Description

4 years of experience in IAM, DLP, phishing campaigns & awareness, NIST SP 800-53, risk analysis (EBIOS RM, ISO/IEC 27005), OT security under IEC 62443 (zones-and-conduits, industrial AD, OT–IT DMZ/segmentation) ane ISMS design & governance (ISO/IEC 27001)

Analytical mindset • team player • autonomous • strong organizational skills.

Langues

Français
Bilingue ou natif
Anglais
Capacité professionnelle limitée

Préférences en matière de lieu de travail

Accepte de travailler sur site

Liège (jusqu’à 50 km), Luxembourg (jusqu’à 50 km), Bruxelles (jusqu’à 15 km)

LUXURY
IAM ANALYST
LUXE
mars 2022 - novembre 2022 (8 mois)
France
Within the global IT team of a luxury company, participation in the deployment and scalable maintenance of a unique global identity management tool for the group.

Assignment Summary:
°Draft specifications in users stories for improvements and evolutions of the identity and management tools or corrections
°Perform process modelling of access management (onboarding, offboarding, mobility, change request)
°Manage releases of user stories : testing and communication through release notes
°Monitor data
°Level 3 support

Achievements
°Delivered around 150 stories (evolution, fix, design)
°Created Access Management workflows in a SM tool
°Delivered technical documentations concerning all IAM processes in ServiceNow (onboarding, offboarding, mobility, change request)
°Perform workshops to define and formalise the access management lifecycle
°Use of PowerShell to extract objects in AD and of PowerBi reports to monitor quality of identities and access for over 150 000 accounts

Environment
°Azure AD, Active Directory
°Service Now
°PowerShell, Power BI
°Agile method
Gestion des identités et des accès (IAM) Méthode agile Scrum PAM Microsoft Entra ID
PHARMACEUTIC (BELGIUM)
DLP ANALYST
INDUSTRIE PHARMACEUTIQUE
février 2024 - juillet 2024 (5 mois)
Bruxelles, Belgique
Within a Pharmaceutical company, I worked on the definition of a DLP global strategy and roadmap with the Information Security Manager.

Assignment Summary
°Perform data leak risk assessment and gap analysis
°Elaborate DLP strategy
°Build DLP project roadmap

Achievements
°Performed 8 business workshops to identity sensitive data and risks scenarios
°Performed 5 IT workshops to evaluate current data loss prevention measures
°Using EBIOS RM methodology to perform risk analysis and evaluation
°Drafted risk assessment report with 21 identified risks scenarios and related vulnerabilities
°Elaborated a strategy defining the processes, tools and knowledge to mitigate those risks
°Build roadmap to implement the DLP processes and deploy the supporting tools: Microsoft Purview, Sentinel, and MCAS.

Environment
°M365, MCAS, Microsoft Purview, Sentinel
°EBIOS RM, NIST
BANKING
NIST ANALYST
BANQUE & ASSURANCES
juillet 2024 - décembre 2024 (5 mois)
Luxembourg
Within a banking company, I worked on research and analysis of evidences for the NIST SP800-53 framework with the CISO.

Assignment Summary
°List and prioritize controls and evidences needed for the NIST SP800-53 framework
°Prepare and lead workshops with stakeholders
°Mails sent to stakeholders to gather evidences
°Perform research of evidences for the NIST SP800-53
°Perform analysis, storage and archiving of evidences collected
°Draft of a remediation plan

Achievements
°Priorisation de 360 contrôles sur 5 scopes différents
°Animation of 5 workshops (one for each scope)
°Evaluation and remediation of 360 controls

Environment
°Framework: NIST SP800-53