About Mohamed
French
Native or bilingual
English
Fluent
German
Basic
Arabic
Native or bilingual
Experience
- CapgeminiCybersecurity ConsultantCONSULTING AND AUDITSNovember 2020 - Today (5 years and 9 months)Lyon, France- Design and validation of the authorization model in the Azure AD/M365 ecosystem in consultation with technical and operational referents- Securing the Azure AD tenant and privileged accounts: Conditional Access, Just in Time (JIT), Privileged Identity Management (PIM)- Definition, validation, and implementation of the Azure AD role assignment policy according to privileges and role scope- Management of the identity and admin access lifecycle and privileged accounts on the Azure tenant: Review, remediation, etc.- L3 Support for IAM USERCUBE, MAINFRAME, and M365 incidents and requests- Design and development of technical and functional IAM evolutions- Execution of POCs and integration of security solutions.- Writing and updating technical guides and security procedures.- Network audit and recommendation of security measures.- Identification of the client group's public IPs and assessment of their external exposure. Recommendation for strengthening external DNS services & Cloud Web Filtering.- Audit & recommendation for remediation of filtering rules in compliance with the group's security policy.- Review and compliance of the PAS (Security Assurance Plan) in accordance with client requirements.- Security review of the application contract with the Cloud provider.- Compliance monitoring and gap analysis against client security requirements.- Consolidation of project security indicators.- Facilitation of workshops for securing the development environment: docking, access rights, etc.
- ENEDIS (Ex ERDF)Cybersecurity ConsultantENERGY AND UTILITIESSeptember 2018 - October 2020 (2 years and 2 months)Nanterre, France• Project support for various adopted solutions (Cloud and Managed Services AWS, Microsoft Azure, Docker/Khadock, Linux RHEL, CentOS, Windows Server, AIX, Citrix, BigData, …)• Security analysis of application and infrastructure architecture files:- Verification of compliance with PSSI and firewall policy.- Verification of architecture consistency with DICT criteria (Availability, Integrity, Confidentiality, Traceability) and security needs.- Proposal of security recommendations and remediation plans for security risks and vulnerabilities.- Analysis of security derogation requests.• Security Consulting/Expertise:- Architecture studies, Project support.- Technical recommendations, Watch, state of the art.- Assistance with consultations - identification of security requirements.- Writing and validation of the security section of CCTPs (Technical Consulting and Services Contracts).• Management of vulnerability reviews:- Coordination of different stakeholders (CISO, auditors, business units, editors, etc.).- Analysis of security needs and implemented measures.- Penetration testing, Checkmarx code audit, and technical security analysis.
- DRIVECybersecurity EngineerENERGY AND UTILITIESOctober 2014 - June 2018 (3 years and 8 months)Nevers, France- Support for the implementation of the information system security policy.- Risk analysis, definition of use-cases and attack scenarios.- Development of intrusion detection systems (IDS) in the sensor network.- Deployment of IDS in the sensor network (implementation in C/C++ language) and configuration of the gateway to receive alerts (development in Python).- Firewall configuration and shell script development to secure the information system (under Linux).- Configuration of Cisco routers and switches.- Design of smart grid architectures with hierarchical IDS deployment (distributed and centralized).
Recommendations
Be the first to recommend Mohamed
Help this freelancer shine by sharing your experience working together.
These freelancer profiles also match your criteria
Agatha Frydrych
Backend Java Software Engineer
4.7
(3)
2
Baptiste Duhen
Fullstack developer
4.6
(4)
5
Amed Hamou
Senior Lead Developer
4
(2)
7
Audrey Champion
Web developer
4.3
(3)
4
Education
- Computer Science, Networks, and Security EngineerTélécom Nancy2014
Certifications
- Certificate of Cloud Security Knowledge (CCSK)Cloud Security Alliance (CSA)2024
- AZ-500: Azure Security Engineer AssociateMicrosoft2021