CV Data Protection Officer : Recevez gratuitement les meilleurs profils

Exemple de missions de Jerome,
Data Protection Officer habitant ?

Expérience professionnelle

10/2023 - Current
Cybersecurity Consultant
Freelance | Alicante, Spain
I provide cybersecurity services to SMEs to create a secure digital environment
 CISO as a service
 Security audits based on ISO 27001 and ENS
 Risk assessment and definition of mitigation actions
 Cyber Threat Intelligence
 Definition of security policies
 Provide support for the digital transformation of business processes
 Cloud security review and support to Cloud migration
 Provide support in the adoption of the AI in the business processes
 GDPR compliance support
 Business Continuity and Disaster Recovery planning
 Endpoint protection and device hardening recommendations
 Conduction of vulnerability assessments, ethical hacking, social engineering
awareness
 Review and Optimization of IT and Security Processes
 Internal awareness campaigns, workshops, trainings.

10/2015 - 10/2021
Information Systems Security Officer
EUIPO - European Union Intellectual Property Office | Alicante, Spain
 Ensured the proper implementation of the Information Security
Management System (ISMS) in compliance with ISO 27001 standards.
 Managed internal controls and implemented the COSO framework to
ensure regulatory compliance and optimize operational efficiency.
 Conducted risk management activities to identify, assess, and monitor risks,
ensuring the timely and effective implementation of mitigation actions.
 Developed and maintained policies and governance documentation
including Data Governance, AUP, BOYD policy, S-SDLC, Business Impact
Analysis, Business Continuity Plan, Disaster Recovery Plan, Incident
Response Plan.
 Worked closely with Data Protection Officer to enforce GPDR compliance
and manage incidents.
 Ensure that all departmental operations are compliant with standards and
regulations, EUTMR, CDR, GDPR.
 Conducted due diligence on IT external providers by reviewing SOC 2
reports and ensuring conformity with security frameworks.
 Organised and supervised the execution of internal and external audits,
leading to ISO 9001 and ISO 27001 certifications.
 Facilitated communication channels to enhance transparency in the
organisation and ensure stakeholders were correctly informed of internal
control processes, compliance statuses, KPIs and risks program.
 Organized security awareness training to staff and employees

10/2015 - 10/2021
PMO Manager
EUIPO - European Union Intellectual Property Office | Alicante, Spain
 Successfully managed and delivered multiple long-term strategic projects
(4+ years, >€1M budget) within budget, schedule, and scope.
 Managed a portfolio of 20 applications, to ensure the correct
implementation of user change requests, technical maintenance, and legal
requirements.
 Assessed and prioritized all change requests to IT systems, considering
user needs, compliance and legal requirements, and technical feasibility
and impact on departmental resources.
 Collaborated closely with senior management to define project
management strategy.
 Defined and implemented project management strategies in alignment with
Prince2 and Agile methodologies.
 Coordinated activities to track projects progress, resources allocation,
budget execution, risks management, in the Clarity PPM tool.
 Established real-time reporting on project metrics and process indicators.
 Facilitated weekly department meetings to monitor project activities,
identify risks and issues, and collaboratively make corrective decisions.
 Developed reports, dynamic dashboards, roadmaps, budget and resources
estimations, to support management in the decision-making process.
 Maintained and updated IT processes such as SDLC, Change Request
Management, Quality Assurance, Vendor Management.
 Organized and conducted meetings with stakeholders and project sponsors.
 Provided strategic guidance and support to project teams

