Tell us your story at Fidens
After obtaining my master’s degree in Risk Management of Information Systems, I joined Fidens in 2012 as a junior consultant engineer. Very quickly, I worked on great projects, such as cybersecurity project management for sensitive information systems for the Ministry of the Armed Forces, a border security project in Qatar as well (which probably helped them win the World Cup bid, yes, it’s thanks to me… #Joke) or cyber audits in Africa for a bank, for example… Subsequently, I have supported a large number of clients, in all sectors, in tandem with more junior profiles that I was able to train.
Following an internal reorganization of the company a few years ago, I had the opportunity to participate in this new adventure as a partner.
Over these few years, we have been able to forge strong bonds among colleagues, creating a DNA and values anchored around a family spirit.
What does your job as a Cybersecurity Consultant involve?
I mainly work on GRC (governance, risk, and cybersecurity) areas and ISO 27001 certification topics. I evaluate an organization’s maturity in terms of both cybersecurity governance and its technical measures for prevention and response to a cyberattack through interviews and workshops with all company departments. This is my daily routine: discussing, understanding needs, identifying weaknesses. Afterwards, I propose cybersecurity goals and a roadmap to achieve an acceptable level of security.
I provide a lot of support for ISO 27001 and HDS (Health Data Host) certifications. A company starting from scratch can achieve ISO 27001 certification within one to two years. It’s a short period, so the challenge is to quickly understand the context, accurately assess the risks, and implement effective security measures.
Moreover, I have a role as a delegated CISO (Chief Information Security Officer with our clients): I assist in managing the action plan, ensuring compliance, and setting up technical security measures to detect attacks… for clients without the necessary internal organization.
What motivates you to get out of bed every morning? What puts you in a good mood immediately?
Getting up in the morning knowing there’s an afterwork event planned for the evening…
I love what I do because it’s fundamentally about client relationships at all hierarchical levels. Every day, I have interesting interactions and projects with significant stakes for the company. It’s very motivating to feel useful and to help them avoid the worst, with consequences that can be disastrous.
What project(s) has marked you the most? Why?
Initially, working for the Ministry of the Armed Forces was remarkable; these are very sensitive topics where clearance is needed and where the stakes against cyber threats are considerable.
Then, my current mission as an outsourced CISO for a group of 3,000 people part-time is very engaging. I oversee all cybersecurity aspects, and there is a significant responsibility and high expectation from the client, which I enjoy.
What is the future of your profession, meaning what could change its practice in the coming years?
The cybersecurity profession has a bright future; there is still a lot of work needed in many organizations and companies to support and help them improve in these areas. These are technologies that evolve very quickly, and you always need to be updated and curious to learn. I would like to learn more about quantum computing and wonder about the impact it could have on our profession…
https://youtu.be/9kP6LtGjtNA
