You're seeing this page as if you were . The main menu is still yours, though. Exit from immersion
Yassine CherkaouiYC

Yassine Cherkaoui

Cybersecurity Engineer | GRC & Risk

250 €/día
Madrid, ES
3-7 años

Tiempo medio de respuesta: 1h

Acerca de Yassine

Cybersecurity Engineer specialized in GRC, Risk Assessment and Secure SDLC.

I support large organizations in securing their applications and cloud environments through threat modeling, security by design and governance practices.

Experienced in banking and regulated environments (Santander CIB, AXA), with strong expertise in privileged access governance, security assessments and automation of security processes.

Available for remote missions across Europe and international environments.
  • Español

    Bilingüe o nativo

  • Inglés

    Competencia profesional completa

  • Francés

    Bilingüe o nativo

  • Árabe

    Bilingüe o nativo

Acepta trabajo presencial
Madrid (hasta 50 km), Cadiz (hasta 50 km), Málaga (hasta 50 km), Barcelona (hasta 50 km)

Experiencia

  • AXA Group Operations (AXA GBS)
    Security Engineer Expert — Cyber Defense department
    BANCA & SEGUROS
    enero de 2026 - Hoy (7 meses)
    Rabat, Marruecos
    Driving the quarterly Azure KRI monitoring cycle across the group's cloud perimeters. Automated the quarterly KRI consolidation process to reduce manual reporting effort. Reviewed privileged access entitlement reports as part of the group PUAM governance cycle. Refreshes and analyzes Power BI dashboards tracking KRI compliance; coordinates findings with TAS Lead and validation teams.
    GRC (Governance, Risk & Compliance) Risk Assessment Application Security Privileged Access Management (PAM) Microsoft Power BI
  • Migrantexperience
    Co-Founder & CTO
    abril de 2024 - Hoy (2 años y 4 meses)
    Co-founded a platform for expatriates; leading technical direction and secure-by-design architecture.
  • Santander Corporate & Investment Banking (SCIB)
    Cybersecurity Specialist — CISO Department
    BANCA & SEGUROS
    noviembre de 2023 - noviembre de 2025 (2 años)
    Málaga, España
    Led the Secure SDLC program across 80+ critical applications (onboarding, threat modeling, remediation). Advanced threat modeling with IriusRisk — identified vulnerabilities and defined countermeasures. Owned group-wide DLP strategy on Purview, Trellix and Netskope. Managed EDR via CrowdStrike and performed SAST/DAST/SCA analysis with Fortify and Dependency-Check. Reviewed firewall change requests and performed threat hunting and incident triage using Splunk, IBM QRadar (SIEM) and IBM Resilient as a CTU member. Automated critical security processes using Python and Power Automate.
    Secure SDLC Threat Modeling Microsoft Power BI Application Security Risk Assessment

Recomendaciones

Sé el primero en recomendar a Yassine

Ayuda a este freelance a destacar compartiendo tu experiencia.

Estos perfiles de freelance también coinciden con tus criterios

AgathaA

Agatha Frydrych

Backend Java Software Engineer

4.7

(3)

2

BaptisteB

Baptiste Duhen

Fullstack developer

4.6

(4)

5

AmedA

Amed Hamou

Senior Lead Developer

4

(2)

7

AudreyA

Audrey Champion

Web developer

4.3

(3)

4

Formación

  • Master’s Degree in Data Science and Cybersecurity
    University of Malaga
    2022
    Master’s Degree in Data Science and Cybersecurity
  • Bachelor’s Degree in Computer Engineering
    Int. University of Rabat
    2019
    Bachelor’s Degree in Computer Engineering

Certificados

  • IriusRisk Threat Modeling Champion
    IriusRisk
    2024
  • Quantum Computing and Cybersecurity
    UMA
    2024
    Cryptography Emerging Threats Cybersecurity Strategy

Conjunto de habilidades profesionales

Categorías