About Mathieu
English
Native or bilingual
French
Native or bilingual
Experience
- Institution financière majeure (confidentiel)Cybersecurity Program Director — TLPT Remediation Task ForceTECHOctober 2025 - Today (10 months)Paris, FranceLeading a critical vulnerability remediation program following a threat-led penetration test (TLPT) as part of DORA regulatory requirements. Direct responsibility to the CISO and Board-level governance.· Structured remediation governance: prioritization, dashboards, reporting cadence aligned with supervisory expectations· Coordination of multidisciplinary teams (infrastructure, application security, IAM, network) within regulatory deadlines· Design of sustainable processes for long-term compliance beyond the TLPT cycleTags: Cybersecurity, DORA, Program Management, Risk Management
- AXACybersecurity and Networks Program DirectorMarch 2023 - October 2025 (2 years and 7 months)Leading a group cybersecurity program with significant regulatory stakes (DORA / NIS2).Responsibilities & achievements:• Directed a global cybersecurity program focused on Identity & Access Management (IAM / IGA) and network infrastructure security• Led a group network transformation program (Next Gen firewalls, SD-WAN, network cores)• Implemented ISMS governance and structured the CISO Office• Responsible for budgets, risks, and prioritization with executive reporting• Direct interface with CISO, CIO, business unit directors, and governance bodies• Direct contribution to NIS2 / DORA compliance programs• Led internal and external teams in a multi-country context• Designed and deployed the Active Directory Tiering Model (Tier 0 / Tier 1 / Tier 2) for privileged account security• Segregated administration perimeters and implemented PAWs (Privileged Access Workstations)• Hardened Active Directory post-audit (reduced attack surface, privilege escalation, segmentation)• Integrated these measures into a Zero Trust approach aligned with the group's cybersecurity strategy• Results: significant reduction in Active Directory risk (privileged accounts and lateral movement), achievement of target security posture defined with the CISO, and positive validation of security and regulatory audits.Results: significant reduction of the attack surface, measurable improvement of Active Directory posture, and positive validation of security and regulatory audits.
- GEFCOCybersecurity Program DirectorMarch 2020 - March 2023 (3 years)• Led cybersecurity programs, CISO governance, and regulatory compliance (NIS2, DORA).Directed a portfolio of cybersecurity and infrastructure projects for several international entities• Implemented project governance (Steering Committees, Project Committees, Technical Committees) and budget management mechanisms• Conducted cyber audits and identified security posture improvement needs• Managed tenders and selected vendors and integrators• Secured group interconnections (firewalls, MFA, onboarding new subsidiaries)• Contributed to aligning security / performance / business continuity🔹 Proposed missions:– NIS2 / DORA compliance assessment (short-term mission)– Cybersecurity governance framework definition– Cyber posture quick audit
Recommendations
Be the first to recommend Mathieu
Help this freelancer shine by sharing your experience working together.
These freelancer profiles also match your criteria
Agatha Frydrych
Backend Java Software Engineer
4.7
(3)
2
Baptiste Duhen
Fullstack developer
4.6
(4)
5
Amed Hamou
Senior Lead Developer
4
(2)
7
Audrey Champion
Web developer
4.3
(3)
4
Education
- ISO 27001ISO 27001
- NIS2NIS2
Certifications
- CISSPISC22025
- PMPPMI2026
Skill set
Categories
- Other