actionable detection and remediation guidance while shipping production-grade code.
11 years of coding experience
9 years of employment as a software developer
Master’s Degree Computer Science, Master’s Degree Computer Science at EPFL
:cloud: :zap: Granular, Actionable Adversary Emulation for the Cloud
Role in this project:
Back-end & DevOps Engineer
Contributions:11 releases, 203 reviews, 331 commits in 1 year
Contributions summary:Christophe contributed to the core functionality of the project, making enhancements to the codebase. They were also responsible for adding new attack techniques related to AWS security, specifically persistence and exfiltration, demonstrating their focus on cloud security. Moreover, the user updated the build process and documentation for the project.
The AWS Provider enables Terraform to manage AWS resources.
Role in this project:
Back-end Developer & Cloud Engineer
Contributions:1 review, 4 commits, 5 PRs in 8 months
Contributions summary:Christophe primarily contributed to the development of a new resource within the AWS provider, specifically related to EC2 instance metadata defaults. Their work included implementing the resource's schema, defining create, read, update, and delete operations, and handling interactions with the AWS EC2 service. They also addressed linting warnings and standardized code through the use of `aws.ToBool`. Additionally, the user modified testing configurations to reflect the implemented changes, showing expertise with both backend development and interacting with cloud services.
Find and Hire Top DevelopersWe’ve analyzed the programming source code of over 60 million software developers on GitHub and scored them by 50,000 skills. Sign-up on Prog,AI to search for software developers.