Description

I am a consultant with strong expertise in IT risk management, regulatory compliance, and project management, working across complex environments such as public sector, healthcare, and financial services.

Certified in ISO/IEC 27005:2022 and holding a Master’s degree in Information Systems Management, I combine a solid technical foundation with strong operational and organizational skills.

I help organisations secure their information systems, structure governance frameworks, and deliver high-impact digital transformation initiatives.

I am now expanding my scope toward broader project leadership roles (PMO, coordination, delivery management) while keeping a strong backbone in risk, compliance, and information security.

Skills

Project Management :

Project coordination · PMO · Agile · Planning · Stakeholder management · Change management · Reporting · Risk tracking · Workshop facilitation

Risk & Security :

ISO/IEC 27005 · IT risk assessment · Governance · Audit & compliance · Security controls · Accreditation · Confidentiality & data protection

Information Systems :

Business processes · Operating models · Data migration · CRM (Salesforce) · ERP (SAP, Cegid) · Architecture · Digital transformation

Tools :

Microsoft 365 · Jira · Confluence · Trello · Google Workspace

Languages

English
Native or bilingual
French
Native or bilingual
German
Basic

Workplace preferences

Can work on-site

Paris (up to 50km)

Grant Thornton - France
Compliance Project Manager
CONSULTING AND AUDITS
April 2025 - October 2025 (6 months)
Paris, France
Contributed to compliance and regulatory audits for Health IT systems,
ensuring software solutions meet national and international healthcare
standards. Act as a key interface between technical teams, regulatory bodies,
and quality management functions.

Key achievements:
- Performed end-to-end compliance audits of medical and health information
systems, assessing data flows, interoperability, and data protection
mechanisms.
- Reviewed software documentation and validation deliverables to verify
adherence to Healthcare regulations
- Evaluated alignment with healthcare regulatory frameworks
- Supported regulatory accreditation processes in collaboration with health
authorities and software vendors, ensuring successful conformity assessments
and audit closures.
- Provided recommendations to strengthen governance, documentation, and
audit readiness across digital health projects.
Gestion de projet Systèmes d'information Healthcare Conformité
Grant Thornton - France
Information Privacy Project Manager
CONSULTING AND AUDITS
December 2024 - April 2025 (4 months)
Paris, France
Contributed to data privacy and AI governance initiatives to ensure ethical,
compliant, and transparent use of digital technologies across enterprise
systems. Bridge the gap between regulatory requirements and operational
implementation.

Key achievements:
- Designed and implemented governance frameworks for data privacy,
including organizational policies, operational procedures and awareness
training.
- Applied ISO/IEC 42001:2023 principles to align AI governance systems with
emerging international standards on accountability, transparency, and human
oversight.
- Collaborated with cross-functional teams (legal, IT security, compliance,
and data science) to embed privacy-by-design and ethics-by-design practices
within digital projects.

Environment:
Data privacy governance, AI compliance, ISO/IEC 42001 implementation, EU
AI Act, risk and ethics management.
ISO 42001 Data Management
Grant Thornton - France
Cyber Security Project Manager
CONSULTING AND AUDITS
September 2023 - December 2024 (1 year and 3 months)
Paris, France
Oversaw cybersecurity and risk management activities across a large portfolio
of digital transformation projects. Drive governance, compliance, and riskbased decision-making aligned with ISO/IEC standards.

Key achievements:
- Managed risk across 60+ digital projects per year, covering the full lifecycle
— identification, assessment, mitigation, monitoring, and production release.
- Applied ISO/IEC 27005:2022 methodologies to implement structured risk
management within the ISO/IEC 27001 Information Security Management
System (ISMS).
- Coordinated cross-functional teams (IT, security, and business units) to
ensure secure-by-design project delivery and adherence to internal security
frameworks.
- Produced risk dashboards and KPIs for top management, improving visibility
and traceability of risk decisions across the project portfolio.

Environment:
Cyber risk governance, information security, project management, ISO/IEC
27001–27005 compliance
ISO 27005 ISO 27001 Gestion des risques IT Analyse de risques Cybersécurité

Check out Jeffrey's experience

Be the first to recommend Jeffrey

Help this freelancer shine by sharing your experience working together.

Agatha Frydrych

Backend Java Software Engineer

4.7

(3)

Baptiste Duhen

Fullstack developer

4.6

(4)

Amed Hamou

Senior Lead Developer

(2)

Audrey Champion

Web developer

4.3

(3)

Signup to reveal

Master of Information System Management
Institut Mines-Télécom Business School
2023
Master's degree, Information Systems Management
Master of International Business
University of Applied Sciences and Arts Dortmund
2020
Bachelor's degree, International Business and Management

Check out Jeffrey's education

IT consultant

Jeffrey Phaitus

Freelance - IT Consultant | Project Manager

About Jeffrey

Experience

Recommendations

These freelancer profiles also match your criteria

Education

Skill set

Categories