Freelancer profile translated to English.
Back to original languageAbout Maxime
CISSP certified since 2018.
Over 13 years of experience in cybersecurity, holding CISO or interim CISO roles since 2018 in demanding environments (Healthcare, Industry, IT Service Companies).
French
Native or bilingual
English
Native or bilingual
Can work on-site
Paris (up to 50km)
Experience
- LABSOFTGRC ExpertSeptember 2025 - December 2025 (3 months)Short fixed-price mission to prepare for the company's ISO27001 certification:
- Maturity audit
- Definition of project team and scope
- Definition & assignment of action plan
- Steering
- Mock audit
- TrèvesExternal Group CISOAUTOMOBILEAugust 2023 - September 2025 (2 years and 1 month)Issy-les-Moulineaux, France5,000 employees, 16 countries, €850m revenue - industrial sectorResponsible for securing the TRÈVES Group following a major ransomware cyberattack (Lockbit 3.0): encryption of the entire IT system across 28 industrial sitesPost-crisis security steering
- Analysis of the CERT crisis report
- Definition & implementation of a new roadmap
- Budget management
International team management- Group team
- Regional security/IT champions
External supplier managementDeployment of a SOC (tender, provider selection, governance evolution)- Needs assessment, writing specifications, identifying potential providers.
- RFP publication & tender management
- SOC deployment steering, implementation of operational (incident monitoring, security measure configuration, etc.) and managerial governance (monitoring risk exposure: attacks blocked in the past month, data leaks on the darknet, etc.).
Operational security implementation- IAM: tier modeling & ANSSI recommendations
- UEM
- BCP
- Zero Trust (AD, VPN, network)
- EDR
- Network segmentation (IT, OT)
- Hardening of workstations (shopfloor, office) and servers
- Bastion
Group ISMS management & implementation- Definition and deployment of policies, procedures, charters, and templates
- Integration into the group QMS (internal audit + plant PDCA)
- Standard security model & application to the entire scope
- Steering &achievement of TISAX certification(equivalent to ISO 27001) for all **30 plants and datacenters**, audited and certified in 36 days of audit
Management of security compliance audits (clients, regulations)Implementation and steering of security governance at all management levels:- plants, support functions, and group general management
- security dashboard (risk exposure, project progress, KPIs)
- ElsanInterim CISOMEDICALNovember 2022 - March 2023 (4 months)Paris, FrancePrivate hospital group in France, 28,000 employees, Revenue: €3.1 billionIntervention as interim CISOManagement of a major cyber crisis related to a ransomware attack (Lockbit 3.0), which was publicly disclosed
- Coordination of operational incident response actions
- Supervision of digital forensics activities
- Deployment of an external SOC
- Management and coordination of stakeholders involved in incident response
Recommendations
Be the first to recommend Maxime
Help this freelancer shine by sharing your experience working together.
These freelancer profiles also match your criteria
Agatha Frydrych
Backend Java Software Engineer
4.7
(3)
2
Baptiste Duhen
Fullstack developer
4.6
(4)
5
Amed Hamou
Senior Lead Developer
4
(2)
7
Audrey Champion
Web developer
4.3
(3)
4
Education
- Master 2 Computer Science - Network Administration and SecurityUniversité de Reims Champagne-Ardenne2012Master 2 Informatique - Administration et Sécurité des Réseaux
- DUT - Networks and TelecommunicationsIUT Chalons-en-champagne2008DUT - Réseaux et Télécommunications