Objective

To work in the information security field in a dynamic and stimulating environment where I can keep my professional skills sharp. 

Skills

Skills

Disaster Recovery

Business Continuity

ISO 27001

PCI

Work History

Work History
Nov 2010 - Present

IT Project Manager

Xperteam

Responsibilities

<!--[if gte mso 10]> <style> /* Style Definitions */ table.MsoNormalTable {mso-style-name:"Table Normal"; mso-tstyle-rowband-size:0; mso-tstyle-colband-size:0; mso-style-noshow:yes; mso-style-parent:""; mso-padding-alt:0in 5.4pt 0in 5.4pt; mso-para-margin:0in; mso-para-margin-bottom:.0001pt; mso-pagination:widow-orphan; font-size:12.0pt; font-family:"Times New Roman";} </style> <![endif]-->

·Manage software project in all phases of the Software development life cycle (SDLC)

·Prepare statement of works (SOW) and business requirement documents (BRD)

·Prepare RFP responses

Jun 2009 - Jul 2010

Senior Information Security Analyst

McKesson Canada

Responsibilities

Being a member of the security team:

<!--[if gte mso 10]> <style> /* Style Definitions */ table.MsoNormalTable {mso-style-name:"Table Normal"; mso-tstyle-rowband-size:0; mso-tstyle-colband-size:0; mso-style-noshow:yes; mso-style-parent:""; mso-padding-alt:0in 5.4pt 0in 5.4pt; mso-para-margin:0in; mso-para-margin-bottom:.0001pt; mso-pagination:widow-orphan; font-size:12.0pt; font-family:"Times New Roman";} </style> <![endif]-->

·Develop policies and procedures for physical and logical security access

·Participate in the periodic information security testing and assessment

·Participate in SOX compliance audit

·Be in charge for a PCI-compliance and Penetration tests projects

·Be in charge for a Disaster Recovery Plan project

·Participate in ISO27001 compliance project at the company.

Achievements

·McKesson Canada became fully PCI compliant.

·DRP project planned and put to execution

Jan 2004 - Jun 2009

Information Security Architect

Justice Ministry of Quebec

Responsibilities

Being a member of the security team and a member of the team in charge of projects related to electronic certificates of signature and encryption:

·Develop policies and procedures for physical and logical security access

·Develop procedures for information security internal auditing

·Conduct different risk analysis for the core business systems using the Méhari method

·Participate in the development of strategic information security projects

·Prepare and validate functional and testing documents for internal projects.

·Develop user and technical guides for Entrust product

·Conduct training sessions and conferences on Entrust products use

·Participate in various projects of GPKI (Governmental Public Key Infrastructure) of different ministries and organizations

·Administer and train users on Livelink products for electronic document management

Achievements

·Deployment of information security policies and procedures

·Deployment of physical and logical access management procedures

·Deployment and completion of various PKI projects where users are using Entrust electronic certificates for secure electronic exchange of information

·Deployment of user and technical guides for Entrust products on the website

·Conducting several conferences on PKI at University of Laval and University of Sherbrooke in Quebec

Education

Education
Jan 2002 - Jun 2004

Management Diploma

McGill
Feb 1989 - Jun 1997

M.Sc.

LAU

Certifications

Certifications
Jun 2008 - Present

CISM

ISACA