Profiles search
Morgane Ledoux
Senior Consultant in Cybersecurity | @Wavestone US
Boston, MA, United States
Details
Education:
Master 2 (M2)
SESI (Security of Europe and International Stability)
Sciences Po Strasbourg
2017 : 2019
Master's degree
European Studies
Uniwersytet Jagielloński w Krakowie
2017 : 2018
Bachelor's degree
Political Sciences
European School of Political and Social Sciences (ESPOL)
2015 : 2017
SESI (Security of Europe and International Stability)
Sciences Po Strasbourg
2017 : 2019
Master's degree
European Studies
Uniwersytet Jagielloński w Krakowie
2017 : 2018
Bachelor's degree
Political Sciences
European School of Political and Social Sciences (ESPOL)
2015 : 2017
Experience:
Within the US office and in relation to the Product & Industrial Cybersecurity (PIC) offer :
► Leading a Product Security Target Operating Model for a Medical Device Manufacturer | 2 months
► Performed 2 Risk Analyses & Threat Models on Medical Devices prior to FDA 510(k) submission | 1.5 months
► Drafted an OT Policy based on IEC 62443 and NIST CSF for a global industrial manufacturer | 1 month
► Led the budget stream of a car manufacturer's key management system (KMS) program | 2 months
Internal activities :
► Pre-sales pitches & commercial proposals
► Project Management & Junior consultants oversight/onboarding
2023 : Present
Wavestone
Senior Consultant in Cybersecurity
Within the Product & Industrial Cybersecurity (PIC) offer, example of engagements :
► Led an Industrial Cybersecurity Program for a Municipal Water client | 9 months
► Performed several Risk Analyses (EBIOS RM) for various clients, including on a milling machine, a launch pad, a RPA solution and a middleware platform | ~2 months/analysis
► Drafted SCADA cybersecurity requirements for power transmission | 4 months
Internal activities :
► Pre-sales pitches & commercial proposals
► Project Management & Junior consultants oversight/onboarding
► Recruitment interviews
2022 : 2023
Wavestone
Senior Consultant in Cybersecurity
As a GRC Consultant, I participated in or led the following projects :
► Assisted a nuclear industry CISO on day-to-day activities, including but not limited to : the creation of Security Service Center, a 3-year roadmap design and implementation, several risk analyses & project management oversight | 1 year
► Designed a Target Operating Model for a CISO office in the Public Transportation Industry | 9 months
► Drafted a RFP for a new Digital Identity App in the Public Sector | 8 months
► Performed EU GDPR audits | 4 months
► Ensured Integration of Security in Projects (ISP) for a CISO in the nuclear industry | 10 months
2019 : 2022
Wavestone
Cybersecurity Consultant
Assisting a Member of Parliament within the National Defense Committee :
► Crafted law proposals & amendments
► Wrote public speeches & oral questions to the government
► Drafted briefing notes & questions ahead of the committee's auditions
► Participated to the communication : press briefs & social networks management
2019 : 2019
Assemblée nationale
Intern - Parliamentary assistant
Within the Mayor's Cabinet :
► Wrote briefing notes, public speeches, letters
► Ensured smooth communication between the various city hall's departments and the representatives within the framework of the town's annual citizen-representatives meetings
2016 : 2016
City of Caen
Technical assistant
► Leading a Product Security Target Operating Model for a Medical Device Manufacturer | 2 months
► Performed 2 Risk Analyses & Threat Models on Medical Devices prior to FDA 510(k) submission | 1.5 months
► Drafted an OT Policy based on IEC 62443 and NIST CSF for a global industrial manufacturer | 1 month
► Led the budget stream of a car manufacturer's key management system (KMS) program | 2 months
Internal activities :
► Pre-sales pitches & commercial proposals
► Project Management & Junior consultants oversight/onboarding
2023 : Present
Wavestone
Senior Consultant in Cybersecurity
Within the Product & Industrial Cybersecurity (PIC) offer, example of engagements :
► Led an Industrial Cybersecurity Program for a Municipal Water client | 9 months
► Performed several Risk Analyses (EBIOS RM) for various clients, including on a milling machine, a launch pad, a RPA solution and a middleware platform | ~2 months/analysis
► Drafted SCADA cybersecurity requirements for power transmission | 4 months
Internal activities :
► Pre-sales pitches & commercial proposals
► Project Management & Junior consultants oversight/onboarding
► Recruitment interviews
2022 : 2023
Wavestone
Senior Consultant in Cybersecurity
As a GRC Consultant, I participated in or led the following projects :
► Assisted a nuclear industry CISO on day-to-day activities, including but not limited to : the creation of Security Service Center, a 3-year roadmap design and implementation, several risk analyses & project management oversight | 1 year
► Designed a Target Operating Model for a CISO office in the Public Transportation Industry | 9 months
► Drafted a RFP for a new Digital Identity App in the Public Sector | 8 months
► Performed EU GDPR audits | 4 months
► Ensured Integration of Security in Projects (ISP) for a CISO in the nuclear industry | 10 months
2019 : 2022
Wavestone
Cybersecurity Consultant
Assisting a Member of Parliament within the National Defense Committee :
► Crafted law proposals & amendments
► Wrote public speeches & oral questions to the government
► Drafted briefing notes & questions ahead of the committee's auditions
► Participated to the communication : press briefs & social networks management
2019 : 2019
Assemblée nationale
Intern - Parliamentary assistant
Within the Mayor's Cabinet :
► Wrote briefing notes, public speeches, letters
► Ensured smooth communication between the various city hall's departments and the representatives within the framework of the town's annual citizen-representatives meetings
2016 : 2016
City of Caen
Technical assistant
Company:
Wavestone
Years of Experience:
5
Spoken Language:
Anglais, Français, Italien
Skills
Anglais, Operating Models, OT Security, Pre-Sales Consulting, Product Security, Project Management, Regulatory Compliance, RGPD, Risk Assessment, Security-by-Design
About
As a Senior Consultant in Cybersecurity at Wavestone, I have offered support to industrial CISOs and Security Teams for the past 4 years. My main focus is on topics related to governance, compliance and project management (integration of security in projects).
Profile Photo
