Sebastien Gioria is a seasoned cybersecurity and application security expert with over 20 years of experience, currently teaching security analysis at CNAM and advising organizations through his AI Cyber Guardian practice. As Founder and Board Member of Cloud Security Alliance France and long-time OWASP chapter leader, he drives cloud and AI security culture and standards across France while holding certifications like CCSK and Microsoft Azure AI Fundamentals. At Lectra he led DevSecOps, bug bounty and security-by-design for Industry 4.0 products, and his freelance work spans threat modeling, secure SDLC coaching, pentesting and platform audits for major banks and insurers. He is an active contributor to DefectDojo—enhancing parsers and backend models—demonstrating hands-on ability to integrate security tooling into developer workflows. A judicial IT expert and regular trainer/author, he combines technical depth with practical teaching and regulatory know-how (OWASP LLM Top 10, EU AI Act, ANSSI). Based in Bordeaux, he blends enterprise security leadership with open-source contributions and a focus on securing generative AI systems before they hit production.
11 years of coding experience
15 years of employment as a software developer
Master of Science (MS), Network and Security, Master of Science (MS), Network and Security at EPITA: Ecole d'Ingénieurs en Informatique
Bac +2, Génie Electrique et Informatique Industrielle, Bac +2, Génie Electrique et Informatique Industrielle at IUT du Montet
CISSP Class from auditware June 2007
Course 2781, Mobile Application and Device Security, Course 2781, Mobile Application and Device Security at Learning Tree Intl - France
DevSecOps, ASPM, Vulnerability Management. All on one platform.
Role in this project:
Back-end Developer & Security Engineer
Contributions:18 reviews, 13 commits, 36 PRs in 9 months
Contributions summary:Sebastien contributed significantly to the Django-based DefectDojo platform. Their work included the integration of multiple security scanning tools, such as DrHeader, Semgrep, and Spotbugs, by developing parsers and updating existing ones to process their output. They also improved the platform by fixing bugs and improving existing features like the Aqua parser. Furthermore, the user made enhancements to the application's data models, improving the overall functionality of the DefectDojo platform.
The OWASP NodeGoat project provides an environment to learn how OWASP Top 10 security risks apply to web applications developed using Node.js and how to effectively address them.
Contributions:17 PRs, 37 pushes, 35 branches in 4 years 10 months
web-applicationsnode-jssecurityjavascriptaddress
Find and Hire Top DevelopersWe’ve analyzed the programming source code of over 60 million software developers on GitHub and scored them by 50,000 skills. Sign-up on Prog,AI to search for software developers.