SOTENAC IT RISK
Expert IT Risk & GRC (ex-BNP Paribas), j'aide les DSI/RSSI à sortir de la conformité "papier". Mon focus : la sécurité opérationnelle et la priorisation des risques réels. Accompagnement flexible ou missions "One Shot" pour transformer la GRC en levier de pilotage simple.
Acerca de
Après plus de 20 ans à piloter les risques IT et la résilience au sein du groupe BNP Paribas, j’accompagne aujourd’hui les DSI et RSSI européens dans leurs missions IT Risk et GRC. Missions courtes ou accompagnement flexible — quelques heures par semaine suffisent. Ma conviction : La gestion des risques IT (avec ou sans outils de GRC) n'est pas là pour cocher des cases, elle est là pour cartographier vos actifs et prioriser les arbitrages réels. Mon approche est pragmatique : Sortir de la conformité "papier" pour viser la sécurité opérationnelle. Je ne me contente pas de vérifier les extincteurs, je m'assure qu'on ne stocke pas de bidons d'essence à côté de la cheminée. Mes zones d'impact : 🛡️ IT Risk Management : Passer de l'inventaire technique à la gestion par l'Asset. ⚙️ ServiceNow GRC : Transformer un outil complexe en levier de pilotage simple et efficace. 📉 Optimisation Cyber : Prioriser les investissements là où se trouvent les vrais risques vitaux. Disponible pour des missions de niche en "One Shot" : audits GRC, IT Risk Reviews, conseil, accompagnement, dossiers complexes. ISO 27005, CRISC (ISACA) 📍 Basé à Bordeaux | 🌍 Intervention Europe
Problemas que resuelven
Experiencia en marcos de cumplimiento
Tamaño de cliente objetivo
Regiones cubiertas
Idiomas admitidos
Ver scorecard público de SOTENAC IT RISK
Señales de demanda en vivo, comparación con pares y brechas de cobertura — actualizado cada 15 minutos desde el tráfico de ISMS Directory.
Interested in SOTENAC IT RISK?
Visit their website to learn more about their services and get started.
Visit SOTENAC IT RISKExplore More
Related Services
GRCC Jahn
Governance, Risk & Compliance consulting by Viktor Jahn. One point of contact from start to finish. Audits, advisory, and training across NIS2, BISG, TISAX, DORA, GDPR, and ISO 27001. Pragmatic, hands-on and built for practice.
SolidInfoSec
Information security consulting focused on strengthening governance, risk and compliance practices. We help organizations structure and implement practical security processes, support audit readiness and build sustainable frameworks that remain workable over time.
i.s.c. Group
ISMS implementations, OneCompliance(tm) program to implement multiple standards at once.
Bitsecura
*** Helping Businesses Achieve Compliance & Certification Success *** Bitsecura is a IT governance, risk, and compliance (GRC) firm specialising in helping organisations protect their critical assets, navigate complex regulatory landscapes, and build sustainable cybersecurity frameworks. With over 20 years of industry experience, we offer strategic guidance, bespoke solutions, and operational support that align seamlessly with your business objectives. Our commitment to practical innovation and long-term partnerships ensures that working with Bitsecura not only strengthens your current security posture, but also builds a lasting foundation for future resilience.
PROCESS 360
At PROCESS 360, we build systems using innovative, effective processes to deliver successful outcomes. The company specializes in a range of ISO management systems, providing our clients with audit, consulting, and training services.
Reisender
Reisender helps your organization stay protected while driving performance and growth by assessing risks, implementing ISMS requirements, identifying opportunities, and implementing tailored solutions aligned with business goals.
SrivelEnterprise
A seasoned professional with 17+ years of fruitful experience with expertise in ISO Certification, SSAE18 (SOC1 and SOC2), GDPR, Quality Management System (ISO 9001), Information Security Management System (ISO 27001), Information Technology Service Management System (ISO 20001), Asset Management System (ISO 55001), HIPAA, Certified Data Protection Officer, Business Continuity, VAPT, Risk Management, Secure Coding, Data Privacy, Processing Integrity, E-learning, Training and Mentoring, Design Thinking, Operations, Strategy, People Management, Technocommercial Acumen. Management Systems: Effectively implemented, maintained, audited ISO 9001 (QMS), ISO 27001 (ISMS), ISO 23001 (BCMS), ISO 20001 (ITSM), ISO 27701 (PMS), ISO 42301 (AIMS), CMMI, SSAE18 (SOC1, SOC2), HIPAA, HITRUST, HITECH, CCPA, GDPR, FedRAMP standards in various organizations across industries. Strong understanding of business best practices w.r.t. quality, information security, continuous process improvements.
The ISO Guys 27001, 27701 , 42001
At Cybercontrols we understand the ever-growing threat landscape of the digital world. Our mission is to provide comprehensive cyber security services that protect your digital frontiers.