Introduce yourself, tell us about your background and what led you to become a cybersecurity consultant?
I have a degree in computer engineering. During my final year of engineering school, I entered a master’s program to specialize in information security and cryptology. At that time, I already knew that I wanted to focus on governance to assist clients with the organizational aspect, while many of my peers were leaning more towards the technical side and penetration testing. I completed my internship at the security department of the Orange Group. Afterwards, a former classmate from my Master’s program, who was working at Fidens, posted a job offer for cybersecurity consultants. I got in touch with him, and that’s how I joined the Fidens team!
Can you detail your expertise in IT security and the specific areas you have worked in?
My expertise in IT security is primarily focused on the field of governance. In this context, I have worked on a wide range of missions within Fidens. This includes providing advice to our clients, particularly in the implementation of ISMS and HDS ISMS. I am also involved in resilience (continuity, disaster recovery, and crisis management), drafting governance documents, as well as conducting audits, both internal and external, including supplier audits. I also participate in training sessions and risk analysis.
Can you share an experience or a project that particularly impacted you or that you are proud of?
ISMS implementation projects are always very satisfying because clients sometimes start from a low level of information security. It is very rewarding to see their progress over time, following our guidance and implementing our recommendations. I have had the opportunity to follow projects from start to finish, over periods stretching to 6 months, 9 months, or even longer, until the project’s completion with certification attainment.
A project that particularly impacted me was the one I conducted with my colleague Guillaume at Artéva. It’s a small company that hadn’t yet identified and deployed all cybersecurity practices in accordance with standards. Working directly with the two company leaders was very enriching, the project progressed effectively and quickly, and it allowed each of us to enhance our skills.
Discover the profession of cybersecurity consultant through his filmed interview:
What are the main challenges you face as a cybersecurity consultant?
There are two main challenges. The first lies in adapting to each client, their specific context, and their particular working methods. This can be challenging, but it’s also what makes the job interesting because it keeps us constantly stimulated and helps avoid monotony.
The second challenge sometimes involves overcoming obstacles related to costs and resources necessary to complete a project. Even if the clients who reach out to us are generally committed to the process, it may be necessary to explain and justify these investments to the entire company. Sometimes, this can cause reluctance to address crucial security issues. Fortunately, our experience, external perspective, and expertise often make us better heard by clients than if they received the same message from an internal CISO.
What qualities do you think are necessary to be a consultant?
Adaptability is essential: you have to adapt to all situations, projects, and companies. Listening is also very important : gaining a good understanding of the client organization’s structure, best practices, areas for improvement, and gathering the necessary information. The ability to synthesize is also fundamental. You need to be able to assemble all collected information and present it clearly and concisely, whether in a report or during a presentation. This skill is closely related to adaptability, as we must be able to adjust our communication depending on our audience.
How do you keep up to date with the latest trends and developments in IT security?
I keep informed through our internal Teams channels. In parallel, I actively monitor LinkedIn, following groups dedicated to information security and connecting with people who share content that interests me. Also, through clubs.
What’s a good reason to join Fidens & the TVH Consulting group?
There are many good reasons to join Fidens & the TVH Consulting group. One of the major reasons is that Fidens works on very interesting projects. With 20 years of experience, Fidens has had the opportunity to work on a multitude of diverse topics. We work with organizations of all sizes, whether public or private, from SMEs to large companies. This versatility is one of our distinctive strengths in the market as we can tackle a wide array of subjects and challenges in cybersecurity.
Do you consider yourself to have a ternary profile?
According to my interpretation, I could consider myself to have a ternary profile. The ternary aspect reflects an approach that goes beyond performing actions for oneself, including actions in service of others and the company. It’s a perspective that encompasses a broader vision than just oneself, aiming to promote both Fidens and the TVH Consulting group.
In this sense, I actively engage in marketing activities, article writing, and events. I find this not only interesting but also aligned with a broader goal, namely the development of our activities and our continued growth together #SmartGroup
