Browse profiles Post a project
Malt welcom

Welcome to Edmond's freelance profile!

Malt gives you access to the best freelancers for your projects. Contact Edmond to discuss your project or search for other freelancer profiles on Malt.

Edmond S.

Risk Management, IT Internal Audit, Cybersecurity

Can work in or around Paris

  • 48.858705
  • 2.342865
  • Suggested rate €1,250 / day
  • Experience 7+ years
Propose a project The project will begin once you accept Edmond's quote.

This freelancer will be available again on 4/11/2023

Until 4/11/2023

Propose a project The project will begin once you accept Edmond's quote.

Location and workplace preferences

Location
Paris, France
Can work onsite in your office in
  • around Paris and 50km

Preferences

Project length
  • Between 1-3 months
  • Between 3-6 months
  • ≥ 6 months

Verifications

Freelancer code of conduct signed
Read the Malt code of conduct

Verified email

Languages

  • French

    Native or bilingual

  • English

    Fluent

Categories

Skills (15)

Edmond in a few words

I have over 10 years of experience in risk management, IT audit, and cyber security, with a strong track record of designing and implementing effective risk management frameworks, conducting thorough reviews of systems and business processes, and identifying and assessing IT-related risks. As Head of Risk and Practices at Euronext, I am responsible for managing operational risks and building a strong risk culture within the organization. I have also designed and implemented an internal control framework to ensure effective controls, and I report to C-level executives and the Managing Board on key high risks. In my previous role as IT Audit Manager, I developed annual audit plans and advised as a Subject Matter Expert on opened issues with management.

At KPMG, I was responsible for designing and implementing Risk Management and Internal Audit departments, and I worked on several information systems security engagements, including risk assessments, control environment assessments, and data loss prevention system assessments. I also have experience reviewing Entity Level Controls and IT General Controls (ITGC), as well as conducting sanctions look-back and vendor due diligence. In my previous role at Aviva France, I was responsible for the design and operating effectiveness testing of IT General Controls and served as a SME for security topics on IT committees.

In my approach to work, I am highly organized and detail-oriented, with a strong ability to analyze complex systems and identify potential risks. I am also a strong communicator, with the ability to clearly articulate findings and recommendations to stakeholders at all levels. I am skilled at managing multiple tasks and deadlines, and I am always looking for ways to improve processes and increase efficiency. In addition to my technical skills, I am a team player with excellent interpersonal skills, and I enjoy collaborating with others to achieve common goals.

Experience

Euronext - Euronext

Banking & Insurance

Head of Risk and Practices

February 2021 - Today (1 year and 11 months)

• Manage operational risks as part of the first Line of Defense
• Design and implement new risk management framework, risk taxonomy and opera-
tional risk dashboard
• Design and implement Internal Control framework to ensure effective controls
• Build strong risk culture within the organisation
• Report to C-level executives and Managing Board on key high risks
• Manage Service Management and IT tools management activities
• Improve maturity and operational efficiency of production-related processes
• Manage external audit

Euronext - Euronext

Banking & Insurance

Senior IT Auditor

Paris, France

February 2019 - February 2021 (2 years)

• Develop annual audit plan
• Conduct reviews to identify gaps in governance, processes and architecture
• Identify and assess IT-related risks and clearly communicate them to stakeholders
• Advise as a Subject Matter Expert and follow up on the opened issues with the Man-
agemen

KPMG France

Consulting & Audits

IT Auditor / Cybersecurity Manager

Paris, France

September 2013 - January 2019 (5 years and 4 months)

Within the IT Audit and Advisory department:
• Several Information Systems Security assessments, including:
– Risk assessments to identify and evaluate the residual risks related to cyber attacks using the standard ISO 27005
– Control environment assessments using the standard ISO 27001/27002
– Data Loss Prevention system reviews related to client data confidentiality
– Information security policy and indicators review
– Security reviews of critical applications, messaging and network shares
– Configuration reviews and vulnerability scans in regard to CIS benchmarks
• Review of Entity Level Controls and General IT Controls (GITC) regarding Logical and Physical Access security, Change Management and IT Operations at the infrastructure and application level
• Business processes assessments
• Sanctions look-back: Compliance exercise of filtering transactions against sanctions lists
– Design of architecture solution to process hundred of millions of SWIFTs
– Design and implementation of compliance framework including key processes such as complex matching lists, SWIFT parsing and overall reporting process
• Asset Quality Review: Validation of data quality and integrity of customers' assets
• Vendor Due Diligence: Analysis of IT business plan with emphasis on organisation, contracts, projects and costs
• Design of an accounting information system (General Ledger and Reporting)

Aviva

Banking & Insurance

Internal Control Officer

92270 Bois-Colombes, France

April 2012 - July 2013 (1 year and 3 months)

Responsible for the testing (design and operating effectiveness) of BP controls
Conduct interviews and prepare documentation, evidences
Gap analysis (identification, recommendations, way forward) with standards relying on risk based approach
Responsible for the management related to significant deficiencies
Collaborative work with Internal Audit & Business to track issues
Involvement in IT committees as a SME for security topics, awareness Internal controls rationalization

France Télévisions - France TV

Press & Media

Business Intelligence Professional

Paris, France

July 2011 - October 2011 (3 months)

Responsible for designing database schemas on Sybase PowerAMC
Development of a data extraction solution from SAP Business Objects
Development of loading procedures on OpenText Genio 7
Accountable for the reporting of the current state of BI solutions

SOMONE

Consulting & Audits

Business Intelligence Consultant

77420 Champs-sur-Marne, France

January 2011 - April 2011 (3 months)

Accountable for designing and developing PostgreSQL datawarehouses
Responsible for extracting and loading information using Talend Open Studio
Responsible for reporting using Actuate BIRT

NYSE Euronext

Banking & Insurance

Market Customer Support

Paris, France

July 2009 - April 2010 (9 months)

Follow-up with accounts and manage customer's requests
Responsible for advising and supporting developers
Accountable for conformance testing of account's trading solutions

PUBLICIS TECHNOLOGY

Digital & IT

IT Software Engineer

Paris, France

July 2008 - October 2008 (3 months)

Benchmark of data extraction software
Responsible for developing a data extraction web platform based on PL/SQL procedures

Education

  • Master of Science in Computer Science

    SUPINFO

    2012

    Master, Computer Science

Certifications 

  • CISA
    ISACA
    2016
  • CISSP
    ISC2
    2016