Freelancer profile translated to English.

Description

Information Systems Security Professional with 20 years of experience: planning, design, training, audit, and research.

I assist my clients in assessing and managing the security and continuity risks of their IS, translating business functional needs into organizational and technical control measures:

- Governance,

- Awareness

- Infrastructure Security (on premise, Cloud)

- Essential Services Security Management (contractual clauses, Security Assurance Plan, SLA monitoring, compliance briefing ...)

- Integration of security into projects,

- Operational security management,

- Continuous monitoring,

- Audit,

I have held senior IS security positions in international financial institutions and have led third-party audits for several companies, including financial institutions and government entities.

I am also a recognized trainer by PECB.

I have helped major international companies on various topics of risk management, IT security, and business continuity.

My technical background, my rigor as a researcher, and my knowledge of different business and regulatory contexts allow me to interact effectively with various types of stakeholders.

Industry field of expertise

Languages

English
Fluent
French
Native or bilingual

Workplace preferences

Can work on-site

Paris (up to 50km), Paris (up to 5km), Paris (up to 100km)

LSEG – LCH SA
Senior IT Security Officer
BANKING AND INSURANCE
December 2023 - Today (2 years and 6 months)
- Improvement and maintenance of an effective cybersecurity framework for client projects.
- Evaluation of IT, security, and business projects, and supervision of security practices according to CIAT principles. Main project: "Sustain" with compliance to the Military Planning Law (LPM).
- Collaboration with business teams to integrate and improve security policies.
- Delivery of information systems security projects according to the strategic roadmap.
- Conducting EBIOS RM cyber risk assessments.
- Contribution to cybersecurity documentation for various departments.
- Working with second-line of defense teams to ensure appropriate project oversight and maintain a proactive approach to security risks.
- Security assistance for the implementation of a new Cloud platform, compliant with the requirements of the Military Planning Law (LPM).
IDEMIA
ISO 27001 Master Consultant
TECH
April 2021 - September 2023 (2 years and 6 months)
Project lead for ISO 27001 compliance for Global Digital Platforms' new Cloud platforms.
GDP has been certified since November 2021.
Project Management ISO27001 Cloud Security
Neurones IT
Consultant
TECH
September 2020 - March 2021 (6 months)
Management of the SCSQ Security remediation program.
Support for an outsourcing mission on Security and continuity aspects.
Project Management Design writing Risk Analysis Security Audit

Check out Karim's experience

Be the first to recommend Karim

Help this freelancer shine by sharing your experience working together.

Agatha Frydrych

Backend Java Software Engineer

4.7

(3)

Baptiste Duhen

Fullstack developer

4.6

(4)

Amed Hamou

Senior Lead Developer

(2)

Audrey Champion

Web developer

4.3

(3)

Signup to reveal

Doctorate in Computer Science
Faculty of Sciences of Tunis
2016
Sujet de la thèse : «A framework for Secure Business Process Management Systems».
Specialized Master's in "Security of Computer Systems and Networks"
Higher Institute of Computer Science
2006

Check out Karim's education

ISO/IEC 27032 Lead Cybersecurity Manager
PECB
2017
ISO/IEC 27005 Senior Lead Risk Manager
PECB

Karim's certifications are only visible to Malt Community members

Cybersecurity Expert

Karim Aroua

Phd, DORA, NIS2, CISSP, ISO27001

About Karim

Experience

Recommendations

These freelancer profiles also match your criteria

Education

Certifications

Skill set

Categories