Steeve Barbeau

Senior Product Security Engineer at Time for the Planet

San Francisco, California, United States
email-iconphone-icongithub-logolinkedin-logotwitter-logostackoverflow-logofacebook-logo
Join Prog.AI to see contacts
email-iconphone-icongithub-logolinkedin-logotwitter-logostackoverflow-logofacebook-logo
Join Prog.AI to see contacts

Summary

👤
Senior
🎓
Top School
Steeve Barbeau is a Senior Product Security Engineer with 12 years of hands-on experience in offensive security, application and network penetration testing, and incident response, currently based in San Francisco and working at CrowdStrike. After a decade in consulting he transitioned to product-focused AppSec roles at Opendoor, where he advanced from Application Security Engineer to Staff Security Engineer and helped shape security programs that integrate engineering workflows. He has a proven track record of discovering and reporting serious vulnerabilities (several CVEs) and teaching developers and users about secure practices. An active open-source contributor, he has improved DefectDojo parsers and added new scanners like Gitleaks, showing a practical focus on vulnerability management and tool integration. Steeve pairs deep technical skills from a Master in Computer Security with experience in forensics and malware analysis, making him fluent across offensive, defensive, and tooling aspects of product security.
code12 years of coding experience
job12 years of employment as a software developer
bookMaster Computer Security, Master Computer Security at Université de Rouen
bookSUPINFO
languagesEnglish, French
stackoverflow-logo

Stackoverflow

Stats
481reputation
25kreached
0answers
3questions
github-logo-circle

Github Skills (15)

devsecops10
vulnerability-management10
parser10
parsing10
python10
parse10
security10
django9
brakeman9
automations8
automation8
http6
regex6
pcre6
encoding6

Programming languages (5)

ShellCGoHTMLPython

Github contributions (5)

github-logo-circle
DefectDojo/django-DefectDojo

Apr 2020 - Nov 2020

DevSecOps, ASPM, Vulnerability Management. All on one platform.
Role in this project:
userSecurity Engineer
Contributions:11 commits, 13 PRs, 27 comments in 7 months
Contributions summary:Steeve contributed to the security posture of the DefectDojo platform by adding and improving parsers for various security scanners. They enhanced existing parsers for tools like Brakeman, Acunetix, and Hadolint, fixing issues and incorporating new features. Furthermore, the user introduced new parsers for Gitleaks, which scans for secrets, and also for Bundler audit, demonstrating a focus on vulnerability management and integrating diverse security tools.
pythondjangovulnerability-managementbugbountydefectdojo
steeve85/django-DefectDojo

Apr 2020 - Mar 2025

DefectDojo is an open-source application vulnerability correlation and security orchestration tool.
Contributions:61 PRs, 125 pushes, 111 branches in 5 years
security-toolsorchestrationvulnerability-managementsecurityrisk-assessment
Find and Hire Top DevelopersWe’ve analyzed the programming source code of over 60 million software developers on GitHub and scored them by 50,000 skills. Sign-up on Prog,AI to search for software developers.
Request Free Trial
Steeve Barbeau - Senior Product Security Engineer at Time for the Planet