Ismael Nimzil

During this professional experience, I held a multifaceted role combining consulting, system design, deployment, and cybersecurity expertise.

I was involved in consulting activities related to the design, deployment, and industrialization of information systems. This included analyzing and defining customer requirements, advising and supporting clients during the design of information system architectures, and assisting in the definition of security policies. I was also responsible for the deployment and configuration of Linux-based security services, including system hardening and network filtering mechanisms (Firewalld, Iptables, Nftables). In addition, I integrated security solutions such as SIEM, IDS, and IPS, and contributed to the industrialization of information systems through update automation and the replication of clustered services.

In parallel, I participated in the organization and execution of cyber defense training exercises. My responsibilities included analyzing training needs, preparing and organizing exercises, and deploying dedicated cyber defense environments such as cyber labs and cyber ranges. I replicated customer infrastructures in laboratory environments to mirror production systems, conducted simulated attack campaigns, performed load testing on customer infrastructures, and facilitated cyber defense training sessions.

Finally, I contributed to research and development activities, focusing on software architecture design and the development of cybersecurity products and tools, both offensive and defensive.

During this experience, I worked as a DevSecOps Consultant, contributing to ON TIME, RUN, and BUILD missions focused on Linux security, automation, and security platform integration.

I conducted Linux patching audits and defined patch management policies, while developing Bash and Python scripts to automate data collection and build compliance dashboards (patching status, certificates, log collection). I performed security audits, including assessing the impact of potential Active Directory compromises (lateral movement, risks, hardening recommendations), auditing large website perimeters, and deploying USB control solutions. I also created threat detection rules based on Linux logs to identify security events such as reverse shells, privilege escalation, and credential exposure.

As part of a RUN mission, I operated the Tanium platform on the customer site, ensuring operational maintenance (updates, password rotation), managing tickets and support, planning operational tasks, and transferring knowledge to client teams.

In several BUILD missions, I integrated and configured major security solutions. This included the deployment of Algosec for firewall fleet management, where I contributed to RBAC design, flow opening processes, and workflow automation. I also integrated and configured Tanium modules (Patch, Deploy, Discover, Comply, Asset) on Linux environments, supporting the definition of patching, vulnerability management, and application deployment processes. Additionally, I participated in the integration of Microsoft Defender for Endpoint, designing RBAC, security and incident response policies, and configuring Antivirus, EDR, and Attack Surface Reduction policies.

This role allowed me to work across the full security lifecycle, combining DevSecOps