You're seeing this page as if you were . The main menu is still yours, though. Exit from immersion
Morgan MatratMM

Morgan Matrat

Cybersecurity | Approval, Risks, Compliance

€833/day
4 projects
Paris, FR
8-15 years

Average response time: 1 hour

Freelancer profile translated to English.
Back to original language

About Morgan

I help companies build their digital trust | Approval | Risk Analysis | Compliance | Audit | Training

Services
• Security Approval: Project Management
• Security Risk Studies: EBIOS RM or custom risk analysis
• Compliance: Regulations & Security Policies
• Audit: Contractual or legal assessment
• Awareness and Training


Regulations and standards covered:
• ISO/IEC 2700X
• eIDAS
• RGS, LPM, PDIS, PVID
• PSD2, PCI-DSS, DORA
• SOC2, NEP
• GDPR, G29

Over 100 companies supported, including major accounts and mid-sized/SMEs in the following sectors: Aerospace, Telecommunications, Banking & Insurance, Agri-food, Social Security, Hospitals, BTP Industry, accounting and auditing expertise, among others.

To learn more, please contact me @/ P.
  • English

    Fluent

  • French

    Native or bilingual

  • Spanish

    Conversational

Remote only
Primarily works remotely

Experience

  • Crédit Mutuel
    DORA Project Manager
    BANKING AND INSURANCE
    July 2024 - Today (2 years and 1 month)
    Paris, France
    Sector: Banking & Insurance

    Summary: €16 billion turnover, €4 billion net income, 31 million customers, 4,400 branches, 80,000 employees.

    Crédit Mutuel Alliance Fédérale is a mutualist banking and insurance group comprising the 13 regional Crédit Mutuel banks, European Bank of Crédit Mutuel, CIC (Worldwide), Bank of Luxembourg, Banque Transatlantique, Targo Bank (Germany), Beo Bank (Belgium), Cofidis, Mona Bank, Bank of Tunisia, Créatis, and Synergie.

    Within the CISO team, newly created in March 2024 and reporting to permanent control:
    - DORA Project Management
    - Facilitation of Steering Committees, workshop preparation
    - Definition:
    o ICT Risk Management Framework: committee structure, CISO roles and organizational structure, ICT risk outsourcing arrangements
    o Digital Operational Resilience Strategy: risk appetite, preventive measures and major incidents, risk indicators and digital operational resilience testing
    o Group Security Policy
    o Security Document Register: strategies, policies, procedures, charters, registers, plans
    o Committee Charter, role descriptions, RACI, SWOT, etc.
    - Definition of the digital operational resilience budget
    - Coordination of stakeholders in projects

    Technical Environment
    - Databases: DB2
    - Systems: Windows, IBM
    - Languages: Angular, Java JEE, PHP, SQL
    - Standards used: Dora, NIST V2, ISO 2700X, ANSSI Guides, CM Security Policies
    - Tools: M365
    DORA Project Management Resilience Strategy IT Risk Management Framework IS Security Policy
  • Dire
    EBIOS RM Risk Analysis and IS Policy
    DIGITAL AND IT
    June 2024 - June 2024 (1 month)
    Paris, France
    Dire is a Strategy, social media, influence, and content production agency based in Paris.
    To strengthen its security posture, the agency requested:
    - An EBIOS RM Risk Analysis
    - An IS Policy
    Risk Analysis EBIOS RM IS Policy
  • Crédit Agricole Assurances
    Security Risk Analysis Consultant
    BANKING AND INSURANCE
    September 2022 - July 2024 (1 year and 10 months)
    Paris, France
    Crédit Agricole Assurances is a bancassurance company created in 2009, bringing together all of Crédit Agricole's insurance activities. The company generates approximately 80% of its turnover in France, where it is the leading national insurer by premium volume.
    • 1st bancassurance company in Europe and France.
    • 1st insurer for personal and individual protection in France.
    • 2nd insurer for home and retirement savings in France.

    Security support for projects:
    • Project management for risk analysis support
    • Strategic and Critical Risk Analyses
    • Definition of security requirements to be applied
    • Definition of a risk management framework compliant with security policies
    • Risk analyses ensuring the compliance of the security system with regulatory requirements
    Risk Analysis Security Assurance Plan IS Mapping Cybersecurity IS Security Policy

Reviews

5.0

Out of 2 ratings

O

Olivier

Santerne Nord Tertiaire

Reviewed on 8/14/2024

I reached out to Morgan because I had previously worked with him off the Malt platform. The previous mission went very well, and this one did not disappoint at all. Morgan is as professional and pleasant as ever.
D

David

DWL MULTIMEDIA

Reviewed on 12/18/2023

Morgan guided us through the compliance process with exceptional commitment. His tailored support and availability were major assets for our project.

Recommendations

CC
FU
FU
+1
Cécile Cornu and 3 other people have recommended Morgan

These freelancer profiles also match your criteria

AgathaA

Agatha Frydrych

Backend Java Software Engineer

4.7

(3)

2

BaptisteB

Baptiste Duhen

Fullstack developer

4.6

(4)

5

AmedA

Amed Hamou

Senior Lead Developer

4

(2)

7

AudreyA

Audrey Champion

Web developer

4.3

(3)

4

Education

  • Fraud Prevention
    EN3S
    2016
  • Project Management
    DEMOS
    2015

Certifications

  • ISO/IEC 27001
    PECB
    ISO 27001
  • Professional Certificate in Internal Audit (CPAI)
    IFACI
    Security Audit

Skill set

Categories