11/2011 - 09/2015
IT Operations Team Lead
EUIPO - European Union Intellectual Property Office | Alicante, Spain
 Coordinated activities of the team composed of internal staff and external
consultants for all tasks related to IT Operations, Infrastructure and DevOps.
 Supervised activities executed by IT Service provider teams, defined and
monitored SLAs and KPIs, ensuring the correct execution of contracts.
 Coordinated activities for an average of 20 daily interventions in the
production environment, in respect of system availability SLA.
 Managed key projects including implementation of zero-trust security
model, migration of applications to the cloud, deployment of DR and BC
solutions, deployment of SIEM products, implementation of a VPN for
remote access, migration of the ITSM platform.
 Reviewed and assessed change requests related to IT Operations,
considering costs, risks, compliance, and legal requirements, and evaluated
their impact on departmental activities.
 Ensured correct implementation of ISO 27001 security controls.
 Enforced compliance with EU-GDPR, Trademark and Designs Regulations
and internal policies.
 Monitored and reported departmental KPIs related to availability, security
incidents, compliance issues, data protection issues, and vulnerabilities
management.
 Enforced Data Anonymisation, Data Masking and Pseudonymisation across
all department operations.
 Drafted and maintained governance documentation including S-SDLC,
Business Impact Analysis, Business Continuity Plan, Disaster Recovery
Plan, Incident Response Plan.
 Centralised and managed Incident Response plan implementation
 Participated in the selection committee for temporary agents, defining
selection criteria, reviewing applications, conducting interviews, and
providing assessments for final candidate selection.

05/2010 - 09/2011
IT Operations Service Delivery Manager
Fujitsu Technology Solutions | Alicante, Spain
Managed IT Operations Services at EUIPO (European Union Intellectual
Property Office)
 Delivered end-to-end IT services, ensuring client satisfaction, SLA
compliance, and KPI measurement.
 Identified opportunities to enhance service delivery, driving continuous
improvement initiatives.
 Coordinated activities across all Operations teams to ensure 24/7
availability and business continuity.
 Implemented IT security activities, including monitoring (SIEM), Disaster
Recovery testing simulations, vulnerability scanning, red teaming activities,
asset management, servers hardening, implementation of ISO 27001
controls.
 Coordinated activities to provide and maintain IT Infrastructure including
on-premises, cloud and hybrid environments.
 Supervised activities for an average of 20 daily interventions in production
environment, in respect of system availability SLAs
 Supervised DevOps activities for all IT projects including architecture
support, deployments in all environments, testing support, implementation
of CI/CD tools and methodology.
 Managed Security Operations Center (SOC) for rapid mitigation of threats
and incidents.
 Hired, trained and mentored service staff, fostering a customer-centric
culture within the service team, emphasizing empathy, professionalism and
effective problem-solving.
 Involved in drafting of technical offer for call of tender related to quality
assurance services

02/2008 - 03/2010
QA/QC Service Delivery Manager
NRB International Organisations (TRASYS) | Alicante, Spain
Managed the Quality Assurance Service at EUIPO (European Union
Intellectual Property Office)
 Coordinated team activities related to quality assurance and control for
more than 100 applications.
 Defined, monitored and reported SLAs and KPIs to ensure efficient service
delivery and customer satisfaction.
 Defined and ensured the execution of Quality controls for all in-house
applications, JAVA, .Net, VB, and more.
 Organised and supported execution of SAT and UAT.
 Worked closely with project managers to define and execute project tasks
related to software quality.
 Drafted a catalogue of IT standards to harmonize systems architecture and
reduce costs related to IT infrastructure.
 Developed new testing procedures to extend testing scope and implement
ISTQB principles and Security Testing (DAST, SAST)
 Hired, trained and mentored service staff, fostering a customer-centric
culture within the service team, emphasizing empathy, professionalism and
effective problem-solving.

10/2002 - 12/2007
QA/QC Service Delivery Manager
Infeurope S.A. | Alicante, Spain
Creation and management of a new service for the Quality Control of
software developed at EUIPO (European Union Intellectual Property Office)
 Defined and implemented a services catalogue aligned with IT Department
needs to improve software quality.
 Defined technical needs and created test environments.
 Defined and ensured the execution of Quality controls for all in-house
applications, JAVA, .Net, VB, Hyperscript and more.
 Organised and supported execution of SAT and UAT.
 Drafted procedures to successfully deploy applications from DEV to PROD
environments.
 Drafted SDLC and Change management processes.
 Trained and mentored internal and external staff for ISO 9001 certification.

03/2001 - 08/2002
Business Analyst
Infeurope S.A. | Alicante, Spain
Business Analyst at EUIPO (European Union Intellectual Property Office)
 Worked with several busin...