Freelancer profile translated to English.
Back to original languageAbout Ha
Cybersecurity Expert & Architect
9 years of experience
Certified ISO 27001, Phishing Prevention Specialist (CPPS), Splunk Certification, Palo Alto cybersecurity
Good command of incident response & Forensics, Vulnerability Management (Nexpose, Nessus, Qualys), SIEM (Qradar,
Splunk, Sentinel) Anti-Malware (Trend-Micro), Threat Intel (MSIP), Pentest, Cybersecurity Awareness, Phishing Simulation, Business Continuity, Disaster Recovery, Cloud Security (Azure), Microsoft Defender XDR, Fortinet, Palo Alto, EDR
Symantec, Bitdefender, CrowdStrike, GRC (ISO27001, SOC2, DORA)
French
Native or bilingual
English
Fluent
Can work on-site
Paris (up to 50km)
Experience
- Présent chez Blauwtrust Groep (Groupe HollandaisFinancial LeadJanuary 2022 - Today (4 years and 5 months)• Incident Response: Incident investigation with Microsoft XDR, drafting Lessons Learned reports, creating Ransomware Playbook, coordinating corrective actions.• Vulnerability and Anti-Malware Management: regular scans, qualification, prioritization based on business criticality, cross-team coordination (IT, Dev, Data), and remediation plan implementation.• Performing and executing Pentests and Security Assessments: planning, testing, analysis, and remediation of vulnerabilities, secure code audit, and Dev/DevOps awareness of best practices (OWASP, SDLC).• Azure Access and Security Management: configuration of Conditional Access policies, MFA, device compliance, monitoring of sensitive accounts and permissions, identification and remediation of gaps.• SIEM Administration and Supervision: log collection and correlation, proactive detection of anomalies and incidents, optimization of rules and alerts, operational and strategic reporting.• Phishing Simulations, Awareness, Cybersecurity Onboarding, distribution of materials via SharePoint.• Implementation of the ISMS: ISO27001, integration of SOC2 and DORA requirements, and preparation for external audits.
- Numeryx (Intégrateur des solutions sécurité)Cybersecurity Tech Lead & Deputy CISOFebruary 2019 - December 2021 (2 years and 10 months)I participated in cybersecurity and IT infrastructure projects, including the implementation of the ISMS and ISO 27001:2022 certification, vulnerability management, conducting web and infrastructure pentests, and deploying EDR, cloud SOC, and IAM solutions. I also contributed to the development of an NGFW firewall, performed penetration tests, and integrated a Suricata IPS/IDS solution for log supervision and analysis.
- AdvanciaCybersecurity EngineerMarch 2017 - January 2019 (1 year and 10 months)Context: I participated in conducting cybersecurity and IT infrastructure projects for several clients. My role consisted of strengthening the security and resilience of critical environments, particularly through protection against ransomware attacks, conducting resilience tests, and implementing security solutions (EDR, firewall, Active Directory, DNS). I also ensured the supervision and monitoring of critical systems as well as virtualized environments (Hyper-V, VMware, KVM), contributed to the implementation of business continuity and disaster recovery plans (BCP/DRP) with crisis scenario simulations, and developed dashboards and reports intended to provide clients with clear visibility on performance and security indicators.
Recommendations
Be the first to recommend Ha
Help this freelancer shine by sharing your experience working together.
These freelancer profiles also match your criteria
Agatha Frydrych
Backend Java Software Engineer
4.7
(3)
2
Baptiste Duhen
Fullstack developer
4.6
(4)
5
Amed Hamou
Senior Lead Developer
4
(2)
7
Audrey Champion
Web developer
4.3
(3)
4
Education
- Certified ISO 27001, Phishing Prevention Specialist (CPPS), Splunk CertificationCertifié ISO 27001, Phishing Prevention Specialist (CPPS), Splunk Certification
- Ecole Esprit2017