You're seeing this page as if you were . The main menu is still yours, though. Exit from immersion
Yann BrihierYB

Yann Brihier

IAM PAM EDR Consultant | Cyber

€570/day
Paris, FR
8-15 years

Average response time: 24 hours

Freelancer profile translated to English.
Back to original language

About Yann

Looking for an PAM IAM EDR Consultant?
Do you want to improve your application security?
You are in the right place.

I am a PAM IAM EDR Consultant with over 5 years of experience.
I have worked in various sectors such as IT service companies, agri-food, and OIVs.
I have collaborated with companies like Inetum and Savencia SITDS.

I can assist you with:
- Implementation and audit of PAM IAM EDR solutions.
- Maintenance in operational condition (MCO) and maintenance in computing condition (MCS) of your EDR/xDR solution(s).
- Review of the Identity and Access Management (IAM) process, from a business, HR, and IT perspective.
- Training and awareness for technical and functional stakeholders on IAM, PAM, and EDR.
- Evaluation, selection, and implementation of identity and access management technologies to meet our clients' needs, such as the administration and/or setup of electronic vaults/safes (CyberArk / Wallix / BeyondTrust).
- Audit of your current PAM EDR solutions.

Expertise in CyberArk, Wallix, BeyondTrust PRA, Entra ID, SentinelOne, Trellix, Microsoft Defender (MDE), Terraform, agile methodologies, change management, NIST Framework, CSF.

I have a Zero Trust and DevSecOps approach, with projects managed using agile methodologies.
I hold the following certifications: CCSK and InWebo Solution Architect (2FA), SentinelOne Paladin (2026).

I also place great importance on transparency with my clients.
I send a daily report to my clients at the end of the day on all the tasks I have performed.

Do you have a project?
Contact me, I respond in less than 1 hour.

--
IAM Consultant, "iam", identity management, identity and access management (iam), cybersecurity, cyber, cyber security, cybersecurity project management, cyber security, cybersecurity GRC, cybersecurity trainer, PaloAlto Cortex, TrendMicro, EntraID, XDR
  • French

    Native or bilingual

  • English

    Native or bilingual

  • German

    Conversational

Can work on-site
Paris (up to 50km), Lille (up to 50km), Lyon (up to 50km), Aix-en-Provence (up to 50km), Bordeaux (up to 50km)

Experience

  • LeHibou
    PAM Consultant
    BANKING AND INSURANCE
    July 2025 - January 2026 (6 months)
    Neuilly-sur-Seine, France
    HiPay is a European omnichannel payment service provider, supporting over 5,000 merchants with a unified payment platform.
    In 2024, the group generated approximately €74.3 million in revenue and processed approximately €9.15 billion in payment volume, with over 200 employees.

    HiPay's stated need was for expert services as part of the infrastructure evolution, a complete redesign project for the access management system.
    I joined an infrastructure team of 7 people.

    My responsibilities:
    - Analyze the existing system and specific needs for access management and server administration.
    - Propose one or more modern solutions that meet the identified needs, with a focus on security, traceability, and high availability.
    - Audit existing market solutions.
    - Implement the chosen solution (configuration, integration).
    - Document the architecture and the administration/usage procedures for the new solution.
    - Ensure knowledge transfer for adoption by the client's internal teams.

    Results achieved:
    - Enhanced security of access rights management.
    - Massive reduction in the risk of compromise.
    - Complete traceability of administrator actions.
    - Better control over third-party access.
    - Improved ISO 27001 compliance.

    Technical context:
    Wallix, GCP, Google Workspace, Microsoft EntraID, Cloudflare, pfSense, Ansible, Load Balancers, PostgreSQL, Secrets Management.
    Security Audit Linux System Administration Windows IAM Consultant PAM
  • SAVENCIA IT & DIGITAL SERVICES
    PAM Project Manager
    AGRICULTURE
    January 2023 - June 2025 (2 years and 5 months)
    Viroflay, France
    Savencia Fromage & Dairy is one of the world leaders in dairy agri-food (13th largest dairy group and 5th largest cheese producer). The company operates in over 120 countries with ~€7.14 billion in revenue in 2024 (+5.1%) and 25,000 employees worldwide. I worked within the SITDS group. My team consisted of 8 collaborators.

