Profileimage by Letitia Combes Consultant in IT and ICS/OT Security  | Security Operation Center | Vulnerability Mgmt. from Hallbergmoos

Letitia Combes

available

Last update: 23.06.2023

Consultant in IT and ICS/OT Security | Security Operation Center | Vulnerability Mgmt.

Graduation: Master in Engineering (Diplome d´Ingénieur); Master in Management
Hourly-/Daily rates: show
Languages: German (Full Professional) | English (Full Professional) | French (Native or Bilingual) | Spanish (Limited professional)

Attachments

BxC_CV_LetitiaCombes.pdf

Skills

Working in global IT companies such as IBM and Amadeus and industry-leading consulting companies such as Deloitte and Ernst&Young (EY) in roles as Senior Manager, I have gathered more the 8 years of experience in Cyber Security both in IT and OT/ICS environments. Throughout permanent interaction with all levels and roles from engineers in manufacturing to board level, I witness a large variety of challenges and solutions. Today, I offer my experience to solve the gap between business and cyber. 

Among my previous experience, I supported numerous Fortune 500 companies (including life science, consumer retail, automotive, insurance) and multiple small and medium-sized companies to:
  • Perform a detailed maturity analysis to assess their current cybersecurity level and evaluate the overall risk profile
  • Design a sustainable and holistic cybersecurity strategy including detailed financial planning, roadmap development, and management board presentation
  • Develop and implement a comprehensive and client-tailored Target Operating Model (TOM), including transition planning
  • Plan and run global Cyber and Production IT transformation programs to implement large scale technological and organizational renewal projects
  • Design large cyber transformation project across IT, OT, and product security
  • Design and implement a Security Operation Centers (SOC) including SIEM vendor selection processes, project management, implementation, process development, rule setup, and optimization and incident management planning and support in a role of a level 3 analyst
  • Design and implement a Vulnerability Management Programs including tool selection processes, implementation support, vulnerability analysis, and process design
  • Design and run projects of security architecture


If you are interested in my profile, feel free to contact me.

Project history

01/2020 - Present
Cyber Security Transformation Program in Manufacturing environment
(Pharmaceuticals and medical technology, >10.000 employees)

Role: Technical PMO and Program Steering

Responsibilities: Leading and steering a global OT Cyber Security improvement program in a pharmaceutical company. Managing the different implementation steps of the program incl. executive reporting, facilitating stakeholder management both at program and site level, working with the team both from multiple vendors and customer side to permanently improve the operations and design the next improvement cycle to reach the long term vision​. Acting as technical contact both on program management and on different cybersecurity domains: network segmentation and firewall lockdown, security operation center and incident detection, etc. Supporting the customer program lead in all types of management activities: vendor management, program budgeting, team management, etc.


03/2019 - 12/2019
Program of Improvement of Architecture of Critical Assets
(Industry and mechanical engineering)

Role: Project manager

Responsibilities: Coordinating the design of security teams developing security concepts for critical assets of major industrial organizations. Defining design processes, cybersecurity template structure, and communication matrix to ensure efficient implementation. Rolling-out the security concept project based on a hybrid project management approach. Ensuring the quality gate to guarantee the excellence of individual security concept (example of technical focus: ring-fencing, vulnerability management, user management).


11/2018 - 06/2019
Cyber Security Organisation Transformation Program (IT/OT/Product Security)

Role: Project manager

Responsibilities: Leading the setup and planning of a cybersecurity strategy and transformation program to design a service-based cyber organization across the IT, OT, and IoT areas. Designing a cybersecurity portfolio aligned with all key stakeholders. Providing management advice and cyber technical expertise all along the decision-making process.


09/2018 - 01/2019
Security Operation Center Target Operating Model Design and Implementation
(Insurance)

Role: Project manager and Security Operation Center Subject Matter Expect

Responsibilities: Performing maturity review of the Security Operation Center of the customer. Providing expertise to define, challenge and publish the Target Operating Model of the incident detection and response team including design of the global organizational structure, definition of processes, selection of technologies.


10/2018 - 12/2018
ISO 27001 Maturity Assessment
(Industry and mechanical engineering)

Role: Project manager

Responsibilities: Assessing against the  ISO 27001 scope the security maturity of a division of a major industrial customer and of its main vendors. Providing detailed recommendations and action plans to increase security maturity in collaboration with its vendors.


Local Availability

Open to travel worldwide
I'm available to travel globally with no restrictions
Profileimage by Letitia Combes Consultant in IT and ICS/OT Security  | Security Operation Center | Vulnerability Mgmt. from Hallbergmoos Consultant in IT and ICS/OT Security | Security Operation Center | Vulnerability Mgmt.
Register