Passionate about the convergence of Cybersecurity, Governance, and Artificial Intelligence, I support organizations in addressing their most strategic challenges: security, compliance, digital transformation, risk management, and the responsible integration of AI.
As a versatile consultant, I operate at the intersection of Information Security & GRC, IAM/PAM, and new European regulatory frameworks (NIS2, DORA, AI Act), while integrating international best practices such as ISO 27001 (LI & LA), ISO 27005 Risk Management, EBIOS RM, ISO 42001, TRISM, NIST AI RMF, MITRE ATLAS, OWASP Top 10 for LLMs, MLSecOps, and more. My role is to transform technical, regulatory, and organizational challenges into concrete, pragmatic, and actionable security strategies.
👉I have also recently completed the brand-new “Cybersecurity and AI Projects” program at École Polytechnique, delivered for the very first time this year. This pioneering training focuses on AI security, model governance, emerging risks (LLMs, autonomous agents, AI supply chains), and the integration of European and international regulatory frameworks. Being part of the first cohort reinforces my determination to stay at the forefront of roles combining cybersecurity and artificial intelligence.
On a day-to-day basis, I work on:
🔐Information Security & GRC – Security governance, audits, ISO 27001 compliance, risk assessments, mitigation strategies.
🆔IAM & PAM – Project management / Team Lead, automation, access governance, L2/L3 support, RBAC, SoD, architecture (SailPoint IIQ, IdentityNow, BeyondTrust, etc.), Zero Trust models.
🤖AI Security & Governance – AI risk mapping, internal policies, lifecycle management, AI Act & ISO 42001 compliance, model security, drift assessment, robustness & transparency.
⚙️Projects & Transformations – Program steering, scoping, roadmaps, change management, strategic alignment.
My approach is built on three core beliefs:
1) Security is an enabler, not a blocker: it allows organizations to innovate with confidence.
2) AI governance is becoming as critical as traditional cybersecurity.
3) Organizations need hybrid profiles capable of bridging compliance, technology, and strategy — exactly what I strive to deliver.
If your challenges involve cybersecurity, AI initiatives, or security transformation, I would be delighted to connect and discuss.