Freelancer profile translated to English.

Description

Cybersecurity consultant for almost 7 years, I have had the opportunity to address various topics for many clients, including large groups such as Sanofi and RTE. My missions have allowed me to improve on subjects such as key infrastructures, SSO, security indicator management and implementation, NIS regulations, and many others.

These different experiences have also allowed me to sharpen my adaptation skills, improve my skills on many cybersecurity topics, produce different types of deliverables (architecture file, user guide, video editing, DP and DPC, ppt presentation, gap analysis and many others) and improve my project management skills (framing, monitoring, reporting, budget, workshop organization and team management).

I have also been able to discover many sectors of activity thanks to my various clients, such as the insurance and banking sector, state clients, the medical and pharmaceutical sector as well as the energy sector. These different clients have allowed me to understand the constraints and challenges for each of these sectors and to adapt to them in order to best meet the different needs of each.

Industry field of expertise

Languages

English
Fluent
French
Native or bilingual

Workplace preferences

Can work on-site

Paris (up to 50km)

Groupe Crédit Agricole (AE)
PKI Expert
BANKING AND INSURANCE
December 2024 - Today (1 year and 6 months)
Paris, France
- Certificate lifecycle management
- Automation of the certificate lifecycle
- Level 3 support: incident management and continuous improvement
- Implementation of a new PKI
- HSM management
- Data rationalization
HSM PKI CLM
Groupe Randstad France
Security Architect
HUMAN RESOURCES
November 2021 - February 2023 (1 year and 3 months)
Saint-Denis, France
- Architecture management
- Migration of the authentication mode
- Implementation of MFA
- Definition of processes
- Project management
- Management and implementation of an administration Bastion (SaaS)
- Management of the external PKI
- Integration of security into projects (support for teams, drafting of processes)
MFA SSO Authentication Cyberark PKI ISP IT Architecture Project management Bastion
WAVESTONE
Cybersecurity Consultant
CONSULTING AND AUDITS
January 2018 - Today (8 years and 5 months)
Puteaux, France
Alignment with the NIS regulation – Confidential banking and insurance sector
- Project management
- Identification of critical infrastructures (SIE)
- Organization of workshops to understand business issues
- Gap analysis vis-à-vis NIS regulatory requirements
- Creation of a roadmap and estimation of the compliance budget

Increasing the maturity of cybersecurity topics on an industrial IS – Sanofi
- Steering of indicators: creation, maintenance, technical implementation on PowerBI
- PMO of an application for monitoring security topics and inventory
- Support on Patch and obsolescence topics

RFI on Single Sign-On and MFA solutions – Confidential banking and insurance sector
- Conducting an inventory of the existing situation and identifying the client's needs in terms of Single Sign-On
- Analysis of the different evolution scenarios and support for the client in its decision-making.
- Writing a detailed study of the leading Single Sign-On solutions on the access management market.
- Proposal of bias scenarios aimed at facilitating the integration of the solution.

Certificate renewal mission (PKI) – Confidential banking and insurance sector
- Support the client in its PKI renewal process.
- Supporting application engineers in processing certificate requests and producing technical and functional documentation.
- Assistance in setting up the internal PKI and training the client in the operation of the PKI.

Mission to maintain an IAM solution in operational condition – RTE
- Incident management
- Request management via a ticket management tool
- Realization of SSO connections
- Project management
- Review of business processes

Certification authority renewal mission (PKI) – Confidential state client
- Maintaining the PKI infrastructure in operational condition
- Version upgrade of the IDnomic software
- Renewal of certification authorities
- Production of documentation: DA, DSBE, acceptance test plan, user manual for users, PC and DPC, AC renewal guide, PKI administration and operation documentation

Study of IDaaS solutions – Wavestone
- Conducting a benchmark of IDaaS solutions
- Organizing meetings with the various solution publishers
- Conducting an analysis of the solutions based on their technical and functional coverage

Study of Shadow IT in companies – Wavestone
- Study of the risks associated with the presence of shadow IT in companies
- Collaboration with the business to understand the needs and provide adapted solutions aimed at limiting the presence of Shadow IT
- Writing a complete study including risk analysis and recommendations