CISO
HR Path
Since January 2021
Missions
- Construction and implementation of Cybersecurity strategy
- Change of vision and paradigm: simplify day-to-day operations to increase security
- Creation and management of an international cybersecurity team (from 0 to 7 people): Security Operations, compliance, Incident Detection Response & Vulnerabilities
- Implementation of a compliance strategy and framework to address future certifications, customer needs, and regulatory changes
- Management of ISO/IEC 27001 compliance, extension of scope and transition from version 2017 to 2022
- Ensuring compliance and obtaining SOC 2 Type 2 Report
- Cyber M&A management for all acquisitions
- Building trust relationship and proximity with the business lines for project security and delivery
- Deployment of a scope targeted by French regulations on Restricted Distribution (II901) in 3 months
- Implementation of various security measures like Email Protection, Internet Protection, SIEM, EDR.
Company description
HR Path is a global consulting firm specializing in human resources solutions, offering services that range from HR strategy and transformation to payroll, talent management, and the integration of innovative HR technologies. In the last five years, HR Path has strengthened its market position by acquiring companies from various countries, including Canada, Mexico, USA, Germany, and the United Kingdom, as part of its strategy to expand internationally and enhance its offerings in HR transformation, payroll solutions, and digital HR services.
Permanent Contract
Paris (75) - France
CISO Deputy
Galeries Lafayette
October 2017 - December 2020
Missions
- Project management and process definition for Identity and Access Management (IAM)
- Implementation of security into project management (IT or business)
- Security Operation Center project guidance, technical expertise, and process definition
- Vulnerability management with Qualys, Rapid7 and a Bug Bounty platform
- Definition and implementation of patch management process
- Complete rework and redefinition of security policy and strategy
- Security advisement and help to IT and business teams
Company description
The French market leader in departement stores and famous all around the world, for the past 120 years Galeries Lafayette has been the undisputed expert in fashion and event shopping, designing each visit to be a unique experience, offering French and international clients a constantly renewed selection of the best brands, from the affordable to premium and luxury.
Permanent Contract
Paris (75) - France
IT Security in Apprenticeship
SAFRAN Aircraft Engines
September 2014 - September 2017
Missions
- Chief Information Security Officer Deputy
- Arellia project setting up - Local users and administrators management
- Vulnerabily management - Tenable Nessus
- NAS Shares analytics setting up - Varonis Datadvantage
- Obsolescence management of users and applications account
- Antiviral platform management
Company description
Safran Aircraft Engines designs, develops, produces and sells engines for commercial and military aircraft, launch vehicles and satellites. SAFRAN Aircraft Engines also offers a complete range of support services to airlines, armed forces and other operators, including fleet management.
Apprentice
Evry (91) - France
Project Manager - Last Project
Agence Française pour la Biodiversité
September 2016 - March 2017
Missions
- Project manager to research and realize a pioneer submarine drone
- Submarine drone with a position of 50cm precision
- Innovator project with benefit on geomatic and open-source community
- Conference about the project at Foss4G Europe (in English - July 2017)
School project
Champs-sur-Marne (77) - France
Internship in network division
Groupe APICIL
April 2014 - June 2014
Missions
- Load balancer Zeus (Riverbed Stingray) migration to F5 Big-Ip
- Security and configuration management of load-balancers
- Management of the load-balancing supervision environment
Internship
Lyon (69) - France
