You're seeing this page as if you were . The main menu is still yours, though. Exit from immersion
Amine A.AA

Amine A.

Cybersecurity Strategy, GRC, Detection & Response

€1,700/day
3 projects
Paris, FR
15+ years

Average response time: 1 hour

Freelancer profile translated to English.
Back to original language

About Amine

I design and manage the cybersecurity for large groups and critical infrastructures, from strategic framing to implementation. I intervene where the stakes are high: risk governance and regulatory compliance, DLP and data protection, Cloud security architecture Azure, AWS and GCP, modernization of detection and response including SOC, SIEM, incident response, Threat Intelligence and Forensics.

What I bring you: a strategic vision backed by over 15 years of experience, serving leading French and international groups and critical infrastructures, from advisory at the Group CISO level to technical foundations, with the ability to engage with your executive committees and regulators, as well as challenge your teams.

Mission examples: defining a cyber strategy or roadmap, external or part-time CISO, DORA compliance and regulator preparation, risk audit and mapping, security architecture design, SOC construction or transformation, DLP program, penetration testing and Red Team.

My approach: actionable recommendations and support from executive framing to teams, with skills transfer. Available for missions in France and internationally, in French, English, and Arabic.
  • French

    Native or bilingual

  • English

    Fluent

  • Arabic

    Native or bilingual

Can work on-site
Paris (up to 50km), Nice (up to 50km)

Experience

  • BPCE
    Cybersecurity Strategy & Risk Advisor, Group CISO Office
    BANKING AND INSURANCE
    January 2025 - June 2026 (1 year and 5 months)
    Paris, France
    Technical advisor to the Group CISO, on assignment via FOREN6. Managed two strategic projects for the group's security department and its more than 80 sites: data leak risk control and compliance of the IT risk management framework with regulators.

    • Defined the group DLP strategy and managed the program: Netskope and Trellix deployment, CASB, data governance.
    • Coordinated the production of regulatory reports on the IT risk management framework, under the European DORA regulation.
    • Mapped DORA and NIST remediation plans and managed their implementation; KPI reporting to committees and management.
    • Developed the IT annex of the Internal Control Report submitted to the ACPR and supported responses to regulators.
    Governance, Risk & Compliance (GRC) Risk Management DORA Compliance DLP Cybersecurity Strategy
  • Société Générale
    Cybersecurity Program Director, Detection & Response
    BANKING AND INSURANCE
    July 2023 - December 2024 (1 year and 5 months)
    Paris, France
    Directed a strategic transformation program for detection and response across the group's infrastructure SOC, replacing the technological foundation and historical processes.

    • Defined and deployed the group's detection and response strategy, and the associated operational target.
    • Managed the technological foundation overhaul: migration from on-prem RSA NetWitness SIEM to Splunk Cloud, 12 TB of data per day; replacement of the internal SOAR with Palo Alto Cortex XSOAR.
    • Industrialized incident response orchestration and automation.
    • Directed program governance: budget, risk matrix, steering committees, and KPIs communicated to executives.
    Cybersecurity Strategy Detection and Response SOC Splunk SOAR
  • BPCE Infogérance & Technologies
    Cyber Defense Architect, Cloud Detection & Response
    BANKING AND INSURANCE
    September 2020 - July 2023 (2 years and 10 months)
    Paris, France
    Cyber defense architecture for the infrastructure security department. Dual mandate at the group level: detection and response strategy in public Cloud Azure, AWS, and GCP, and building the SOC service offering for subsidiaries.

    • Defined the target security architecture at the group SI level: multi-year roadmap, reusable security patterns, SI urbanization.
    • Defined and implemented the Cloud detection and response strategy, and translated security policies into operational standards.
    • Developed the SOC service offering for subsidiaries: defining the offering, onboarding under SLA commitments, responding to tenders.
    • Monitored threats and conducted security risk assessments on new IT projects and emerging Cloud technologies.
    • Established SOC governance, processes, and KPIs, and industrialized operations.
    Cybersecurity Architecture SOC Cloud Computing Detection and Response Cybersecurity Strategy

Reviews

5.0

Out of 2 ratings

F

Fanny

Société Générale - RESG

Reviewed on 4/13/2025

Amine was very involved throughout his mission. He is attentive and demonstrates autonomy. He also has excellent communication skills for explaining complex cyber topics. This greatly helped in managing the project and reporting to management. I highly recommend Amine.
F

Fanny

Societe Generale - RESG

Reviewed on 11/8/2023

Recommendations

Be the first to recommend Amine

Help this freelancer shine by sharing your experience working together.

These freelancer profiles also match your criteria

AgathaA

Agatha Frydrych

Backend Java Software Engineer

4.7

(3)

2

BaptisteB

Baptiste Duhen

Fullstack developer

4.6

(4)

5

AmedA

Amed Hamou

Senior Lead Developer

4

(2)

7

AudreyA

Audrey Champion

Web developer

4.3

(3)

4

Education

  • Engineer's degree, Computing and Security
    EPITA: Computer Engineering
    2016
    Engineer's degree, Computing and Security
  • Bachelor of Technology
    Lycée Notre Dame de Sainte Croix
    2013
    Bachelor of Technology (BTech), Network and system

Skill set

Categories