"Security is not a product, but a process." β Bruce Schneier
I am a Cybersecurity Engineer specializing in Risk Management, GRC (Governance, Risk & Compliance), and AI-powered threat detection. My work bridges traditional security frameworks with cutting-edge machine learning approaches to tackle modern cyber threats.
- π Specialization: EBIOS Risk Manager | ISO 27001/27005 | NIS2 | DORA
- π€ Research: AI/ML for Cybersecurity β IoT Malware Detection, Anomaly Detection
- βοΈ Cloud Security: Azure Security Architecture, DevSecOps
- π GRC: Risk Assessment, Compliance Automation, Security Governance
Applied EBIOS Risk Manager methodology across multiple critical sectors
| Case Study | Sector | Framework | Focus |
|---|---|---|---|
| AXA Cloud Azure | Insurance / Finance | EBIOS RM + CSP | Cloud Risk Assessment |
| Banque SPI DORA | Banking | EBIOS RM + DORA | Digital Operational Resilience |
| TransRail SupplyChain | Transport | EBIOS RM | Supply Chain Attack Scenarios |
Comparative study of supervised vs self-supervised approaches on CICIoT2023 dataset
# Key Results β IoT Malware Detection Performance
models = {
"Supervised CNN": {"accuracy": 0.982, "F1": 0.981},
"ViT Supervised": {"accuracy": 0.979, "F1": 0.977},
"Self-Supervised SimCLR": {"accuracy": 0.961, "F1": 0.958},
"Random Forest Baseline": {"accuracy": 0.945, "F1": 0.944},
}π GRC-CloudLogix
Cloud Governance, Risk & Compliance automation platform
ββββββββββββββββββββββββββββββββββββββββββββββββββββββββββββββββ
β CYBERSECURITY EXPERTISE MAP β
β βββββββββββββββββββββββββββββββββββββββββββββββββββββββββββββββ£
β GRC & Risk Management β
β βββ EBIOS Risk Manager (ANSSI) ββββββββββββ 95% β
β βββ ISO 27001/27005 ββββββββββββ 90% β
β βββ DORA (Digital Operational Res.) βββββββββββ 85% β
β βββ NIS2 Directive βββββββββββ 80% β
β β
β AI for Cybersecurity β
β βββ Malware Detection (ML/DL) ββββββββββββ 90% β
β βββ Anomaly Detection βββββββββββ 85% β
β βββ Vision Transformers (ViT) βββββββββββ 80% β
β βββ Self-Supervised Learning βββββββββββ 70% β
β β
β Cloud Security β
β βββ Azure Security Architecture βββββββββββ 85% β
β βββ DevSecOps / CI-CD Security βββββββββββ 80% β
β βββ Supply Chain Security βββββββββββ 80% β
ββββββββββββββββββββββββββββββββββββββββββββββββββββββββββββββββ
Dataset: CICIoT2023 | Attack Types: DDoS, DoS, Recon, Mirai, Spoofing, Web Attacks + Benign
| Model | Accuracy | F1-Score | Approach |
|---|---|---|---|
| CNN | 98.2% | 98.1% | Supervised |
| ViT | 97.9% | 97.7% | Supervised |
| SimCLR | 96.1% | 95.8% | Self-Supervised |
| Random Forest | 94.5% | 94.4% | Baseline |
Key Insight: Self-supervised methods achieve competitive performance (~96%) without requiring fully labeled data β critical for real-world deployments where labeled IoT traffic is scarce.
"Securing the digital future, one risk assessment at a time."