About David
English
Native or bilingual
German
Fluent
Experience
- KOESIOISO 27001 Lead ImplementerSOFTWARE PUBLISHINGSeptember 2025 - June 2026 (9 months)Valence, FranceAssisted in the ISO/IEC 27001:2022 certification of two entities within the KOESIO Group: Certifications obtained in April 2026 by one and July 2026 by the other.One entity is a publisher/operator of a document digitalization solution (PDF): indexing, electronic signature, safe, multichannel sending, tracking, and archiving — with strong requirements for availability, data security, and traceability, in order to be eligible for PDP (Partner Dematerialization Platform).Objective achieved: an ISMS implemented in 8 months, auditable and operational.Another entity, whose project directly linked ISO 27001 / ISO27002 requirements with very concrete operational challenges: availability, monitoring, support, incident management, preventive maintenance, backups, reporting, and adherence to service commitments.The goal was not only to produce a compliant ISMS but to make existing practices auditable, controllable, and consistent with customer expectations.
- RYDGE CONSEILISO27001 Lead ImplementerCONSULTING AND AUDITSJune 2025 - February 2026 (8 months)Courbevoie, FranceAssisted in the ISO/IEC 27001:2022 certification -> Certification obtained in February 2026 by RYDGE upon completion of the mission.Project scope: 150 people, 3 sites, Directorate of Information Systems and Innovation (DS2i), Digital Directorate (Rydge Platform).
- Assisted in identifying the certification scope and prepared/led the project kickoff.
- Created the non-existent documentation corpus (policies, procedures, and control points) to establish the ISMS and ensure its continued compliance (35 documents created).
- Supported operational teams (IT, business) in aligning processes to meet the requirements of ISO/IEC 27001:2022.
- Conducted a mock audit based on the ISO/IEC 27001:2022 compliance framework to verify adherence to requirements and prepare for certification (3 audit days).
- Monitored and resolved outstanding non-conformities with the help of operational teams (98 actions taken), and led a project committee to track ISMS actions.
- Planned and supported all interviews during the internal audit and certification audit with the external auditor and operational teams (12 audit days).
- CHU ReimsISO27001 ImplementerMEDICALApril 2024 - June 2025 (1 year and 1 month)Reims, FranceAssisted in ISO/IEC 27001:2022 & HDS v2 2024 (Health Data Hosting) certification -> Certifications obtained by the CHU de Reims upon completion of the mission.
- Project scope: 150 people, 4 sites, Electronic Patient Record (EPR), Centre 15, Digital Services Directorate (DSD).
- Updated all policies, procedures, and control points to ensure continued ISMS compliance (40 documents reviewed).
- Supported operational teams (IT, business) in aligning processes to meet the requirements of ISO/IEC 27001:2022 & HDS v2 2024.
- Conducted a mock audit based on the ISO/IEC 27001:2022 & HDS v2 2024 compliance framework to verify adherence to requirements and prepare for certification (5 audit days).
- Monitored and resolved outstanding non-conformities with the help of operational teams (74 actions taken).
- Planned and supported all interviews during the internal audit and certification audit with the external auditor and operational teams (10 audit days).
Reviews
Recommendations
These freelancer profiles also match your criteria
Agatha Frydrych
Backend Java Software Engineer
4.7
(3)
2
Baptiste Duhen
Fullstack developer
4.6
(4)
5
Amed Hamou
Senior Lead Developer
4
(2)
7
Audrey Champion
Web developer
4.3
(3)
4
Education
- Master in ManagementESCP Europe1997
Certifications
- ISO 27001 - Lead ImplementerORSYS2012
Skill set
Categories
- Other