Freelancer profile translated to English.

Description

Cybersecurity has moved beyond a mere protective role; it is now a true strategic lever for the company. I have mastered the art of transforming it into a driver of growth, trust, and innovation.

With over 19 years of international experience, I have helped companies grow securely worldwide by:

Fostering business support through security focused on growth, customer trust, and sales support.

Protecting customer data while ensuring compliance with NIST, ISO 27001, SOC 1, SOC 2, GDPR, and PCI DSS standards.

Integrating security from the design phase into SaaS products and AI-based solutions.

Collaborating closely with executives and boards of directors to align cybersecurity with strategic objectives.

For me, security is not just a defensive function: it is a lever for business performance and success.

Certifications:

Certified CISO (C|CISO)

ISO 27001:2013 Lead Implementer

ISO 27005:2018 Risk Manager

GIAC Strategic Planning, Policy, and Leadership (GSTRT)

ITIL 4 Foundation

PECB Certified Data Protection Officer

Industry field of expertise

Languages

French
Native or bilingual
English
Native or bilingual

Workplace preferences

Can work on-site

Paris (up to 40km)

Medius
Chief Information Security Officer
SOFTWARE PUBLISHING
June 2023 - Today (3 years)
Paris, France
Responsible for global security governance (IT, SaaS, and on-premises products) at the group level, present in over 9 countries (France, Sweden, Poland, Norway, Denmark, Tunisia, United Kingdom, Canada, United States, Australia).

Promoting security as a business differentiator, supporting sales and customer success teams.

Ensuring the security and resilience of customer data in an international FinTech SaaS environment using AI.

Leading compliance with NIST, ISO 27001, SOC 1, SOC 2, and PCI DSS standards.

Integrating security from the design phase into cloud and AI products.

Advising senior management and the board of directors.

Managing an international team of 8 employees, developing leadership, tools, training, and a culture of responsibility.

Overseeing global security operations, from cloud to incident response.
NIST SOC 2 ISO 27001 Leadership Development SOC2
Generix Group
Chief Information Security Officer
SOFTWARE PUBLISHING
September 2022 - May 2023 (8 months)
Paris, France
Responsible for global security (IT, SaaS, and on-site products) for an international group (France, Portugal, Spain, Italy, Belgium, Russia, Canada, United States, Brazil).

Development of a 5-year strategic plan and the new security program architecture.

Definition of budgets, roadmaps, communication plans, awareness campaigns, and recruitment.

Implementation of key projects: securing Active Directory / O365, IAM, PAM, Trusted Cloud, SSDLC, vulnerability management, resilience plan.

Monitoring non-compliance and renewal of ISO 27001 certification, preparation for SOC 2 Type II certification.

Management of internal and external incidents.

Cross-functional collaboration with technical, legal, commercial, and HR teams.
SOC2 Incident Management
Thematic Groupe
Director of Information Systems Security and DPO
E-COMMERCE
July 2018 - April 2025 (6 years and 9 months)
Paris, France
Responsible for cybersecurity and data protection for subsidiaries in France, Spain, Belgium, Morocco, and Dubai.

Design and deployment of a global resilience strategic plan covering cybersecurity, physical security, and GDPR compliance.

Management of awareness programs and cross-functional teams.

Definition of policies compliant with NIST, ISO 27001, PCI DSS, OWASP, CIS, and GDPR standards.

Implementation of Security & Privacy by Design, DR/BCP plans, and Bug Bounty program.

Incident response, audits, risk assessments, and vendor assessments.

Result: the company designated "Security Leader" by an external agency.
PCI DSS GDPR Leadership