Samir Chabane

•Contribution to the personal data compliance program: processing mapping, risk analysis, and definition of privacy policies.

•Management of the group’s website redesign (deployment in progress).

•Group website security: management of penetration tests, vulnerability analysis, and remediation plan monitoring.

•Information security training and awareness.

•Structuring the IT department and implementing systems, networks, and security functions within the subsidiary.

•Organizing and managing a multidisciplinary technical team: recruitment, skill development, and structuring of operational roles.

•Leading security solution integration and deployment projects.

•Steering IT and cybersecurity teams: supervision, skill development, and organization of operational activities.

•Management of parliamentary business information systems and applications (ERP, legislative management, law project tracking, amendment management, and associated processes), ensuring operational readiness, IT asset management, access security, and support for business needs.

•Cybersecurity & Risk Management: ISMS implementation, security audits, vulnerability management and remediation plan monitoring, analysis and prioritization of IS security risks, integration of business continuity requirements (BCP/DRP).

•Security Incident Management: definition and structuring of the incident response framework (IRP), including classification, criticality levels, and threat typology (ransomware, identity compromise, data leakage), with organization of escalation mechanisms and coordination of cyber crisis situations.

•Infrastructure Architecture and Security: Administration of networks, systems, and application environments, deployment of security solutions such as next-generation firewalls (NGFW), EDR/XDR solutions, access control (IAM, MFA), web filtering, security event monitoring and correlation (SIEM), and network segmentation (VLAN, micro-segmentation), as well as strengthening security posture by reducing the attack surface.

•IT Department Management: monitoring of IT budgets, contracts, and suppliers, steering of information system evolution projects (business tools, infrastructure), drafting of specifications and technical and functional documentation.