Freelancer profile translated to English.

Description

I support you in the digital transformation of your organization through the analysis of your IT risks, the management of your cybersecurity and regulatory compliance programs (NIS, GDPR), with nearly twenty years of experience in major companies as CISO, DPO, IT infrastructure program manager, or production manager. I also act as an interim manager for CISO, infrastructure manager, or production manager positions.

Industry field of expertise

Languages

French
Native or bilingual

Workplace preferences

Can work on-site

Paris (up to 20km)

Vinci Energies
Security Architecture Team Lead
ENERGY AND UTILITIES
August 2024 - Today (1 year and 10 months)
Saint-Denis, France
As an Interim Manager, in charge of the Security Architecture department (5 people) in tandem within the Cybersecurity Department, with the following main missions:
- Definition of security standards and rules for all Vinci Energies entities
- Integration of security into projects by developing a "by Design" vision within VESI teams
- SI hardening: definition, management, and monitoring of the SI penetration testing program, including remediation action plans
- Technological watch: study, testing, and POC of security solutions for VESI needs
- Participation in compliance audits for the scope (ISO 27001 and SWIFT in particular)
Team Management Risk Analysis Process Optimization
Confidentiel
Product Security Lead
BANKING AND INSURANCE
October 2023 - April 2024 (6 months)
Paris, France
As Product Security Lead, participated in the scoping study of a new hosting product/solution within the company to meet new regulatory requirements and comply with Group security policies:
- Analysis of the existing situation (company security policy repository) and gaps against regulatory requirements
- Technical workshops with various Product teams for deviation management
- Participation in new solutions/products benchmarking
- Contribution to risk analyses (EBIOS RM)
- Mapping and analysis of security processes
Risk Analysis Process Analysis Regulation
Babilou Family
Cybersecurity Consultant
HEALTH AND WELLNESS
April 2022 - August 2023 (1 year and 4 months)
Bois-Colombes, France
As Cybersecurity Consultant, responsible for defining and implementing the security master plan within Babilou Family:
- Definition of the 3-year security roadmap and development of a Cyber Dashboard
- Business (BIA) and Project (EBIOS) risk analyses
- Maturity audit of the scope (11 subsidiaries internationally)
- Management of audits and consolidation of asset security action plans
- Development of an awareness program for all employees and Key People
- Redesign of the Information Security Policy (PSSI) and development of a security policy repository
- Selection and deployment of a security incident detection and response solution
- Creation and animation of a network of security referents
- Creation and implementation of a process for integrating security and privacy into projects
Cybersecurity Risk Analysis IT Master Plan Cybersecurity Governance Cybersecurity Awareness