Freelancer profile translated to English.
Back to original languageAbout Bou Mohamed
Information system security and cybersecurity professional with 8 years of experience.
I support companies on the following topics:
➢ Functional Expertise
- Security Management ISO 27001 approach and security project management
- Governance Risk Compliance
- Risk Management applying ISO 27005 and EBIOS RM approaches
- Knowledge of cybersecurity standards and technologies
- Integration of Security in projects with GDPR compliance and SDLC approach for
development
- Organizational security audit, security level assessment, and gap analysis.
- Consulting, services, and research
➢ Technical Expertise
- Encryption – PKI (Adaptation of regulatory constraints, Key selection, Cryptographic primitives)
- Design and deployment of secure architectures and security solutions
- Technical security audit, configuration audit, and gap analysis.
- Application, system, and network security
- Hardening of OS, applications, and network equipment
- Cloud security
- Integration of security solutions
- Comparative studies of security solutions and POC
French
Native or bilingual
Can work on-site
Paris (up to 50km)
Experience
- Milleis Banque PrivéeSecurity and Infrastructure ArchitectBANKING AND INSURANCEMay 2025 - Today (1 year and 1 month)Paris, FranceManagement of the implementation of a reconstruction site independent of the central and secondary site for resilience against ransomware attacks:- Architecture definition- Comparative study of hardware and virtualization solutions- Definition of the step-by-step reconstruction sequence- Drafting of reconstruction procedures- Expression of needs for calls for tender and analysis of bids for solution procurement.- Definition of WORM policies
- Trésor Public SénégalImplementation of the SOC for the Public Treasury of SenegalPUBLIC SECTORMay 2024 - April 2025 (11 months)Dakar, SenegalManagement of SOC Governance and Project Management- SOC Project Governance & Management- Design and implementation of Security Operations Centers (SOC).- Development of technical roadmaps, deployment plans, performance indicators (KPI, SLA).- Project management in MOE mode: technical scoping, implementation supervision, quality/cost/deadline monitoring.- Coordination of stakeholders: IT Department, CISO, technical teams, partners, and national authorities.SOC Technical Expertise- Architecture and integration of SOC platforms: SIEM, correlation and investigation tools.- Integration of log flows (network, endpoints, AD, servers, firewalls, proxies).- Definition and automation of detection and response processes (playbooks, alerting, escalation).- Design of secure monitoring and investigation environments (isolated zones, DMZ, Sandbox).
- Société Générale SGSNIS Security Correspondent and SPOC for the integration of the NIST Cybersecurity FrameworkBANKING AND INSURANCEApril 2024 - May 2025 (1 year and 1 month)Dakar, Senegal- Organization of the IS security management system, its implementation, and monitoring- Planning, organizing, and monitoring actions resulting from audits in collaboration with the CISO and operational teams- Evaluation and integration of NIST controls for the SGSN subsidiary- Security Governance- Consulting, assistance, information, training, and promotion within the operational security scope
Recommendations
Be the first to recommend Bou Mohamed
Help this freelancer shine by sharing your experience working together.
These freelancer profiles also match your criteria
Agatha Frydrych
Backend Java Software Engineer
4.7
(3)
2
Baptiste Duhen
Fullstack developer
4.6
(4)
5
Amed Hamou
Senior Lead Developer
4
(2)
7
Audrey Champion
Web developer
4.3
(3)
4
Education
- Master 2 Pro in Security of Content, Telecommunication Networks, and Systems (SeCReTS)University of Versailles Saint Quentin - Yvelines2014Suivre le master SeCReTS, c'est : Bénéficier d’une formation de pointe sur les aspects fondamentaux et appliqués de la cybersécurité Acquérir une expertise aussi variée que l’architecture de sécurité des systèmes et des réseaux, la spécification d’algorithmes cryptographiques, le développement logiciel sécurisé, la détection et la réponse aux attaques, l’évaluation matérielle et logicielle, les politiques de sécurité, les aspects juridiques, etc. Être solidement armé pour anticiper l’évolution de la menace, qui est en constante évolution, et répondre aux enjeux opérationnels associés à la SSI des programmes actuels et futurs, dans un contexte d’évolution rapide des technologies. Les étudiants du master SeCReTS bénéficient, depuis sa création (2006), des enseignements dispensés par des chercheurs internationalement reconnus (équipe LMV/CRYPTO à l'UVSQ, laboratoire d'expertise en SSI du CEA) et des professionnels incontournables du monde socio-économique (Orange, Thales, Airbus, Gemalto, ANSSI, Microsoft, DGA, ...) pour : Acquérir une véritable compréhension théorique et pratique de la cybersécurité (de manière à être capable d’approfondir ultérieurement les points clés de la formation au cours de la vie professionnelle, et de s’adapter aux évolutions futures). Acquérir une maîtrise des aspects concrets réellement utilisés dans l’industrie / les produits (de façon à pouvoir être immédiatement opérationnel dans l’industrie et à être concurrentiel sur le marché du travail). De nombreux travaux pratiques font partie de la formation, notamment sur les aspects systèmes (et administration système) et réseaux. Comprendre en profondeur et pratiquer le cycle « menaces --> protections / surveillance / exploitation --> corrections / modification de la politique de sécurité --> menaces… »
Certifications
- ISO/IEC 27001 Senior Lead ImplementerPECB2023
- ISO/IEC 27005 Senior Lead Risk ManagerPECB2023