By clicking on “Accept all cookies”, you agree that cookies may be stored on your device in order to improve site navigation, to analyze the use of the site and to contribute to our marketing efforts. Check out our privacy policy for more information.

Preferences
RefuseAccept
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
icone fleche gauche
Return
icone fleche gauche
icone fleche droite
Risk Management
ISO 27001
+ 2000 employees
Telecom

Orange Belgium: Scaling Risk Management Across the Group

With 286 million customers worldwide and operations in 26 countries, Orange places cybersecurity at the heart of its strategy. To meet increasing internal and external demands, the Group has implemented a unified, industrialized, and risk-based cyber governance program. Its Belgian subsidiary, Orange Belgium, builds on this foundation by using EGERIE to manage its ISO 27001 certification and enhance its cybersecurity posture.
François Zamora
Chief Security Officer, ORANGE, Division Europe
Bouton Lecture
Watch
The challenge

Given its complex international ecosystem, Orange aimed to:

Automate and standardize the identification and qualification of cyber risks

Involve business teams in a shared, structured risk management process

Centralize risk data to gain a consolidated view of the Group’s cybersecurity posture

Orange Belgium adopted the Group’s proven approach—already deployed in 12 countries—and made EGERIE its central GRC platform.

The solution

Deployed within Orange since 2013, the EGERIE platform supports a broad range of cybersecurity governance needs through:

Seamless access and large-scale adoption enabled by SSO integration

Advanced collaboration tools, including prequalification questionnaires and audit sharing

360° visibility into risks, controls, and action plans—consolidated at the Group level

Expert support delivered by a certified EGERIE partner

The results

Through the industrialization, centralization, and standardization of the risk analysis process, all teams are now aligned and working together under a unified methodology—resulting in more precise and reliable outcomes.The Group benefits from increased visibility into all risks across its ecosystem, enabling faster decision-making through automated recommendations for high-impact measures and a consolidated global view.Subsidiaries like Orange Belgium leverage the shared cyber GRC platform to support initiatives such as ISO 27001 certification, ensuring consistency and efficiency across the organization.

"Our goal is to align decision-makers’ perception of risk with actual threats—enabling smarter cybersecurity investments and effective risk management while ensuring compliance. EGERIE makes this alignment possible by connecting risk analysis to actionable insights and real-world budget constraints."
François Zamora
Chief Security Officer, ORANGE, Division Europe
Key figures

70% reduction in time spent on risk analysis processes

Harmonized governance through a single, standardized methodology adopted across all teams

Faster decision-making, driven by automated recommendations of high-impact measures

TESTIMONIES

You may be interested in this content

Every business has its challenges. Learn how our solutions have helped our customers overcome them and strengthen their cybersecurity.

Discover the use cases
As a major player in social protection, MGEN has transformed its cyber risk management strategy by adopting Egerie as its core GRC platform. The days of complex, rigid Excel files are gone — replaced by a streamlined, continuous approach that benefits both internal teams and external auditors, particularly in the context of ISO 27001 certification.
Florian Bourdon
Antoine Duchateau
Founder and CEO @Enteprise
MGEN: Moving Beyond Excel to Professionalize Cyber Risk Management
No Excel since the start of 2024: 100% managed in Egerie
10+ potential GRC users over time
1 single tool to centralize cyber governance
ISO 27001 audit 2024: risk management cited as a key strength by the auditor
Discover the use case
A leading financial institution in France, La Banque Postale serves individuals, businesses, and the public sector with a strong commitment to security and compliance. The organization overhauled its risk analysis methodology to improve efficiency, transparency, and its overall risk culture.
François Sopin
Antoine Duchateau
Founder and CEO @Enteprise
La Banque Postale: Scaling and Industrializing Cyber Risk Management
500+ risk analyses per year
4,996+ supporting assets identified
5,702+ security safeguards mapped
1,769 risk scenarios modeled
Discover the use case
How do you turn a regulatory constraint into a catalyst for cybersecurity performance? That’s the challenge the Hospices Civils de Lyon (HCL) successfully met—with support from EGERIE—by launching a project that aligned their cybersecurity practices with ISO 27001 requirements, transforming compliance into a strategic asset rather than a mere obligation.
Béatrice Berard
Antoine Duchateau
Founder and CEO @Enteprise
Turning ISO 27001 into a Strategic Opportunity: Testimony from Hospices Civils de Lyon
ISO 27001 certification achieved on the pilot perimeter, with subsequent broader rollout.
40+ risk analyses conducted and centralized
1 unified risk assessment supporting multiple frameworks (HDS, ISO 27001, etc.)
4 platform users
Discover the use case
MGEN: Moving Beyond Excel to Professionalize Cyber Risk Management
As a major player in social protection, MGEN has transformed its cyber risk management strategy by adopting Egerie as its core GRC platform. The days of complex, rigid Excel files are gone — replaced by a streamlined, continuous approach that benefits both internal teams and external auditors, particularly in the context of ISO 27001 certification.
No Excel since the start of 2024: 100% managed in Egerie
10+ potential GRC users over time
1 single tool to centralize cyber governance
ISO 27001 audit 2024: risk management cited as a key strength by the auditor
Découvrir le cas d’usage
La Banque Postale: Scaling and Industrializing Cyber Risk Management
A leading financial institution in France, La Banque Postale serves individuals, businesses, and the public sector with a strong commitment to security and compliance. The organization overhauled its risk analysis methodology to improve efficiency, transparency, and its overall risk culture.
500+ risk analyses per year
4,996+ supporting assets identified
5,702+ security safeguards mapped
1,769 risk scenarios modeled
Découvrir le cas d’usage
Turning ISO 27001 into a Strategic Opportunity: Testimony from Hospices Civils de Lyon
How do you turn a regulatory constraint into a catalyst for cybersecurity performance? That’s the challenge the Hospices Civils de Lyon (HCL) successfully met—with support from EGERIE—by launching a project that aligned their cybersecurity practices with ISO 27001 requirements, transforming compliance into a strategic asset rather than a mere obligation.
ISO 27001 certification achieved on the pilot perimeter, with subsequent broader rollout.
40+ risk analyses conducted and centralized
1 unified risk assessment supporting multiple frameworks (HDS, ISO 27001, etc.)
4 platform users
Découvrir le cas d’usage
Discover our platform

Lorem Ipsum dolor sit amet, consectetur adipiscing elit, sed do eiusmod temporincididunt ut labore and Dolore Magna aliqua.

Request a demo