You're seeing this page as if you were . The main menu is still yours, though. Exit from immersion
Mohamed AttiaMA

Mohamed Attia

Cloud Security Engineer, M365 and IAM #Readytohelp

€650/day
Ampuis, FR
8-15 years

Average response time: 1 hour

Freelancer profile translated to English.
Back to original language

About Mohamed

After 10 years of experience as a Cybersecurity Engineer with my various clients: ENEDIS, CNAM, CNSA, FRAMATOME, CAGIP, I am launching into freelance missions in Cybersecurity/Administration in Cloud environments.

In addition to my skills in IS security governance and security risk analysis, I am currently continuing to deepen my knowledge in Cloud security, particularly Azure:
- Securing the Azure AD tenant and privileged accounts: Conditional Access, Just in Time (JIT), Privileged Identity Management (PIM)
- Designing an authorization model in the Azure AD/M365 ecosystem in consultation with technical and operational referents

My professional ambitions are to continue strengthening my skills in Cloud security and administration.
  • French

    Native or bilingual

  • English

    Fluent

  • German

    Basic

  • Arabic

    Native or bilingual

Can work on-site
Ampuis (up to 50km), Lyon (up to 15km), Saint-Étienne (up to 50km)

Experience

  • Capgemini
    Cybersecurity Consultant
    CONSULTING AND AUDITS
    November 2020 - Today (5 years and 9 months)
    Lyon, France
    - Design and validation of the authorization model in the Azure AD/M365 ecosystem in consultation with technical and operational referents
    - Securing the Azure AD tenant and privileged accounts: Conditional Access, Just in Time (JIT), Privileged Identity Management (PIM)
    - Definition, validation, and implementation of the Azure AD role assignment policy according to privileges and role scope
    - Management of the identity and admin access lifecycle and privileged accounts on the Azure tenant: Review, remediation, etc.
    - L3 Support for IAM USERCUBE, MAINFRAME, and M365 incidents and requests
    - Design and development of technical and functional IAM evolutions
    - Execution of POCs and integration of security solutions.
    - Writing and updating technical guides and security procedures.
    - Network audit and recommendation of security measures.
    - Identification of the client group's public IPs and assessment of their external exposure. Recommendation for strengthening external DNS services & Cloud Web Filtering.
    - Audit & recommendation for remediation of filtering rules in compliance with the group's security policy.
    - Review and compliance of the PAS (Security Assurance Plan) in accordance with client requirements.
    - Security review of the application contract with the Cloud provider.
    - Compliance monitoring and gap analysis against client security requirements.
    - Consolidation of project security indicators.
    - Facilitation of workshops for securing the development environment: docking, access rights, etc.
    Azure AD USERCUBE M365 Information Security Cybersecurity Mainframe Powershell Identity and Access Management (IAM) Security Assurance Plan Cloud Security Microsoft Entra ID
  • ENEDIS (Ex ERDF)
    Cybersecurity Consultant
    ENERGY AND UTILITIES
    September 2018 - October 2020 (2 years and 2 months)
    Nanterre, France
    • Project support for various adopted solutions (Cloud and Managed Services AWS, Microsoft Azure, Docker/Khadock, Linux RHEL, CentOS, Windows Server, AIX, Citrix, BigData, …)
    • Security analysis of application and infrastructure architecture files:
    - Verification of compliance with PSSI and firewall policy.
    - Verification of architecture consistency with DICT criteria (Availability, Integrity, Confidentiality, Traceability) and security needs.
    - Proposal of security recommendations and remediation plans for security risks and vulnerabilities.
    - Analysis of security derogation requests.
    • Security Consulting/Expertise:
    - Architecture studies, Project support.
    - Technical recommendations, Watch, state of the art.
    - Assistance with consultations - identification of security requirements.
    - Writing and validation of the security section of CCTPs (Technical Consulting and Services Contracts).
    • Management of vulnerability reviews:
    - Coordination of different stakeholders (CISO, auditors, business units, editors, etc.).
    - Analysis of security needs and implemented measures.
    - Penetration testing, Checkmarx code audit, and technical security analysis.
    Cybersecurity Risk Analysis IS Governance ISO 27001 ISO 27005 EBIOS Amazon Web Services Microsoft Azure Docker Linux Windows Server AIX Big Data Citrix Audit
  • DRIVE
    Cybersecurity Engineer
    ENERGY AND UTILITIES
    October 2014 - June 2018 (3 years and 8 months)
    Nevers, France
    - Support for the implementation of the information system security policy.
    - Risk analysis, definition of use-cases and attack scenarios.
    - Development of intrusion detection systems (IDS) in the sensor network.
    - Deployment of IDS in the sensor network (implementation in C/C++ language) and configuration of the gateway to receive alerts (development in Python).
    - Firewall configuration and shell script development to secure the information system (under Linux).
    - Configuration of Cisco routers and switches.
    - Design of smart grid architectures with hierarchical IDS deployment (distributed and centralized).
    Cybersecurity Risk Analysis IS Governance Firewall Cisco IDS/IPS C Python C++ Linux

Recommendations

Be the first to recommend Mohamed

Help this freelancer shine by sharing your experience working together.

These freelancer profiles also match your criteria

AgathaA

Agatha Frydrych

Backend Java Software Engineer

4.7

(3)

2

BaptisteB

Baptiste Duhen

Fullstack developer

4.6

(4)

5

AmedA

Amed Hamou

Senior Lead Developer

4

(2)

7

AudreyA

Audrey Champion

Web developer

4.3

(3)

4

Education

  • Computer Science, Networks, and Security Engineer
    Télécom Nancy
    2014

Certifications

Skill set

Categories