Freelancer profile translated to English.

Description

Cybersecurity Expert/PenTest & ISO27001 Compliance

Hello,

I am a cybersecurity specialist and pentester with several years of experience in auditing, penetration testing (PenTest), and supporting information system compliance.

My goal: To help you anticipate cybersecurity risks, protect your sensitive data, and strengthen your organization's security.

I can perform all or part of the following services:

Penetration testing (PenTest)
Technical and organizational security audits
Compliance with ISO27001 standard (initial audit, action plan, certification support)
Cybersecurity support for GDPR compliance
Risk analysis
Review and implementation of security policies
Securing Systems and Networks
Cybersecurity training and awareness
pentest

In my role as a cybersecurity expert and pentester, I support small and medium-sized businesses as well as large corporations, always with a pragmatic, clear, and results-oriented approach.

pentester

Pentest

IT Security

cybersecurity expert

cybersecurity

Languages

French
Native or bilingual
English
Fluent

Workplace preferences

Remote only

Primarily works remotely

Ministère des Armées
Cybersecurity Expert
PUBLIC SECTOR
January 2023 - February 2024 (1 year and 1 month)
Paris, France
1. Threat Monitoring and Detection:
- Continuously monitor the ministry's systems and networks to detect threats and suspicious activities.
- Utilize advanced monitoring tools (SIEM) to identify and analyze security incidents.

2. Security Incident Management:
- Respond quickly to security incidents by following established protocols.
- Analyze incidents, isolate affected systems, and take remediation measures to restore security.
- Document incidents and responses in detailed reports to improve future incident responses.

3. Protection of Classified Systems:
- Implement and manage specific security measures to protect classified information.
- Ensure that systems and networks meet national and international security standards.

4. Risk and Vulnerability Assessment:
- Conduct regular risk assessments and vulnerability analyses on critical systems and infrastructures.
- Use vulnerability scanning tools to identify potential weaknesses and recommend corrective actions.

5. Network and Infrastructure Security:
- Implement and manage security devices such as firewalls, IDS/IPS, and network access control solutions.
- Implement security protocols to protect sensitive communications (encryption, VPN).

6. Development and Implementation of Security Policies:
- Develop, update, and enforce the ministry's information security policies, standards, and procedures.
Cybersecurity Cybersecurity Cybersecurity Awareness Risk Assessment Vulnerability Management Vulnerability Management Security Policy Security Incident Management Cybersecurity Audit Pentester
Wardeners
Cybersecurity Expert
July 2024 - Today (1 year and 11 months)
PRESIDENT & FOUNDER OF WARDENERS
We protect, detect, and neutralize all threats to your business. We secure your company at every level:

1. Security Audit and Diagnosis
-Analysis of your IT infrastructure, networks, and data.
-Penetration tests to see what a hacker could exploit.
-Detailed report with weaknesses and solutions to implement.

2. Implementation of Protection Solutions
-Network security (firewalls, VPNs, access segmentation).
-System hardening (encryption, two-factor authentication, access management).
-Sensitive data protection (backups, encryption, anti-ransomware).

3. 24/7 Monitoring and Response
-Immediate detection of suspicious activities.
-Rapid response in case of incident (threat isolation, remediation).
-Continuous reports and alerts to keep you informed without stress.

4. Attack Simulation and Penetration Testing
-Pentesting to simulate a real hacker.
-Phishing scenarios to see if your employees are vulnerable.
-Corrections and improvements before a real hacker does.

5. Training and Awareness
-Training against phishing and the most common attacks.
-Awareness of best practices (passwords, email usage, secure browsing).
-Crisis simulations for effective response in case of attack.

Pentester Cybersecurity Cybersecurity Awareness cybersecurity training Pentesting
BVA
Cybersecurity Expert
RESEARCH
February 2024 - July 2024 (5 months)
1. Risk and Vulnerability Analysis:
- Conduct regular security risk assessments and vulnerability analyses on the company's systems and networks.
- Use vulnerability scanning tools (Nessus, OpenVAS) to identify potential weaknesses.

2. Penetration Testing (Pentesting):
- Plan and conduct penetration tests to assess the resilience of systems and applications to external and internal attacks.
- Write detailed reports on findings and provide recommendations for risk mitigation.

3. Security Incident Management:
- Monitor security systems to detect incidents and anomalies.
- Respond quickly to security incidents by analyzing causes, containing threats, and remediating detected vulnerabilities.
- Document incidents and responses in post-incident reports.

4. Implementation of Security Policies and Procedures:
- Develop and update information security policies, standards, and procedures.
- Ensure compliance of security practices with industry regulations and standards (ISO 27001, GDPR).

5. Securing Systems and Networks:
- Configure and manage security devices such as firewalls, IDS/IPS systems, and VPNs.
- Implement security measures to protect internal networks against intrusions and DDoS attacks.

6. Application Security:
- Collaborate with development teams to integrate security best practices into the software development lifecycle (Secure SDLC).
- Conduct code reviews and security analyses to identify and fix vulnerabilities.
Cybersecurity Cybersecurity Cybersecurity Awareness Vulnerability Management Vulnerability Scan Risk Analysis Security Audit Pentester