Freelancer profile translated to English.

Description

Specialist in Microsoft 365 solutions, I assist companies in the implementation, management, and optimization of their collaborative environments. My expertise covers services such as SharePoint Online, Teams, Exchange Online, Power Platform (Power Automate, Power Apps, Power BI) and Microsoft Entra ID (formerly Azure AD).

I work on projects involving migration, governance, security, digital workplace, and adoption of Microsoft 365 tools to improve operational efficiency and collaboration within organizations.

Industry field of expertise

Languages

Arabic
Native or bilingual
French
Conversational
English
Conversational

Workplace preferences

Can work on-site

Saint-Denis (up to 50km)

INSOMEA COMPUTER SOLUTIONS
SoC Analyst
TELECOMMUNICATIONS
June 2024 - Today (2 years)
Tunis, Tunisia
Context:
As a SoC analyst, I had the opportunity to implement Microsoft Sentinel for INSOMEA clients as part of an MSP.
Responsibilities:
• Prepare the Log Analytics Workspace and add it to Microsoft Sentinel.
• Connect data sources to collect security events, including those from Microsoft Defender xDR, Defender for Office365, Azure Activity...
• Prepare a Linux Virtual Machine on Azure as a Log Forwarder.
• Install Syslog Agent CEF on the virtual machine.
• Configure CEF log redirection to Sentinel's Log Analytics Workspace.
• Configure Firewalls (Fortigate, Palo Alto...) to send logs to the Linux Log Forwarder.
• Validate log reception with KQL queries.
• Activate the Windows Events connector via AMA (Azure Monitor Agent).
• Install AMA agents on the virtual machines in the client's On-prem environment.
• Configure DCRs (Data Collection Rules) to collect Windows events and inject them into Microsoft Sentinel
• Test and validate that all connectors are working correctly.
• Create Analytics Rules to generate incidents and automate responses with Playbooks.
• Federate client Sentinels into a single workspace with Sentinel Workspace Manager.
Microsoft Sentinel Microsoft Defender
PEARLS CONSULTING (VIA INSOMEA)
M365 Consultant
TELECOMMUNICATIONS
December 2023 - June 2024 (6 months)
Tunis, Tunisia
Context:
Implementation of Microsoft E5 license features (Intune, Entra ID P1, MDE...).
Responsibilities:
• Verification of technical prerequisites (licenses, OS, connectivity, integration with Entra ID).
• Implementation of automatic MDM enrollment via GPO for Windows workstations.
• Deployment of Defender onboarding policy via Intune.
• Configuration of security modules: EDR, Microsoft Defender Antivirus, Attack Surface Reduction (ASR).
• Configure and enforce Wi-Fi connection via certificate with Intune.
• Enforce blocking of unregistered storage peripherals.
• Protection of local accounts via LAPS (Local Administrator Password Solution).
• Restrict access for local administrator accounts.
• Implementation of compliance policies according to Pearls Consulting's specifications.
• Configuration of applications for automatic deployment on enrolled workstations.
• Activation of Entra ID Protection to monitor risks related to users and connections.
• Implementation of conditional access policies based on risk, location, device type, and security level.
• Activation of MFA based on conditional access policies.
• Continuous monitoring of suspicious connections, detection of user/device risks, and automation of responses.
• Activation of PIM for privileged access management (Entra ID roles and Azure RBAC).
• Implementation of on-demand access approval, mandatory justification, limited duration, and notifications.
Microsoft Intune Microsoft 365 Defender GPO Microsoft Purview Microsoft Sentinel
WYNSYS (VIA INSOMEA)
Cloud Consultant
TELECOMMUNICATIONS
June 2023 - December 2023 (6 months)
Tunis, Tunisia
Context:
Implementation of identity hybridization with Azure AD Premium (P1/P2).
Responsibilities:
• Verify all prerequisites before installing Azure AD Connect.
• Install Azure AD Connect.
• Configure the authentication method (PTA/PHS/ADFS).
• Configure attribute-level filtering on Azure AD Connect.
• Initialize Directory synchronization (full sync then delta sync).
• Correct object synchronization errors (if necessary) with IdFix.
• Configuration and initialization of Azure AD Hybrid join.
• Activate password writeback and SSPR (self-service Password Reset).
• Deploy Azure AD Password Protection for Active Directory (Hybrid mode with a proxy server).
• Activate Azure AD Identity Protection.
• Activate Automatic Enrollment for Microsoft Intune.
• Activate Enterprise-State-Roaming.
• Implement Conditional Access policies specific to the company, without forgetting the basic policies (baseline policies).
• Implement Azure AD PIM (Privileged Identity Management) and initiate the IAM (Identity and Access Management) team to the use of this feature.
• Configure Azure AD Application Proxy for authentication of on-prem tools with Azure AD.
Microsoft Purview Azure Entra ID Hybrid Cloud Microsoft Intune