Freelancer profile translated to English.

Description

My passion for IT security is my driving force to continuously learn, sharpen my technical skills, and contribute my knowledge and experience to the professional world for the strengthening of information security. After several experiences in operational security such as firewall administration, antivirus solutions, PCI-DSS exercises...

I was able to integrate the purely cybersecurity field as a SOC Analyst by carrying out several projects, partly Build as well as RUN activities.

Languages

French
Native or bilingual

Workplace preferences

Can work on-site

Paris (up to 50km)

Orange Cyberdefense
Soc Analyst
DIGITAL AND IT
December 2022 - Today (3 years and 6 months)
Paris, France
- Handling of incidents escalated from the Crédit Agricole SOC for all entities.
- Qualification, analysis, and investigation of incidents within the RSA and SentinelONE SIEM.
- Interventions, digital investigation, and incident response.
- Analysis of phishing emails and malware.
- Communication of different types of alerts to CISOs and concerned teams.
- Enrichment of reflex sheets and SOC procedures.
- Whitelisting and modification of detection rules in the BUILD part.
- Analytical mindset and rigor
- Sense of confidentiality
- Anticipation, reactivity, and alerting capacity
- Technological watch
Société Générale
SOC Analyst
DIGITAL AND IT
January 2019 - October 2022 (3 years and 9 months)
Casablanca, Morocco
• Handling of incidents escalated from SOC L1/L2 for all African subsidiaries.
• Qualification, analysis, and investigation of incidents on the managed platforms.
• Communication of alerts to subsidiary CISOs regarding intrusions and compromises of infrastructures, applications, and operating systems.
• Interventions, digital investigation, and incident response.
• Enrichment of reflex sheets and SOC procedures.
• Improvement of incident response procedures, playbooks, use cases, and SIEM RSA rule tuning.
• Analysis of phishing emails and malware.
• International asset supervision.
• Continuous supervision and analysis of: Data Protection (DLP, Varonis, Guardium, FIM), WEB intrusions and attacks (IPS, WAF..), Endpoints (Antivirus, RDE, SIEM...)
Banque populaire MAROC
Security and Network Engineer
DIGITAL AND IT
July 2017 - February 2018 (8 months)
Casablanca, Morocco
. Administration of Firewalls “CheckPoint”, “Juniper”, “Fortigate”
. Administration of the audit, trust, and traceability solution “Wallix BASTION”.
. Operation & Analysis of mailing traffic at the ClearSwift mail gateway, and the IMSVA Trend-Micro AntiSpam.
. Administration and management of the “F-Secure” Antivirus platform.
. Operation of the “BMC Client Management Numara” platform.
. Administration and management of IT park nodes “BMC Client Management (Numara)”.
. Operation of the ForcePoint “WebSecurity” platform.
. SIEM Management (Qradar).
. Technical operation of the “Nexpose” vulnerability management platform.
. Patch approval via WSUS.
. Contribution to penetration testing and vulnerability correction within the framework of 3D-Secure and PCI-DSS certification.
. Implementation of an Anti-DDoS device for protection.
. N2 Administrator of the PKI electronic signature management platform.