Description

I am a consultant with strong expertise in IT risk management, regulatory compliance, and project management, working across complex environments such as public sector, healthcare, and financial services.

Certified in ISO/IEC 27005:2022 and holding a Master’s degree in Information Systems Management, I combine a solid technical foundation with strong operational and organizational skills.

I help organisations secure their information systems, structure governance frameworks, and deliver high-impact digital transformation initiatives.

I am now expanding my scope toward broader project leadership roles (PMO, coordination, delivery management) while keeping a strong backbone in risk, compliance, and information security.

Skills

Project Management :

Project coordination · PMO · Agile · Planning · Stakeholder management · Change management · Reporting · Risk tracking · Workshop facilitation

Risk & Security :

ISO/IEC 27005 · IT risk assessment · Governance · Audit & compliance · Security controls · Accreditation · Confidentiality & data protection

Information Systems :

Business processes · Operating models · Data migration · CRM (Salesforce) · ERP (SAP, Cegid) · Architecture · Digital transformation

Tools :

Microsoft 365 · Jira · Confluence · Trello · Google Workspace

Langues

Anglais
Bilingue ou natif
Français
Bilingue ou natif
Allemand
Notions

Préférences en matière de lieu de travail

Accepte de travailler sur site

Paris (jusqu’à 50 km)

Grant Thornton - France
Compliance Project Manager
CONSEIL & AUDIT
avril 2025 - octobre 2025 (6 mois)
Paris, France
Contributed to compliance and regulatory audits for Health IT systems,
ensuring software solutions meet national and international healthcare
standards. Act as a key interface between technical teams, regulatory bodies,
and quality management functions.

Key achievements:
- Performed end-to-end compliance audits of medical and health information
systems, assessing data flows, interoperability, and data protection
mechanisms.
- Reviewed software documentation and validation deliverables to verify
adherence to Healthcare regulations
- Evaluated alignment with healthcare regulatory frameworks
- Supported regulatory accreditation processes in collaboration with health
authorities and software vendors, ensuring successful conformity assessments
and audit closures.
- Provided recommendations to strengthen governance, documentation, and
audit readiness across digital health projects.
Gestion de projet Systèmes d'information Healthcare Conformité
Grant Thornton - France
Information Privacy Project Manager
CONSEIL & AUDIT
décembre 2024 - avril 2025 (4 mois)
Paris, France
Contributed to data privacy and AI governance initiatives to ensure ethical,
compliant, and transparent use of digital technologies across enterprise
systems. Bridge the gap between regulatory requirements and operational
implementation.

Key achievements:
- Designed and implemented governance frameworks for data privacy,
including organizational policies, operational procedures and awareness
training.
- Applied ISO/IEC 42001:2023 principles to align AI governance systems with
emerging international standards on accountability, transparency, and human
oversight.
- Collaborated with cross-functional teams (legal, IT security, compliance,
and data science) to embed privacy-by-design and ethics-by-design practices
within digital projects.

Environment:
Data privacy governance, AI compliance, ISO/IEC 42001 implementation, EU
AI Act, risk and ethics management.
ISO 42001 Data Management
Grant Thornton - France
Cyber Security Project Manager
CONSEIL & AUDIT
septembre 2023 - décembre 2024 (1 an et 3 mois)
Paris, France
Oversaw cybersecurity and risk management activities across a large portfolio
of digital transformation projects. Drive governance, compliance, and riskbased decision-making aligned with ISO/IEC standards.

Key achievements:
- Managed risk across 60+ digital projects per year, covering the full lifecycle
— identification, assessment, mitigation, monitoring, and production release.
- Applied ISO/IEC 27005:2022 methodologies to implement structured risk
management within the ISO/IEC 27001 Information Security Management
System (ISMS).
- Coordinated cross-functional teams (IT, security, and business units) to
ensure secure-by-design project delivery and adherence to internal security
frameworks.
- Produced risk dashboards and KPIs for top management, improving visibility
and traceability of risk decisions across the project portfolio.

Environment:
Cyber risk governance, information security, project management, ISO/IEC
27001–27005 compliance
ISO 27005 ISO 27001 Gestion des risques IT Analyse de risques Cybersécurité

Consulter toutes les expériences de Jeffrey

Soyez le premier à recommander Jeffrey

Contribuez à la réussite de ce freelance en partageant votre expérience de collaboration avec lui.

Agatha Frydrych

Backend Java Software Engineer

4.7

(3)

Baptiste Duhen

Fullstack developer

4.6

(4)

Amed Hamou

Senior Lead Developer

(2)

Audrey Champion

Web developer

4.3

(3)

S’inscrire pour les voir

Master of Information System Management
Institut Mines-Télécom Business School
2023
Master's degree, Information Systems Management
Master of International Business
University of Applied Sciences and Arts Dortmund
2020
Bachelor's degree, International Business and Management

Consultez la formation qu'a suivie Jeffrey

Consultant IT

Jeffrey Phaitus

Freelance - IT Consultant | Project Manager

À propos de Jeffrey

Expériences

Recommandations

Ces profils de freelance correspondent également à vos critères

Formations

Compétences

Catégories