Freelancer profile translated to English.

Description

Is your company ready for an ISO 27001 audit or NIS2 compliance? One of the most frequently underestimated and easiest-to-fix requirements remains raising your employees' awareness of cyber risks.

I assist SMEs and mid-sized companies in implementing cybersecurity awareness training that complies with ISO 27001 (control A.6.3), NIS2, and DORA standards, with deliverables directly usable for your audits: signed attendance sheets, individual certificates, completion certificates, and programs referenced by regulatory requirements.

My positioning is that of a field practitioner: I am completing my apprenticeship within a CAC 40 group, in a department dedicated to cybersecurity governance and compliance. What I teach, I live daily in environments with high regulatory requirements.

Because effective training is more than just scrolling through slides, I have developed an interactive educational platform that I facilitate in real-time during each session. Participants are directly involved in the progress of awareness through quizzes, situational exercises, and practical exercises, which promotes engagement, instills security reflexes over time, and makes the training truly memorable. No more passive presentations: each employee becomes an active participant in their own skill development.

Formats offered according to your organization and constraints:

— On-site training in your company, adapted to your teams and your sector

— Remote video conferencing sessions for your multi-site teams

Each intervention is tailor-made: the content is adapted to the technical level of your employees, your business sector, and the specificities of your compliance plan.

Industry field of expertise

Languages

French
Native or bilingual
English
Fluent

Workplace preferences

Can work on-site

Paris (up to 50km)

BNP Paribas
Cybersecurity Governance & Risk Analyst
BANKING AND INSURANCE
July 2025 - Today (11 months)
Montreuil, France
Within the IT production security department of BNP Paribas, I contribute to the management of operational risks and regulatory compliance in a demanding environment.

My main responsibilities include:
Analyzing and documenting security and production incidents, identifying root causes and proposing corrective actions.
Managing the follow-up of recommendations from audits, coordinating with technical teams to ensure their implementation.
Evaluating security controls on various topics (access management, vulnerabilities, network security, etc.) and validating their compliance.
This experience has allowed me to develop solid expertise in IT risk governance, as well as a deep understanding of compliance issues (DORA, ISO 27001, NIST). I have also strengthened my skills in technical analysis, regulatory documentation writing, and cross-functional collaboration with multidisciplinary teams.
GRC DORA Incident Management Audit