Freelancer profile translated to English.

Description

Expert in Cyber Detection & Threat Hunting | SOC Analyst L3 | SIEM & EDR Specialist

With over 8 years of experience in the cybersecurity sector, I work on critical environments to anticipate, detect, and neutralize advanced threats. My background, consolidated at leaders like Orange Cyberdefense and Thales, has allowed me to develop a transverse expertise combining strategic vision and deep technical mastery.

My areas of intervention:

**SOC Analysis & Detection (L3)**: Advanced expertise on IBM QRadar. I design, deploy, and optimize complex detection rules, from parsing (DSM, CEP) to performance improvement.

**Threat Hunting & Intel**: Proactive search for signs of compromise based on the MITRE ATT&CK framework (TTPs). I manage the integration of Threat Intelligence (MISP, ThreatQ, OpenCTI) to leverage Indicators of Compromise (IOCs) in our analysis tools.

**Incident Response (EDR/XDR)**: In-depth investigation on workstations (FireEye, Cortex XDR, CrowdStrike) to identify infection vectors and orchestrate remediation.

**Cloud & System Expertise**: Securing and analyzing logs within multi-cloud environments (AWS, Azure, GCP) and mastery of Linux environments and the ELK stack (Kibana).

Solution-oriented and with strong communication skills, I move with ease in international contexts, ensuring incident management and strategic reporting in English. My goal is to transform raw data into actionable intelligence to strengthen infrastructure resilience against tomorrow's threats.

Languages

French
Native or bilingual
English
Fluent

Workplace preferences

Remote only

Primarily works remotely

Orange Cyberdefense
L3 SOC analyst
CONSULTING AND AUDITS
December 2022 - Today (3 years and 6 months)
Paris, France
- Following cybersecurity news, collecting useful information for further analysis in logs.
- Threat intel, managing IOCs and databases, searching them in logs.
- Threat hunting, searching in logs for signs of compromise from known malware behaviours (Mitre TTPs).
- QRadar SIEM : improve and propose detection rules, parsing, performance improvements...
- FireEye EDR : improve and propose detection rules, investigate compromised workstations to find source of infections.
Threat hunting MITRE ATT&CK EDR SIEM FireEye QRadar Misp ThreatQ
THALES SIX GTS France
Cyber security engineer
AVIATION AND AEROSPACE
September 2017 - October 2022 (5 years and 1 month)
Élancourt, France
I worked with a SIEM (Security Information and Event Management) to detect computer attacks in real time thanks to correlation rules.
In regular contact with the client, I have weekly meetings in English in an effort to make decisions on security incidents and remedial actions.

- IBM QRadar : creating and managing detection rules, offenses, parsing with DSM and CEP, regular expressions, IOC searches, log source management, reports, AQL, index management, network hierarchy, reference sets...
- PaloAlto cortex XSOAR, XDR
- Azure Sentinel
- Mitre ATT&CK
- Kibana
- ElasticSearch
- Linux
QRadar PaloAlto Cortex XSOAR Mitre ATT&CK Kibana GCP AWS Azure