11/21/2025 updated

**** ******** ****
100 % available

Cybersecurity consultant certified ISO 27001 Lead Implementer

Palma de Mallorca, Spain Master degree in Computer science, ESIEA, 2011, Paris, France
Palma de Mallorca, Spain Master degree in Computer science, ESIEA, 2011, Paris, France

Profile attachments

Resume Ouafia BALIT HERMAN 2024 12.pdf

About me

Cybersecurity consultant certified ISO 27001 Lead Implementer, I have a hands-on expertise in implementing Information Security Management Systems (ISMS).

AuditingInternal ControlsISO/IEC 27001Sarbanes-Oxley Act (SOX) ComplianceTisaxInformation Security Management SystemThird Party ManagementRisk Management
Information Security Management Systems (ISMS) according ISO 27001, TISAX and HDS standards
Hands-on expertise in implementing and maintaining ISMS, with a methodical and pragmatic approach to meet specific organizational needs.
  • Project management: experience in leading ISO 27001 certification initiatives, managing non-conformities, and preparing for certification.
  • Risk management: skilled in conducting information security risk analysis and developing strategies to mitigate risks.
  • IT controls: proficiency in developing and implementing IT controls to ensure continuous improvement of security measures.
  • Information security policies and procedures: expertise in developing security policies and procedures to ensure compliance with standards and regulations.
  • Stakeholder management: ability to collaborate with key stakeholders to align ISMS with business objectives and regulatory requirements.
  • Compliance knowledge in particular NIS 2 and DORA

 

Languages

EnglishFluentFrenchNative speakerSpanishGood

Project history

Cybersecurity consultant

Feel Agile
Supporting multiple companies in implementing and managing ISMS in compliance with ISO 27001 or TISAX standards. Conducting security assessments, performing risk assessments, and developing security controls.

Third-Party Risk Management Specialist

Onepoint
Conducted risk assessments of IT projects using third parties, ensuring compliance with internal requirements and external regulations, with a focus on EBA guidelines on outsourcing.

Risk Manager / Internal Controller / Auditor

Cdiscount
Updated annual risk analysis, worked with business departments to identify and mitigate risks, defined KRIs, and implemented IT controls to meet SOX requirements.

Certificates

ISO 270001 Lead implementer

PECB

2024

Contact form

Log in to get in touch

You need to be logged in to use the contact form.

Sign upLog in