Mes compétences :
Analyse de risques
Audit
Critères Communs
EBIOS
IGC
ISO 27001
PCI DSS
PKI
Sécurité
Entreprises
Airbus Defence and Space
- Cybersecurity - Conseil et audit SSI
Blagnac 2015 - maintenant
Bull
- Security Consulting and Audit Team Manager
Les Clayes-sous-Bois 2013 - 2015Responsable Activité Conseil et Audit SSI - Bull SAS – Business Line « Security »
Activity areas : Risk assessment, Information Security governance and conformance, technical audits
• Security practice leader (governance, conformance, audit)
• Pre-sales and offer definition
• P&L accounting
• Hiring and team HR management
• In charge of Bull certifications (PCI-DSS QSA, french RGS-PASSI)
• Qualified QSA PCI-DSS auditor (n°202-282)
• ISO 27001 ISMS Provisional Auditor
• French CLUSIF and AFNOR (Normalization Commission) member
• Risk analysis, EBIOS and MEHARI methods,
• ISO 27001, 27002, 27005 standards
• Security audit
• PCI-DSS conformance
• Secure development (best practices)
• Health Data and Personal Information (PII) security
• Security evaluation : Common Criteria
BULL
- Senior IT Security Consultant and assessor
Les Clayes-sous-Bois 2009 - 2015- 2011 : QSA PCI-DSS certified (n° 202-282)
- 2007 : « ISO 27001 Lead Auditor » certified
Skills areas :
• IT Security and ISMS (Information Security Management System) consulting
• Risk analysis (ISO 27005, Ebios, Mehari)
• ISO 27001 (ISMS), PCI-DSS and french RGS compliance assessements
• Gap analysis regarding security best practices
• Consulting and assistance in trust services area (PKI, digital signature, time-stamping, long-life archiving...)
• MEHARI trainer for Bull-Formation and Engineering schools
• CLUSIF member
• AFNOR CN-SSI Normalization Commission member
BULL
- Chef de projet
Les Clayes-sous-Bois 2004 - 2008- Pilotage de projets en Sécurité
- Etudes & conseil dans le domaine des services de confiance (IGC/PKI, horodatage, signature électronique...)
