Ivan FOCSA

Cybersecurity Engineer
See my projects Get in touch
01 / About

I secure the architectures that cannot fall.

Cybersecurity engineer, 4+ years of experience. Quadrilingual (French, English, Russian, Romanian), I pair technical depth (Palo Alto / Fortinet firewalling, routing, N3 incidents) with ISO 27001 governance. At home in critical sectors: aerospace, energy, telecom.

4+
years of experience
4
languages spoken
3
critical sectors
02 / Experience

Career and education.

  1. Oct 2025 – Present Current

    Cybersecurity Engineer and Network Architect

    Sopra Steria / Client: Aerospace & Defense Sector · Paris La Défense
    • Security policies and application filtering (App-ID) on Palo Alto, with associated risk analyses.
    • Certificate lifecycle (PKI) and SSL/TLS decryption for threat inspection.
    • Reduced MTTR by 30% through a full redesign of the L2/L3 network mapping for support.
    • VLAN deployment for critical-zone isolation, with technical documentation in Visio.
    • Supported project managers in integrating new secure architectures.
  2. Oct 2024 – Oct 2025

    Cybersecurity Engineer

    Sopra Steria / Client: OIV Energy Sector · Paris La Défense
    • Administration and hardening of FortiGate configurations (IPsec/SSL VPN, NAT).
    • Advanced N3 troubleshooting for critical outages, identifying root causes through log analysis.
    • Management Plane security, ACL deployment and VLAN segmentation.
    • Production rollouts aligned with Technical Architecture Files (DAT), LAN/WLAN site migration.
  3. Aug 2023 – Oct 2024

    Network and Security Engineer

    iBrowse · Cluj-Napoca, Romania / Paris
    • Resolution of N3 incidents and service restoration (BGP/OSPF) in international coordination.
    • Automated updates on 200+ devices via Python/Netmiko, saving 15 h/week.
    • Administration of centralized Wi-Fi controllers (Ruckus vSZ, Ubiquiti), coverage audits.
  4. Sep 2021 – Aug 2023

    Systems and Network Administrator

    OXYMIUM · Paris
    • Management and cabling of 150 servers in Tier-3 datacenters (Telehouse 2 / Equinix PA3), 0% hardware incidents.
    • Backups and restores of critical data on Linux (Bacula Enterprise), operational maintenance.
Education

  • Master in Cybersecurity

    2024 / 2026
    Sup de Vinci / SecNumedu label (ANSSI)
    Paris La Défense

  • Bachelor in Networks, Systems and Cloud

    2023 / 2024
    Sup de Vinci
    Paris La Défense
Certifications

  • PECB ISO 27001 Lead Implementer

    June 2026 / planned
    PECB

  • Cisco CCNA / Switching, Routing, Wireless

    2024
    Cisco

  • EC-Council Ethical Hacking Essentials

    2024
    EC-Council
03 / Projects

Projects.

@ivanfocsa
See all on GitHub
01 / 06

tsar

TSAR (Toolbox for Security and Automated Reporting) is a modular and automated web penetration testing platform. It is designed to centralize, execute, and report the results of a wide range of security tools, all through a modern and responsive web interface.

React / TypeScript
02 / 06

network-toolkit

Python toolkit to automate audits and baselines on Cisco / Fortinet / Palo Alto. Netmiko, Nornir, HTML reports.

Python
03 / 06

mttr-cartographer

Generates an L2/L3 map from LLDP/CDP. Mermaid + Visio export.

TypeScript
04 / 06

pki-watch

X.509 certificate expiry monitor. Slack / Teams / mail alerts. Single Go binary, easy to ship.

Go
05 / 06

bgp-lab

Containerized BGP / OSPF lab built on FRRouting. Reproducible failure scenarios for N3 drills.

Shell
06 / 06

iso27001-controls

Markdown library of Annex A controls. Self-assessment templates, compliance tracking, treatment plan.

Markdown
01 / 06
04 / Contact

Contact and opportunities.

Based in Versailles, open to opportunities in France and abroad. Replies within 48h.