Freelancer profile translated to English.

Back to original language

Description

GRC Cybersecurity Consultant – ISO 27001, EBIOS RM, GDPR | Audit, risk analysis, ISMS documentation & awareness

With 5 years of experience in cybersecurity, I support you in your compliance and risk management projects.

I work on all GRC aspects:

🔹 Security audit and support for compliance (ISO 27001, ISO 27005, II901)

🔹 Risk analysis according to the EBIOS RM method

🔹 Implementation or improvement of ISMS (documentation, procedures, policies)

🔹 Cybersecurity awareness sessions for employees

🎯 Objective: make your compliance clear, structured, and aligned with your business needs.

✅ Pragmatic methodology + concrete, ready-to-use deliverables.

📩 Available for one-off missions or longer-term support.

First discussion offered to frame your needs.

Industry field of expertise

Languages

French
Native or bilingual
English
Fluent
Spanish
Basic

Workplace preferences

Can work on-site

Paris (up to 50km)

Groupe LGM
GRC Cybersecurity Engineer
September 2023 - Today (2 years and 9 months)
Vélizy-Villacoublay, France
Definition and steering of cybersecurity strategy: implementation of an ISMS (ISO 27001), coordination of business continuity plans (BCP), crisis management and continuity plan to ensure operational resilience.

Risk governance: conducting EBIOS RM analyses, defining and implementing security measures, monitoring via a GRC tool (Tenacy) for centralized and traceable risk management.

Security audits: conducting internal audits and supplier evaluations, with action plans and concrete recommendations.

Writing Security Assurance Plans (SAP) to frame security requirements in projects and partner relationships.

✅ Structured approach, focused on compliance, business continuity, and security performance.
Accenture
Security Delivery Senior Analyst
March 2022 - August 2023 (1 year and 6 months)
Paris, France
Integration of security into the project during the deployment of an MDM (Master Data Management) solution for an international player in the luxury sector. Monitoring of measures to be implemented, review of security requirements, analysis of flows, technical and organizational recommendations.

EBIOS RM risk analysis on critical legacy applications of the retail network (physical stores) for another luxury player: identification of vulnerabilities, threat modeling, proposal of risk treatment plans aligned with business objectives.

🎯 Demanding context, high sensitivity to confidentiality, integration of business constraints into the security approach.
ATOS
Cybersecurity Consultant
CONSULTING AND AUDITS
March 2020 - November 2021 (1 year and 9 months)
Bezons, France
Supporting organizations in securing their information systems through:

EBIOS RM risk analysis: identification of threat scenarios, impact assessment, and recommendations adapted to each business context.

CISO support: operational support to the Security Officer (steering cybersecurity strategy, incident management, awareness).

GDPR compliance: audit, mapping of processing activities, documentation writing, and compliance support.

Consulting on ISMS implementation (ISO 27001): structuring security governance, defining policies and processes, preparing for certification.

✅ Pragmatic, results-oriented approach, adapted to the needs of SMEs, mid-sized companies, and public institutions.
Project management Risk analysis GDPR compliance EBIOS RM Awareness