Azzedine H.

SECOPS engineer in an international context within the Infrastructure team for the HOLDINGS entity of SONEPAR for the implementation and management of operational security solutions, and also associated documentation to ensure the protection of the company's IT assets, their supervision, and preventive actions.

• Validation of traffic openings based on ENGIE's security policy and group directives, validation of proxy URL whitelists, validation of security & cybersecurity prerequisites for projects, etc.

• Preparation of audits and pentests: setting up prerequisites, planning with technical teams (GEMS infrastructure team, business application development team & ENGIE IT team).

• Analysis of vulnerability alerts (from vulnerability scanners, intelligence services, and technical audits): verification of alert validity in collaboration with the GSOC, identification of the scope of responsibility, technical analysis, identification of stakeholders, definition of corrective actions.

• Support and follow-up with various teams (operations, development, etc.) for different vulnerabilities and their compliance through a remediation plan.

• Management of exceptions and follow-up of compliance with technical teams on a remediation plan.

• Management of the implementation of business applications on the "Yes We Hack" platform for Bug Bounty hunting.

• Implementation and management of continuous improvement plans for various cross-cutting vulnerabilities.

• Technical referent for Prisma Cloud by Palo Alto (CSPM) for Azure & AWS Cloud compliance, implementation of our GEMS entity's compliance policy, management of security exceptions, etc.

• Implementation of steering and reporting tools (PingCastle, BitSight, and Microsoft Power BI) and dashboards on vulnerability management.

• Management of the policy, configuration, updates, and alert analysis for CrowdStrike EDR and Tenable.

• Leading SECOPS meetings with infrastructure & development teams for vulnerability tracking.

• Technological watch on vulnerabilities that could affect our scope of responsibility.

- Leading Wallix Workshops with the presentation of the Wallix Bastion solution and all possible product functionalities to clients.

- Remote installation and configuration of the Wallix solution for various clients with the requested functionalities SM, PM, HA, dual authentication (Trustelem).

- Writing DAT, DEX, and DIN for the Wallix solution implemented for clients according to the package chosen by the client.

- Wallix support for processing, tracking, and resolving requests, incidents, and problems referred to as "CASEs".