Freelancer profile translated to English.
Back to original languageAbout Cédric
Cyber and CISO expert on a part-time basis, I support various organizations (large accounts, OIV, SMEs, start-ups, FINTECH, or local authorities) particularly in:
🛡️ defining and implementing their security objectives
🛡️ their audits and regulatory compliance (LPM, DORA / NIS2, MiCA)
🛡️ integrating security into their projects
🛡️ managing their Cyber risks
🛡️ developing their Cyber documentation corpus
They trusted me:
👥 Crédit Agricole
👥 Société Générale
👥 Bolloré Transport Logistics
👥 Agefiph
👥 Gennevilliers Town Hall
👥 French Fintechs
Do not hesitate to let me know your needs.
GRC LPM MiCA NIS2 DORA 27001 27005 EBIOS BCP BIA PSAN PSCA PSSI BCP BIA
English
Fluent
German
Conversational
French
Native or bilingual
Can work on-site
Paris (up to 50km), Lyon (up to 50km), Lille (up to 50km), Bordeaux (up to 50km)
Experience
- Fintech françaiseCISO (Part-time)July 2023 - Today (2 years and 11 months)Paris, FranceAs part of regulatory compliance for a crypto-asset service provider (PSCA, MiCA, Blockchain):🛡️ Cyber maturity audit🛡️ Cyber roadmap definition🛡️ Deployment of the Cyber component of the compliance strategy🛡️ Writing Cyber policies🛡️ Risk analysis🛡️ Business continuity plan
- Mairie de GennevilliersCISO (Part-time)PUBLIC SECTORJune 2023 - June 2025 (2 years)Gennevilliers, France
- Development of the Cyber roadmap
- Support and coordination of operational teams
- Writing and implementation of ISSP
- Definition and monitoring of post-audit remediation plans
- Development of a business continuity plan (BCP)
- Development of a procedure for evaluating and monitoring third-party service providers
- SOCIETÉ GÉNÉRALECYBER SECURITY CONSULTANTSeptember 2022 - Today (3 years and 9 months)Integration of Security into Projects (ISP):
- Conducting and formalizing risk analyses
- Defining Cyber Security technical and functional rules and specifications
- Monitoring their compliance by all stakeholders (architect, network, system)
- Cyber Security evaluation and monitoring of projects (validations, recommendations, architecture)
- Recording and monitoring project risks
- Expert support and monitoring of risk treatment plans
- Contribution to the evolution of the methodological framework
Within the framework of audit programs and internal or regulatory controls:- Collection and consistency analysis of evidence
- Review of the documentation corpus
- Identification and analysis of gaps
- Updating compliance monitoring indicators
- Support for compliance plans
Production and improvement of KRIs
Recommendations
These freelancer profiles also match your criteria
Agatha Frydrych
Backend Java Software Engineer
4.7
(3)
2
Baptiste Duhen
Fullstack developer
4.6
(4)
5
Amed Hamou
Senior Lead Developer
4
(2)
7
Audrey Champion
Web developer
4.3
(3)
4
Education
- Expert in information technology: EPITECHEPITECH2009
Certifications
- ISO 27001 LAPECB
- ISO 27005 RMPECB