Freelancer profile translated to English.
Back to original languageAbout Romain
Romain in a nutshell:
🔐 Expert in Information System Security (ISS), Networks, and IT Audit
After 10 years in the Air Force, I developed a rigorous, methodical, and results-oriented approach to managing and securing information systems.
This experience taught me to analyze risks, anticipate threats, and protect critical infrastructures, while supporting teams in implementing reliable and compliant solutions.
🎓 Graduate of two complementary Master's degrees:
- Master's in Java & Networks
- Master's in Information System Manager
Today, I put my expertise at the service of companies to strengthen their security, resilience, and digital compliance.
My core expertise:
- 🔐 Information System Security (ISS)
- DORA (BPCE 2 years)
- Risk analysis and management (EBIOS, ISO 27005)
- Development and implementation of security policies
- Regulatory compliance (ISO 27001, GDPR, organizational cybersecurity)
- Sensitive data protection and incident management
🌐 Networks & Telecommunications:
- Design, deployment, and security of network infrastructures
- System administration, supervision, and hardening
- Implementation of VPN, firewall, network segmentation, and monitoring solutions
- Network performance diagnostics and optimization
📊 IT Audit & Project Management
- Conducting technical and organizational audits
- Vulnerability assessment and corrective action plan
- Management of ISS projects and coordination of technical teams
- Monitoring and improvement of IT processes
What sets me apart:
✅ 10 years of military experience, ensuring rigor, discretion, and operational efficiency
✅ A global vision combining security, network, and IT governance
✅ Transverse expertise: technical, regulatory, and strategic
✅ Ability to translate technical challenges into clear and concrete decisions
English
Fluent
French
Native or bilingual
Can work on-site
Paris (up to 50km), Lille (up to 50km), Rouen (up to 50km), Nanterre (up to 50km), Lyon (up to 50km)
Experience
- Pass Culture - Pôle Tech
On Malt
Organizational and Technical AuditPUBLIC SECTORMarch 2026 - March 2026Paris, FrancePhase 1 – Audit & Interviews (Fraud + Cybersecurity)Structured interviews with Fraud and Cybersecurity teams (optionally Cloud Infrastructure and Backend).Mapping of the IT ecosystem, tools, processes, and workflows during a fraud event.Phase 2 – Understanding current detection practicesCollection and analysis of methods currently used by teams to detect fraud:– How signals are identified, by whom, and how often– What escalation and qualification processes are in place– What limitations and friction points are encountered daily.Phase 3 – Recommendations for Investigation & Graph AnalyticsTool recommendations: data absorption, weak signal and anomaly detection, graph modeling (link analysis), isolation of relevant aggregates, generation of investigation reports.Phase 4 – Fraud Management over timeRecommendation of a ticketing and fraud case tracking system:– Traceability, task assignment, reports, conclusions– Integration with existing tools or recommendation of a dedicated tool.Phase 5 – Organizational & Vendor Recommendations– Recommendations for processes and collaboration between Cybersecurity / Fraud (rituals, roles, organization)– Possible proposal for organizational changeOrganizational and technical audit – Improvement of fraud detection, investigation, and management.– Shortlist of specialized fraud prevention vendors to strengthen team bandwidth.Deliverable: recommendations report. - RM3AGRC Consultant - EBIOS RMDIGITAL AND ITDecember 2022 - November 2025 (2 years and 11 months)Le Plessis-Robinson, FranceCybersecurity Activity Management:• Client portfolio management• Supporting our clients in their cyber strategy in line with business development• Audit, consulting, and training on various topics (risk management, governance, technical, compliance)• Defining the security policy for the company's entities, defining ISS functional chains and business continuity plans,• Analyzing product and system security, writing security procedures and operating methods, performing malware reverse engineering,• Supporting the integration of security into projects: development and testing organization plan, developing proof of concepts, integrating security products,• Supporting system approval,• Conducting architecture, configuration, code, and organization audits.Interim CISO:• Definition of IT security plan/roadmap• Project implementation (Ebios RM risk analysis, maturity audit)• Awareness raising, training, skill transfer.• Writing policies (ISS Policy, Security Policy, incident, cyber crisis...)Standards and methods:• ISO/IEC 27001• ISO/IEC 27002 information security requirements• ISO/IEC 27005 Risk Manager• EBIOS Risk Manager
- NEOMA Business SchoolCybersecurity EngineerEDUCATION AND E-LEARNINGFebruary 2021 - November 2022 (1 year and 10 months)76130 Mont-Saint-Aignan, FranceGovernance, action plan,Conducting and writing a security audit over 2 yearsManagement of all cyber aspects in Rouen, Paris, Reims using various software (umbrella, Meraki, Varonis...)Creation of different GPOs to secure the parkProject in progress: Installation and configuration of a SIEM
Recommendations
These freelancer profiles also match your criteria
Agatha Frydrych
Backend Java Software Engineer
4.7
(3)
2
Baptiste Duhen
Fullstack developer
4.6
(4)
5
Amed Hamou
Senior Lead Developer
4
(2)
7
Audrey Champion
Web developer
4.3
(3)
4
Education
- Master responsable en securite des systemes d information, Sécurité / sûreté de l''information des systèmes informatiquesUniversité de Technologie de Troyes2020Master responsable en securite des systemes d information, Sécurité / sûreté de l''information des systèmes informatiques
- BIA, AéronautiqueAcadémie de Rouen2018BIA, Aéronautique
Certifications
- Plan an audit policy within your companyOpenclassromms2019