ISO27001 Certification

SME for certification.

• Integration between Qualys VMDR/CORE/PC/API and SNOW SecOps module.
• Build Qualys TruRisk process and integration with IRM system to help implement risk register.

Analysis of compliance against NIS 2.

SME for certification.

• Patch Management process and implementation SME
• Penetration testing SME - define scope, create tender, support pen. testing teams, approve the reports and translate them to the C-Level management.
• Policy Compliance / Asset Inventory - hardening standard
• Qualys and ServiceNow Vuln. Response synchronization project - Phase 2
• CyberArk (IAM/PAM) integration and roll-our SME for certification.
• Cloud Security Architecture (Azure, AWS)
• OT Networks Design and Implementation (Secure Factory Designs)
• O365 Azure Security Center - server hardening
• KnowB4 staff awareness training and phishing simulations
• PhishER phishing email protection integration and configuration
• SME for Incident Response and Prevention

SME / Team lead for an extensive Penetration test.

vCISO consultant and SME for Penetration testing services.

• Design and lead the Vulnerability Management transformation program for a big client in the construction field
• Implement different roll-our strategies
• PoC a vulnerability management solution - Qualys
• Project Manager and Lead for a team of 10+ people
• Create and implement custom dashboards, widgets and reports for the clients needs
• Align and integrate the Vulnerability Management system (Qualys) with ServiceNow CMDB, NAC, SOAR and other solutions
• Act as final level of support for troubleshooting or creating custom solutions in Qualys
• Part of the Architecture board for the client

Intergrated Security Awareness tailor made for the different teams (Management,IT, Backoffice etc) following ISO standards.

Design, build, deployment and knowledge transfer of enterprise PKI systems.

• Part of Operational Resilience team responsible for the whole AXA entity
• DDoS topic Subject-Matter Expert
• DDoS Protection Assessment on 50+ entities
• Reviewing DDoS protections technologies - Volumetric and Application layers
• XDR - fast isolation and recovery use cases
• Attack case scenarios creation - Ransomware, DDoS, Data leakage, etc.
• Red Button creation use case creation following ISO standards.

Training the NRA pen. testers team in OWASP TOP 10 / MITRE techniques.

• Zscaler Administration
• IAM system tender and architecture - CyberArk
• New Vulnerability Architecture - Qualys
• Policy Compliance / Asset Inventory - hardening standard
• Security Awareness program - KB4/PhishER
• ServiceNow Vulnerability Response and Qualys integration - Architecture and documentation (Phase1)
• SecureWorks XDR Taegis (RedCloak) - tender, PoC,deployment and administration
• XDR SOC - Workflows, RACI, Runbooks creation
• O365 Azure Security Center - server hardening
• Network Security Architecture SME
• Cloud Security Architecture (Azure, AWS)

CPoC Solution architecture, cryptographic solutions management and certification documentation.

Architecture and management of more than 10k assets with Nessus/Tenable. Integration with existing OP processes. Onboarding new teams in the process - DevOps, Digital Marketing.

Replacing old AV solution with EDR one.

Cybersecurity and Penetration testing services for the Marine sector.

• Build comprehensive Penetration testing customers scenarios for compliance frameworks ( SANS Top 25, OWASP Top 10, NIST )
• Plan and execute Penetration tests services and Red team Exercises
• Develop technical and executive reports
• Present business oriented findings at front of customers executives
• Assists customers remediation process
• Project Management for Cyber Security
• Static Code Analysis
• SQLi, XSS, Overflows, DLL-Hijacking
• Vulnerability management - ( Nessus/Tenable, Qualys)
• Wi-Fi testing

Digital Bank

• External penetration test on the network infrastructure, Exchange servers, web servers, web applications, blog and more.
• Recon-ng, Maltego, Burp ,Dirbuster, Nessus/Tenable, sqlmap, XPath, XXE, XSS, File Inclusion, Fuzzing, DLL-Hijacking, Buffer Overflow, Metasploit, NMap, crackmapexec, BloodHound, Kerberoast
• Bash/Python scripting

Seafarers recruitment and consulting.

• Act as point of contact with EU residents, supervisory authorities and internal teams;
• Identify and evaluate the company’s data processing activities;
• Provide advice and instructions on how to conduct Data Protection Impact Assessments (DPIAs);
• Monitor data management procedures and compliance within the company;
• Participate in meetings with managers to ensure privacy by design at all levels;
• Maintain records of processing operations;
• Address all queries from data subjects within legal timeframes;
• Liaise with other organisations that process data on company behalf;
• Write and update detailed guides on data protection policies;
• Perform audits and determine whether we need to alter our procedures to comply with regulations;
• Offer consultation on how to deal with privacy breaches;
• Arrange for training on GDPR compliance for employees;
• Follow up with changes in law and issue recommendations to ensure compliance;

Tender, integration and management of Qualys VM platform.

Digital Bank( Fin-Tech company)

• Evaluating network performance issues including availability, utilization, throughput, and latency;
• Planning and executing the selection, installation, configuration, and testing of equipment; defining network policies and procedures; establishing connections and firewalls;
• Securing network by developing network access, monitoring, control, and evaluation; maintaining documentation;
• Upgrades network by conferring with vendors; developing, testing, evaluating, and installing enhancements;
• Creating, installing and managing Virtual Machines on Hyper-V and VMWare;
• Worked and troubleshoot Microsoft Active Directory, Microsoft DHCP and DNS servers, Windows Server 2007 R2, Windows Server 2008 R1/R2, Windows Server 2012 R1/R2;
• Worked with Linux servers – Debian and Ubuntu;
• Installed, configured and maintained network equipment – switches, routers, access points from Cisco and Fortinet;
• Installed and worked with VoIP servers and VoIP phones – FortiVoice, Freeswitch (FusionPBX) and Cisco Call Manager;
• Bash scripting
• Installed and maintained monitoring.

Ethernet Service Provider

• Serving as the security officer for the network;
• Recommending and scheduling repairs to the LAN/WAN
• Upgrading, installing and troubleshooting networks, networking hardware devices and software;
• Establishing network specifications by conferring with users;
• Analysing workflow, access, information, and security requirements;
• designing router administration, including interface configuration and routing protocols;