You're seeing this page as if you were . The main menu is still yours, though. Exit from immersion
François BrunettiFB

François Brunetti

Cybersecurity Consultant | GRC | Digital Workplace

€670/day
Paris, FR
3-7 years

Average response time: 1 hour

Freelancer profile translated to English.
Back to original language

About François

Through four years of cybersecurity experience, I have developed a specialized profile in GRC and ISP. Particularly comfortable with the digital workplace perimeter, I offer 360° security for the perimeter entrusted to me. Accustomed to working with IT teams, cybersecurity teams, and business departments, I know how to unite stakeholders around cybersecurity challenges while taking into account their operational constraints.
  • French

    Native or bilingual

  • English

    Native or bilingual

  • Japanese

    Conversational

Can work on-site
Paris (up to 50km)

Experience

  • Manta consulting
    Head of User Equipment Security - FDJ United
    CONSULTING AND AUDITS
    January 2026 - Today (7 months)
    Paris, France
    Carried out risk analysis for the user equipment perimeter in alignment with ISO 27001
    Managed about ten security incidents
    Security referent for over thirty projects:
    - Contractual security
    - Architecture reviews
    - Risk analysis
    - Development and monitoring of treatment plans
    - Risk arbitration
    - Definition of detection scenarios (SOC)

    Examples of actions taken (non-exhaustive list):

    Mobile device security:
    - Developed and then managed the deployment of iOS & Android hardening
    - Security support for Defender deployment
    - Security support for Conditional Access (CAC) rule deployment

    Workstation security:
    - Developed and then managed the deployment of Windows and Mac hardening
    - Security support for passwordless deployment (Windows Hello & Platform SSO)

    Local application security:
    - Designed a process for validating the addition of local applications to the Mac & Windows catalog
    - Managed a review of high-privilege local applications

    Other topics:
    - Security support for Windows 365 deployment

    Cybersecurity reporting:
    - Designed and implemented comprehensive cybersecurity reporting for the user equipment perimeter

    Technical environment: Microsoft Intune, Jamf, Nexthink, Microsoft Defender, Okta, Microsoft EntraID, Active Directory, SCCM, Windows LAPS, W365, Qualys, Qradar, Microsoft Sentinel, ServiceNow, Jira
    Risk Analysis ISP Security Incident Management Governance, Risk & Compliance (GRC) ISO 27001
  • Manta Consulting
    Governance & Control - FDJ United
    CONSULTING AND AUDITS
    January 2025 - January 2026 (1 year)
    Paris, France
    Managed over 100 incidents and requests for exceptions to internal security policies.
    Developed, updated, or reviewed three internal security policies
    Created and implemented a level 2 internal control plan
    Developed about ten cross-functional processes to strengthen governance
    Conducted about ten cross-functional reviews

    Examples of actions taken (non-exhaustive list):

    Microsoft Entra ID security:
    - Conducted a review of high-privilege Entra ID applications
    - Designed a validation process for creating Entra ID applications
    - Implemented automated detections for the creation of high-privilege Entra ID applications
    - Defined and implemented recurrent control of high-privilege Entra ID applications

    Microsoft Exchange security:
    - Conducted a review of exceptions granted for mail flows
    - Designed a validation process for mail flow exception requests
    - Managed the centralization of granted exceptions in TABL
    - Defined and implemented recurrent control of granted exceptions for mail flows
    Note: Similar security projects were carried out for M365, Azure...

    Improving governance around exceptions to IS security policies:
    - Designed about ten exception processes (use of USB keys, granting local administrator rights on workstations, proxy bypass...)
    - Wrote a security policy dedicated to managing IS security exceptions
    - Implemented recurrent, partially automated controls on granted exceptions
    - Handled all exception requests

    Technical environment: Microsoft 365, Microsoft Exchange, Microsoft EntraID, Azure, Wiz, IDECSI, Beamy, Qradar, Microsoft Sentinel, ServiceNow, Jira
    Governance, Risk & Compliance (GRC) M365 Microsoft Entra ID Microsoft Exchange Security Incident Management
  • Manta Consulting
    Security Partner - FDJ United
    CONSULTING AND AUDITS
    December 2022 - January 2025 (2 years and 1 month)
    Paris, France
    Security support for over 100 projects:
    - Contractual security
    - Architecture reviews
    - Risk analysis
    - Development and monitoring of treatment plans
    - Definition of detection scenarios (SOC)
    - Execution of WAS scans

    Examples of actions taken (non-exhaustive list):

    IAM perimeter security:
    - Security support for the IAM architecture redesign
    - Security support for several projects to strengthen CAC rules
    - Managed over a hundred SSO connections

    Microsoft perimeter security:
    - Security support for the Azure architecture redesign (Hub & Spoke model)
    - Control of Entra ID permissions requested by about fifty SaaS applications

    Security for various business perimeters:
    - Security support for the HRIS redesign
    - Security support for the institutional website redesign

    SaaS application security:
    - Created a dedicated security support guide for SaaS applications
    - Security support for the deployment of nearly a hundred SaaS applications
    - Security support for the deployment of about thirty AI applications or applications including an AI feature

    Technical environment: Qualys, Microsoft EntraID, Okta, Active Directory, ServiceNow, Jira
    Risk Analysis ISP Microsoft Entra ID Build to Run Cloud Security

Recommendations

Be the first to recommend François

Help this freelancer shine by sharing your experience working together.

These freelancer profiles also match your criteria

AgathaA

Agatha Frydrych

Backend Java Software Engineer

4.7

(3)

2

BaptisteB

Baptiste Duhen

Fullstack developer

4.6

(4)

5

AmedA

Amed Hamou

Senior Lead Developer

4

(2)

7

AudreyA

Audrey Champion

Web developer

4.3

(3)

4

Education

  • Associated preparatory classes MPSI/PSI
    ISEP-STANISLAS
    2019
    Classes préparatoires associées MPSI/PSI
  • Engineering degree
    ISEP
    2022
    Diplôme d'ingénieur

Skill set

Categories