CV/Mission d'It security compliance coordinator freelance

Exemple de missions de Junior,
It security compliance coordinator habitant le Val-d'Oise (95)

(Level 3) Lead SOC analyst – threat hunter
For Thales Digital Factory
6/2020 -
Incident investigation and response and security alert:
• Threat hunting
• Alert optimization
• Detection rules efficiency audit
• Detection capabilities gap audit (using mitre caldera)
• Execution and/or drafting of operational procedures
• Investigation and analysis of SIEM/EDR/XDR alerts and incidents
• L3 support on investigations
• Level 1 onboarding and reflex sheet writing
• Staff training
• Cert champion
• KPI definition and reporting
• GRC support on ISO 27k compliance
• Correlation CTI, Vulnerabilité, incident/alertes (Virus total, OTX,
vulndb, exploitdb, anyrun…)
• L1/L2 automation via Logicapps
• Implementation of new Use cases based on policies, threat
models, best practices (NIST, CISA, CIS, ANNSI...)
• Security and vulnerability monitoring (LinkedIn, Medium, Twitter,
cybersecurity Hub)
• Referent Analyst during crises, incide
• Definition of short-term security recommendations
• Recommendation on long-term security remediation
• Automation response via logicapp
• Malware Analysis
• Phishing analysis
• Investigation IOC/IOA
• Implementation of Workbook for reporting and trend analysis.
• Participation in risk analysis
• Continuous improvement
_For Identityprotection)• Azure Sentinel• Logicapps

Deputy CISO Delegate in France/Benelux
For SIG Group
10/2020 - 3/2021
Work closely with regional IT and business management to provide
security support, advice and oversight, identify and manage risks and
maintain compliance:
• Provide technical/SME support for the implementation of groupwide/regional security initiatives.
• Lead regional incident response to minimize impacts and
investigation of violations.
• Responsibility for providing operational support for security
technologies, products and services.
• Assist in the creation and management of regional security review
processes, including security oversight for change and
architecture review committees, and project activities.
• Work with security and technology risk compliance to ensure
controls are adopted and maintained in the region.
• Maintain knowledge of emerging threats and technologies.
• Conducting cybersecurity incident management.
• Security architecture: SIEM (Sentinel), Cloud Security (Zscaler),
Endpoint Detection & Response (Crowdstrike), Anti-Spam
Filtering (Mimecast), Operating System Security (Windows &
Linux), Network Security Technologies, vulnerability management
tools (Rapid7) and threat intelligence platforms
• Governance: NIST, ISO and PCI with understanding of local
regulatory requirements, Disaster recovery test, Logic Manager,
RACI, PhishER
• Creation and management of IAM, DR/BCP, Vulnerability
Management or Application Security programs.
• Internal and external audit review
• Conducting audits and assurance activities.
• Implementation of audit corrective actions

Security/Operations Engineer (soc analyst)
For EuropAssistance
1/2020 - 7/2020
Maintenance in security condition of Europe's French sitesAssistance and
reporting for the preparation of audits
Missions:
• Operational security monitoring (audit and compliance ):
Workstations and servers as part of the ISO 27001 process
• Qualification and monitoring of patch deployment: OS and
applications
Incident management:
• Analysis, research and corrective actions,
• Generali Group CERT alert analysis
• Execution and/or drafting of operational procedures,
• Technical contributor on infrastructure and security projects
• Execution of operational security maintenance tasks (patching,
vulnerability analysis...) and systems administration
• Daily checks and related reporting
• Incident management: analysis, solution research, execution of
corrective actions and update of incident tickets through the
ticketing tool
• Administration Symantec Endpoint Protection, Deep Security et
Office Scan
• Drafting and updating procedures
• Scanning and processing VAMPS vulnerability reports
• IS security compliance analyses
• Participation in Stack ELK implementation and migration projects
• Implementing alerts on the ELK SIEM
• Internal penetration testing with Kali
• Security analysis with MS ATP
• Implementation of policies and processes
• Malware Analysis
• Phishing analysis
• Investigation IOC/IOA
• Implementation of Workbook for reporting and trend analysis.
• Participation in risk analysis
• Continuous improvement

