Freelancer profile translated to English.
Back to original languageAbout Yasser
Senior Information System Security Consultant with successful experience in audit, consulting, and security compliance missions across Africa and Europe (France, Morocco, Gabon, Senegal, Togo, Ivory Coast, Burkina Faso).
French
Native or bilingual
English
Fluent
Arabic
Native or bilingual
Remote only
Primarily works remotely
Experience
- BanqueCybersecurity Consultant - Governance Risk Management and Compliance (GRC)BANKING AND INSURANCEAugust 2025 - January 2026 (5 months)Casablanca, MoroccoFor 16 international and national group subsidiaries, in close collaboration with CISOs and Correspondent IT Directors:● Assessment of subsidiaries' security maturity according to ISO 27002 practices (e.g., Audit report, maturity radar, and cyber roadmap, etc.)● Planning and implementation of quarterly security committees within subsidiaries● Support and training for CISOs on security topicsWithin the BCP Group's security department:● Implementation of centralized reporting on the security maturity level of subsidiaries● Development of the Group's quarterly risk management committee● Development of the annual committee for banking supervisors and regulators in the CEMAC, UEMOA, Indian Ocean, and Moroccan regions.
- BanqueCybersecurity Consultant - Governance Risk Management and Compliance (GRC)BANKING AND INSURANCEJune 2021 - June 2025 (4 years)Casablanca, MoroccoIT and Cybersecurity Risk Management: IT Risk Assessor● Deployment of the Group's risk management approach at the local level with steering/coordination of the established system● Development/Assessment of IT and cybersecurity risks in close collaboration with affected business units and IT assets● Identification, Monitoring, and management of risk mitigation action plans with IT asset owners (e.g., IT assets, external providers, group business units, etc.)● Migration of the previously deployed risk management system to the centralized ServiceNow tool – IT Risk GRC module● Organization and facilitation of the monthly IT & cybersecurity risk monitoring committee (CIO, CISO, key stakeholders)● Presentation of the major risk map to the executive committee (General Management, business units, CIO)● Development of the quarterly IT Cybersecurity risk report for the bank and for Bank Al MaghribIT and Cybersecurity Audit● Steering and execution of IT & cybersecurity audits for critical suppliers, in accordance with the BNPP framework and group security requirements: Payment and check processing provider, Hosting and data center service provider, Bank card issuing and processing provider, Application maintenance service provider.
- Cabinet de conseil spécialisé en cybersécuritéCybersecurity Consultant - Governance Risk Management and Compliance (GRC)CONSULTING AND AUDITSJuly 2020 - May 2021 (10 months)Issy-les-Moulineaux, France● Support for PCI DSS compliance and certification: implementation of processes and drafting of certification documentation● Permanent IT and security control (level 2) with the IT department and business units● Assistant CISO● IT and security audit of critical external suppliers - Ref: ISO 27001 and client Framework
Recommendations
Be the first to recommend Yasser
Help this freelancer shine by sharing your experience working together.
These freelancer profiles also match your criteria
Agatha Frydrych
Backend Java Software Engineer
4.7
(3)
2
Baptiste Duhen
Fullstack developer
4.6
(4)
5
Amed Hamou
Senior Lead Developer
4
(2)
7
Audrey Champion
Web developer
4.3
(3)
4
Education
- State Engineer in Information Systems and Systems AnalysisNational School of Computer Science and Systems Analysis (ENSIAS)2016Ingénieur d'État
- Scientific Preparatory Classes for Engineering SchoolsIbn Ghazy2012Mathématiques Supérieures et Mathématiques Spécialisées (Math Sup /Math Spé)