You're seeing this page as if you were . The main menu is still yours, though. Exit from immersion
Ayoub El OuadiAE

Ayoub El Ouadi

Experienced Cybersecurity Consultant

€800/day
Paris, FR
8-15 years

Average response time: 1 hour

Freelancer profile translated to English.
Back to original language

About Ayoub

🔐 Independent cybersecurity consultant — 8+ years of experience with CAC 40 groups and financial institutions (AXA, L'OrĂ©al, CrĂ©dit Agricole).

📊 Patch management oversight for 1,800 workstations and servers, EDR and DLP deployment on 1,800 endpoints, and LPM compliance for 5 banking subsidiaries.

🎯 My focus: operational security and governance, where regulatory requirements (LPM, NIS2, GDPR, ISO 27001) meet the technical realities of IT teams.

What I bring concretely:

đŸ›Ąïž Operational Security — SecOps oversight, EDR (Cybereason), DLP (Digital Guardian), SIEM, vulnerability and patch management at the group level.

đŸ›ïž Governance and Compliance — Risk analysis (ISO 27005, EBIOS), continuous control programs, SIS/SIV accreditation, LPM and NIS2 preparation.

🚹 Incident Response — Forensic investigations, crisis management, remediation, and post-incident hardening.

đŸ€ Cross-functional Oversight — Coordination of SOC, infrastructure, cloud, and business units; KPIs and reporting for security governance committees.

⚙ Rigorous in method, pragmatic in execution: my goal is to transform regulatory and technical complexity into measurable security.

🌍 Available for your projects in France and internationally (on-site, hybrid, or remote).

🌐 ayoubelouadi.com
  • English

    Native or bilingual

  • Arabic

    Native or bilingual

  • French

    Native or bilingual

Can work on-site
Paris (up to 50km)

Experience

  • AXA
    Cybersecurity Consultant – Patch Management
    BANKING AND INSURANCE
    April 2026 - Today (3 months)
    Paris, France
    🎯 Global Patch Management — Risk Reduction

    đŸ› ïž Strategic Oversight & Operational Coordination
    â–Ș Leadership of global patch management within the AXA GIE CSO team, focusing on critical IT infrastructure vulnerabilities
    â–Ș Orchestration of the remediation cycle: Windows, macOS, servers, and VMs (Windows, Linux, Citrix)
    â–Ș Deployment strategy based on vulnerability criticality and residual risk exposure
    â–Ș Cross-functional coordination with Infrastructure, Cloud, Operations, and Support for a controlled rollout
    â–Ș Validation of patch cycles (test → pilot → generalization) to minimize production impacts

    📊 Dashboards & Decision Support
    â–Ș Strategic KPIs: open/resolved vulnerabilities, coverage rate by asset family, average remediation time
    â–Ș Real-time dashboard of the infrastructure's security posture against critical risks
    â–Ș Reporting on campaign progress and compliance deviations
    â–Ș Escalation of non-compliant or exempted assets, with coordination of action plans
    â–Ș Executive program oversight: decision-making and communication to security governance committees
    Project Management Cybersecurity Audit
  • AXA
    SecOps and Security Project Management Consultant
    September 2021 - September 2025 (4 years)
    HĂŽtel de Ville, Paris, France
    🎯 Incident Management, Security Project Oversight, and Continuous Control Improvement

    đŸ›Ąïž MTSB (Minimum Technical Security Baseline) v2 & v3
    â–Ș Global project management of MTSB ensuring a minimum security level across the AXA infrastructure: workstations, Windows/Linux servers, databases, business applications, mobile devices
    â–Ș Coordination of SOC, IT Infrastructure, Cloud, Networks, and Endpoints teams for compliance
    â–Ș Control supervision: patching, secure configuration, encryption, antivirus, EDR, hardening, account and access management
    â–Ș KPIs per control, action plans, and quarterly reporting

    🚹 Incident Management and Investigations
    â–Ș Real-time alert monitoring (SIEM, DLP, EDR)
    â–Ș Analysis of Digital Guardian (DLP) and Cybereason (EDR) reports to identify threats and abnormal behaviors
    â–Ș Escalation with SOC, IT, and business units; drafting incident communications (report, post-mortem, recommendations)

    🔍 Cybereason EDR Integration and Management
    â–Ș Project lead for the global integration and deployment of Cybereason EDR within AXA GIE (workstations, Windows and Linux servers)
    â–Ș Prioritization of detection use cases with SOC and Threat Intelligence, definition of EDR operational processes
    â–Ș Monitoring of agent rollout and KPIs: coverage, detection quality, responsiveness

    🔒 DLP Policies
    â–Ș Implementation, configuration, and administration of DLP policies in Digital Guardian
    â–Ș Continuous improvement of rules to reduce alert noise
    â–Ș Policies reducing data leakage risks (GDPR, ISO 27001)

    📝 Requests and Exemptions
    â–Ș Processing requests: specific tools, privilege escalation, exceptional access, DLP/EDR exemptions
    â–Ș Compliance assessment against AXA Group policies
    â–Ș Daily ServiceNow use; KPIs (SLA, rejection rate, average time)
    Security Operations Center (SOC)
  • L'OrĂ©al
    Security Project Analyst (ISP)
    January 2021 - July 2021 (6 months)
    Paris, France
    🎯 Integrating Security into Projects and Supporting Business/IT Teams

    🔐 Integrating Security into Projects
    â–Ș Supporting business and IT teams in implementing the security process throughout the project lifecycle (from design to production)
    â–Ș Participation in security tenders: drafting requirements, analyzing supplier proposals, and managing compliance audits (internal and external)
    â–Ș Vulnerability management for application and infrastructure projects, coordination with technical teams for remediation and patch tracking
    â–Ș Conducting project risk analyses according to group standards and ISO 27005 / EBIOS frameworks, with definition and follow-up of associated action plans

    📊 Governance & Collaboration
    â–Ș Contribution to security governance through dashboard production, monthly reporting, and support for security management oversight
    â–Ș Close collaboration with Infrastructure, Cloud, Network, and Compliance teams to ensure consistency of security requirements across the project portfolio
    â–Ș Raising awareness among project managers and application owners on cybersecurity best practices and internal compliance requirements

Recommendations

Be the first to recommend Ayoub

Help this freelancer shine by sharing your experience working together.

These freelancer profiles also match your criteria

AgathaA

Agatha Frydrych

Backend Java Software Engineer

4.7

(3)

2

BaptisteB

Baptiste Duhen

Fullstack developer

4.6

(4)

5

AmedA

Amed Hamou

Senior Lead Developer

4

(2)

7

AudreyA

Audrey Champion

Web developer

4.3

(3)

4

Education

  • Network and Telecommunications Engineering
    Ecole Mohammadia d'Ingénieurs
    2018
    Génie réseaux et télécommunications
  • CPGE - PCSI/PSI, Preparatory Classes
    Lycée Moulay Youssef
    2015
    CPGE - PCSI/PSI, Classes préparatoires

Certifications

  • Project Management - Fundamentals
    Actinuum
    2020
    Project Management
  • Project Stakeholder Management
    Actinuum
    2020
    Project Management

Skill set

Categories