À propos de Franck
Anglais
Bilingue ou natif
Français
Bilingue ou natif
Expériences
- Financial InstitutionCybersecurity and Risk Management expertBANQUE & ASSURANCESjanvier 2022 - Aujourd'hui (4 ans et 7 mois)Paris, France● Reporting to the CISO and accountable for providing oversight of the GRC task area and ensure effective management, collaboration, and coordination of several key cybersecurity support areas including the following:○ Performing Internal Security Audits (User Access Reviews and compliance with Policies)○ Managing the IT and Cyber security risk register, controls, gaps, remediation and reporting.○ Developed and maintained KPIs/OKRs to measure security maturity and compliance effectiveness○ Leading yearly certifications (ISO 27001/27017/27018/22301, SOC 2) and risk assessment (NIST CSF)○ Collaborating with the Product team to embed security and privacy by design principles, performing threat modeling○ Co-managing the suppliers security program○ Defining the Business Continuity (including BIA) and Disaster Recovery Plans and leading BC and DR drills○ AI Security gap assessment, using ISO 42001 framework○ Insider threat program definition (user risk dashboard, escalation procedures)○ Acted as GRC point of contact for internal and external stakeholders, supporting due diligence and RFPs
- AT&TSecurity architect lead, AT&T R&D centerTÉLÉCOMMUNICATIONSnovembre 2020 - décembre 2021 (1 an et 1 mois)
- Acted as a cybersecurity focal point across different teams (architects, development team leaders, product managers)
- Developed and rolled out Application security process (SSDLC) aligned with Agile best practices
- Involved in PCI-DSS compliance efforts
- Managed PoC (Proof of Concept) on API security
- Conducting Risk assessment and Threat modeling along the product lifecycle
- DeloitteSecurity project leadAGENCE & SSIIjanvier 2016 - janvier 2020 (4 ans)Acted as trusted advisor (CISO as a Service) to clients in highly regulated industries (pharma, automotive, financial):● NIST-based cloud Security and PCI-DSS gap assessment of an AWS-based marketing and advertising platform● Lead table-top exercise featuring insider threat and malware spreading scenarios● Product risk assessment and threat modeling, highly-regulated IT and OT environments● Security/Privacy gap analysis and remediation plan● Cyber security strategy assessment, IT and OT environments● Designed a Privacy by design roadmap
Recommandations
Soyez le premier à recommander Franck
Contribuez à la réussite de ce freelance en partageant votre expérience de collaboration avec lui.
Ces profils de freelance correspondent également à vos critères
Agatha Frydrych
Backend Java Software Engineer
4.7
(3)
2
Baptiste Duhen
Fullstack developer
4.6
(4)
5
Amed Hamou
Senior Lead Developer
4
(2)
7
Audrey Champion
Web developer
4.3
(3)
4
Formations
- Master of Computer Sciences(ESIEA SchoolMaster of Computer Sciences
- CISM (Certified Information Security Manager)CISM (Certified Information Security Manager)