Freelancer profile translated to English.

Description

Cyber security expert, I have worked as a security consultant and auditor within consulting firms, notably at Deloitte in the Cyber Risk Advisory department. More recently, I built my expertise in operational security within AXA Group Operations as a SOC Product Manager.

Today, I am an independent consultant and I support my clients on the following topics:

Security Governance:

- Development of Information Security Management Systems (ISMS)

- Security risk analysis

- Drafting security policies

- Integration of security into projects

- Support and management of security teams

- Budget management

Security Audits:

- Organizational compliance audits

- Organization and management of audit and penetration testing campaigns

Operational Security:

- Definition and improvement of SOC processes

- Coordination of service providers

I am certified CISSP, ISO 27001 Lead Auditor and Lead Implementer, CISA. I work in both organizational and technical fields. I can adapt quickly to new environments.

Languages

French
Native or bilingual
English
Fluent

Workplace preferences

Can work on-site

Paris (up to 30km)

AXA Group Operations SAS
SOC Product Manager
BANKING AND INSURANCE
January 2021 - March 2023 (2 years and 2 months)
Paris, France
Defining and deploying the SOC roadmap:
- Aligning with the group’s cyber defense programs and ”move to the cloud” strategy
- Performing monthly and quarterly reportings on the roadmap and the budget

Managing the Use Case Factory:
- Defining and putting in place a process for the detection rules lifecycle management
- Performing governance of the third party provider
- Managing requests to the Use Case Factory from the analysis of the need until going live (delivery of detection rules and playbooks)

Building and managing a team of SIEM engineers to onboard log sources and increase the scope of SOC monitoring (on-prem and cloud, infrastructure and application)
Microsoft Azure Security Operations Center Product Management Team Management
AXA Group Operations SAS
Information Security Consultant
BANKING AND INSURANCE
September 2017 - December 2020 (3 years and 3 months)
Paris, France
Information Security Risk Management:
- Designing, building and supporting the group information security risk management framework
- Monitoring and analyzing key information security risks for the senior management to trigger security strategy and key initiatives at group level

Information Security Consultant: Working for an ambitious worldwide program as SME and activity owner on various projects such as
- Security Target Operating Model
- Information Security Management System Improvement
- Security Incident Management
- Physical and Travel Security
ISO 27001 ISO 27002 NIST Risk Management ISMS Project Management
Deloitte
Senior Consultant - Manager | Cyber Risk Services
CONSULTING AND AUDITS
February 2013 - August 2017 (4 years and 6 months)
Neuilly-sur-Seine, France
Penetration Test Campaigns Management:
- Organization and coordination of worldwide penetration test campaigns Information
System Security Compliance Review:
- Compliance reviews based on international standards such as ISO 27002 as well as on customers internal security policies
- Third party providers security reviews

Information System Security Management:
- Information security management system implementation
- Information system security risk assessment
- Information security organization and governance assessment
Penetration Testing ISO 27002 Audits ISO 27001 ISMS