You're seeing this page as if you were . The main menu is still yours, though. Exit from immersion
Malt Strategy
New report
Malt Tech Trends 2026
Abdallah Ahmed Hamdan AhmedAA

Abdallah Ahmed Hamdan Ahmed

Cybersecurity & GRC Specialist | ISO 27001

€750/day
Paris, FR
8-15 years
Cybersécurité
Consultant GRC
Analyse de risques
Gestion de projet IT
Audit de sécurité

Average response time: 1 hour

Freelancer profile translated to English.
Back to original language

About Abdallah

Cybersecurity specialist, I lead the implementation of information security management systems and preparation for ISO 27001 certification. I support companies in adopting security processes adapted to the standard's requirements.
With a focus on risk management and operational security, I offer solutions to anticipate and reduce cyber threats while ensuring constant compliance. Driven by a constant quest for innovation, I seek to continuously improve security practices.
With in-depth technical skills, a versatile profile, and strong leadership skills, I guide teams with pragmatism to strengthen the resilience of information systems.

  • French

    Fluent

  • English

    Fluent

  • Arabic

    Native or bilingual

Can work on-site
Paris (up to 50km)

Experience

  • Orange Prestations TV
    Information Security Officer
    FILM AND AV
    May 2024 - Today (2 years)
    Châtillon, France
    Governance
    ISMS Implementation: Leading the Information Security Management System in accordance with ISO/IEC 27001:2022.

    Statement of Applicability (SoA): Defining and implementing security controls according to ISO/IEC 27002.

    Action Plan: Developing and monitoring corrective actions to resolve non-conformities and identified risks.

    Management Reviews: Contributing to the strategic alignment of the ISMS with organizational security objectives.

    Security Policies: Drafting, updating, and maintaining security policies and procedures.

    Awareness: Organizing training sessions to promote a security culture within the organization.

    Risk Management
    Risk Assessment: Using the EBIOS Risk Manager method and the EGERIE tool to assess and mitigate risks.

    Continuous Improvement: Implementing corrective and preventive actions according to ISO 27005.

    Risk Management Committee: Conducting committees to monitor and discuss risks, compliance, and actions taken.

    Compliance
    ISO Standards Compliance: Applying the requirements of ISO 27001, ISO 27002, ISO 27004, ISO 27035, and ISO 22301.

    Incident Management: Applying best practices for security incident management (ISO 27035).

    BCP/DRP: Updating and maintaining compliance of Business Continuity Plans and Disaster Recovery Plans (ISO 22301).

    TPN Certification: Implementing and maintaining requirements for Trusted Partner Network certification.

    Operational Security
    Network Security: Contributing to the implementation of Palo Alto firewalls and internal network segmentation.

    IAM (Identity Access Management): Participating in the IAM project with Okta, managing access controls and authorizations.

    SIEM Deployment: Contributing to the definition of security requirements for the SIEM project and associated processes.

    Hardening of virtual machines
  • Orange Prestations TV
    Assistant CISO
    FILM AND AV
    November 2023 - May 2024 (6 months)
    Châtillon, France
    Governance
    ISMS Implementation: Leading the Information Security Management System in accordance with ISO/IEC 27001:2022.

    Statement of Applicability (SoA): Defining and implementing security controls according to ISO/IEC 27002.

    Action Plan: Developing and monitoring corrective actions to resolve non-conformities and identified risks.

    Management Reviews: Contributing to the strategic alignment of the ISMS with organizational security objectives.

    Security Policies: Drafting, updating, and maintaining security policies and procedures.

    Awareness: Organizing training sessions to promote a security culture within the organization.

    Risk Management
    Risk Assessment: Using the EBIOS Risk Manager method and the EGERIE tool to assess and mitigate risks.

    Continuous Improvement: Implementing corrective and preventive actions according to ISO 27005.

    Risk Management Committee: Conducting committees to monitor and discuss risks, compliance, and actions taken.

    Compliance
    ISO Standards Compliance: Applying the requirements of ISO 27001, ISO 27002, ISO 27004, ISO 27035, and ISO 22301.

    Incident Management: Applying best practices for security incident management (ISO 27035).

    BCP/DRP: Updating and maintaining compliance of Business Continuity Plans and Disaster Recovery Plans (ISO 22301).

    TPN Certification: Implementing and maintaining requirements for Trusted Partner Network certification.

    Operational Security
    Network Security: Contributing to the implementation of Palo Alto firewalls and internal network segmentation.

    IAM (Identity Access Management): Participating in the IAM project with Okta, managing access controls and authorizations.

    SIEM Deployment: Contributing to the definition of security requirements for the SIEM project and associated processes.

    Hardening of virtual machines
  • Université de Jazan. Faculté des Sciences Informatiques et des Systèmes d'Information
    Professor
    EDUCATION AND E-LEARNING
    September 2004 - August 2018 (13 years and 11 months)
    Jizan, Saudi Arabia
    • ISMS Implementation: Conducting maturity assessments in security according to ISO27001 standards.
    • Bid Management (RFP): Defining security specifications during RFP/RFI phases and managing negotiations with suppliers.
    • Business Continuity: Contributing to business continuity management (BCM) processes and simulating complex crisis scenarios.
    • Security Awareness: Conducting training for IT managers and staff on key security practices.
    • Anticipating the evolution of activities and skills in the security domain.

    • Academic Contributions:
     Teaching courses including computer security, programming (Java/C++/Python), and complex algorithms.
     Course Coordinator: Programming languages, algorithms and data structures, OOP, and computer security.
     Head of the Examination Committee (academic year 2008 – 2009).
     Leading various academic committees.
    • Head of IT Laboratories Administration: March 2009 to August 2017.

    • Complete preparation of requirements for new specialized laboratories according to ABET standards.
    • Contributing to R&D and security processes in the design of mobile platforms and IT components, ensuring compliance in TTM projects
Check out Abdallah's experience

Recommendations

Be the first to recommend Abdallah

Help this freelancer shine by sharing your experience working together.

These freelancer profiles also match your criteria

AgathaA

Agatha Frydrych

Backend Java Software Engineer

4.7

(3)

2

BaptisteB

Baptiste Duhen

Fullstack developer

4.6

(4)

5

AmedA

Amed Hamou

Senior Lead Developer

4

(2)

7

AudreyA

Audrey Champion

Web developer

4.3

(3)

4

Signup to reveal

Education

  • Master en cybersécurité
    EPITA Ecole Pour L'Informatique et Les Techniques Avancées
    2024
    Master en cybersécurité
  • Master en informatique
    Collège d'études supérieures. Université de Khartoum,
    1999
    Master en informatique
Check out Abdallah's education

Skill set

ISO 27001 Lead Implementer
ISO 27005
ISO 27035
ISO 22301
PCA/PRA
EBIOS RM
Gestion des identités et des accès (IAM)
Palo Alto Networks
SIEM
VMware vSphere
Kali Linux

Categories