You're seeing this page as if you were . The main menu is still yours, though. Exit from immersion
Jean-Paul VieyraJV

Jean-Paul Vieyra

SSI Consultant, IT, CYBER, RISK

€778/day
Maurepas, FR
15+ years

Average response time: 1 hour

Freelancer profile translated to English.
Back to original language

About Jean-Paul

IT Risk Manager with over 15 years of experience in banking, savings, credit insurance, provident and mutual insurance. Certified ISO27005 and EBIOS RM. Expertise in IT Risk Management, Information System Security, Operational Resilience, Internal Control, Compliance, Risk Assessment, Data Analysis, Risk Analysis, Security Control Monitoring, Remediation Plans and IT Production Management. I work on risk mapping, control plans, KRI/KPI indicators, incident management, release management and action plan monitoring in regulated environments.
  • French

    Native or bilingual

  • English

    Fluent

Can work on-site
Maurepas (up to 50km)

Experience

  • LA BANQUE POSTALE
    RMSI
    BANKING AND INSURANCE
    January 2024 - Today (2 years and 7 months)
    Issy-les-Moulineaux, France
    Support operational managers in risk review, implementation of level 1 controls, and monitoring of risk reduction action plans

    ▪ Support DSIBA directors through regular risk reviews and/or participate in DSIBA steering committees
    ▪ Preparation of CN1/LoD1 campaigns and PCI (Critical Important Services)
    ▪ Management and piloting of IT outsourcing risks.
    ▪ Monitoring of security controls and remediation plans
    ▪ Support for business service managers (PPM) through enhanced monitoring and security committee setup..
    ▪ Risk review, implementation of level 1 controls, and monitoring of risk reduction action plans
    ▪ Creation and drafting of risk sheets for new cross-functional risks as part of DORA regulation compliance
    ▪ Pilot, monitor, and update the operational control plan (LoD2) (deployment within the SMART tool for CN1, campaign launches)
    ▪ Provide DSIBA operational risk reporting for updating the risk map
    ▪ Support for piloting operational risk management systems for IT third-party critical and important services (PCI): contractual and regulatory risk, cyber/SSI risk, GDPR risk, production & project risk, ethical and anti-corruption risk, continuity risk
    ▪ Pilot the management of operational risk incidents through monitoring DSIBA key events
    ▪ Prepare reporting for DSIBA's semi-annual CRC (Risk and Compliance Committee) and facilitate their meetings
    ▪ Participate in the implementation of new risks
    Reporting Best practices in information security risk management it risk management DORA Compliance Risk Mapping
  • SIENNA INVESTMENT MANAGERS
    Assistant RSSI
    PRIVATE EQUITY
    August 2023 - January 2024 (5 months)
    Paris, France
    Support the CISO in implementing priority IS Security initiatives
    • Drafting of the IT charter based on the PSSI;
    • Security by Design for projects (+ revision of the security checklist);
    • Verify in advance the compliance of projects with IS security rules/policy/charter;
    • IT Risk Mapping (focus on IT business processes);
    • Establish the level 1 control grid - in interaction with IT teams.
    Best practices in information security risk management IT Risk Management Control Grid Risk Mapping Risk Sheet Creation
  • LA BANQUE POSTALE
    IT Risk Manager - DSIBA
    BANKING AND INSURANCE
    March 2021 - July 2023 (2 years and 4 months)
    Issy-les-Moulineaux, France
    Mapping, Analysis and permanent monitoring of operational risks
    • Monitoring and updating of the operational risk map.
    • Production of materials and preparation of the monthly incident committee
    • Analysis, control and presentation of monthly level 1 results to the directors of the departments in my 3 portfolios (Individual, Regulatory, My French Bank)
    • Support managers in identifying and mitigating operational risks.
    • Analysis of recurring incidents related to releases for the credit granting automation project of the Regulatory department.
    Understand concepts, approaches, methods and techniques for an effective risk management process Risk Analysis and Management Risk Mapping IT Risk Management Operational Risks

Recommendations

Be the first to recommend Jean-Paul

Help this freelancer shine by sharing your experience working together.

These freelancer profiles also match your criteria

AgathaA

Agatha Frydrych

Backend Java Software Engineer

4.7

(3)

2

BaptisteB

Baptiste Duhen

Fullstack developer

4.6

(4)

5

AmedA

Amed Hamou

Senior Lead Developer

4

(2)

7

AudreyA

Audrey Champion

Web developer

4.3

(3)

4

Education

  • Master's in Information Systems
    EPITA
    2004
    Administration réseaux

Certifications

  • ISO27005
    EDUGROUPE
    2021
    https://pecb.com/fr/education-and-certification-for-individuals/iso-iec-27005/iso-iec-27005-risk-manager
    Best practices in information security risk management Understand concepts, approaches, methods and techniques for an effective risk management process Interpret the requirements of the ISO/IEC 27001 standard in the context of information security risk management Risk Management risk management ISO/IEC 27005 security measures
  • Big Data Fundamentals: Methods and Tools Certification
    26 ACADEMY
    2019

Skill set

Categories