Regent Vaillancourt

Experience

• 

  Sûreté du Québec

  Jan 2005 - Jan 2008

  Team Leader and Contract Agent – Telecommunications and Security Specialist

  • Manage the customer relationship (negotiation, prospecting, business cases, etc.).• Provide coaching, support and training to team members and client employees.• Manage timesheets and budget envelope.• Monitor projects and manage costs.• Be a member of the change management committee.• Track diagnostic requests and tickets for all 175 offices.• Track requests and diagnostic tickets with multiple vendors.

• 

  SNC-Lavalin

  Jan 2008 - Jan 2009

  Specialist in telecom technology solutions and security (as a consultant)

  • Collect business requirements and propose secure solutions for network expansion, integration and enhancement based on business needs and engineering projects worldwide.• Research and find solutions to design, implement, and operationalize the company's telecommunications infrastructure in accordance with the guidelines of the architecture team.• Identify and document the configurations of the components in place or to be installed.• Collaborate with the implementation team in the deployment of solutions.• Train technicians and analysts during the implementation of the proposed solutions. Show less

• 

  Loto-Québec

  Jan 2009 - Mar 2011

  Tactical Risk Security Analyst (as a consultant)

  • Identify the threats and vulnerabilities of the various assigned projects.• Create risk profiles and analyze risks.• Validate compliance with access policies, encryption, etc.• Assume an advisory role as a security specialist.• Verify compliance and effectiveness of controls.

• 

  Banque Nationale du Canada

  Jan 2011 - Jan 2012

  Chief Information Security/Liaison Officer (as a consultant)

  • Act as the single point of contact with the customer regarding security as defined in the contract.• Operationalize the interpretation of contractual clauses and delimit the scope of requirements in order to limit the operational impacts of the customer and the financial impacts as a supplier.• Participate in the resolution of any security issues between the customer and Bell.• Ensure that the security control objectives set out in the contract are communicated and understood by the responsible internal Bell groups.• Ensure that internal Bell groups provide the appropriate reports to the Liaison Officer to communicate to the customer (metrics).• Ensure that the operational teams establish an action plan when corrective measures were necessary.• Verify that processes, procedures, guides and security controls are in place.• Recommend and guide operational teams towards the required level of security.• Inform the customer of the general security situation.• Inform the customer of the state of things during a security incident and advise the operational teams for the application of patches, if necessary.• Review existing security and controls.• Coordinate verification activities related to contractual obligations (chapter 5970, dashboards and other security requirements).• Liaise with Bell Security Department. Show less

• 

  Université de Sherbrooke

  Sept 2011 - May 2018

  Lecturer - 2nd cycle

  Taught the 2nd cycle course "Project management in IT governance"Director of intervention with candidates for the Master's degree in Governance, Audit and Security

• 

  Loto-Québec

  Mar 2012 - May 2013

  Information Security Operations Manager

  • Provide leadership and exceptional customer service to all business units.• Identify potential improvements in operations and ensure the application of permanent fixes.• Implement the strategic plan by launching various initiatives.• Manage all aspects of the department, including budget planning and monitoring, recruitment and staffing, calls for tenders, annual appraisal and other management tasks.• Contribute to major projects specific to the sector.• Act as a member of the mobilization team.• Design and monitor action plans to meet security and compliance needs.• Participate in obtaining PCI-DSS, ISO27001 and WLA certifications.• Design the team's growth plan and follow it up to achieve the desired level of knowledge and skills.• Perform risk analysis related to lotteries, online games, money laundering and regulations related to the gaming industry. Show less

• 

  WSP

  May 2013 - Dec 2015

  Information security manager

  • Establish and maintain strong working relationships with stakeholders involved in information security (31,000 employees, over 300 international offices).• Design and deploy a comprehensive security program outlining policies, procedures and guidelines.• Align initiatives with business strategies and security policies.• Create and organize an international vulnerability management committee.• Ensure information security efforts are consistent and compliant across the organization and ensure non-duplication of efforts.• Assess the security and controls in place by identifying weaknesses and security gaps and define an action plan.• Create strategic alliances with agency leaders through the Governance Committee resulting in enhanced security maturity and a better security culture.• Act as a security expert when required in order to achieve massive savings on external consultation. Show less

• 

  Hydro-Québec

  Jan 2016 - Oct 2020

  Information Security Advisor (as a consultant)

  • Carry out IT/OT risk analyses.• Establish IT/OT functional security needs.• Put in place a set of skills, techniques and practices to properly define, plan, supervise, coordinate and execute cybersecurity activities for two major files: the new data processing center and the implementation of a private cloud .• Perform compliance gap analyses.• Perform vulnerability analyzes and assist in the preparation of action plans.

• 

  Énergir

  Nov 2020 - Oct 2022

  Information Security Advisor (as a consultant)

  • Carry out IT/OT risk analyses.• Establish a set of skills, techniques and practices to properly define, plan, oversee, coordinate and execute the cybersecurity activities of the SAP solution modernization program.• Telus Sherpa GRC software .• Accompany the geomatics team during the implementation of various solutions.• Implement secure development processes.• Prepare penetration testing scopes.

• 

  Mdf commerce

  Oct 2022 - Apr 2023

  Vice President of Information Security

  • Provide organizational leadership of enterprise information security.• Develop and improve the information security management framework.• Understand business lines and related disciplines to interact with them and thus ensure the consistent application of policies, standards and best practices in all technology projects, systems and services.• Collaborate with stakeholders across the business to raise awareness of risk management issues.• Lead audit and compliance initiatives (PCI, SOC, NIST, etc.).• Lead training and awareness initiatives. Show less

• 

  Indépendant

  Oct 2023 - now

  Conseiller en cybersécurité (actuellement en mandat)