    In the agri-food sector, my objective was to strengthen OT security by deploying the BeyondTrust PRA solution in 120 countries worldwide.

    My responsibilities:

    - Project management for the deployment of OT PAM across 120 sites (France + International) and privileged access management on OT environments: over 2500 devices.

    - Coordination of the PRA BeyondTrust project for the protection of critical systems.

    - Incident management with the vendor, reporting issues, and solution development.

    - Quarterly review with the vendor on various incidents encountered.

    - Level 3 Support, solution audits, deliverables, documentation.

    Result achieved:
    Increased security of the environment and reduced risks on OT.

    Technical context:
    PRA BeyondTrust, SaaS, OT servers, OT PCs.
    PAM Incident Management OTA Operational Technology IAM Consultant
  • SAVENCIA IT & DIGITAL SERVICES
    Cybersecurity Engineer
    AGRICULTURE
    January 2023 - May 2025 (2 years and 4 months)
    Viroflay, France
    Savencia Fromage & Dairy is one of the world leaders in dairy agri-food (13th largest dairy group and 5th largest cheese producer). The company operates in over 120 countries with ~€7.14 billion in revenue in 2024 (+5.1%) and 25,000 employees worldwide. I worked within the SITDS group. My team consisted of 8 collaborators.

    My responsibilities:

    1. My IAM & EDR missions:

    - IAM management for security tools.
    - Review and configuration of conditional access and Enterprise Apps on EntraID.
    - Implementation of SAML SSO for EDR solutions.
    - Definition of RACI and management of roles, policies, and MFA (Yubikey, Mobile Authenticator, OTP) on SentinelOne by site/country, including configuration of the Breaking Glass account and the administrator rights matrix.

    Result obtained: Improved IAM fluidity, access management/simpler processes.

    2. My hardening & Cloud Security missions:

    - Implementation of Windows 11 and Linux hardening (audit, CIS Benchmarks, baselines, security directives).
    - Incident management and endpoint/server security.
    - Evaluation and PoC of Netskope to replace Zscaler (CASB, SWG, DLP), SOC and RUN support, multi-region tests, recommendations on governance, role separation, and SecOps best practices.
    - SOAR automation (Mindflow) for secure retrieval of SentinelOne passphrases via REST API, with SOC controls, traceability, and SIEM integration.

    Result obtained:
    Optimization of access governance (IAM/EDR), process simplification, and strengthening of the security level (MFA, SSO, RBAC, Break Glass).

    Technical context:
    Linux, RedHat, Rocky Linux, SUSE, Windows 11, SentinelOne, Mindflow, Netskope, Zscaler, CASB, DLP, SWG, Access Management, MFA, Role Management, SIEM.
    SentinelOne SOAR Netskope Zscaler IAM Consultant

Recommendations

Vincent V.VV
Guillaume BersacGB
Marc LantoineML
+1
Vincent V. and 3 other people have recommended Yann

These freelancer profiles also match your criteria

AgathaA

Agatha Frydrych

Backend Java Software Engineer

4.7

(3)

2

BaptisteB

Baptiste Duhen

Fullstack developer

4.6

(4)

5

AmedA

Amed Hamou

Senior Lead Developer

4

(2)

7

AudreyA

Audrey Champion

Web developer

4.3

(3)

4

Education

  • Master in Cybersecurity
    EPSI
    2016
    Master en sécurité informatique

Certifications

  • CCSK
    Cloud Security Alliance
    2025
    https://www.credly.com/badges/71e0167e-0c99-4d8f-bc87-64b2e8d8925a/linked_in_profile
    Incident Response Risk Analysis Identity and Access Management (IAM) Application Security IT Infrastructure Risk Management Zero Trust Cybersecurity Consultant Compliance Cloud Governance
  • InWebo Solution Architect
    Trustbuilder Corporation
    2022
    Security Architecture Cyber Consultant ISO 27001 FIDO2 MFA SAML Cybersecurity Consultant Zero Trust SSO Active Directory

Skill set

Categories