Olivier Joffray

Mission d'architecture cybersécurité au sein de la Direction du Développement des Produits et Plateformes de Services (DPPS) de Bouygues Telecom. Environnement technologique riche incluant les services TV, téléphonie et Internet (TDR, DRM, CDN, CMS, Cloud, applications BTV, Bbox, IAD).

I carried out an assessment of the organization and solutions for managing support requests, for internal customers (IT support, general services, etc.), external customers and subcontractors. I then drew up the specifications for the call for tenders, and managed exchanges with solution providers, bidders and the purchase department

ITSM replacement project manager.

End-users: 12’500 ; Service desk (L1): 30 ; Support Team (L2/L3): 800 ; External users (customers): 500.

• Assessment of the existing ticketing solution, and of the organization of operational workflows between the requester, helpdesks, and L1/L2/L3 support teams.

• Co-design workshops to define the service catalog.

• Drafting of tender specifications.

• Management and organization of the competitive due diligence phase.

• Organization of oral bid presentation sessions (definition of evaluation criteria, analysis and consolidation of expert feedback, preparation of internal communication media).

• Advice on tender strategy based on the strengths of each offer.

• Management of the contract negotiation phase in coordination with purchasing and legal teams (quality assurance plan, service agreement, consultation of references).

• Identification of selection criteria and preparation of the final selection file.

• Review of responses / synthesis & reporting / selection of winning proposal by Group IT management.

• Call for tender prepared and sent to bidders (EasyVista, Service Now, Cherwell, Ivanti, Atlassian JIRA, MicroFocus).

• End-to-end selection process.

Review critical process access authorizations, and remove those that are unnecessary or a source of risk.

Prepare an IAM governance plan to sustainably reduce and manage the risks associated with access to critical processes and applications.

Global project manager & GRC & IAM lead expert.

• Global project manager.

• Preparation of schedule for overall accesses and authorization procedures review (cross applications / organizations / countries).

• Organization of verification and cleansing waves and monitoring of proper execution.

• Review and risk analysis of existing procedures for granting or removing authorizations when employees arrive, transfer, expatriate or leave.

• Lead a community of champions and technical experts.

• Access authorizations to critical processes are aligned with an acceptable level of risk.

• Preparation of an GRC/IAM upgrade plan proposal ready to be included in the IT applications urbanization program.

• Bi-monthly follow-up meeting with CIO, CFO, EVP IT Apps and internal audit.