You're seeing this page as if you were . The main menu is still yours, though. Exit from immersion
Malt Strategy
New report
Malt Tech Trends 2026
Frédéric GouthFG

Frédéric Gouth

RSSI / DPO / Cybersecurity and GDPR Consultant

€730/day
Bordeaux, FR
15+ years
Cybersecurity
RSSI
ISO 27001
GDPR
Training

Average response time: 1 hour

Freelancer profile translated to English.
Back to original language

About Frédéric

I am looking for a Freelance position as RSSI and / or DPO or senior cybersecurity consultant (GRC), in Paris, Bordeaux or Toulouse. I also accept pre-employment on a permanent contract
Indeed, with significant experience as Head of Information Systems Security (RSSI) and Data Protection Officer (DPO), I am currently a Cybersecurity consultant specializing in Governance, Risks and Compliance (GRC), I work in Paris, Bordeaux and Niort, on strategic digital security and Information Systems governance projects. My expertise covers compliance audits (ISO 27001, GDPR, NIS 2, DORA, RGS, LPM, etc.), risk analysis (ISO 27005, Ebios-RM), security awareness and training, as well as incident management (SOC, SIEM) and the implementation of Business Continuity Plans (BCP) and Disaster Recovery Plans (DRP).

My professional background has allowed me to hold various positions in the public and private sectors, particularly in the banking and insurance sector (Banque Postale, MAAF, MGEN), as well as at CULTURA and the Departmental Council of Seine-Saint-Denis as RSSI. These experiences have given me an operational and strategic vision of security, reinforced by technical skills in system, network and security engineering.
In addition, I had the opportunity to participate in the approval of an IS "Restricted Distribution"

In parallel with my professional activities, I am actively involved in the Cybersecurity and CyberDefense community:

Citizen and Operational Reserve Officer of the National Gendarmerie,
Active member of the Cyber Campus of Nouvelle-Aquitaine, I participate in the working group on Cybersecurity of Artificial Intelligence.

  • English

    Fluent

  • French

    Native or bilingual

Can work on-site
Bordeaux (up to 50km), Paris (up to 60km), Toulouse (up to 20km), Poitiers (up to 20km), La Rochelle (up to 20km)

Experience

  • GOUTH (Freelance)
    Cybersecurity and GDPR Consultant / RSSI / DPO / Trainer
    DIGITAL AND IT
    May 2019 - Today (7 years and 1 month)
    Bordeaux, France
    Provision of RSSI Services, RSSI assistance and DPO. GDPR compliance with major accounts, SMEs and administrations. Cybersecurity trainer for the CyberSecurity Referent training of the CCI Bordeaux Gironde which is labeled #SecNumEdu (ANSSI)

    • Definition and management of PGSSI, PSSI security policies (ISO 27001)
    • Defines the objectives and needs related to the company's IS
    • Defines and implements procedures related to IS security
    • Animates compliance projects (technical or regulatory)
    • Directs and leads change committees (Change Management)
    • Defines and implements indicators and operational security dashboard of the IS.
    • Expertise on CNIL and GDPR subjects
    • Risk analysis (ISO 27005, EBIOS)
    • Evaluates the risks, threats and consequences
    • Studies the means and prevention plans ensuring security and their proper use
    • Security awareness
    • Informs and raises awareness
    • Trains operational and business departments in security rules
    • Recommendations
    • Technically validates security tools
    • Defines security standards and standards
    • Audit & control
    • Controls and guarantees that the teams apply the security principles and rules of the IS
    • Audits the vulnerability of the company.
    • Audits the architecture and Active Directory Security (2003, 2008, 2012)
    • BCP / DRP
    • Implementation of BCP / DRP
    • Triggers crisis units in the event of an IS security disaster
    • Watch
    • Monitors the necessary developments to guarantee the logical and physical security of the IS as a whole
    ISO 27001 GDPR ISO 27005 ISSP PGSSI Risk analysis Training BCP DRP
  • NYSTEK
    Cybersecurity & GDPR Consultant / Trainer
    DIGITAL AND IT
    March 2016 - May 2019 (3 years and 3 months)
    Bordeaux, France
    Provision of RSSI Services, RSSI assistance and DPO. GDPR compliance with major accounts, SMEs and administrations. Cybersecurity trainer for the CyberSecurity Referent training of the CCI Bordeaux Gironde which is labeled #SecNumEdu (ANSSI)

    • Definition and management of PGSSI, PSSI security policies (ISO 27001)
    • Defines the objectives and needs related to the company's IS
    • Defines and implements procedures related to IS security
    • Animates compliance projects (technical or regulatory)
    • Directs and leads change committees (Change Management)
    • Defines and implements indicators and operational security dashboard of the IS.
    • Expertise on CNIL and GDPR subjects
    • Risk analysis (ISO 27005, EBIOS)
    • Evaluates the risks, threats and consequences
    • Studies the means and prevention plans ensuring security and their proper use
    • Security awareness
    • Informs and raises awareness
    • Trains operational and business departments in security rules
    • Recommendations
    • Technically validates security tools
    • Defines security standards and standards
    • Audit & control
    • Controls and guarantees that the teams apply the security principles and rules of the IS
    • Audits the vulnerability of the company.
    • Audits the architecture and Active Directory Security (2003, 2008, 2012)
    • BCP / DRP
    • Implementation of BCP / DRP
    • Triggers crisis units in the event of an IS security disaster
    • Watch
    • Monitors the necessary developments to guarantee the logical and physical security of the IS as a whole
    Cybersecurity RSSI ISO 27001 GDPR DPO Training Risk analysis
  • CULTURA
    RSSI (Information Systems Security Manager)
    ENTERTAINMENT AND LEISURE
    June 2015 - February 2016 (9 months)
    Mérignac, France
    • Definition and management of the security policy
    • Defines the objectives and needs related to the company's IS
    • Defines and implements procedures related to IS security
    • Animates compliance projects (technical or regulatory)
    • Management of CNIL subjects
    • Risk analysis
    • Evaluates the risks, threats and consequences
    • Studies the means and prevention plans ensuring security and their proper use
    • Awareness
    • Informs and raises awareness
    • Trains operational and business departments in security rules
    • Recommendation
    • Technically validates security tools
    • Defines security standards and standards
    • Audit & control
    • Controls and guarantees that the teams apply the security principles and rules of the IS
    • Audits the vulnerability of the company
    • Triggers crisis units in the event of an IS security disaster
    • Security monitoring
    • Monitors the necessary developments to guarantee the logical and physical security of the IS in
    its entirety
    Implementation of an ISMS Implementation of an ISSP Security Incident Management BCP / DRP

Recommendations

Be the first to recommend Frédéric

Help this freelancer shine by sharing your experience working together.

These freelancer profiles also match your criteria

AgathaA

Agatha Frydrych

Backend Java Software Engineer

4.7

(3)

2

BaptisteB

Baptiste Duhen

Fullstack developer

4.6

(4)

5

AmedA

Amed Hamou

Senior Lead Developer

4

(2)

7

AudreyA

Audrey Champion

Web developer

4.3

(3)

4

Signup to reveal

Education

  • BTS Electronics
    AFPA
    1996

Skill set

DPO
Risk analysis
awareness
IS Security
IT Security
CIL
Data processing and privacy
Active Directory
compliance
Team management
Change management
Digital transformation
Project management
Security audit
ISO 27002
EBIOS RM
ISO 27005
ISMS
EBIOS
ISSP
CISO
LPM
ANSSI
NIS
NIST
PGSSI
BCP
DRP
Implementation of an ISMS
Implementation of an ISSP
Security Incident Management
BCP / DRP

Categories