Network/Security/Telephony Project Coordinator
For La Mutuelle Générale
7/2019 - 2/2020
Networks/Security:
• Review of flow rules on checkpoint and fortinet
• Opening flows
• Functional recipe
• Reporting
Network:
• Vlan Review
• Creating vlan
• Functional recipe
• Conduction migration lab terminal MR 33 to MR45
• Reporting
Telephony:
• Review of active lines alcatel
• Pre-migration stress analysis
• Line creation and skype directory update
• Alcatel Omnivista to Skype Line Migration
• Reporting
Mission:
• Level 2 and 3 Advanced Support for Critical Incidents
• Architecture and preparation for complex changes (HLD: logical
schemas and flow diagram)
• LAN and VLAN redesign on Catalyst for various centers
• Telephony migration
• WiFi migration
• Administration skype , active directory et omnivista

Security Network Engineer
For Canon
10/2018 - 7/2019
Networks/Security:
• Hardware: Cisco, Catalyst, ASA, BlueCoat
• Networks: Ethernet (802.3*),MPLS,WiFi (802.11a/b/g/n).
• Network protocols: TCP/IP stack, Qos, CoS, MPLS-EXP).
• Protocoles de routage : BGP, OSPF, EIGRP, MPLS LDP, MP-BGP
• Virtual private networks: IPSec VPN, MPLS VPN, SSL VPN.
• Level 2 protocol: Spanning-Tree, Etherchannel, Dot1Q & ISL
• Operating systems: Windows, Linux, IOS
Cyber-Security:
• Management of rights, authorizations and monitoring of user
accounts
• Analysis and Tracking of AlienVault logs and events
• Application of security standards and best practices
• Cisco IDS/IPS
• Languard openvas scanner
• Drafting security policies and procedures
• Web authentication (oAuthx, openID Connect...)
• Vulnerability Scanning with Qualys and OpenVAS
• Vulnerability fixes
• Audit and action plan security evolution
• Implementation of new antivirus and Siem solutions
• Implementation and monitoring of good operational safety
practices
• Security Incident Resolution
• Certification Cyberark Trustee
Mission:
• Level 2 and 3 Advanced Support for Critical Incidents
• Architecture and preparation for complex changes (HLD: logical
schemas and flow diagram)
• Making DMZ Interconnects on Cisco ASA
• LAN and VLAN redesign on Catalyst for various centers
• Routing Optimization for Flow Partitioning Centers
• PE-CE interconnect for new customer sites on the MPLS backbone
in CANON environments
• Setting up Catalyst stack stacks

Security/Operations Engineer (soc analyst)
For Volkswagen Bank 1 year
11/2017 - 10/2018
Context:
Maintenance in safety condition of Volkswagen FRANCE French sites and
reporting for audit preparation
Missions:
• Operational security monitoring (audit and compliance ):
Workstations and servers as part of the ISO 27001 process
• Qualification and monitoring of patch deployment: OS and
applications
• Incident management:
• Analysis, research and corrective actions,
• VWFS CERT Alert Analysis
• Execution and/or drafting of operational procedures, oTechnical
contributor on infrastructure and security projects
• Execution of operational security maintenance tasks (patching,
vulnerability analysis...) and systems administration
• Daily checks and related reporting
• Incident management: analysis, solution research, execution of
corrective actions and update of incident tickets through the
ticketing tool
• Corrective Action Plan and Improvement
• Maintenance of the IT OPERATIONS document repository
Operational security
• MCS Windows 7 & Microsoft 2008/2012/2016, VMware
virtualization technologies
• Active directory administration and Exchange 2010 (GPO, User
Rights Management and Network Shares) Hardening (Windows
OS hardening) by GPO and editing of registries
• Administration Symantec Endpoint Protection et VPN SSL
(PulseSecure)
• SAN Storage Management (datacore)
• Administration DNS, DHCP, configuration IP Support niveau 2
infrastructures SI,
• Drafting and updating procedures
• Analysis and processing of NESSUS/MVM vulnerability reports
• ECB IS Security Compliance Analyses
• Participation in SCCM and Symanetc Enpoint Protection Manager
implementation and migration projectsKeeping CMDB HPSM up to date
• Administration Cyberark
Technical environment:
PAM Cyberark, SIEM Qradar, Suite MS 7/2008/2012/2016, VMware,
Symantec EP, Devicelocker, RSA, Mcafee vulnerability manager, Nessus,
SCCM, HPSM, CMDB

S e c u r i t y N e t w o r k E n g i n e e r
For THALES/Imprimerie Nationale Adentis For 5 months
6/2017 - 11/2017
Architecture for the rationalization of the infrastructure and the
implementation of new services as part of the moving project,
maintenance in operational condition and project support
Missions:
• Writing Functional file project NOC Writing functional file SOC
project Writing functional file (UMLs)
• Writing of ...