Eylon Soussan

Full Stack Engineer

Paris, Île-de-France, France0 mo experience

Key Highlights

Expert in secure software engineering and compliance.
Proven track record in financial and healthcare sectors.
Strong ability to translate business needs into technical solutions.

Stackforce AI infers this person is a Fintech and Healthcare cybersecurity expert with a focus on secure software engineering.

Contact

Skills

Core Skills

Secure Software EngineeringTechnical Risk & ComplianceCybersecurityFinancial Systems Development

Other Skills

BeautifulSoupCI/CDData PrivacyDockerFastAPIFlaskGDPRISO 27001IT AuditIT ComplianceIncident ManagementIncident ResponseJWTJavaScriptNIST Cybersecurity Framework

About

My experience in the high-stakes worlds of finance and medical tech has taught me how to build systems that are not just robust, but demonstrably compliant. My work focuses on three key areas : Secure Software Engineering The practical, hands-on work of building resilient systems. This includes hardening applications against the OWASP Top 10, implementing robust auth (OAuth2/JWT) and designing secure data access patterns (RBAC) using Python (FastAPI, Flask) and JavaScript (Node, React). Technical Risk & Compliance This is where I bridge the gap between technical controls and business risk. I specialize in translating abstract requirements from frameworks like ISO 27001, NIST or DORA into a concrete engineering roadmap that is both defensible and ready for audit. Secure DevOps & Automation I use tools like Docker and CI/CD pipelines to make security an automated, integrated part of the development lifecycle. The goal is to make the secure way the easy way not a painful checkpoint. My entire focus is on building digital products and systems that are trusted and secure at scale. Is that a priority for your team ? If the answer is yes, I'd be glad to discuss how I can contribute.

Experience

Investance partners

Full Stack Engineer – Risk Platforms & Digital Solutions (Client: Ministry of Transport Morocco)

Feb 2025 – Present · 1 yr 1 mo · Ville de Paris, Île-de-France, France · Hybrid

Engineered and deployed secure, scalable web applications for high-impact public and financial sector clients, taking ownership of backend architecture, data modeling and security.
Architected secure RESTful APIs using Python (FastAPI, Flask), implementing a robust security model with OAuth2/JWT authentication, fine-grained Role-Based Access Control (RBAC) and asynchronous task handling.
Optimized database performance and scalability by designing normalized relational schemas (PostgreSQL) and implementing a Redis caching layer.
Hardened the application against critical threats by systematically implementing OWASP Top 10 security practices, including 2FA, CSRF protection and input sanitization.
Automated the deployment lifecycle by containerizing applications with Docker and building CI/CD pipelines (GitLab CI) for controlled, zero-downtime releases.
Built and maintained data processing pipelines with Pandas and NumPy to ensure the integrity and validation of business-critical data for risk and analytics platforms.
Acted as a key technical liaison between product owners and clients to translate complex business and regulatory requirements into precise engineering specifications.

FastAPIFlaskOAuth2JWTRBACPostgreSQL+5

Abbott

Cybersecurity Engineer – Critical Infrastructure & Medical IoT

Sep 2024 – Feb 2025 · 5 mos · Rungis, Île-de-France, France · On-site

Secured mission-critical medical IT infrastructure and connected IoT systems within one of the world's most highly regulated environments, ensuring the safety and privacy of sensitive patient data.
Audited network infrastructure against the NIST Cybersecurity Framework, identifying vulnerabilities and implementing system-wide hardening measures to significantly reduce attack surfaces.
Ensured all technical controls and data handling practices were architected to be compliant with critical data protection standards, including ISO 27001 and GDPR.
Played a key role in the secure deployment of Abbott’s flagship medical IoT platform, engineering security controls that guaranteed the integrity, availability and traceability of patient data.
Acted as the primary cybersecurity liaison between internal engineering teams and external hospital IT staff to streamline the incident response process and ensure cohesive alignment on security protocols.

NIST Cybersecurity FrameworkISO 27001GDPRCybersecurityIncident ResponseTechnical Risk & Compliance

I-fihn consulting - cabinet de conseil spécialisé en finance de marché

2 roles

Full Stack Engineer – Financial Systems (Client : Eiffel Investment Group)

Sep 2023 – Feb 2024 · 5 mos · Hybrid

Architected and delivered an end-to-end, secure financial analytics platform to centralize investment data, provide real-time P&L monitoring and automate cash flow management for a leading investment group.
Engineered the core backend services in Python (Flask) to power real-time P&L calculations, predictive cash flow forecasting and complex investment performance analytics.
Designed and implemented a multi-layered security architecture from the ground up, featuring robust Identity and Access Management (IAM) with fine-grained RBAC, token-based authentication and mandatory 2FA.
Optimized system responsiveness and data retrieval speed by designing normalized SQL data models and implementing a low-latency Redis caching strategy for frequently accessed data.
Owned the full Software Development Lifecycle (SDLC) from stakeholder collaboration and technical specification to frontend development (JavaScript, Tailwind CSS), testing and release management within an Agile framework.
Drove internal process automation by building a Python-based data extraction engine (BeautifulSoup) and integrating it with Salesforce, creating a unified talent pipeline and significantly improving recruitment efficiency.

PythonFlaskJavaScriptTailwind CSSSQLRedis+4