Press Enter

PROJECT TITLE

    Press Enter

    NOTIFICATIONS

    ABOUT FEMARTINS

    • femartins Security consultant 0 review
    • Business Analysis
    • Program Management
    • Security

    Overview

     

    Senior security manager/ CISO

     

    Fernando Martins

    14 years experience

     

     

    skills

    skills

    systems                 Debian, Kali Linux

    languages             Perl, Shell sh Python

    Methods               AGILE-SCRUM (scrum master certification in April 2012), ISO 27001 Lead Implementer, ISO / IEC 27032 Lead Cybersecurity Manager CyberArk certification CEHv8 certification, advanced Hacking Training Sysdream, NIST, FFIEC, LPM FINANCE

    Tools                      Varonis, CyberArk, Nessus, Mazebolt, Fireglass, Carbon Black, ELK, MISP (notions), Splunk, BalaBit SSB

    languages             English bilingual, native Portuguese, fluent Spanish, native french

    Partnership          IBM, Symantec, Cofense, Carbon Black, Oodrive, darktrace

     

    Training

     

    2005                       Engineer Telecom INT – Specialty SUPAERO -Systems satellite telecoms

    1999                       Bac S

     


     

    reference projects

     

    Euronext April 2018 – December 2018

    Project Manager LPM

    Member of the RCMP team responsible for the implementation of the LPM on the IVIS

     

    n  Implementation of the documentary framework and the approval process

    n  Risk analysis of SIV, Implementation of 20 rules.

    n  Focus on the administration and partitioning environments.

    n  Definitions and followed by compliance projects.

    n  SOC Analysis and Quality

    n  Setting up the web browsing insulation on the population of traders.

     

    Nuclear   February 2017-March 2018

    Security Program Manager

    Deputy Head of CERT of OIV.

     

    n  Monitoring indicators, continuous improvement of the rules, proposed safety oversight target

    n  providers monitoring IHDP THALES, revised SLAs and penalties (false negatives in particular).

    n  N3 analysis from the log management BalaBit SSB (diode before transmission to the SOC PDIS (8000 EPS)).

    n  Integrations nuclear industrial environment (principle IAEI STI / PUB / 1527)

    n  Revenue weekly incident operation Committee

    n  Emergency exercise

     

    Technical environment :

    n  BalaBit SSB datasources: MS, ProxySG, dns, Fortinet.

     

    investment bank September 2016 – January 2017

    Security Program Manager

    Information security transformation program aligned with a maturity scale NIST

     

    n  Piloting the program and followed the 10 th project portfolio

    n  Monitoring the maturity audit and program performance

     

    Technical environment :

    n  Web browsing Insulation

     

    AXA GROUP May 2014 – August 2016

    Security Program Manager

    ISTP program: Information Security Transformation Program: safety transformation program information AXA Group over 3 years. Managing a portfolio of projects (budget € 5 million)

     

    n  Audit ISO 27001: Implementation and audit control ISO 27001 in all subsidiaries over 3 years. Audit of maturity modeled on the CMMI model

    n  Information Risk Management: Definition of common risk analysis process to all subsidiaries of the AXA Group (IRAM2 ISF). Definition of risk governance principles and climbing between local entity and group. Three for the establishment of a tool of CRM (Agiliance).

    n  Targeted Threat Hunting Assessment of Persistent threats on a regional data center and the associated business entities (research on 35,000 endpoints) – use IOC

    n  MSSP and SIEM: Due diligence on the MSSP services in place leading to a re-insourcing project of SOC and supervision equipment (RFP SIEM and log management). Review catalog of use cases.

    n  CSIRT: The existing review and analysis. Proposal of a comprehensive organizational model and associated service catalog. Review FIRST compared to standards. Creating playbook on malware

    n  Phishing Phishing Awareness Program

    n  Study on the browser virtualization

    n  DDOS attack simulation.

    n  Sleep on threats and threat intelligence platform studies

    n  Analysis, scoping and specification ELK for analysts within the Cyber ​​proactive defense (datalake request)

     

     

    Technical environment :

    n  Fireye NTAP, MiR Controllers, MIR agents ELK

    Artemis Group – Financière Pinault     October 2012 – May 2014

    Project Manager Security and Compliance

    PROJECT: Establishment of CETO periodic processes to anticipate audits auditors.

