IT & Network Security Expert

Orange Cameroun | 2023 - Today

Audit & Compliance Management : Focal point for managing IT security audits (internal, external, penetration testings), monitoring implementation of corrective action plans, reporting

Project Management : Management of audit assignments (penetration tests, CAC audit, ITNS Group audit, BCCM audit, ANTIC audit), Management of security tool implementation projects (SIEM, WAF, Antivirus, etc.), Management of the 2024 Security Week project (7 people on average per project)

Risk management : Permanent member of the risk analysis committee, identifying cybersecurity risks for major projects and recommending mitigation measures to reduce the number of security alerts and incidents by 80%

Vulnerability Management : Monthly assessments and corrections of internal and external vulnerabilities, leading to a 79% reduction in critical and high-level internal vulnerabilities in 15 months, reporting to top management

Security monitoring : Collaboration with the SOC team to define and tune detection rules, analyze security alerts, and escalate incidents when necessary, Management of SSL/TLS certificates

Security Awareness : Deployment of a phishing simulation platform and bi-annual practice test to raise employee awareness of how to recognize phishing e-mails, Design of awareness flyers

Information System Security Engineer

Orange Money Cameroun | 2023 - 2023

ISMS : Deployment of an ISMS (Information Security Management System) in accordance with ISO 27001:2022, gap analysis, drafting and validation of the declaration of applicability, reporting to the security committee, risk analysis

Privilege and Access Management : Implementation of segregation of duties and access reviews on the central e-money platform, reducing the risk of unauthorized access by 20% , Implementation of two-factor authentication on the central e-money platform

Audit and Compliance management : Management of remediation plans for various audits (CECOM Audit, COBAC Audit, ANTIC Audit)

IT & Security Engineer

Moobifun | 2022 - 2023

Identity and access management, Securing communications, Governance, Security monitoring, Project management, Network and System Administration

CISM

ISACA | Preparation Ongoing

Strengthening expertise in Information security Governance, risk management, development and management of security programs and incident managements, to align security strategies with business objectives.

ISO 27001 Lead Implementer

PECB | December 2024

In-depth expertise in implementing and managing an Information Security Management System (ISMS) based on ISO/IEC 27001. Skilled in establishing policies, procedures, and controls to ensure confidentiality, integrity, and availability of information assets.

CISSP (Associate)

ISC2 | September 2024

Strong foundation in cybersecurity across eight domains, including risk management, security architecture, and operations. Equipped with the knowledge and practices required to protect organizations against evolving security threats.

Certified Ethical Hacker

EC-Council | April 2024

Proficient in ethical hacking techniques and tools to assess and strengthen the security posture of information systems. Skilled in penetration testing, vulnerability analysis, and exploitation methodologies.

Security +

CompTIA | November 2022

Comprehensive knowledge of core cybersecurity principles, including network security, cryptography, identity management, and threat mitigation. Recognized for a strong grasp of both theoretical and practical security measures.

Master of Engineering in Computer Science

National Advanced School of Engineering | September 2017 - July 2022

Solid academic background in computer science and engineering, with a focus on cybersecurity, software development, and system architecture. Developed a strong analytical and problem-solving mindset through hands-on projects and research.