About Adi
English
Native or bilingual
Arabic
Native or bilingual
French
Basic
Experience
- FreelancingIndependent Information Security & GRC ConsultantNovember 2025 - Today (8 months)- Advise organisations across fintech, technology, and regulated industries on information security governance, risk management, and regulatory compliance initiatives.- Conduct ISO 27001 gap assessments, ISMS implementation, audit readiness reviews, and control maturity assessments to support successful certification and surveillance audits.- Support clients with NIS2 and DORA readiness by assessing governance, ICT risk management, third-party risk, and security control effectiveness against regulatory expectations.- Perform enterprise and cloud security risk assessments, define risk treatment plans, and develop pragmatic remediation roadmaps aligned with business objectives.- Design and enhance security governance frameworks, policies, standards, and procedures based on ISO 27001, ISO 27005, NIST CSF, and industry best practices.- Provide executive-level security advisory services, translating technical risks into clear business recommendations for leadership and key stakeholders.- Collaborate with engineering, operations, and compliance teams to strengthen security architecture, improve control effectiveness, and embed Security by Design principles across technology initiatives.
- Internet of Trust,Information Security ConsultantCONSULTING AND AUDITSApril 2024 - October 2024 (6 months)Paris, France• ● Conducted security architecture reviews and cloud security risk assessments for digital service providers, applying Security by Design principles.• ● Led ISO 27001 gap assessments and ISMS implementation initiatives using ISO 27005 methodology, supporting clients through certification readiness.• ● Prepared governance documentation, risk treatment plans, and audit-committee reporting for multiple client engagements.• ● Reviewed vendor security controls and performed third-party risk assessments, delivering prioritised remediation roadmaps.
- Zalando Payments,Senior Information Security Program ManagerBANKING AND INSURANCEJanuary 2022 - March 2024 (2 years and 2 months)Berlin, Germany• ● Led enterprise security architecture governance and compliance programme for a BaFin-regulated fintech achieved ISO 27001 certification readiness with zero major audit findings.• ● Conducted SAP infrastructure risk assessment, integrating SAP security controls into the ISO 27001 ISMS programme and translating findings into actionable remediation plans.• ● Performed enterprise risk assessments across cloud infrastructure (AWS), DevOps pipelines, and security processes, defining mitigation strategies aligned with NIST and ISO 27001.• ● Collaborated with engineering teams to define and implement security architecture controls across CI/CD environments.
Recommendations
These freelancer profiles also match your criteria
Agatha Frydrych
Backend Java Software Engineer
4.7
(3)
2
Baptiste Duhen
Fullstack developer
4.6
(4)
5
Amed Hamou
Senior Lead Developer
4
(2)
7
Audrey Champion
Web developer
4.3
(3)
4
Education
- SABSA Chartered Security Architect – Foundation Certificate (SCF)2015SABSA Chartered Security Architect – Foundation Certificate (SCF)
- TOGAF Certification2015TOGAF Certification
Certifications
- SABSA Chartered Security Architect – Foundation Certificate (SCF)SABSA2015
- TOGAF CertificationOpen Group2015