Ahmad Festok

Security referent for the CFT/SEC team supporting the CISO and responsible for the Security Professional Services team.

- Recognized point of contact for project managers, internal and external experts, and stakeholders on specific security issues.

- Ensure compliance with security policies and regulatory requirements for projects and applications (GDPR, ECB, NYDFS, PCIDSS, etc.).

- Manage and monitor the deployment of technical solutions in accordance with the security requirements of on-premise and cloud projects (Secure by design and go To Cloud).

- Guarantee the compliance of deployed target solutions before production.

- Explain the level of compliance, residual risks, and implemented treatments or derogation decisions to various steering committees.

- Maintain a weekly report of KPIs and deployment schedules.

- Participate in the development of the budget plan and forecasts.

- User awareness and support for the use of security solutions (Cyberark, IMPERVA, log collection).

- Support technical teams (ME/DEVOPS/SECOPS) in deploying security solutions, including:

1. Strong authentication and deployment of unified secure bastion (Cyberark) in on-premise and AWS/Azure cloud environments.

2. Protection and monitoring of sensitive data using IMPERVA and IBM Data Guardium solutions.

3. Vulnerability management and remediation measures (Tanium, Quality, Claire).

4. Collection, centralization, and correlation of application and technical logs. Configuration of sending and detection use cases to the SOC.

5. Securing generic and application accounts.

6. Identity management and recertification (IAM and UAR).

Security referent for the CFT/SEC team supporting the CISO and responsible for the Security Professional Services team - Recognized point of contact for project managers, internal and external experts, and stakeholders on specific security issues. - Ensure compliance with security policies and regulatory requirements for projects and applications (GDPR, ECB, NYDFS, PCIDSS, etc.) - Manage and monitor the deployment of technical solutions in accordance with the security requirements of on-premise and cloud projects (Secure by design and go To Cloud). - Guarantee the compliance of deployed target solutions before production. (Cyberark, Imperva, log collection, and vulnerability scans) - Explain the level of compliance, residual risks, and implemented treatments or derogation decisions to various steering committees. - Maintain a weekly report of KPIs and deployment schedules. - Participate in the development of the budget plan and forecasts. - User awareness and support for the use of security solutions (Cyberark, IMPERVA, log collection). - Support technical teams (ME/DEVOPS/SECOPS) in deploying security solutions, including: 1. Strong authentication and deployment of unified secure bastion (Cyberark) in on-premise and AWS/Azure cloud environments. 2. Protection and monitoring of sensitive data using IMPERVA and IBM Data Guardium solutions. 3. Vulnerability management and remediation measures (Tanium, Quality, Claire). 4. Collection, centralization, and correlation of application and technical logs. Configuration of sending and detection use cases to the SOC. 5. Securing generic and application accounts. 6. Identity management and recertification (IAM and UAR).

Skills: Information Security Management · ISO Standards · ISO 27001 · Docker Products · Elasticsearch · AWS Security · Azure Security · Big Data · CyberArk · Imperva · Qualys · Tanium

Translate Bouygues Telecom's security policy within the products and services department to formalize the necessary processes for controlling the proper application of this policy.

• Implement the security policy and associated governance mechanisms, with the support of client IT security managers.

• Control the compliance of technical elements of product and platform architecture with security requirements.

• Conduct comprehensive and detailed risk analyses to identify risks and impacts during the study phases and before the commissioning of various projects and platforms.

• Plan, organize, and monitor remediation action plans for a portfolio of projects with the project teams.

• Advise, support, and train managers, project teams, and stakeholders on security issues.

• Manage audit recommendations with asset managers.• Translate Bouygues Telecom's security policy within the products and services department to formalize the necessary processes for controlling the proper application of this policy • Implement the security policy and associated governance mechanisms, with the support of client IT security managers • Control the compliance of technical elements of product and platform architecture with security requirements • Conduct comprehensive and detailed risk analyses to identify risks and impacts during the study phases and before the commissioning of various projects and platforms. • Plan, organize, and monitor remediation action plans for a portfolio of projects with the project teams. • Advise, support, and train managers, project teams, and stakeholders on security issues • Manage audit recommendations with asset managers.

Skills: Information Security Management · Information Security · Risk Analysis · Project Management · Secure by Design · Cloud Security · ISP · EBIOS

Advise, assist, inform, and train on the operational security scope of CAGIP with clients, in close collaboration with client IT security managers (RSI, CISO & DSI).

• Act as the security referent within Delivery, the recognized interface with operators and project managers, as well as internal and external experts and stakeholders for security issues.

• Implement the security policy and associated governance mechanisms within Delivery, with the support of Client IT Security Managers.

• Ensure the compliance of procedures, hardware, and software with the security directives of Permanent Control and the security standards of the Crédit Agricole Group.

• Coordinate IT Disaster Recovery Plans (PSI), User Recovery Plans (PRU) for Clients and conduct logical and physical security tests according to various incident scenarios.

• Plan, organize, and monitor actions resulting from audits (Internal, Group, Supervisory Authorities, Clients).

• Verify that the defined method and protection frameworks are implemented within Delivery.

• Advise, assist, inform, and train on the operational security scope of CAGIP with clients, in close collaboration with client IT security managers (RSI, CISO & DSI) • Act as the security referent within Delivery, the recognized interface with operators and project managers, as well as internal and external experts and stakeholders for security issues • Implement the security policy and associated governance mechanisms within Delivery, with the support of Client IT Security Managers • Ensure the compliance of procedures, hardware, and software with the security directives of Permanent Control and the security standards of the Crédit Agricole Group • Coordinate IT Disaster Recovery Plans (PSI), User Recovery Plans (PRU) for Clients and conduct logical and physical security tests according to various incident scenarios • Plan, organize, and monitor actions resulting from audits (Internal, Group, Supervisory Authorities, Clients) • Verify that the defined method and protection frameworks are implemented within Delivery.

Skills: Information Security Management