     

    Area of ​​intervention :

    n  Implementation of a management system of information security

    n  Review of the Security policy

    n  Risk analysis, implementation of controls, recordings collection

    n  Contact auditors within the statutory auditors

    n  Recommendation of measures and solicitation of publishers (privileged identity, messaging traceability)

    n  Implementing CyberArk solution (AIM, PSM, PVWA CPM) for securing privileged accounts.

    n  continuous improvement processes

     

    Technical environment :

    n  Varonis, CyberArk, Active Directory, Exchange, Novell eDir, Avencis SSOX, Nagios, syslog-ng, Nagvis

    Quanteam FINANCIAL SERVICES    June 2011 – October 2012

    Senior Project Manager IBC

    n  BNP Paribas CIB (June 2012-September 2012)

    n  Head of project application on the field Cash Management / Liquidity Management.

    n  Analysis, Full of Splunk solution

    n  Ecobank Defense (June 2012): Study for the establishment of a trading solution on high availability to Forex NGOs.

    n  CA-CIB, Defense (June 2011-Juin2012)

    n  Project ownership within Debt Capital Markets department and the establishment of an industrialized system of securitization covering the needs of the Paris office, Milan, New York and Sao Paolo (SCRUM approach)

    n  Assistance to the Product Owner in implementing the product backlog.

    n  Agile Coaching: Organization of schedules sprints retrospective Animations

     

    POWEO     December 2009- June 2011

    Project Manager Energy Trading and Risk Management

    PROJECT: Setting up a custom Trading System for the trading room. Manager in the department Trading and Asset Optimization responsible for the establishment of a system Trading / Risk Management / Back Office / Operations

     

    Area of ​​intervention :

    n  Project Management: Projects 3000 jh; 10 FTEs managed / budget management and planning / organization of steering committees reporting to the Deputy CEO

    n  Coaching and development of the agile approach Scrum / change management

    n  Safety Tests

     

    Technical environment :

    n  Weblogic, Linux

     

     

     

    ACCENTURE December 2005- December 2009

    Consultant

     
    Area of ​​intervention :

    n  France Telecom, Paris (November 2008 – December 2009)

    n  Team leader (2 consultants) responsible for the realization of a prototype SOA to automate (or facilitate) the deployment of Telecom groups (CRM, Billing …) in various international subsidiaries (target: reducing the implementation time 70%)

    n  Orange Switzerland, Lausanne (October 2008 – November 2008)

    n  Said billing processes on production (30 thousand invoices generated per cycle).

    n  Definition and implementation of a plan to improve process performance.

    n  SFR, Nanterre (January 2008 – September 2008)

    n  Member of the application architecture team from start to finish as part of the overhaul of the marketer information system operator (Project 80000 jh) prepaid customers, postpaid mobile and fixed.

    n  Framing two team resources. Entertainment architectural committees and monitoring of actions. application architecture documents drafted and revised specifications produced by the integrator.

    n  Bouygues Telecom, Boulogne (September 2007 – December 2007)

    n  Responsible for a team of two people conducting an audit of the recharging chain prepaid customers and commissioning of chain retailers (identification of annual losses of € 800k)

    n  Definition of control charts and risk monitoring with the MOA and Bouygues Telecom EOM guarantors of these processes.

    n  Orange UK, Bristol; United Kingdom,(November 2006 – August 2007)

    n  In the context of the recasting of the operator’s CRM and integration of the solution advocated by the group and deployed in other subsidiaries:

    n  Design of integration layer between different software solutions based on Peoplesoft and Webmethods to support business processes

    n  Conducting a “gap analysis” on the cover of the vis-à-vis the business group solution needs

    n  Solution design of “Order management” supports the application processes from the group solution implemented in other subsidiaries

    n  Bouygues Telecom, Boulogne (September 2006 – November 2006)

    n  Team leader of two consultants in connection with the securing of financial flows of the after-sales service.

    n  Detailed analysis of the key processes and implementation of a table of monitoring indicators (identification of annual losses of € 500k)

    n  KPN, Amsterdam; Netherlands (March 2006 – September 2006)

    n  As part of an implementation project of the new SI CRM / Billing / EAI based on MS .Net, BizTalk, Oracle BRM supports two Internet service providers, functional and technical consulting within the cell “migration of data “:

    n  Architecture definition of source and target data

    n  Responsible for the qualification phase

    n  Realization of data migration

    n  Deployment and support teams testing and production

     

    SOLUCOM     September 2005- December 2005

    Head of network and telecom infrastructure project

    Area of ​​intervention :

    n  Project: Mapping a sweater solution email / push mail for PDAs and test mobile devices with filtering IPTABLES (Defense).

    n  Project: videoconferencing systems scoping study for Arcelor (RFI and counting; Defense)

    n  Project: Participation in the blueprint VoIP / VoIP world for the Total Group (Defense)

    n  Project: nomadism scoping study for the French Games (Boulogne / Vitrolles / Moussy)

    Posted projects (0)

    • femartins has not worked on any project yet.

    INFO

    • Hourly Rate: 80,00€/h
    • Rating:
    • Experience: 14 years
    • Projects worked: 0
    • Total earned: 0,00€
    • Country: Portugal