Freelancer profile translated to English.

Description

CISO and cybersecurity expert with over 20 years of experience in securing critical infrastructures, telecommunications, and environments with high regulatory requirements.

With nearly 9 years as CISO and Security Officer at Monaco Telecom, I have led security governance, compliance programs, operational security measures, and supported business units and the executive committee on cyber issues.

My expertise covers IS security governance, risk management, ISO 27001 compliance, critical system approval, major incident management, and the design and management of SOC systems.

Industry field of expertise

Languages

English
Native or bilingual

Workplace preferences

Can work on-site

La Gaude (up to 50km)

MONACO TELECOM
CISO and Security Officer
TELECOMMUNICATIONS
October 2017 - May 2026 (8 years and 7 months)
Monaco
Responsible for the group's cybersecurity strategy and IS security governance in a telecommunications and critical infrastructure environment.

Key responsibilities:
Definition and management of the information systems security policy.
Management of ISO 27001 compliance and certification programs.
Conduct of critical system approvals.
Support for strategic projects on cybersecurity aspects.
Risk management and follow-up of treatment plans.
Vulnerability monitoring.
Management of security infrastructures (PAM, PKI, EDR, Proxy, Reverse Proxy, WAF).
Security incident management.
Support for the executive committee and business units.
Security Officer.

Major achievements:
Obtained and maintained ISO 27001 certification.
Implementation and development of a SOC.
Approval of critical systems.
Improved threat detection.
Improved access auditability.
Sustainable reduction of critical vulnerabilities.
Strengthened cloud security.
Improved protection of sensitive data.
IS Security Governance CISO Security Approval Development and management of the security policy Risk Analysis and Management
ACCESS ONE
Freelance Cybersecurity Expert
CONSULTING AND AUDITS
October 2009 - February 2018 (8 years and 4 months)
France
Responsibilities:
Organizational and technical security audits. Internal and external penetration tests.
PCI-DSS support.
Technical assistance and support on European calls for tender.

Results:
Highlighted vulnerabilities present on systems and infrastructure
Improved processes and documentation for ISO 27001 compliance
Recommendation in the choice of a SIEM solution for a large French group
Audit Internal Pentest Client Support Organizational Audit Cybersecurity Governance
AMADEUS
Senior Cybersecurity Consultant
TRANSPORTATION
April 2017 - October 2017 (6 months)
France
Security audit.
Penetration testing.
Supervision and support of junior security engineers.
Securing development environments.