You're seeing this page as if you were . The main menu is still yours, though. Exit from immersion
Malt Strategy
New report
Malt Tech Trends 2026
Ayoub B.AB

Ayoub B.

GRC Cybersecurity Senior Consultant

€620/day
Paris, FR
8-15 years
Cybersecurity
Risk Analysis
Cybersecurity Governance
ISO 27001
Permanent Control

Average response time: 1 hour

Freelancer profile translated to English.
Back to original language

About Ayoub

GRC & Cybersecurity Consultant with 10+ years of experience, I help large organizations structure their cyber governance, manage their IT risks, and meet regulatory requirements (DORA, NIS2, ISO 27001).

Significant experience in the banking, insurance, and public sectors, with multi-entity management, cyber risk management, remediation, and ISMS governance assignments.

Expertise: ISMS governance, IT risk management, cyber compliance, KRIs, remediation plans, CISO/CIO/business coordination.

ISO 27001 Lead Implementer certified — available in the Île-de-France region and remotely.
Banking and Financial Services
Insurance
Public Sector

  • French

    Native or bilingual

  • English

    Fluent

Can work on-site
Paris (up to 40km)

Experience

  • GENERALI FRANCE
    GRC Cybersecurity Consultant
    HEALTH AND WELLNESS
    March 2023 - March 2026 (3 years)
    Context:
    Managed the cybersecurity and IT resilience governance framework for 12 subsidiaries: maturity assessment, continuous improvement plan supervision, and deployment of over 30 critical remediation plans.

    Assignments:
    ▪ Supported IT Risk Officers and IT teams in the operational implementation of IT and cyber security requirements within a transformation program
    ▪ Deployed and improved cybersecurity governance processes (ISO 27001, NIST, DORA)
    ▪ Structured and managed the IT Risk Management Framework (ISO 27005)
    ▪ Contributed to the definition, deployment, and monitoring of IT controls
    ▪ Managed remediation plans and tracked their progress
    ▪ Organized and led monthly progress meetings with entities
    ▪ Implemented indicators (KPI/KRI) and produced consolidated reports
    ▪ Contributed to summaries for management, the Group CISO, and the second line of defense
    ▪ Coordinated stakeholders (CISO, CIO, Risk Managers, IT teams)
    ▪ Participated in regulatory compliance and critical risk reduction efforts

    Results:
    ▪ Harmonized security practices across 12 subsidiaries
    ▪ Deployed over 30 critical remediation plans
    ▪ Improved visibility and management of IT risks at the Group level
    ▪ Significantly reduced major vulnerabilities
    RSA Archer IT Strategy Security Audit EBIOS RM ISO 27001
  • LA BANQUE POSTALE
    IT & Cyber Risk Consultant
    September 2021 - December 2022 (1 year and 3 months)
    Context:
    Strengthened the IT and Cyber risk management system within La Banque Postale's IT department: risk assessment and monitoring, implementation of key risk indicators (KRI), management of remediation plans, and reporting to governance committees.

    Assignments:
    ▪ Supported IT teams in implementing IT and cyber risk management processes
    ▪ Conducted EBIOS RM risk analyses (scenario identification, risk assessment)
    ▪ Assessed the effectiveness of existing IT controls, identified areas for improvement, and contributed to the deployment of new controls
    ▪ Monitored action and remediation plans (IT teams, CISO, SOC) and implemented risk indicators (KRI)
    ▪ Organized and led IT and Cyber risk monitoring committees, produced reports and summaries for management and governance bodies
    ▪ Contributed to permanent control and regulatory compliance mechanisms

    Results:
    ▪ Strengthened the IT and Cyber risk management system
    ▪ Improved monitoring of remediation plans and risk indicators
    ▪ Better coordination between IT, security, and risk teams
    ▪ Structured reporting and improved management visibility
    Cybersecurity Governance Threat Intelligence KPI Definition and Monitoring Cross-functional Coordination EBIOS RM
  • ADMINISTRATION PUBLIQUE - DIRECTION DE LA TRANSFORMATION NUMÉRIQUE
    Digital Transformation Consultant
    January 2018 - July 2020 (2 years and 6 months)
    Context:
    Supported a digital transformation program with significant organizational and IT implications within the Digital and Cyber Transformation department of a public administration.

    Assignments:
    Overall program coordination (roadmap, milestones, risks, dependencies)
    Action plan monitoring and project risk management
    Participation in project governance and leading steering committees
    Production of monitoring reports and deliverables
    Contribution to structuring IT management systems

    Results:
    Improved overall program management and project risk visibility, with sustainable structuring of governance processes.
    Digital Transformation IT Strategy Change and Transformation Management IT Project Management Microsoft Office
Check out Ayoub's experience

Recommendations

Be the first to recommend Ayoub

Help this freelancer shine by sharing your experience working together.

These freelancer profiles also match your criteria

AgathaA

Agatha Frydrych

Backend Java Software Engineer

4.7

(3)

2

BaptisteB

Baptiste Duhen

Fullstack developer

4.6

(4)

5

AmedA

Amed Hamou

Senior Lead Developer

4

(2)

7

AudreyA

Audrey Champion

Web developer

4.3

(3)

4

Signup to reveal

Education

  • Master's Degree in Risk Management (Bac+6)
    Arts et Métiers ParisTech
    Master Spécialisé Manager des risques (Bac+6)
Check out Ayoub's education

Skill set

RSA Archer
ServiceNow
Qualys
Nessus
Splunk
Azure AD
IBM Cloud
Microsoft Office
Cybersecurity Incident Management
GRC (Governance, Risk and Compliance)
Risk and Vulnerability Assessment
Least Privilege Principles
Data Privacy (GDPR, CCPA)
Penetration Testing
Security Awareness Training
Threat Intelligence
Data Integrity and Governance
Change and Transformation Management
Digital Transformation
IT Project Management
IT Strategy
IT Vendor Management and Procurement
IT Service Management

Categories