You're seeing this page as if you were . The main menu is still yours, though. Exit from immersion
Alain RouxAR

Alain Roux

Program Manager / Cybersecurity Expert

€1,056/day
Lyon, FR
15+ years

Average response time: 1 hour

Freelancer profile translated to English.
Back to original language

About Alain

Over 20 years of experience in IT security have allowed me to develop dual expertise in program management and cybersecurity. I am thus capable of building the project portfolio that perfectly meets your company's strategic business challenges, from the analysis of security needs (EBIOS, MEHARI) to the implementation and monitoring of various projects, including their precise definition (objectives, scope, deliverables, budget, resources, risks, schedule, KPIs), staffing, and the search for suitable solutions via RFI/RFP, in compliance with market standards (ISO 2700x, NIST, PCI-DSS, etc.). I manage the entire program - definition, implementation, and facilitation of program governance (metrics, reporting, committees) - to ensure its successful delivery.
In addition to managing project portfolios, identity management has been the common thread throughout my security career, allowing me to directly lead technical/organizational projects related to this theme: selection and implementation of IAM, PKI, strong authentication, electronic signature, SSO, provisioning/deprovisioning, recertification campaigns, etc.
With excellent interpersonal skills, equally comfortable in writing and speaking, in both English and French, I can communicate effectively with technical teams (analysis of existing systems, solution selection, implementation) as well as with top management (identification of strategic security needs, definition, presentation, and validation of the program, management with a business sponsor) to ensure the full success of your security program.
  • French

    Native or bilingual

  • English

    Native or bilingual

Can work on-site
Lyon (up to 50km), Paris (up to 15km), Clermont-Ferrand (up to 10km), Genève (up to 10km)

Experience

  • SPARTIS
    Founding Director
    DIGITAL AND IT
    October 2014 - Today (11 years and 10 months)
    Francheville, France
    SPARTIS is a consulting firm with dual expertise in IT security and project management. Thanks to many years of experience in various fields of insurance, finance, government, and public administration, SPARTIS provides its clients (CISOs, CIOs/CTOs) with expert advice and continuous support to carry out their security and/or IT transformation projects while respecting scope, deadlines, and budget. The main experiences in recent years have been:
    • Crédit Agricole SA: Senior PKI Consultant
    • La Banque Postale: Senior IAM Consultant
    • AXA GIE: Cybersecurity Program Manager
    • Allianz Informatique: Senior Strong Authentication Consultant
    • BNP CIB: Senior Strong Authentication Consultant
    • AXA Group Solutions: Cybersecurity Program Manager
    • AXA Partners: Cybersecurity Program Manager
    • Solvay: Cybersecurity Program Manager
    • Geneva University Hospitals: Senior IAM Consultant
    • BNP Paribas: Cybersecurity Project Director
    • Orange Store: Senior Strong Authentication Consultant
    project management program management program manager autonomy cybersecurity IAM SSO Strong Authentication risk analysis NAC DLP IT Security SOC Recertification Audit SIEM Vulnerability Management Crisis Management pentest data protection
  • Orange Store
    Senior Strong Authentication Consultant
    January 2025 - Today (1 year and 7 months)
    >> Implementation of a strong authentication solution for all Orange stores (350 stores, +3500 employees) <<
    - Presentation of the state of the art in strong authentication solutions (x509, OTP or USB tokens, dynamic QR codes, biometrics, Passwordless, FIDO2, MFA)
    - Project scoping
    - Identification of use cases, necessary functionalities, and constraints
    - Definition of the target solution (Entra ID / Apple environment)
    - Project setup: objective, scope, budget, deliverables, contributors, schedule, risks, metrics
    - Preparation and facilitation of workshops
  • BNP Paribas
    Cybersecurity Project Director
    BANKING AND INSURANCE
    January 2022 - August 2024 (2 years and 7 months)
    Montreuil, France
    > ITGP:
    - IAM Redesign: Direction of the highly visible project to migrate the technical account management solution (CA Broadcom SiteMinder to SailPoint IIQ)
    • Project Team: 1 project director; 2 project managers; 5 technical-functional contributors; 1 integrator team
    • Actions: strategy, governance, budget, schedule, staffing, presentation to top management for validation; management of the integrator RFP; daily monitoring of actions and schedule in JIRA
    • Governance: monthly steering committee; weekly project committee; daily operational meetings; weekly progress report to Group CIO and Group CISO
    - Privileged Access: management of the cleanup campaign for orphaned/illegitimate accounts (OS and Middlewares) – onboarding and monitoring of 17 user entities; weekly reporting to Group top management (G-CIO, G-CISO, G-CTO)

    > BP²I Operational Security:
    • Cybersecurity Program Manager: Building the cybersecurity project portfolio and implementation roadmap. Creation of program management and internal client communication tools.
    • Offering Manager: Updating the security service offering (service catalog, costs, billing methods, pre-sales coordination)
    • Risk Manager: Implementation of security audit monitoring, risk sheets, and associated remediation plans; reporting and negotiation with internal audit.
    • Project Manager: Management of the organizational transition of BP²I Operational Security teams to ITGP/ProdSec (200 people): budgets, licenses, service contracts, tools, logical and physical access, presentation to representative bodies

Recommendations

Be the first to recommend Alain

Help this freelancer shine by sharing your experience working together.

These freelancer profiles also match your criteria

AgathaA

Agatha Frydrych

Backend Java Software Engineer

4.7

(3)

2

BaptisteB

Baptiste Duhen

Fullstack developer

4.6

(4)

5

AmedA

Amed Hamou

Senior Lead Developer

4

(2)

7

AudreyA

Audrey Champion

Web developer

4.3

(3)

4

Education

  • Bachelor's Degree in Modern Literature
    University of Poitiers
    1996
  • ESC Poitiers
    ESC Poitiers
    1997

Certifications

  • CISSP
    International Information Systems Security Certification Consortium
    2014
  • Lead Auditor ISO 27001
    LSTI
    2012

Skill set

Categories