Freelancer profile translated to English.

Description

Leveraging hands-on experience with Splunk Cloud SIEM projects, penetration testing (Burp Suite), AWS hardening, and DevSecOps automation, I bring both a technical and pragmatic approach:

Risk Audit and Analysis: Mapping your perimeter, identifying vulnerabilities (gray/black box pentest), prioritizing fixes

SIEM & Dashboard Deployment: Configuring log pipelines (CloudTrail, VPC Flow Logs, on-prem), creating SPL dashboards and automated alerts

AWS Cloud Security: Secure landing zone architecture, IAM least-privilege, encryption, Security Hub, automatic remediations

Governance & Best Practices: Drafting security policies, Incident Response playbooks, training and awareness for your teams

DevSecOps Collaboration: Continuous integration of security controls, code review, secure CI/CD

My added value? A concrete balance between a global vision and sharp expertise, to ensure faster threat detection, simplified management, and a security culture truly embedded in your processes.

Languages

French
Native or bilingual
English
Fluent

Workplace preferences

Can work on-site

Marseille (up to 50km)

Orange Cyberdefense (Télécom)
Deployment of a Splunk Cloud SIEM and creation of detection dashboards
August 2024 - December 2024 (4 months)

I was responsible for the complete deployment of the Splunk Cloud SIEM solution within the company's infrastructure, from the initial configuration of log sources—firewalls, IDS/IPS, Windows and Linux servers, AWS and Azure environments—to the implementation of connectors ensuring near real-time ingestion of security events. Throughout this process, I ensured the activation of encryption mechanisms and fine-grained permission management to guarantee the confidentiality, integrity, and traceability of sensitive data flows.
NewWave, FinTech
Cloud Security (AWS) • SIEM Deployment (Splunk Cloud)
January 2024 - March 2024 (2 months)

Architected and strengthened the security of the AWS environment by configuring a landing zone compliant with Cloud Security Alliance best practices: granular identity and access management (IAM) with mandatory MFA, implementation of "least privilege" roles and permissions, network segmentation via VPCs and public/private subnets, and definition of Security Groups and Network ACLs to finely filter inbound and outbound traffic. I activated and centralized log collection via AWS CloudTrail, Amazon GuardDuty, and AWS Config, while encrypting data at rest (S3, RDS, EBS) and in transit (TLS). Finally, I automated compliance checks using AWS Security Hub and implemented scheduled remediations (AWS Lambda) to instantly correct configuration drifts.
Start-upAgroTech FarmSafe
• Development of security policies and internal training
October 2023 - December 2023 (2 months)
Developed a comprehensive repository of security policies covering identity and access management, sensitive data classification and protection, workstation and mobile device security, and incident management and reporting processes. Following a risk analysis phase and needs assessment from each department, I drafted clear procedures for information classification, access control, system updates, and incident response. To ensure adoption of these new rules, I designed and led an internal training program combining practical workshops (phishing simulations, incident response exercises) and interactive e-learning modules, punctuated by quizzes and feedback. This awareness program significantly increased the internal incident detection rate, reduced handling errors, and sustainably strengthened the security culture within the company.