You're seeing this page as if you were . The main menu is still yours, though. Exit from immersion
Malt Strategy
New report
Malt Tech Trends 2026
Lahouani AbdelkbirLA

Lahouani Abdelkbir

Cyber Security Consultant | SOC/CSIRT Expert

€650/day
Paris, FR
3-7 years
SOC
SIEM
CSIRT
CTI
Vulnerability Management

Average response time: 1 hour

Freelancer profile translated to English.
Back to original language

About Lahouani

Experienced cybersecurity professional with 6 years of expertise in information system protection, I manage comprehensive cyber defense projects from design to operational implementation. My approach integrates SOC management, complex incident response, and advanced threat anticipation. I operate across the entire security chain: risk analysis, defining protection strategies, implementing technical solutions, and supervising operations. My cross-functional expertise covers both technical and organizational aspects, with a perfect command of regulatory frameworks and industry best practices. A strategic added value to strengthen your security posture while aligning it with your business objectives.

  • French

    Native or bilingual

  • English

    Fluent

  • German

    Basic

  • Arabic

    Native or bilingual

Can work on-site
Paris (up to 50km)

Experience

  • Caisse de dépôt et de Gestion (CDG)
    Information System Security Officer
    November 2023 - March 2025 (1 year and 4 months)
    Within the CDG Group's Information Security Department, I managed and optimized SOC activities through daily monitoring of cybersecurity alert processing with the external provider and by optimizing Group SOC activity. I provided L3 support for critical alerts and cybersecurity incidents, including skills transfer to external SOC analysts, participation in various cybersecurity solution deployment projects within the group's Cyber Defense Center, and integration of subsidiaries into the Group SOC.

    Mission:
    • In-depth investigation of critical incidents (L3)
    • Continuous optimization of detection rules (MITRE ATT&CK)
    • Management of compliance projects (ISO 27001, national standards)
    • Deployment and optimization of Cybersecurity Solutions.
    • Automation of SOC processes (SOAR orchestration)
    • Project management for subsidiary SOC integration (unified detection/response).
  • Veolia Water Technologies
    SOC Expert
    May 2023 - November 2023 (6 months)
    Context: At Veolia Water Technologies in Saint-Maurice, I contributed to improving cyber threat detection by implementing detection rules in Splunk and working on tuning the cybersecurity alerts received.

    Missions:
    • Log collection in Splunk SIEM.
    • Installation and configuration of Splunk Security Essentials.
    • Implementation and improvement of use cases with SPL in Splunk SIEM.
    • Processing of alerts from the VWT SOC and tuning of false positive alerts.
    • Creation of SOC KPI dashboards.
    • Development of templates, procedures, and playbooks for processing alerts from SOC solutions (SIEM, EDR, Threat Intelligence, etc.).
    • Participation in the organization of exercises and workshops on cyber incident response.
  • LUTESSA SAS
    SOC Engineer
    September 2022 - May 2023 (8 months)

    With the goal of strengthening cybersecurity, I was responsible for deploying Elastic SIEM on AWS and integrating log sources from various infrastructures and security tools. This mission involved optimizing threat detection processes, as well as implementing tools like SentinelOne EDR, MISP, and Armis Vulnerability Management to ensure proactive incident and vulnerability management.

    Mission:
    • Integration of log sources (Windows servers, Linux servers, databases, ESXi, Nutanix, SentinelOne EDR, UBIKA WAAP) into Elastic SIEM.
    • Design and testing of custom log parsers using regular expressions (regex) to extract structured fields from unstructured log data, thereby improving clarity and ensuring accurate event correlation.
    • Use of Atomic Red Team and Sigma Rules to implement and test use cases in Elastic SIEM.
    • Alignment and mapping with the MITRE ATT&CK framework to enhance threat detection and response capabilities.
    • Deployment and configuration of SentinelOne EDR. Deployment of MISP and OpenCTI to facilitate effective threat intelligence sharing and intrusion detection.
    • Optimization of filtering and tuning of false positives at the Ubika WAAP level, in alignment with OWASP Top 10 attacks.
    • Implementation and operation of the Armis Vulnerability Management solution for the identification and management of connected asset vulnerabilities.
Check out Lahouani's experience

Recommendations

Be the first to recommend Lahouani

Help this freelancer shine by sharing your experience working together.

These freelancer profiles also match your criteria

AgathaA

Agatha Frydrych

Backend Java Software Engineer

4.7

(3)

2

BaptisteB

Baptiste Duhen

Fullstack developer

4.6

(4)

5

AmedA

Amed Hamou

Senior Lead Developer

4

(2)

7

AudreyA

Audrey Champion

Web developer

4.3

(3)

4

Signup to reveal

Education

  • Engineering Degree in Networks and Telecommunications
    Diplôme d'Ingénieur en Réseaux et Télécommunications
  • ENSA
    National School of Applied Sciences.
    2019
    ENSA
Check out Lahouani's education

Skill set

Threat Detection and Response
ISO 27001

Categories