By clicking on “Accept all cookies”, you agree that cookies may be stored on your device in order to improve site navigation, to analyze the use of the site and to contribute to our marketing efforts. Check out our privacy policy for more information.

Preferences
RefuseAccept
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
icone fleche gauche
Return
icone fleche gauche
icone fleche droite
Security by Design
+ 2000 employees
Banking and Insurance

MGEN: Moving Beyond Excel to Professionalize Cyber Risk Management

As a major player in social protection, MGEN has transformed its cyber risk management strategy by adopting Egerie as its core GRC platform. The days of complex, rigid Excel files are gone — replaced by a streamlined, continuous approach that benefits both internal teams and external auditors, particularly in the context of ISO 27001 certification.
Florian Bourdon
Cyber GRC Expert, MGEN
Bouton Lecture
Watch
The challenge

Certified under ISO 27001 since 2018, MGEN previously managed its risk analysis using a hybrid Excel file based on EBIOS 2010 and EBIOS RM. Maintained annually by external consultants, the document was complex, difficult to update, and not well-suited for operational needs.

MGEN needed to:

- Regain full ownership of risk analysis.

- Centralize and secure governance data.

- Shift from a siloed, annual process to a strategic, day-to-day practice.

The solution

Following a successful pilot phase, MGEN selected the Egerie platform, convinced by its:

- User-friendly interface and strict adherence to EBIOS RM.

- Capacity to become a daily, central GRC tool.

- Clear, interactive dashboards that bring value during audits and internal reviews.

- In 2024, MGEN transitioned all its risk analyses to EGERIE and expanded its use to new areas: compliance with the French national information security policy (PSSI), monitoring of the cyber program, awareness planning, and more.

The results

Lighter, ongoing updates: No more heavy annual updates — the process is now continuous and under control.

Increased professionalism: Egerie supports internal communication, drives engagement, and stands out during audits.

Strategic steering: Smooth monitoring of the cyber program, collaborative updates, and centralized data.

Improved maturity: Stronger risk awareness, closer interactions with project teams, and progressive integration of regulatory frameworks like DORA, PSSI, and HDSv2.

"What’s great about Egerie is how everything is connected. If we change something at the beginning of the analysis, the whole chain updates automatically. It saves us a huge amount of time and makes our work much more relevant."
Florian Bourdon
Cyber GRC Expert, MGEN
Key figures

No Excel since the start of 2024: 100% managed in Egerie

10+ potential GRC users over time

1 single tool to centralize cyber governance

ISO 27001 audit 2024: risk management cited as a key strength by the auditor

TESTIMONIES

You may be interested in this content

Every business has its challenges. Learn how our solutions have helped our customers overcome them and strengthen their cybersecurity.

Discover the use cases
As a major player in social protection, MGEN has transformed its cyber risk management strategy by adopting Egerie as its core GRC platform. The days of complex, rigid Excel files are gone — replaced by a streamlined, continuous approach that benefits both internal teams and external auditors, particularly in the context of ISO 27001 certification.
Florian Bourdon
Antoine Duchateau
Founder and CEO @Enteprise
MGEN: Moving Beyond Excel to Professionalize Cyber Risk Management
No Excel since the start of 2024: 100% managed in Egerie
10+ potential GRC users over time
1 single tool to centralize cyber governance
ISO 27001 audit 2024: risk management cited as a key strength by the auditor
Discover the use case
A leading financial institution in France, La Banque Postale serves individuals, businesses, and the public sector with a strong commitment to security and compliance. The organization overhauled its risk analysis methodology to improve efficiency, transparency, and its overall risk culture.
François Sopin
Antoine Duchateau
Founder and CEO @Enteprise
La Banque Postale: Scaling and Industrializing Cyber Risk Management
500+ risk analyses per year
4,996+ supporting assets identified
5,702+ security safeguards mapped
1,769 risk scenarios modeled
Discover the use case
How do you turn a regulatory constraint into a catalyst for cybersecurity performance? That’s the challenge the Hospices Civils de Lyon (HCL) successfully met—with support from EGERIE—by launching a project that aligned their cybersecurity practices with ISO 27001 requirements, transforming compliance into a strategic asset rather than a mere obligation.
Béatrice Berard
Antoine Duchateau
Founder and CEO @Enteprise
Turning ISO 27001 into a Strategic Opportunity: Testimony from Hospices Civils de Lyon
ISO 27001 certification achieved on the pilot perimeter, with subsequent broader rollout.
40+ risk analyses conducted and centralized
1 unified risk assessment supporting multiple frameworks (HDS, ISO 27001, etc.)
4 platform users
Discover the use case
MGEN: Moving Beyond Excel to Professionalize Cyber Risk Management
As a major player in social protection, MGEN has transformed its cyber risk management strategy by adopting Egerie as its core GRC platform. The days of complex, rigid Excel files are gone — replaced by a streamlined, continuous approach that benefits both internal teams and external auditors, particularly in the context of ISO 27001 certification.
No Excel since the start of 2024: 100% managed in Egerie
10+ potential GRC users over time
1 single tool to centralize cyber governance
ISO 27001 audit 2024: risk management cited as a key strength by the auditor
Découvrir le cas d’usage
La Banque Postale: Scaling and Industrializing Cyber Risk Management
A leading financial institution in France, La Banque Postale serves individuals, businesses, and the public sector with a strong commitment to security and compliance. The organization overhauled its risk analysis methodology to improve efficiency, transparency, and its overall risk culture.
500+ risk analyses per year
4,996+ supporting assets identified
5,702+ security safeguards mapped
1,769 risk scenarios modeled
Découvrir le cas d’usage
Turning ISO 27001 into a Strategic Opportunity: Testimony from Hospices Civils de Lyon
How do you turn a regulatory constraint into a catalyst for cybersecurity performance? That’s the challenge the Hospices Civils de Lyon (HCL) successfully met—with support from EGERIE—by launching a project that aligned their cybersecurity practices with ISO 27001 requirements, transforming compliance into a strategic asset rather than a mere obligation.
ISO 27001 certification achieved on the pilot perimeter, with subsequent broader rollout.
40+ risk analyses conducted and centralized
1 unified risk assessment supporting multiple frameworks (HDS, ISO 27001, etc.)
4 platform users
Découvrir le cas d’usage
Discover our platform

Lorem Ipsum dolor sit amet, consectetur adipiscing elit, sed do eiusmod temporincididunt ut labore and Dolore Magna aliqua.

Request a demo