You're seeing this page as if you were . The main menu is still yours, though. Exit from immersion
Malt Strategy
New report
Malt Tech Trends 2026
Olivier Da CostaOD

Olivier Da Costa

GRC Cybersecurity Expert

€600/day
Paris, FR
3-7 years
Analyse de risques
Sensibilisation à la cybersécurité
Intégration de la sécurité dans les projets
Cybersécurité
Conformité

Average response time: 1 hour

Freelancer profile translated to English.
Back to original language

About Olivier

Information systems security engineer with 5 years of experience in cybersecurity specializing in Governance, Risk, and Compliance.

I support organizations in integrating security into the heart of their projects, managing and steering risks, as well as raising awareness among technical and business teams.

  • French

    Native or bilingual

  • English

    Conversational

Can work on-site
Paris (up to 50km)

Experience

  • Neverhack
    Governance, Risk Management, and Compliance Consultant
    CONSULTING AND AUDITS
    October 2023 - Today (2 years and 8 months)
    Risk Management - Société Générale (Bank)
    • Conducted risk analyses, maturity assessments of service providers and Cloud infrastructures, and compliance studies against a security framework.

    Governance & Compliance - Prévoir (Insurance)
    • Supported DORA compliance: Defined roles and responsibilities, drafted policies and procedures, classified assets, performed risk analysis, revamped third-party relationship management.

    Awareness - LVMH (Luxury) and Pluxee (Retail)
    • Designed and built an e-learning module for IT staff.
    • Developed an awareness strategy and materials (workshops for developers and administrators, newsletters, wallpapers, comics).
    Analyse de risques Sensibilisation à la cybersécurité Conformité DORA Gouvernance Cybersécurité
  • Formind
    Governance, Risk Management, and Compliance Consultant
    CONSULTING AND AUDITS
    August 2020 - July 2023 (2 years and 11 months)
    Security Integration in Projects - Enedis (Energy) & Canal + (Audiovisual)
    • Conducted risk analyses.
    • Identified security needs, built project security foundations.
    • Managed and remediated residual risks.
    • Evaluated Security Assurance Plans and security clauses.
    • Analyzed audit results.

    Risk Analyses - French Ministries & Louboutin (Luxury)
    • On various study subjects: Web application, MDM infrastructure, workstations, and mobile devices.
    • In various contexts: major international sporting event, compliance with II901, compliance with the NIS directive.
    • Using tools and standards: EGERIE Risk Manager, ISO 27005 Standard, EBIOS RM.
    • Developed risk analysis tools.

    Awareness - Bouygues (Telecoms), Caisse d'épargne (Bank) & Nexter (Defense Industry)
    • Defined awareness strategies.
    • Led in-person and remote sessions (internal training, webinars, etc.).
    • Conducted phishing tests.
    • Created awareness materials: Serious games, cybersecurity escape rooms, animated videos.

Recommendations

Be the first to recommend Olivier

Help this freelancer shine by sharing your experience working together.

These freelancer profiles also match your criteria

AgathaA

Agatha Frydrych

Backend Java Software Engineer

4.7

(3)

2

BaptisteB

Baptiste Duhen

Fullstack developer

4.6

(4)

5

AmedA

Amed Hamou

Senior Lead Developer

4

(2)

7

AudreyA

Audrey Champion

Web developer

4.3

(3)

4

Signup to reveal

Education

  • Diplôme d'ingénieur en sécurité et technologies informatiques
    INSA Centre Val de Loire
    2020

Certifications

  • ISO/IEC 27001 Implementer Certification
    PECB
    2022
  • Risk Manager Certification
    Egerie
    2022

Skill set

360learning
Gophish
Atlassian JIRA
Adaptabilité et réactivité
pragmatisme
Pédagogie
DORA
Gouvernance Cybersécurité

Categories