By clicking on “Accept all cookies”, you agree that cookies may be stored on your device in order to improve site navigation, to analyze the use of the site and to contribute to our marketing efforts. Check out our privacy policy for more information.

Preferences
RefuseAccept
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
icone fleche gauche
Return
icone fleche gauche
icone fleche droite
Compliance
Risk Management
+ 2000 employees
Banking and Insurance

La Banque Postale: Scaling and Industrializing Cyber Risk Management

A leading financial institution in France, La Banque Postale serves individuals, businesses, and the public sector with a strong commitment to security and compliance. The organization overhauled its risk analysis methodology to improve efficiency, transparency, and its overall risk culture.
François Sopin
Head of Department – Cybersecurity Direction
Bouton Lecture
Watch
The challenge

Facing a growing volume of risk analyses and aiming for certification, La Banque Postale needed to rethink its cybersecurity approach—making it more streamlined, reliable, and integrated into business operations. Manual risk assessments were no longer aligned with industry best practices, nor did they support the organization’s governance and scalability objectives.

The solution

La Banque Postale selected the EGERIE platform to industrialize its risk analysis processes.

Key objectives included digitizing workflows, standardizing methodologies while preserving flexibility, and fostering business team engagement through shared ownership.

By leveraging the built-in EBIOS Risk Manager methodology, ready-to-use templates, and a robust infrastructure, teams accelerated the delivery of risk analyses, promoted a culture of risk awareness, and managed action plans with a centralized 360° view—encompassing risks, safeguards, and treatment plans.

The results

– Over 500 risk analyses conducted annually, with increased speed thanks to the rapid deployment of preconfigured templates

– Standardized approach to risk analysis, based on platform-integrated models

– Centralized data for clear governance and greater visibility across all operational areas

– Smart delegation of responsibilities, enabling perimeter owners to manage their analyses and escalate transversal risks when necessary

– Improved decision-making and concrete dissemination of a cyber risk culture throughout the organization

"We all know there’s no business without risk. But we must be able to give business teams the right information so they can make the right decisions. And that’s exactly what we’re doing with Egerie."
François Sopin
Head of Department – Cybersecurity Direction
Key figures

- 500+ risk analyses per year

- 4,996+ supporting assets identified

- 5,702+ security safeguards mapped

- 1,769 risk scenarios modeled

TESTIMONIES

You may be interested in this content

Every business has its challenges. Learn how our solutions have helped our customers overcome them and strengthen their cybersecurity.

Discover the use cases
As a major player in social protection, MGEN has transformed its cyber risk management strategy by adopting Egerie as its core GRC platform. The days of complex, rigid Excel files are gone — replaced by a streamlined, continuous approach that benefits both internal teams and external auditors, particularly in the context of ISO 27001 certification.
Florian Bourdon
Antoine Duchateau
Founder and CEO @Enteprise
MGEN: Moving Beyond Excel to Professionalize Cyber Risk Management
No Excel since the start of 2024: 100% managed in Egerie
10+ potential GRC users over time
1 single tool to centralize cyber governance
ISO 27001 audit 2024: risk management cited as a key strength by the auditor
Discover the use case
A leading financial institution in France, La Banque Postale serves individuals, businesses, and the public sector with a strong commitment to security and compliance. The organization overhauled its risk analysis methodology to improve efficiency, transparency, and its overall risk culture.
François Sopin
Antoine Duchateau
Founder and CEO @Enteprise
La Banque Postale: Scaling and Industrializing Cyber Risk Management
500+ risk analyses per year
4,996+ supporting assets identified
5,702+ security safeguards mapped
1,769 risk scenarios modeled
Discover the use case
How do you turn a regulatory constraint into a catalyst for cybersecurity performance? That’s the challenge the Hospices Civils de Lyon (HCL) successfully met—with support from EGERIE—by launching a project that aligned their cybersecurity practices with ISO 27001 requirements, transforming compliance into a strategic asset rather than a mere obligation.
Béatrice Berard
Antoine Duchateau
Founder and CEO @Enteprise
Turning ISO 27001 into a Strategic Opportunity: Testimony from Hospices Civils de Lyon
ISO 27001 certification achieved on the pilot perimeter, with subsequent broader rollout.
40+ risk analyses conducted and centralized
1 unified risk assessment supporting multiple frameworks (HDS, ISO 27001, etc.)
4 platform users
Discover the use case
MGEN: Moving Beyond Excel to Professionalize Cyber Risk Management
As a major player in social protection, MGEN has transformed its cyber risk management strategy by adopting Egerie as its core GRC platform. The days of complex, rigid Excel files are gone — replaced by a streamlined, continuous approach that benefits both internal teams and external auditors, particularly in the context of ISO 27001 certification.
No Excel since the start of 2024: 100% managed in Egerie
10+ potential GRC users over time
1 single tool to centralize cyber governance
ISO 27001 audit 2024: risk management cited as a key strength by the auditor
Découvrir le cas d’usage
La Banque Postale: Scaling and Industrializing Cyber Risk Management
A leading financial institution in France, La Banque Postale serves individuals, businesses, and the public sector with a strong commitment to security and compliance. The organization overhauled its risk analysis methodology to improve efficiency, transparency, and its overall risk culture.
500+ risk analyses per year
4,996+ supporting assets identified
5,702+ security safeguards mapped
1,769 risk scenarios modeled
Découvrir le cas d’usage
Turning ISO 27001 into a Strategic Opportunity: Testimony from Hospices Civils de Lyon
How do you turn a regulatory constraint into a catalyst for cybersecurity performance? That’s the challenge the Hospices Civils de Lyon (HCL) successfully met—with support from EGERIE—by launching a project that aligned their cybersecurity practices with ISO 27001 requirements, transforming compliance into a strategic asset rather than a mere obligation.
ISO 27001 certification achieved on the pilot perimeter, with subsequent broader rollout.
40+ risk analyses conducted and centralized
1 unified risk assessment supporting multiple frameworks (HDS, ISO 27001, etc.)
4 platform users
Découvrir le cas d’usage
Discover our platform

Lorem Ipsum dolor sit amet, consectetur adipiscing elit, sed do eiusmod temporincididunt ut labore and Dolore Magna aliqua.

Request a demo