Mes compétences :
Critères Communs
Sécurité informatique
Entreprises
Devoteam
- Principal Consultant
Levallois-Perret2016 - maintenantManaging the Big Data Security offer :
* Maturity assessment against leading security standards
* Best practices integration in project with iterative methodologies
* Usage and threat monitoring with dedicated dashboards and KPI
* Security audit : organisation, architecture, configuration, source code and pentesting
PARIS 172013 - 2014Software developer :
* Complex data processing system (batch and real time) infrastructure
* Manage Big Data architecture from PoC to production environnement
* Focus on lambda architecture and performance benchmarking
* Frameworks : hadoop, mesos, spark, storm, kafka
Sogeti Capgemini
- Consultant SSI
Issy-les-Moulineaux2009 - 2016ITSEF (Information Technology Security Evaluation Facility) development for Common Criteria evaluations :
* Risk analysis (ISO 27005 / EBIOS) and information security policy (national standard)
* Dedicated IT system design and implementation (virtual infrastructure)
* Business application design and development (evidence and technical report management)
* Quality management system definition and implementation (ISO 17025)
* Evaluation services definition and pre-sale
Results :
* Compliance with ISO 17025 was pronounced in June 2015 by COFRAC
* Common Criteria accreditation is expected in Q4 2015
Common Criteria Consulting :
* Security Target writing (electronic signature, timestamping, control traction system)
* Evaluation (EAL 3+)
* Training (evaluation scheme, security model, ToE, ST, PP etc.)
GRC Consulting :
* Risk analysis (French EBIOS / ISO27005) for IT and industrial systems with security measures from ISO27002 / NIST 800-53
* Organizational audits for ministries and SME
* Information security policy definition
