You're seeing this page as if you were . The main menu is still yours, though. Exit from immersion
George YanseGY

George Yanse

Supermalter

Cyber risk & security GRC analyst

€630/day
1 project
Paris, FR
3-7 years

Average response time: 1 hour

Freelancer profile translated to English.
Back to original language

About George

Cybersecurity engineer with techno-functional skills. I have worked mainly as an Assistant CISO, CISO, and GRC Consultant on topics of ISP (Integration of Security in Projects), TPRM, Compliance, Risk Management, and Policy Writing in the following sectors: Banking, Insurance, Luxury, and Construction.
  • French

    Native or bilingual

  • English

    Native or bilingual

  • Spanish

    Conversational

Can work on-site
Paris (up to 20km)

Experience

  • L'Oréal SA - L'Oréal FRANCE
    Assistant CISO / Cybersecurity Manager
    CONSULTING AND AUDITS
    November 2024 - Today (1 year and 9 months)
    Saint-Ouen, France
    ○ Assistant to the cybersecurity officer, enforcing GRC principles
    ○ Implementing the security by design process in the R&I perimeter
    ○ Performing risk assessments and security reviews for R&I assets (formulation AI, hvacs, etc..) using ISO 27005
    ○ Contributing to the third party risk management process build and implementation
    ○ Steering monthly security committees with the IT of the different R&I domains to present and remediate cyber security topics (Appsec, Compliance, Petests, Third Party Risk Management, Threat Vulnerability Management, Legacy Servers and OS).
    ○ Assuring the applications are compliant with the group policy through security attestation controls.
    ISO 27005 Third party risk management ISO 27001 GRC Compliance
  • AXA France
    Cybersecurity Consultant
    BANKING AND INSURANCE
    March 2024 - July 2024 (4 months)
    Nanterre, France
    ○ Improved the existing risk library
    ○ Reviewed and corrected security policy
    ○ Mapped internal controls and sensitive risks
    ○ Worked on a benchmark solution for GRC and risk quantification needs
    ISO 27001 Risk Management ISO 27002 Cyber Policy Writing Control Management
  • Colas
    Cybersecurity Third Party Risk Manager
    CIVIL ENGINEERING
    July 2024 - October 2024 (3 months)
    Vélizy-Villacoublay, France
    ○ Created their end to end Third Party Risk Management process
    ○ Provided the methodology to identify critical / sensitive third parties and their risks.
    ○ Provided a required list of due diligence for certifications.
    Third party risk management ISO 27001 Risk Analysis Security Exhibits Change Management

Recommendations

Be the first to recommend George

Help this freelancer shine by sharing your experience working together.

These freelancer profiles also match your criteria

AgathaA

Agatha Frydrych

Backend Java Software Engineer

4.7

(3)

2

BaptisteB

Baptiste Duhen

Fullstack developer

4.6

(4)

5

AmedA

Amed Hamou

Senior Lead Developer

4

(2)

7

AudreyA

Audrey Champion

Web developer

4.3

(3)

4

Education

  • Engineer
    ECE Paris Engineering School
    2022
    Masters in information systems and security in information systems 2017 – 2022 Relevant Coursework: Network security, Information systems security, IAM, Active Directory, Operating Systems.
  • Image processing, Applied robotics and automation.
    Tec de Monterrey
    2020
    Image processing, Applied robotics and automation.

Certifications

  • CC - Certified in Cybersecurity
    ISC 2
    2024

Skill set

Categories