About Sebastian
- Part-time CISO : governance and management of your IT security adapted to your budget and objectives.
- ISO 27001 : from maturity audit to certification: GAP analysis, ISMS implementation, audit preparation, Lead Implementer support
- GRC — Governance, Risk & Compliance : structuring or redesigning your GRC framework. Cyber mapping, policies, KPI & reporting management, regulatory compliance (NIS2, EU AI act) and alignment of security strategy / business strategy.
- IT Security, Cyber & AI Maturity Audit : independent assessment of your compliance and risk level with a prioritized roadmap
- Training & Awareness : CISSP certification preparation, campaign and awareness of security, cyber, AI agent and governance fundamentals. A program tailored to your security objectives.
- Risk Analysis & Security Policies : design and management of risks adapted to your business context. Understanding why policies are fundamental, which ones, and how to adapt them to your organization.
French
Native or bilingual
English
Fluent
Spanish
Native or bilingual
Experience
- FreelanceGRC & Cybersecurity ConsultantApril 2024 - Today (2 years and 4 months)During my GRC, IS Security & Cybersecurity assignments, I support companies in their strategic and business requirements by:
- ISO 27001 Certification Support: Implementation and maintenance of the ISMS and Annex A security measures (policies & procedures, threat management, asset management, access management, supplier management, application of least privilege principles, need to know, etc.)
- Part-time CISO Support
- Risk analysis according to EBIOS RM
- Compliance gap analysis with ISO 27001, NIS 2
- Incident Management: BCP / BIA / DRP / Test simulation
- IS Security & Cybersecurity Support: Maturity audit, Security by design, Zero trust, IAM with Microsoft Entra, EDR/XDR, Data Loss Prevention (DLP), Threat modeling, SDLC.
- AI: Governance (ISO 42001), policies, usage and security of AI agents.
- ICSCISOTELECOMMUNICATIONSDecember 2021 - December 2023 (2 years)Perpignan, FranceAs CISO, my missions were of 2 types:1-) Security Governance => ISMS implementation, risk analysis, drafting of the IS Security Policy and policies required for ISO 27001 certification, awareness of the ISMS and cybersecurity risks.2-) Operational => Study, management and participation in projects: Network security, identity management, endpoint security (EDR, MDM).
- COOPERATIVECIOAGRICULTURESeptember 2019 - November 2021 (2 years and 2 months)Perpignan, FranceIT Department and CISO Management.Governance, risk and compliance.Carried out a total IT system overhaul project => Study, design, and management of the implementation of a new infrastructure (Network, Servers, Storage, Backup, Virtualization, ERP...) applying ISO 27001 / 27002 security measures.Drafting of IS Security policies.
Recommendations
These freelancer profiles also match your criteria
Agatha Frydrych
Backend Java Software Engineer
4.7
(3)
2
Baptiste Duhen
Fullstack developer
4.6
(4)
5
Amed Hamou
Senior Lead Developer
4
(2)
7
Audrey Champion
Web developer
4.3
(3)
4
Education
- ISO 27001 Lead ImplementerSkills4all2024
- CISSPCertyou2024Certified Information Systems Security Professional
Certifications
- ISO 27001 LEAD IMPLEMENTERBestcertifs2024
- CISSPISC²2024