Domaines d’expertise

Langues

Anglais
Bilingue ou natif

Préférences en matière de lieu de travail

En télétravail uniquement

Travaille majoritairement à distance

Sodexo SA
Cybersecurity Consultant–Sodexo
RESTAURATION
juillet 2023 - juin 2025 (1 an et 11 mois)
• Design and implementation of detection rules in Qradar
• Maintain the Qradar SIEM and the IBM SOAR Platform
• creation of use case
• Log sources Onboarding
• Create a monitoring tools (Zabbix) to monitor the appliances and the platform
• Parsing and Mapping
• Develop automation scripts
• Configure the SOAR platform
• Implementation of Dashboards and reports
• Installation of the agents in the VM
• use crowdstrike to create automation scripts
• Onboarding Azure with the SIEM and the SOAR( Entra ID,Microsoft Defender for Cloud,O365, O365 Message Trace, Intune…)
• Switch from IBM SOAR Platform to Tines with the migration of the playbook
• Upgrade Qradar SIEM from version 7.5.0 patch 5 to 7.5.0 patch 11
Capgemini Consulting - Capgemini Invent
Cybersecurity Analyst
janvier 2022 - juillet 2023 (1 an et 6 mois)
• Design and implementation of detection rules in Qradar
• Design and implementation of correlation search in Splunk
• Migration of use cases from Qradar to SPlunk
• Data Model review
• Migration from FireEyeHx to Crowstrike
• Parsing and log sources review
• Automation with github and Sigma to SIEM
• Analysis of level 2 escalations
• Implementation of Dashboards and reports
• Splunk ES Configuration
• Onboarding of the team in SPLUNK
• create a CI/CD pipeline with Gitlab
Sodexo SA
Level 2 Analyst–Sodexo
RESTAURATION
septembre 2019 - janvier 2022 (2 ans et 4 mois)
• Analysis of alerts reported by qradar (tickets run) at Resilient.
• Tunning the rules in Qradar
• Creating tickets in Resilient to escalate malware and compromised accounts
• Analysis of alerts (Outpost tickets) reported by users in Resilient
• Automation by using Qradar API and python
• Design and implementation of detection rules in Qradar