Freelancer profile translated to English.
Back to original languageAbout Maxime
Cyber defense engineer and also a graduate of a master's degree from Sciences Po Rennes in security, defense, and strategic intelligence, I held the position of CISO for 6 years.
Main missions on which I can assist you:
- Conducting internal SSI audits / Gap analysis
- Implementation of ISMS and ISO 27001 and HDS certifications
- Writing PSSI, PAS, policies, procedures, and SSI plans
- Conducting risk analyses, defining action plans with stakeholders, and monitoring their progress
- Responding to client audits (in person/video or via questionnaires)
- Conducting internal audits and supplier audits. I am also ISO 27001 Lead Auditor certified
- Creation of SSI indicators and monitoring thereof
- SSI awareness through various media
French
Native or bilingual
English
Native or bilingual
Can work on-site
Dijon (up to 50km), Lyon (up to 100km), Paris (up to 100km), Lausanne (up to 100km), Genève (up to 100km)
Experience
- SUEZCyber Risk Manager for the "Business Partners" PerimeterJanuary 2024 - September 2024 (8 months)Paris, France● Integration of cybersecurity by design in projects● Integration of cybersecurity in contracts, notably through the security assurance plan● Identification and mapping of "Business Partners" applications, analysis of security gaps and risks of "Business Partners" applications, monitoring of the implementation of associated remediation plans.● Monitoring of COMEX Cyber indicators for the "Business Partners IT" Tower, definition of associated action plans and monitoring of their implementation● Participation in the management of major incidents and Cyber crises concerning the IT systems of "Business Partners" and monitoring the implementation of associated action plans
- LePhishFounderNovember 2023 - Today (2 years and 7 months)Paris, France👉 Development of an automated awareness and phishing testing solution:
- Creation of different types of templates: simple, with authentication page, QR code, file with macros
- Sending phishing campaigns during business hours at random times, adapted to the maturity level of each employee
- 3-step awareness: immediate, D+1, and D+7 via a serious game
- Development of a dashboard
- Autonomous management by the client of their users (manual addition, CSV import, Azure AD sync) and their phishing simulation campaigns
👉 Administration and hardening of Linux servers, Python and PHP development, EDR deployment👉 Creation of the showcase website www.lephish.com, implementation of an SEO and SEA strategy👉 Writing of procedures, policies, legal documentation - InterstisRSSI / CISOJanuary 2023 - December 2023 (1 year)Le Creusot, France- Writing of PSSI, PAS, policies, plans, and IT security procedures- Development of risk treatment strategies and monitoring of the implementation of decided technical and organizational solutions- Conducting internal audits, setting up action plans, and monitoring them- Definition and monitoring of SSI indicators- Implementation of an awareness solution through phishing tests
Recommendations
Be the first to recommend Maxime
Help this freelancer shine by sharing your experience working together.
These freelancer profiles also match your criteria
Agatha Frydrych
Backend Java Software Engineer
4.7
(3)
2
Baptiste Duhen
Fullstack developer
4.6
(4)
5
Amed Hamou
Senior Lead Developer
4
(2)
7
Audrey Champion
Web developer
4.3
(3)
4
Education
- Cyber Defense Engineering DegreeÉcole Nationale Supérieure d'Ingénieurs de Bretagne Sud2016
- Master in Security, Defense, and Strategic IntelligenceSciences Po Rennes2016
Certifications
- ISO/IEC 27001 Lead AuditorPECB2022