KILIAN PICHARD

Currently working for a client with high standards in terms of security and data protection, I specialize in hardening network and server infrastructures, ensuring optimal protection for Windows Server and Linux environments. My expertise includes verifying the configuration of firewalls and switching solutions to enhance network security.

My services also cover:

🔹 Compliance and standards: support in complying with II901, ISO 27001, and other security standards.

🔹 Risk analysis: identifying and assessing risks to propose appropriate mitigation strategies.

🔹 Technology watch: continuous monitoring of developments and threats in cybersecurity to anticipate risks.

🔹 Hardening and log reporting: strengthening system security and integrating logs into a SIEM for centralized monitoring and analysis.

🔹 Document package validation: verification and validation of security documents to ensure their compliance and completeness.

During my current mission, I actively participate in managing the security of projects within a naval defense company, with a particular focus on network and server infrastructure, as well as compliance with security standards.

🔹 Project security monitoring: I am the security point of contact for the various projects entrusted to me, with a particular focus on network and server infrastructure.

🔹 Checking compliance with security requirements: I ensure that projects follow strict security standards, such as II 901, as well as recommendations from ANSSI, CIS and solution providers. This ensures both compliance with regulations and secure systems and equipment.

🔹 Equipment hardening: I ensure the hardening of network equipment (such as firewalls, switches, encryptors), operating systems (Linux, Windows), as well as servers (NAS, hypervisors, etc.), enforcing good security practices to minimize vulnerability risks and reinforce infrastructure resilience.

🔹 Log analysis: I check the equipment syslog server configuration to ensure that logs are correctly fed back into the SIEM. I also analyze the content of the logs to ensure the consistency of the logs that are brought up, guaranteeing continuous monitoring of equipment security.

🔹 Raising teams’ awareness of good security practices: As the project’s security referent, I pass on good advice and best practices to the teams. I’m also available to answer their questions, ensuring that they understand and apply the appropriate safety measures to guarantee project safety.

During my work-study, I participated in various initiatives related to security management and project compliance, working with the SOC team and other departments, while strengthening my cybersecurity and risk management skills.

🔹 Design and implementation of an alert management process: Working with the SOC team, I helped create a process to improve the efficiency of the internal Security Operations Center. This process has significantly reduced the time taken to escalate alerts to project teams.

🔹 Risk analysis: I actively participated in the risk analysis for a project that was already ISO 27001 certified. The risk analysis method used was based on the EBIOS RM method.

🔹 Maintenance and implementation of ISO 27001 certification: A significant part of my work-study period was dedicated to the maintenance of ISO 27001 certification for an already certified ISMS and to the preparation for ISO 27001 certification of another ISMS.

🔹 Follow-up of the renewal audit: I actively participated in monitoring the renewal audit for ISO 27001 certification already in place on an ISMS, ensuring that security practices were maintained at a high level.

During my 4-month internship at the University of Jaén in Andalusia (Spain), I participated in the design and development of a website for a cultural project aimed at highlighting the pioneering women in computer science.

🔹 Website design and development: I designed and developed an interactive website for this project, focusing on showcasing pioneering women in the field of computer science.

🔹 Frontend with ReactJS: The frontend was developed using ReactJS, which allowed me to create a dynamic and responsive user interface. I also used HTML, CSS, and the Tailwind CSS framework to ensure a modern and responsive design.

🔹 Backend with Strapi and SQLite: For the backend, I used the Headless CMS Strapi, as well as JavaScript. I worked with an SQL database using the SQLite library for data storage.

🔹 Deployment on Nginx HTTP server: Once the site was complete, I deployed it on an Nginx HTTP server, ensuring its online availability.

🔹 Technologies used: JavaScript (ReactJS), HTML, CSS, Tailwind CSS, SQLite, WebStorm, Git, and GitHub.

During my 3-month internship at Sigma Consulting, I participated in the development of a SaaS software called Airphoning. This project allowed me to work on the complete development of a web application, from front-end to back-end.

🔹 SaaS Software Development: I developed Airphoning from scratch, integrating all the necessary features to provide a smooth and complete user experience.

🔹 Installation and use of the Symfony framework: I installed and configured the Symfony framework, using it for the development of the application’s back-end features.

🔹 Database and programming in PHP and SQL: I worked on implementing the complete database in SQL, using PHP for server-side logic and integrating the features required for the proper functioning of the SaaS.

🔹 Front-end and back-end development: My role also included developing the front-end (user interface) in HTML5, CSS3, and JavaScript, as well as developing the back-end to handle interactions with the database.

🔹 Technologies used: PHP, HTML5, CSS3, JavaScript, SQL, Git, GitHub.

During my experience as a semaphore lookout for the French Navy, I underwent a 2-week training at the Naval Academy in Brest and carried out various missions monitoring maritime approaches.

🔹 Training at the Naval Academy in Brest: I underwent a 2-week training at the Naval Academy, where I acquired the fundamental skills necessary to monitor maritime areas, while becoming familiar with the specific equipment used by the French Navy.

🔹 Maritime and air surveillance missions: I was responsible for monitoring maritime and air approaches along the French coastline, using sophisticated detection and communication means.

🔹 Identification and control of vessels: One of my key missions was identifying and controlling vessels operating near the French coast to ensure the safety and compliance of maritime activities.

🔹 Fighting marine pollution and illicit trafficking: I participated in monitoring maritime activities aimed at combating marine pollution and detecting illicit trafficking, contributing to the preservation of the marine environment.

🔹 Assistance at sea: I also contributed to sea rescue operations with the SNSM (French Sea Rescue Service), intervening to provide quick help in the event of an incident or need for assistance, ensuring the safety of people at sea.

Durante mi pasantía de 3 meses en La Web Factory, contribuí al desarrollo y la actualización de una plataforma CRM utilizando PHP. Esta pasantía me permitió adquirir habilidades sólidas en automatización de procesos, gestión de datos y creación de interfaces dinámicas.

🔹 Desarrollo y actualización de una plataforma CRM: Participé en la mejora y enriquecimiento de las funcionalidades de una plataforma CRM, trabajando principalmente en la implementación de nuevas características y la optimización del sistema existente.

🔹 Automatización de tareas: Instalé y creé tareas de automatización que permitieron almacenar datos JSON en una base de datos SQL de manera óptima. Esto facilitó la gestión de los datos en el CRM y mejoró la eficiencia de los procesos.

🔹 Creación de un panel de control interactivo: Diseñé un panel de control para permitir a los usuarios visualizar los datos de manera clara e interactiva usando Chart.js, facilitando así la toma de decisiones basadas en los datos.

🔹 Tecnologías utilizadas: PHP, JavaScript, Chart.js, HTML5, CSS3, SQL, Git, GitHub.