Sr. CYBER SECUIRITY Consultant IT/OT Certified IBM QRadar| Arcsight SIEM | ISO 27k1 | ICS | 20 CSC
CONFIDENTIAL
Total years of experience :11 years, 4 Months
CONFIDENTIAL is the largest Algerian and African (OIL& GAS) company and the 11th largest oil consortium in the world.
• Experience with network technologies and with system, security, and network monitoring tools;
• Penetration-Testing IT Infrastructure;
• SOC Architecting and design,
• SIEM Deployment Roadmap, and Devise integration,
• SIEM Usecases: Designing, Implimenting, Customizing/ optimazing and Tuning;
• SOC Process / Procedures / Standards
• Incident Handling and RCA (Root Cause Analysis) According to NIST Framework;
• OT Security Awareness: Posters, E-mails, Vulnerability Feeds
• IT Security Awareness Campaigns: Planning, design and running Phishing Campaigns (Credential Harvesting, Ransomware Phishing Attacks…) for more than 14000 Users;
• Elaboration of security policy, procedures and standards for IT/OT;
• Auditing IT/OT Infrastructures;
• Identify and define system security Architecture and requirements;
• implement and monitor security measures for the protection of computer systems, networks and information;
• Administration and configuration IT Infrastructures: Network, systems, FW,
• Configuring and Troubleshooting Firewalls with high availability.
• Monitoring and troubleshooting firewall and configuring clustering, failover active/standby.
• Deep Packet Level Inspection & Analysis (tcpdump & other tools);
• Firewalls DPI and Rules troubleshooting and Optimization;
• Design system security architecture and develop detailed security designs;
• Prepare and document standard operating procedures and protocols;
• Configure and troubleshoot security infrastructure devices;
• Develop technical solutions and new security tools to help mitigate security vulnerabilities and automate repeatable tasks;
• Ensure that the company knows as much as possible, as quickly as possible about security incidents;
• Write comprehensive reports including assessment-based findings, outcomes and propositions for further system security enhancement;
• Hands on experience in security systems, including firewalls, intrusion detection systems, anti-virus software, authentication systems, log management, content filtering, etc.
• Problem solving skills and ability to work under pressure;
SAIDAL GROUP. SPA is the largest pharmaceutical company in Algeria and one of the largest in Africa.
• Administrate the network having more than 900 users and 11 remote locations ensuring uptime and load balancing.
• Investigate user and network problems, identify their source, determine possible solutions, test and implement solutions.
• Oversees the day-to-day health of the enterprise network infrastructure, with a focus on assuring network stability, capacity and organizational productivity.
• Manage Windows server infrastructure, increase use of Active Directory for management and assignment of Group Policy to improve automation, security and user controls. Manage DNS, DHCP infrastructure.
• Manage Site-to-Site replication
• Manage physical and virtual server infrastructure to ensure integrity and performance of environment; includes performance tuning, proactive maintenance and data backup.
• Provide support and assistance SAIDAL GROUP Remotes Sites IT Teams.
• Manage the configuration, deployment, maintenance and security processes for all security platforms.
• Architect, monitor and maintain security controls and systems within the I.T. infrastructure.
• Troubleshoot and address security vulnerabilities with hardware, systems and applications.
• Hands-on experience with the implementation and use of network monitoring, fault management and performance analysis tools,
• Manage internal network, DMZ and Internet facing servers. Monitoring Systems, Network, Appliances and Traffic vulnerabilities Inspection.
• Experience with site to site VPN and client to site VPN technologies.
• Significant experience with network security concepts, best practices, and technologies including, but not limited, to SSH, IPsec, RADIUS, firewall policies.
• Strong experience with WAN optimization, Inbound/outbound Traffic Management. Bandwidth Management and Traffic prioritization.
• Experience defining and implementing Access, QoS policies and Deep Packet Inspection.
• Troubleshoot problems and respond to alerts.
• ApplicaTion security, Application and content filtering, access control, encryption, and multi-factor authentication technologies.
• Experience in creating detailed Networks, solutions design documents & diagrams.
courses: ex: