About Tristan
Expert Sécurité Infrastructures & Remédiation Opérationnelle
Tech Lead spécialisé dans le Hardening et la gestion des vulnérabilités au sein d'environnements internationaux. Expert dans l’alignement des infrastructures critiques sur les standards CIS et les exigences réglementaires (NIS2, DORA, PCI-DSS).
Reconnu pour ma capacité à piloter des équipes multi-culturelles dans la résolution de failles critiques, j'assure une visibilité totale sur l'exposition aux risques grâce à un reporting Splunk avancé et une culture du résultat basée sur les KPI.
French
Native or bilingual
English
Fluent
Can work on-site
Paris (up to 50km)
Experience
- BPCE ITTech lead Hardening & Vulnerability AnalystBANKING AND INSURANCENovember 2022 - Today (3 years and 7 months)Paris, FranceVulnerability & Audit Governance: Led the end-to-end remediation lifecycle using Qualys across global infrastructure, ensuring all audit findings were translated into actionable technical roadmaps.Compliance Enforcement (PCI-DSS, NIS2, DORA): Orchestrated hardening initiatives for high-sensitivity zones, maintaining strict alignment with regulatory requirements and hosting regular steering committees to close non-compliance gaps.Strategic Remediation Tracking: Facilitated monthly reviews with cross-functional teams to drive the closure of critical vulnerabilities and track the progress of security recommendations.Hardening Standardization: Engineered and deployed OS/Middleware hardening baselines based on CIS Benchmarks, achieving a measurable increase in the global infrastructure security posture.Continuous Risk Control: Integrated mandatory security scans for new system masters into the deployment pipeline to ensure "secure-by-design" compliance.Splunk Monitoring & Reporting: Created executive dashboards to track remediation KPIs and the progress of security audit actions.Global Support: Acted as the primary point of contact for international business units, providing expert guidance on vulnerability mitigation and hardening standards.
- Ministry ofHealth (Orange Cyber defense)Cybersecurity ConsultantSeptember 2021 - November 2022 (1 year and 2 months)Paris, FranceAdministration, supervision and maintenance of security equipment Security incident Management and request processingVulnerability analysis and reporting with NessusFirewalling and Network traffic analysis (F5, Palo Alto, Juniper) Bind DNS management and analysisManaging VIP on F5Proofpoint management.
- RamparNoc AnalystSeptember 2017 - August 2021 (3 years and 11 months)Sèvres, FranceL2//L3 SupportQualys expertise, scanning and reporting, created multiple weekly scan with various intensity, weekly and monthly reportServer patch management on an iso 27001 infrastructure Linux Administration (kerberos, password manager)Splunk, Data analysis and reporting, created dashboards and extracted datas in order to troubleshoot multiple issuesVulnerability remediation on both windows server and linuxCheckpoint management, network troubleshooting and port opening, whitelistingWindows Administration, managed active directory and made GPO, deployed update through WSUS.
Recommendations
Be the first to recommend Tristan
Help this freelancer shine by sharing your experience working together.
These freelancer profiles also match your criteria
Agatha Frydrych
Backend Java Software Engineer
4.7
(3)
2
Baptiste Duhen
Fullstack developer
4.6
(4)
5
Amed Hamou
Senior Lead Developer
4
(2)
7
Audrey Champion
Web developer
4.3
(3)
4
Education
- MASTER IN CYBERSECURITYESGI2021MASTER IN CYBERSECURITY
- Network EngineerESME Sudria2018Network Engineer