About Gaëtan
🔒 Senior Consultant in Cybersecurity, GRC & GDPR | Outsourced DPO | ISO 27001 Lead Implementer Certified
🎯 Why hire me?
🔍 My Areas of Expertise
French
Native or bilingual
English
Fluent
Experience
- SNCF VoyageursCybersecurity Consultant - IS MappingTRANSPORTATIONJanuary 2025 - Today (1 year and 6 months)Nantes, FranceLed the update of the IS risk map, integrating the specifics of about twenty business lines and facilitating collaborative workshops with stakeholders. Adapted the mapping methodology based on ISO 27001 and the Group's methodology. Implemented an approach focused on risks associated with business processes, supported by automated calculations of risk impacts and probabilities of occurrence. Particular focus was placed on formalizing the remediation plan, its prioritization, and its follow-up, to ensure effective and sustainable risk management in a complex and highly interconnected environment. The mapping and its remediation plan incorporate the challenges associated with new regulations (Cyber Resilience Act, AI Act, NIS2...).Led the update of the IS risk map, integrating the specifics of about twenty business lines and facilitating collaborative workshops with stakeholders. Adapted the mapping methodology based on ISO 27001 and the Group's methodology. Implemented an approach focused on risks associated with business processes, supported by automated calculations of risk impacts and probabilities of occurrence. Particular focus was placed on formalizing the remediation plan, its prioritization, and its follow-up, to ensure effective and sustainable risk management in a complex and highly interconnected environment. The mapping and its remediation plan incorporate the challenges associated with new regulations (Cyber Resilience Act, AI Act, NIS2...).
- KiplinIS Security and Outsourced DPO ExpertHEALTH AND WELLNESSSeptember 2024 - Today (1 year and 10 months)Nantes, FranceWithin a Nantes-based startup handling sensitive personal data, provided support as an IS Security expert (definition and implementation of a BCP/DRP, deployment of a phishing reporting solution, deployment of an IS Security and GDPR training/awareness solution, pre-sales support...) and as an outsourced DPO (register updates, project support, awareness campaigns, DPIA execution...).
- Ecole Normale SupérieureProject Manager – Cyber Audit and IS Action Plan ProposalEDUCATION AND E-LEARNINGOctober 2023 - May 2024 (7 months)Paris, FranceProject Manager – Cyber maturity audit, IS action plan, and scoping of the IS documentation strategy.Conducted a cyber maturity audit of the central IT department and 6 co-supervised entities, based on the France Relance cyber analysis methodology. Formalized an IS action plan based on the maturity audit and penetration tests conducted by the firm. Assessed the existing IS documentation and identified documentation needs by level (strategies, policies, operational sheets) and by scope.
Recommendations
Be the first to recommend Gaëtan
Help this freelancer shine by sharing your experience working together.
These freelancer profiles also match your criteria
Agatha Frydrych
Backend Java Software Engineer
4.7
(3)
2
Baptiste Duhen
Fullstack developer
4.6
(4)
5
Amed Hamou
Senior Lead Developer
4
(2)
7
Audrey Champion
Web developer
4.3
(3)
4
Education
- Msc. in managementemlyon business school2021Stratégie, transformation des entreprises, conseil
- M2 Law and Business EthicsUniversité CY Cergy Paris2018Conformité, gestion des risques, RGPD
Certifications
- SecNum AcademyANSSI2020
- The GDPR WorkshopCNIL2020