Rachid HAMADI
@rachidhamadi
Cloud security & GRC specialist with 8 years in multi-cloud security, CSPM (Wiz), and AI risk.
What I'm looking for
I’m a Cloud Security & GRC Specialist with 8 years of cybersecurity experience across consulting and enterprise environments. I focus on multi-cloud security, Cloud Security Posture Management (CSPM) with Wiz, and governance, risk & compliance—backed by hands-on DevSecOps and security automation.
In my current role as Cloud Security Specialist (APAC Singapore | Malaysia), I manage the implementation of Wiz CSPM and multi-cloud risk remediation. I define cloud security baselines, review landing zones and architectures, and support cloud migration through security advisory for Move to Cloud programs.
I also lead governance activities such as security exceptions, risk acceptance, and remediation follow-up, and I assess AI-related cloud risks to support AI projects through the security review process. I’ve additionally designed and implemented a Cloud Security Data Product, including its roadmap, governance, and data integration strategy.
Earlier, at Accenture, I managed cloud security posture management activities, ran risk assessments, and helped integrate security into projects. Before that, I worked on ISO 27001 policies, IAM control assessments, and PCI DSS compliance activities, plus patch management, security audits, and penetration test support.
Experience
Work history, roles, and key accomplishments
Cloud Security Specialist
Kering South East Asia
Aug 2023 - Present (2 years 11 months)
Manage the implementation of Wiz CSPM and multi-cloud risk remediation, including security governance and exception handling. Act as security advisor for cloud migration initiatives and support AI-related cloud risk reviews while leading a Cloud Security Data Product roadmap and governance.
Conducted cloud security posture management activities and performed security risk assessments integrating security into projects. Designed and implemented a risk-based project security framework and led project/application ownership for an anonymization solution, including workstation security hardening and Active Directory security audits.
Cybersecurity Consultant
Almond
Oct 2019 - Sep 2021 (1 year 11 months)
Conducted security risk assessments and integrated security into projects, contributing to a risk-based project security framework. Developed security assurance plans and supplier requirements, created/managed ISO 27001 policies, and assessed IAM controls and access rights.
Apprentice Operational Security Engineer
Credit Agricole Payment Services
Sep 2018 - Sep 2019 (1 year)
Performed ongoing PCI DSS compliance controls and coordinated patch management activities with remediation follow-up. Supported security audits and penetration tests and participated in security project management activities.
Education
Degrees, certifications, and relevant coursework
ITESCIA
Master of Engineering in Cybersecurity, Cybersecurity
2016 - 2019
Master of Engineering in Cybersecurity from ITESCIA, a program labeled ANSSI SecNumEdu. Covered advanced cybersecurity topics as part of the university engineering curriculum.
IUT Ville d'Avray
University Diploma of Technology, Electrical Engineering
2014 - 2016
University Diploma of Technology (IUT) in Electrical Engineering with a focus on Industrial Computing at IUT Ville d'Avray.
Tech stack
Software and tools used professionally
Availability
Location
Authorized to work in
Job categories
Skills
Interested in hiring Rachid?
You can contact Rachid and 90k+ other talented remote workers on Himalayas.
Message RachidGet matched with your dream remote job
Sign up now and join over 250,000+ remote workers who receive personalized job alerts, curated job matches, and more for free!
