You're seeing this page as if you were . The main menu is still yours, though. Exit from immersion
Malt Strategy
New report
Malt Tech Trends 2026
Richard OgéRO

Richard Ogé

GRC Consultant and Cybersecurity Project Manager

€550/day
Rennes, FR
3-7 years
GRC Consultant
IT Governance
IT Risk Management
Cybersecurity
ServiceNow

Average response time: 1 hour

Freelancer profile translated to English.
Back to original language

About Richard

Malt Description SEO Optimized

GRC and Cybersecurity Project Manager, I support organizations in Information System Security Governance, IT Risk Management, and regulatory compliance.

I work on cybersecurity and IS governance programs: ISO 27001, NIS2, DORA, GDPR, DSA compliance, GRC (Governance Risk & Compliance) framework structuring, risk analysis, and information system security project management.

Skills

  • • Cybersecurity Governance and GRC
  • • IT Risk Management and IT Risk Management
  • • Risk Analysis and Security Gap Analysis
  • • Regulatory Compliance: ISO 27001, NIS2, GDPR, DORA
  • • Cybersecurity and IS Security Transformation Project Management
  • • Information System and Application Mapping
  • • Definition of Remediation Plans and Cybersecurity Roadmaps
  • • Implementation of Security Policies and Frameworks
  • • Creation of Educational Materials
  • • Cybersecurity Training and Awareness
  • • Stakeholder Coordination: CISO, IT Teams, SOC, Business Units

Experience

I have managed cybersecurity and IT compliance projects in several sectors:

  • • Banking (BNP Paribas): application data governance, application mapping, and management of the compliance framework on ServiceNow GRC.
  • • Telecommunications (Altice / SFR): threat analysis, GRC project management, and improvement of cybersecurity governance processes.
  • • European Institutions: implementation of the Digital Services Act (DSA) and risk analysis related to digital platforms.

Objective

Strengthen cybersecurity governance, improve IT risk management, and support organizations in their regulatory compliance.

Available for GRC consultant, cybersecurity project manager, IS governance, ISO 27001 compliance, or NIS2 / DORA program missions.
Digital and IT Services
Telecommunications
Banking and Financial Services
Education Companies
Digital Business Models

  • French

    Native or bilingual

  • English

    Native or bilingual

Can work on-site
Rennes (up to 50km), Brest (up to 10km), Nantes (up to 10km), Paris (up to 10km)

Experience

  • BGL BNP PARIBAS
    IT & Cybersecurity Consultant - GRC
    BANKING AND INSURANCE
    November 2025 - Today (7 months)
    Kirchberg Luxembourg
    Context: Management of the compliance framework on ServiceNow GRC to ensure the reliability of application data - GRC.

    Missions:
    - Management of application data governance and the framework (IC PLAN)
    - Scoping, planning, and monitoring of compliance work
    - Application mapping (data, hosting, responsibilities)
    - Cross-functional coordination of IT, Cybersecurity, and Business teams
    - Monitoring of risk indicators and reporting
    ServiceNow Governance, Risk & Compliance (GRC) DORA IT Risk Management Cybersecurity
  • ALTICE (SFR, BFMTV, RMC Sport)
    Cybersecurity Project Manager - GRC
    TELECOMMUNICATIONS
    January 2024 - December 2025 (1 year and 11 months)
    Paris, France
    Context: Supporting the cybersecurity department in governance management and external threat analysis for the Altice group entities

    Missions:
    - Production of CTI reports and dissemination of strategic intelligence on sectoral threats
    - GRC project management (AI, Information Intelligence, external threat management)
    - Facilitation of business workshops for gathering and scoping IS security needs
    - Implementation of governance processes and best practice standards
    IT Risk Management Compliance Agile Method Cybersecurity CTI
  • Commission européenne
    Trusted Flagger
    PUBLIC SECTOR
    September 2022 - January 2024 (1 year and 4 months)
    Dublin, Ireland
    Context: Application of the DSA regulation for the compliance of very large online platforms (VLOPs).

    Mission:
    - Application of regulatory guidelines for social platform compliance
    - Collaboration with digital actors to strengthen moderation standards
    - Development of specialized training for Trust & Safety teams
    - Strategic consulting and analysis of systemic risks related to content
    DSA Project Management Data Analysis E-learning Training
Check out Richard's experience

Recommendations

Be the first to recommend Richard

Help this freelancer shine by sharing your experience working together.

These freelancer profiles also match your criteria

AgathaA

Agatha Frydrych

Backend Java Software Engineer

4.7

(3)

2

BaptisteB

Baptiste Duhen

Fullstack developer

4.6

(4)

5

AmedA

Amed Hamou

Senior Lead Developer

4

(2)

7

AudreyA

Audrey Champion

Web developer

4.3

(3)

4

Signup to reveal

Education

  • Master in Management (PGE, English Track)
    GRENOBLE ECOLE DE MANAGEMENT
  • Specialized Master's in Innovation Technology Management
    GRENOBLE ECOLE DE MANAGEMENT

Certifications

  • ISO27001 Lead Implementer
    PECB
    2025
    https://pecb.com/ISLI075997-2025-11
    IT Governance ISO 27001 ISO 9001 Audit Information Security Risk Management Security Policies Security Audit IT Risk Management Compliance

Skill set

GRC
Governance, Risk & Compliance (GRC)
Risk Analysis
IT Risk Management
Compliance
IT Compliance
Security Policy
Risk Mapping
IS Security Governance
SNOW
Risk Management
Security Audit
IS Policy
NIS2
ISO 27001
Cyber Threat Intelligence
Cybersecurity Awareness
Cybersecurity Governance
Cybersecurity
Agile Method
Scrum
Agile Project Management
SCRUM Agile Method Practice
Project Management
Project Management
Performance Management
GDPR
GDPR Compliance
AI Act
EBIOS RM
ISO 27005
Risk Assessment
IS Governance
DORA
DPIA
Privacy by Design
Data Governance
Artificial Intelligence
AI Governance
ITIL
BCP/DRP
BCP
OSINT
Due Diligence
Reporting

Categories