Ver categorias
Explorar
Fiverr Pro
Português
$
USD
Yasserz KORAMI
@yasserkorami
Cybersecurity and GRC Consultant : ISO 27001, IT Risk, PCI DSS
Marrocos
Inglês, Francês, Árabe
Sobre mim
Senior Information Systems Security Consultant with successful experience in audit, advisory, and compliance implementation assignments across African and European markets (France, Morocco, Gabon, Senegal, Togo, Ivory Coast, Burkina Faso)
Habilidades
Yasserz KORAMI
offline •
Conheça meus serviços
Programação e Tecnologia
I will provide iso 27001, cyber risk and grc consulting
Programação e Tecnologia
I will write iso 27001 security policies and procedures
Experiência profissional
Banks
Freelance • 4 yrs 4 mos
Cybersecurity Consultant – Governance, Risk and Compliance (GRC)
Jul 2025 - Dec 2025 • 5 mos
Provided cybersecurity governance and risk management advisory for 16 international and domestic subsidiaries of a major banking group, working closely with CISOs and IT leadership. Key contributions: • Conducted security maturity assessments based on ISO 27002 best practices and produced audit reports, maturity dashboards and remediation roadmaps. • Supported the implementation of cybersecurity governance frameworks, including security committees and reporting processes across subsidiaries. • Designed and implemented centralized security maturity reporting at group level to monitor cybersecurity posture across multiple entities. • Contributed to the preparation of Group IT & Cyber Risk Management Committees, providing visibility on key risks and remediation initiatives. • Assisted in the preparation of regulatory and supervisory cybersecurity committees covering multiple regions (CEMAC, UEMOA, Indian Ocean and Morocco zones).
Cybersecurity Consultant – Governance, Risk and Compliance (GRC)
May 2021 - Apr 2025 • 3 yrs 11 mos
Advised a major international bank on IT and cybersecurity risk management and governance. Supported the deployment of the Group IT risk management framework and contributed to strengthening cybersecurity oversight across IT assets, third-party providers and business units. Key responsibilities: • Conducted IT and cybersecurity risk assessments in collaboration with business stakeholders and IT asset owners. • Identified and monitored risk mitigation action plans, ensuring alignment with internal security standards and regulatory expectations. • Led the migration of the local IT risk management framework into ServiceNow GRC, enabling centralized risk management and reporting. • Organized and facilitated monthly IT & Cyber Risk Committees with CIO, CISO and senior stakeholders. • Produced cyber risk reporting for executive management and contributed to regulatory reporting submitted to the national banking regulator. • Conducted IT and cybersecurity audits of critical third-party providers, including payment processing services, hosting and datacenter providers, card processing platforms and application maintenance suppliers.
Cybersecurity Consultant – Governance, Risk and Compliance (GRC)
firm-it • Período integral
Aug 2020 - May 2021 • 9 mos
Provided cybersecurity governance, risk and compliance advisory to organizations across the telecom, financial services and digital sectors in France and Morocco Key contributions: • Supported organizations in achieving PCI DSS compliance, including process design, security control implementation and preparation of certification documentation frameworks. • Performed IT and cybersecurity audits of critical third-party providers, based on ISO 27001 best practices and client security frameworks. • Conducted Level 2 IT and security control activities, working closely with IT departments and business units to monitor security posture and ensure compliance with internal policies. • Assisted the CISO office in cybersecurity governance and operational security oversight as Deputy CISO support.
