Über Tristan
Expert Sécurité Infrastructures & Remédiation Opérationnelle
Tech Lead spécialisé dans le Hardening et la gestion des vulnérabilités au sein d'environnements internationaux. Expert dans l’alignement des infrastructures critiques sur les standards CIS et les exigences réglementaires (NIS2, DORA, PCI-DSS).
Reconnu pour ma capacité à piloter des équipes multi-culturelles dans la résolution de failles critiques, j'assure une visibilité totale sur l'exposition aux risques grâce à un reporting Splunk avancé et une culture du résultat basée sur les KPI.
Französisch
Muttersprachlich oder zweisprachig
Englisch
Verhandlungssicher
Vor Ort möglich
Paris (bis zu 50 km)
Projekt- und Berufserfahrung
- BPCE ITTech lead Hardening & Vulnerability AnalystBANKEN & VERSICHERUNGENNovember 2022 - Heute (3 Jahre und 7 Monate)Paris, FranceVulnerability & Audit Governance: Led the end-to-end remediation lifecycle using Qualys across global infrastructure, ensuring all audit findings were translated into actionable technical roadmaps.Compliance Enforcement (PCI-DSS, NIS2, DORA): Orchestrated hardening initiatives for high-sensitivity zones, maintaining strict alignment with regulatory requirements and hosting regular steering committees to close non-compliance gaps.Strategic Remediation Tracking: Facilitated monthly reviews with cross-functional teams to drive the closure of critical vulnerabilities and track the progress of security recommendations.Hardening Standardization: Engineered and deployed OS/Middleware hardening baselines based on CIS Benchmarks, achieving a measurable increase in the global infrastructure security posture.Continuous Risk Control: Integrated mandatory security scans for new system masters into the deployment pipeline to ensure "secure-by-design" compliance.Splunk Monitoring & Reporting: Created executive dashboards to track remediation KPIs and the progress of security audit actions.Global Support: Acted as the primary point of contact for international business units, providing expert guidance on vulnerability mitigation and hardening standards.
- Ministry ofHealth (Orange Cyber defense)Cybersecurity ConsultantSeptember 2021 - November 2022 (1 Jahr und 2 Monate)Paris, FranceAdministration, supervision and maintenance of security equipment Security incident Management and request processingVulnerability analysis and reporting with NessusFirewalling and Network traffic analysis (F5, Palo Alto, Juniper) Bind DNS management and analysisManaging VIP on F5Proofpoint management.
- RamparNoc AnalystSeptember 2017 - August 2021 (3 Jahre und 11 Monate)Sèvres, FranceL2//L3 SupportQualys expertise, scanning and reporting, created multiple weekly scan with various intensity, weekly and monthly reportServer patch management on an iso 27001 infrastructure Linux Administration (kerberos, password manager)Splunk, Data analysis and reporting, created dashboards and extracted datas in order to troubleshoot multiple issuesVulnerability remediation on both windows server and linuxCheckpoint management, network troubleshooting and port opening, whitelistingWindows Administration, managed active directory and made GPO, deployed update through WSUS.
Empfehlungen
Sei die erste Person, die Tristan empfiehlt
Teile Deine Erfahrung aus der Zusammenarbeit mit diesem Freelancer.
Diese Freelancer passen auch zu Ihren Kriterien
Agatha Frydrych
Backend Java Software Engineer
4.7
(3)
2
Baptiste Duhen
Fullstack developer
4.6
(4)
5
Amed Hamou
Senior Lead Developer
4
(2)
7
Audrey Champion
Web developer
4.3
(3)
4
Ausbildung und Abschlüsse
- MASTER IN CYBERSECURITYESGI2021MASTER IN CYBERSECURITY
- Network EngineerESME Sudria2018Network Engineer