Quentin Nichini
Quentin Nichini

Information System Security Management

Security auditing, data protection strategy development, risk management, regulatory compliance consulting and cybersecurity awareness.

The information system (IS) security management consultant plays an essential role in protecting a company's digital assets. In a world where cyber threats are omnipresent, it is imperative for businesses of all sizes to take a proactive approach to IT security. An IS security consultant provides his expertise to evaluate, advise, implement and supervise the necessary measures to guarantee the integrity, confidentiality and availability of data.

Main missions :

  • Audit & Diagnostic: Evaluate the company's current security posture, identify vulnerabilities and weak points, and propose recommendations to improve them.
  • Development of security strategies: Design a comprehensive IS security strategy that is aligned with business objectives and current regulations.
  • Training & Awareness: Educate company staff on security best practices and make them aware of different potential threats.
  • Incident management: Implement procedures to respond effectively to possible intrusions or security violations, as well as analyze incidents to prevent recurrences.
  • Technological & regulatory monitoring: Stay informed of the latest trends in cyber threats, as well as applicable regulations and standards to guarantee optimal security.
  • Collaboration with internal teams: Work closely with IT, legal, and operational teams to ensure smooth implementation of security strategies.

Types of deliverables:

  • Audit report: Detailed document on current vulnerabilities, associated risks and recommendations.
  • Strategic security plan: Overall framework for IS security, including policies, procedures and technical recommendations.
  • Initial assessment report: Accuracy of the company's positioning regarding certification requirements.
  • Certification Roadmap: Detailed plan to achieve ISO 27001 or SOC2 certification.
  • Incident reports: Analyzes of security incidents with recommendations to prevent their recurrence.
  • Security dashboard: Tool for monitoring key performance indicators related to IS security.

Related Projects

Code review and audit

Conducting PHP, Javascript and Mysql code reviews and audits

IS compliance with SOC2

Upgrade of the Information System (IS) according to the SOC2 standard.

IS compliance with ISO 27001

Upgrade of the Information System (IS) according to the ISO 27001 standard.

Security audit

Gestion des audits de sécurité d'un point de vue applicatif et développement


About me

My Portfolio


Privacy Policy

Contact Me

© 2024 Quentin Nichini. all rights reserved