You're seeing this page as if you were . The main menu is still yours, though. Exit from immersion
Tam Fatima NegadiTF

Tam Fatima Negadi

Cybersecurity GRC & Compliance Expert | ISO 27001

€850/day
Genève, CH
3-7 years

Average response time: 1 hour

Freelancer profile translated to English.
Back to original language

About Tam Fatima

Cybersecurity GRC & Compliance Expert | ISO 27001 | NIS2 | Risk Management

Transform your regulatory requirements into a concrete, managed, and sustainable cybersecurity program.

Cyber regulations are evolving: NIS2, DORA, GDPR, GxP requirements…

But compliance shouldn't be just a paperwork exercise. It should become a real lever for risk management and operational resilience.

I help organizations define, deploy, and continuously improve their Governance, Risk & Compliance (GRC) strategy.

With 6 years of experience with players in the pharmaceutical, energy, and public sectors in Switzerland, Belgium, and France, I assist IT, Risk, and Security teams in moving from complex obligations to measurable action plans.

My areas of intervention:

Cybersecurity Governance & Strategy
  • Definition of cybersecurity roadmaps
  • Implementation and improvement of ISMS (Information Security Management System)
  • Creation of security policies, procedures, and standards
  • Governance, executive reporting, and KPI dashboards
Compliance & Audit Readiness
  • ISO 27001 implementation & certification support
  • NIS2 compliance assessment and remediation plan
  • DORA readiness
  • GDPR & GxP requirements
  • Preparation and support for internal/external audits
Risk Management & Third-Party Risk
  • Risk assessment and gap analysis
  • Identification of key controls
  • Third-Party Risk Management
  • Business Impact Analysis (BIA)
  • Prioritized remediation plans
Cyber Awareness & Change Management
  • Cybersecurity awareness programs
  • Phishing simulations
  • Employee training
  • Change management support
Cyber Project Management
  • Coordination of IT, business, and security stakeholders
  • Action plan tracking
  • Management of complex compliance projects
Certifications:ISO 27001 Lead Implementer (PECB) · PRINCE2®

Need a Cybersecurity GRC expert?
Let's talk
  • French

    Native or bilingual

  • English

    Fluent

  • Spanish

    Fluent

  • German

    Conversational

Can work on-site
Genève (up to 50km), Lausanne (up to 50km), Zurich (up to 50km), Bâle (up to 50km), Berne (up to 50km)

Experience

  • AbbVie AG
    Cybersecurity GRC & Compliance Specialist | Pharmaceutical Sector | Swiss Subsidiary
    PHARMACEUTICALS INDUSTRY
    January 2025 - May 2026 (1 year and 4 months)
    Zoug, Switzerland
    Local cybersecurity referent in a highly regulated pharmaceutical environment (GxP, ISO 27001, internal and external audits).

    Measurable results:
    ✔ -96% click rates on phishing campaigns (400 → 16) and -97% credential submissions (33 → 1) through the deployment of a company-wide awareness program
    âś” -30% of open remediation actions in 12 months via a structured tracking framework
    âś” 0 major non-compliance during internal audits

    ISMS Governance, risk analysis, system lifecycle management, translation of regulatory requirements into operational controls.
    Cybersecurity IT Governance Risk Management IT Project Management Non-compliance Management
  • AbbVie
    IT GRC & Compliance Specialist | Pharmaceutical Sector | Belgian Subsidiary
    PHARMACEUTICALS INDUSTRY
    February 2024 - December 2024 (11 months)
    Wavre, Belgium
    Mission to transform IT governance and regulatory compliance within the Belgian subsidiary of an international pharmaceutical group.

    Measurable results:
    âś” -80% of open remediation actions in 6 months
    ✔ Complete NIS2 assessment: gap analysis → audit coordination for both entities (AbbVie Belgium and Odysea Pharma)
    âś” Governance of the lifecycle of 20+ local applications, 100% audit coverage
    âś” 2 digital initiatives delivered on time, coordination of 3+ teams

    Compliance training, Business System Owner accountability, document management, and traceability.
    NIS2 Leadership IT Governance Risk Management Internal Audit
  • TotalEnergies TOTSA
    Functional & Regulatory Compliance Analyst | Energy Sector
    ENERGY AND UTILITIES
    February 2022 - September 2023 (1 year and 7 months)
    Liège, Belgium
    Functional management of two major IT projects driven by energy market regulatory requirements, acting as an interface between business and IT.

    âś” -25% of requirements clarification cycles through a structured business-IT interface
    âś” Resolution of a critical data quality gap identified during a regulatory review
    âś” Compliant and on-time delivery for 5 business units

    Data governance, validation of regulatory configurations, coordination with regulatory authorities.
    IT Governance Project Management Project Delivery Regulatory Compliance

Recommendations

Emmanuel BismuthEB
Insaf ChaabaneIC
Merlin De WolfMD
Emmanuel Bismuth and 2 other people have recommended Tam Fatima

These freelancer profiles also match your criteria

AgathaA

Agatha Frydrych

Backend Java Software Engineer

4.7

(3)

2

BaptisteB

Baptiste Duhen

Fullstack developer

4.6

(4)

5

AmedA

Amed Hamou

Senior Lead Developer

4

(2)

7

AudreyA

Audrey Champion

Web developer

4.3

(3)

4

Education

  • Master's degrees
    IAE Lille University School of Management
    2021
    Business Unit Management
  • Bachelor's degree
    University of Lille
    2019
    Management

Certifications

Skill set

Categories