Senior Consultant
Devoteam
Total years of experience :18 years, 9 Months
I work within Devoteam as senior consultant in the field of network and security. Below the major projects that I worked on :
* Project manager: Design and implementation of passwords and sessions management solution "Total Quest Password Manager" within the telecom operator “Orange Tunisia” :
- Design and deployment of the solution.
- Operational documentation and training animation.
- Assistance in the go live of the product.
* Senior consultant in the project of developing a strategic study on network infrastructure and telephony for the International Tunisian Arab Bank (BIAT):
- Assess the business needs and the actual network infrastructure.
- Animate network workshops.
- Set the orientations in term of network and telephony evolution.
- Design network and telephony architecture.
- Define capacity plan and projects portfolio.
Within HRAccess, I worked on the development of security policies and standards and the implementing of adequate control mechanisms according to the ISO 27001 and ITIL. This work was done in close collaboration with the corporate Fidelity U.S security team. My mane responsibilities were:
- Lead the corporate Information Security Team.
- Manage the security communications with internal teams and external clients.
- Develop, implement, and execute effective international security programs to ensure that information systems and services are adequately protected.
- Write and implement policies, baselines and procedures.
- Implement and animate internal information security awareness program across the organization (in French and English).
- Implement and animate external ITIL V3 trainings (5 training sessions, 3 days each one).
- Generate and present security KPI and Dashboards to senior management.
- Conduct internal technical security audits.
- Conduct risk analysis of new systems, define and implement countermeasures to mitigate those risks to an acceptable level.
- Participate in implementing and maintaining company Business Continuity Plan.
Tunisiana the first private telecom company in Tunisia. During those more than 5 years, I worked in the information security operations and network infrastructure management.
Below the list of major projects and activities that I was responsible for:
- Define Network Security Architecture for core, access and edge networks.
- Define and implement processes and procedures for Patch Management Solution.
- Participate in Incident Response program by writing procedures and implementing technical security monitoring tools.
- Administrate Firewalls, Proxies, Antivirus, Antispam, IDS/IPS, SIM, Vulnerability Management system…
- Implement Access Controls and provide the needed support for technical issues.
- Review of company firewalling infrastructure.
- Implement secure interconnections with customer and partners (IPsec and SSL VPNs).
- Implement secure GPRS interconnection between internet and core networks.
- Implement and maintain the internal and guest secure Wireless Networks.
- Define Antivirus migration plan for the entire infrastructure.
- Develop and enforce Antiviral policy.
- Test, validate and integrate Vulnerability Management System.
- Test, Integrate and maintain Security Information Management system (SIM).