Skip to main content
JustinType
🇬🇧

FR

EN

Whoami ❔

·3 mins

Introducing #

Hey! I’m Valentin Thirion, 24 years old Cybersecurity Consultant within the consulting firm Wavestone.

Passionate about ethical hacking and Japanese culture, I also love everything to do with photography, combat sports and astronomy.

Professionnal Experiences #

  1. Pentester - Cybersecurity Consultant

    Sept. 2024 - Today

    Wavestone

    Wavestone is an international consulting firm working with numerous companies (such as LVMH, TotalEnergies, BPCE, Siemens, etc.), specializing in cybersecurity, strategy and digital transformation.

    Here are the different missions and topics I have carried out within the firm:
    - Technical audits on various subjects:

    • External mapping (OSINT) and internals pentests (Active Directory)
    • Penetration testing and configuration review on Cloud infrastructures (Azure, AWS, Oracle, Microsoft 365)
    • Physical Intrusion tests
    • Web and Mobile application pentests (IOS, Android)
    • Configuration review of network equipment (Fortigate, Wallix) and servers (Linux, Windows)
    - Incidents Responses within the CERT-W
    - Organizational and architectural audits (ISO27001, NIS2, DORA)
    - Conducting risks analysis with the EBIOS RM method
    - Writing of reports and animating client restitution
    - Production of commercial proposals to respond to calls for tender and clients contract management (Salesforce)

  2. Cybersecurity Engineer Apprentice

    Sept. 2021 - Sept. 2024

    GHBS

    GHBS is made up of several healthcare establishments, and has the status of essential services operator (OSE) issued by ANSSI.
    As an Apprentice Cybersecurity Engineer, I was able to carry out the following assignments:

    • Carrying out technical audits and intrusion tests (Web Applications / Active Directory)
    • Correction of vulnerabilities following audits and penetration tests
    • Scripting (such as Bash, Python and Powershell))
    • Phishing campaign and DMARC policy implementation
    • Security incident response (log analysis and forensics)
    • Support for standards/certifications: ISO27001, HDS et CaRE
    • Assistance in drafting the following documents: ISSP / BRP / BCP
    • Conducting risks analysis with the EBIOS RM method
    • Implementation of numerous tools (ELK, NextCloud, LAPS, BitLocker, AD PasswordReset, Cyberwatch, ... )
    • Weekly news review to raise awareness of cybersecurity issues among hospital staff

  3. Internship - Web Developper

    Apr. 2021 - June 2021

    CFA - Université de Lorraine

    The CFA's Universiy of Lorraine acts as an interface between apprentices, universities and employers. It enables over 200 university courses to integrate apprentices into their curriculum, from Bachelor to Master degree.
    I was carring out the following tasks during my internship at this establishment:

    • Migration of the Web application for document management of apprentices, training courses and employers
    • Migration from CodeIgniter to Symfony framework

Certifications #

  • Practical Ethical Hacker - TCM Security
  • Movement and Pivoting - TCM Security
  • TOEIC (955/990) - ETS Global

Education #

  1. Cybersecurity Engineering Master

    2021 - 2024

    ENSIBS

    Public engineering school specializing in cybersecurity.
    It is located in Vannes, FRANCE.

    • Awarded Master degree in cybersecurity engineering

  2. Computer Sciences Bachelor

    2019 - 2021

    University of Lorraine

    The University of Lorraine is a public university specializing in the sciences field.
    It is located in Nancy, FRANCE.

    • Awarded Bachelor degree in computer science

  3. Scientific Baccalaureate

    2016 - 2019

    Pierre Mendès France Highscool

    The Pierre Mendès France highscool is a public highschool specializing in the sciences field.
    It is located in Epinal, FRANCE.

    • Awarded Scientific Baccalaureate with honours
    • Speciality Engineering Sciences with Computer Sciences option