We are currently updating the site, which may cause some errors. We apologize for any inconvenience.
Claude L’Arrivée possesses more than 35 years of combined working experience and credentials in the information technology industry, with a CISSP, CDPSE, CISA, and CRISC certifications, and extensive experience in the areas of information security governance, security architecture, policies and controls, risk management, compliance and security audit, privacy, forensics, and project management.
He is looking for the opportunity to contribute to the cyber security and privacy needs of your organization in a Senior role by defining and implementing a security governance, formulating security strategies, security enterprise framework and architecture, and performing security audit and risk assessments in-line with your industry and best practices.
Mr. L’Arrivée’s impressive list of both private and public clientele speaks volumes regarding his credibility. He possesses a tried and tested ability to take on a senior role in information security while considering and executing business process transformation to generate focused, accountable, measurable, and profitable security initiatives that are of the highest caliber.
o Services
- Cybersecurity and Privacy governance/framework
- Cloud security
- Security architecture and Privacy by design/by default
- Security assessment and authorization
- Risk assessment
- Audit and compliance
- Vulnerability management, ITSM
- Incident handling and forensics
- Supply chain security
- Supplier and vendor management
o Cloud security
- Platforms and technologies: Azure, Amazon Web Services (AWS), Dell, Google cloud, HPE, IBM, Oracle
- Integration and Delivery: DevOps >> DevSecOps, Continuous Integration/Continuous Deployment (CI/CD) pipeline architecture and security
- Azure and AWS IaaS and PaaS
- Orchestration and Containers technologies: Dockers, Kubernetes
- Databases: MySQL, PostgreSQL
- Data analytics: SAS, Data Analytics as a Service (DAaaS)
- Request for Information (RFI) and Request for Proposal (RFP)
o Compliance programs for - ISO27001 and 27017, PCI DSS, HIPAA, NERC, Cloud Security Alliance (CSA), Privacy frameworks
- Companionship and mentorship to achieve compliance
- PCI Self-Assessment Questionnaire (SAQs)
- Gap assessment and remediation
- Risk assessment
- Plan of Actions and Milestones (PoAM)
- Definition and implementation of Business Activities as Usual (BAU)
- Vulnerability scanning
o Standards and Compliance framework:
- Privacy laws and regulations: PIPEDA, EU GDPR, US Federal and States privacy laws, Australia and Asia/Pacific, APEC Privacy Framework
- ISO 27001 and 27017
- NIST SP 800-53
- Cloud Security Alliance (CSA): Cloud Control Matrix (CCM), Consensus Assessment Initiative Questionnaire (CAIQ), Security Trust and Assurance registry (STAR)
- PCI DSS 3.x
- NERC 3.x and 5.x
- HIPAA
- FedRAMP
- SSAE16 SOC3, SOC2 Type I and II, SOC1 Type I
- COBIT 5
o Clients:
- Business Development Bank of Canada (BDC)
- Canada Post
- Canada Revenue Agency (CRA)
- CGI
- Commission des Écoles Catholiques du Centre-Est (CECCE)
- Department of Fisheries and Oceans (DFO)
- Department of National Defense (DND)
- École de Technologie Supérieure (ETS)
- Global Affairs Canada (GAC)
- Hydro Québec (HQ)
- Infrastructure Technologique Québec (ITQ)
- Innovapost
- Loto Québec
- National Bank of Canada
- Privy Council Office (PCO)
- Public Services and Procurement Canada (PSPC)
- Queen’s University
- Samson et Associés
- Shared Services Canada (SSC)
- Statistics Canada
- University of Ottawa
- Vidéotron
- World Anti-Doping Agency (WADA)
Specialization: System Administrator
Specialization: Business Analyst, Process Analyst, Security Analyst, Business Continuity Planning (BCP) Consultant, Operations and Maintenance Consultant, Change Management Consultant, Implementation Consultant, Infrastructure Consultant, Methodology Consultant, Safety Consultant, Telecommunications / Networks Consultant, Strategic Consultant
Specialization: Enterprise Architect, Information Systems Architect, Security Architect, Technology Architect
Specialization: Trainer / Coach, Management – Project Manager, Management – Project Coordinator
Claude L'Arrivée
Les Entreprises Claude L'Arrivée Enterprises Inc.
"*" indicates required fields
