About

Florian Bidabé

Cyber Security Leader

Florian Bidabé is a Cyber Security Leader with 15+ years of experience across IT and cybersecurity. Currently serving as Strategy and Innovation Lead at the Commonwealth Bank of Australia, he drives cyber security strategy and innovation initiatives in one of Australia's largest organisations.

With deep expertise spanning offensive security, cloud security architecture, AI/LLM threat research, and enterprise security leadership, Florian bridges the gap between technical execution and strategic leadership. His background includes senior roles at CBA, Yum! Brands, VMware, and Apple across Australia and France.

As an active bug bounty researcher, he has responsibly disclosed vulnerabilities to GitHub, Microsoft, Atlassian, and Wiz. He is also a prolific security tooling developer, author of 20+ technical articles, and founder of PhotonSec.

Get In Touch GitHub →

15+

Years Experience

Bug Bounty Findings

Major Employers

20+

Technical Articles

Experience

Strategy and Innovation Lead — Cyber Security

Commonwealth Bank of Australia

2022 – Present

Drives cyber security strategy and innovation for CBA's Cyber Security division. Leads strategic initiatives, emerging technology assessments, and cross-functional programs to advance the organisation's security posture and capability.

Security StrategyInnovationLeadershipEnterprise SecurityStakeholder Engagement

Senior Engineering Manager — Cyber Security

Commonwealth Bank of Australia

2020 – 2022

Led engineering teams responsible for security tooling, automation, and platform development. Delivered key security capability uplift programs, managed team roadmaps, and drove adoption of DevSecOps practices across CBA.

Engineering ManagementDevSecOpsSecurity ToolingTeam LeadershipAutomation

Senior Security Architect

Commonwealth Bank of Australia

2017 – 2020

Designed enterprise security architectures across cloud (Azure, AWS) and on-premises environments. Led security reviews for major transformation programs, developed security standards, and provided strategic security advisory across business units.

Security ArchitectureAzureAWSZero TrustCloud SecurityISO 27001

Cyber Security Lead

Yum! Brands

2014 – 2017

Led cyber security operations and strategy across the APAC region for Yum! Brands (KFC, Pizza Hut, Taco Bell). Managed vulnerability management, penetration testing, and security incident response programs.

Security OperationsVulnerability ManagementPenetration TestingAPACIncident Response

Network Administrator

Yum! Brands

2012 – 2014

Managed network infrastructure across the Asia-Pacific region. Responsible for network design, security hardening, firewall management, and ensuring business continuity for multi-site restaurant operations.

Network SecurityFirewall ManagementInfrastructurePalo AltoCisco

Virtualisation Analyst

Yum! Brands

2011 – 2012

Managed and administered VMware virtualisation infrastructure across the APAC region. Led virtualisation projects to consolidate physical servers, improve resource utilisation, and reduce operational costs.

VMwareVirtualisationvSphereInfrastructureAutomation

Senior Technical Support Engineer

VMware

2010 – 2011

Provided advanced technical support for VMware vSphere, vCenter, and virtualisation products to enterprise customers. Specialised in complex troubleshooting, escalation handling, and knowledge base contributions.

VMwarevSphereTechnical SupportEnterpriseTroubleshooting

Senior Enterprise Advisor

Apple

2008 – 2010

Provided enterprise-level technical advisory and support for Apple deployments in corporate environments. Specialised in iOS/macOS device management, MDM solutions, and Apple platform security for business customers.

AppleEnterprise MobilityMDMiOSmacOSSecurity

Skills & Expertise

Security Leadership

Security StrategyInnovation ProgramsTeam LeadershipExecutive AdvisorySecurity GovernanceRisk Management

Offensive Security

Penetration TestingWeb Application TestingAPI SecurityRed TeamingBug Bounty ResearchVulnerability Assessment

Cloud & Identity

AzureMicrosoft 365AWSGCPEntra IDConditional AccessZero TrustIAM

AI & LLM Security

Prompt Injection ResearchLLM Security AssessmentAI Threat ModellingOWASP LLM Top 10Agentic AI Security

Security Architecture

SABSANIST CSFISO 27001Essential EightZero Trust DesignSecurity Frameworks

Development & Tooling

PythonTypeScriptPowerShellBashSecurity AutomationCI/CD Security

Certifications

AWS Solutions Architect

Amazon Web Services

AWS Machine Learning

Amazon Web Services

ISO 27001 Lead Implementer

PECB

SABSA SCF

SABSA Institute

VMware VCP5-DCV

VMware

VMware VCP5-DT

VMware

VMware VCP5-Cloud

VMware

Apple Security & Mobility

Apple

CompTIA Network+

CompTIA

Palo Alto ACE8

Palo Alto Networks

Education

BTS Réseaux & Télécommunications

Lycée Gustave Eiffel

2008 – 2010 · France

Baccalauréat Informatique de Gestion

Lycée Anatole de Monzie

2008 · France

PhotonSec is a personal security brand founded by Florian Bidabé. It serves as the home for his independent security research, bug bounty work, technical writing, and open-source security tooling.

Through PhotonSec, Florian publishes research on offensive security, AI/LLM threats, cloud security, and emerging attack surfaces — combining his enterprise security leadership background with hands-on technical depth.