freiberufler Cybersecurity Architect auf freelance.de

Cybersecurity Architect

zuletzt online vor wenigen Stunden
  • auf Anfrage
  • 71638 Ludwigsburg (Württemberg)
  • National
  • en  |  de  |  fr
  • 02.08.2022

Kurzvorstellung

B. has a proven track record of 10years as Cybersecurity Architect from various roles across different industries varying from strategic, tactical and technical.

Ich biete

  • Certified Information Systems Security Professional (CISSP)
  • CISM (Certified Information Security Manager)
  • Compliance management
  • Corporate Security
  • Cyber Security
  • Enterprise Architect (EA)
  • Firewalls
  • IT Sicherheit (allg.)
  • Netzwerk-Sicherheit
  • Security Operations Center (SOC)
  • Sicherheitskonzept
  • Sicherheitsmanagement

Projekt‐ & Berufserfahrung

Cybersecurity Architect expert (Festanstellung)
MMK DIGITAK, Ludwigsburg
12/2021 – offen (9 Monate)
IT & Entwicklung
Tätigkeitszeitraum

12/2021 – offen

Tätigkeitsbeschreibung

Consulting as Cybersecurity architect

Eingesetzte Qualifikationen

Certified Information Systems Security Professional (CISSP), Cyber Security, Enterprise Architect (EA), Netzwerk-Sicherheit, Sicherheitskonzept, Sicherheitsmanagement

Bank SOC / Architecture
Mercedes Benz Bank, stuttgart
12/2020 – 12/2021 (1 Jahr, 1 Monat)
Banken
Tätigkeitszeitraum

12/2020 – 12/2021

Tätigkeitsbeschreibung

Threat Hunting / Threat Intelligence / Advisory 11/2021 – 04/2022
Roles: Senior SOC Analyst, Security Expert Advisor
Industry: Banking / Automotive (Germany)
Scope:
Building the 3rd Tier SOC Maturity
Proactively Hunting for Threats.
Introduction of Threat Intel and integration into the  alerting
Audit of Security architecture, recommend improvements,
 detection potential of flaws leading to attack vectors.
Audit, review,  assess existing, and develop new Use cases for detection and response, mapping to MITRE ATT&CK Matrix (SIEM, EDR).
Producing Documentation related to incidents with a chain of custody including an executive summary related to offense campaign incident with recommendations for lessons learned.
Producing Playbooks for Investigation/incident response
Assisting, Advising C suite on security topics, guiding LSIRT team on handling Major Incidents.
Skills & Technologies: Threat Hunting, Threat Intelligence, IOC, Splunk Enterprise Security, Carbon Black, Sophos, Fortinet, Palo Alto, Sysmon, Windows Event Log, VMware, Virus total, Cisco Talos, IBM Xforce, Wireshark, AV.
Security+, CySA+, MITRE ATT&CK Defender, BaFin, NIST, CIS.

Eingesetzte Qualifikationen

Cyber Security

Global Head of Cyber Security (Festanstellung)
Kundenname anonymisiert, Casablanca
2/2017 – 7/2019 (2 Jahre, 6 Monate)
Governement
Tätigkeitszeitraum

2/2017 – 7/2019

Tätigkeitsbeschreibung

Roles: Global Head of Cyber Security
Industry: Joint Venture (Morocco & Allies)
Scope:
Coordination Nationwide and International about Threat Landscape.
Involvement in Cross Borders Cybercrime investigations
Lead and Govern over the 8tier SOC, part of the Cyber-Heads board, as well as Orchestrating Many teams from different fields
Initiating Global effort of Cyber Threat Intelligence sharing.
Improving the overall the Incident Time to Detect (TTD) Incident Time to Response (TTR)
Co-ops with Major Vendors for new challenging & Demanding solutions IT/OT
Escalation Level 8, swift decision making, informing and guiding the board to stay up to date with transparency, Budget negotiations.
Initiating tests for Resilience, disaster recovery, social engineering, readiness of Blue/Red/Purple Teams.
Skills & Technologies: Management, Cybersecurity, security Architecture, GRC, CTI, development & research, critical thinking, Crisis Management, predictive & proactive counter measures and controls, Diplomacy.

Eingesetzte Qualifikationen

Baukunst, CISM (Certified Information Security Manager), Corporate Security, Cyber Security, Incident Management, Security Operations Center (SOC)

CISO & CSO (Festanstellung)
Kundenname anonymisiert, Casablanca
5/2015 – 3/2017 (1 Jahr, 11 Monate)
IT & Entwicklung
Tätigkeitszeitraum

5/2015 – 3/2017

Tätigkeitsbeschreibung

Nationwide Cybersecurity Program Fusion (A-L)
Role: CISO & CSO
Industry: Multi Sector (Casablanca)
Scope:
SOC 6th and 7th Escalation Point
Leading, briefing, educating the staff through cyber awareness
Solutions research and assessment, acquisition
Physical security, information security, network security
Enforcing best practice, cyber hygiene, policies, protocols, framework
Reviewing, assessing, authorizing, XSOAR playbook, runbooks, workbooks
Reporting to C-suite, planning milestone and goals
Dispatch tasks, quality check of investigations, escalations for unordinary event for last call
Technically involved in response to sophisticated attacks such APTs, supervision from high level business mission objectives
Skills & Technologies: XSOAR, Firewalls, IDS/IPS, Honeynets, XDR, Machine learning, CASP+, CySa+, Security+, MITRE Engenuity ATT&CK /(MAD)

Eingesetzte Qualifikationen

CISM (Certified Information Security Manager)

SOC Lead / Management Coordina (Festanstellung)
Kundenname anonymisiert, Casablanca, Rabat, Tangier
2/2014 – 3/2015 (1 Jahr, 2 Monate)
IT Security
Tätigkeitszeitraum

2/2014 – 3/2015

Tätigkeitsbeschreibung

found in reference description 3
Actionable Threat Hunting / Intel / Incident Response 03/2014-10/2015
Role: SOC Lead / Management Coordinator
Industry: Government (Casablanca, Rabat, Tangier)
Scope:
SIEM Hypothesis-driven investigations latest tactics, techniques, and procedures (TTP)
Investigation based on IOC, IOA, CTI
Producing dashboard analytics, risk-based metrics, UBA reports, endpoint / on the wire anomalies alerting
Responding to major escalated incidents and teaming up with IRS team for technical advisory
Producing executive summaries, reports, consulting the CISO
Developing the SOC maturity
Adoptions of new detection rules successful hunt
Advising on solutions acquisitions and matching compliance goals
Skills & Technologies: CTH, CTI, MITRE, SIGMA rules, XSOAR, Cisco Talos, VirusTotal, IBM Watson, IBM resilience, Sysmon, Syslog, Analytics, Proactive/predictive intelligence or political events-driven investigations

Eingesetzte Qualifikationen

Corporate Security, Cyber Security, Cyber Security Practitioner (CSP), Web Security

Cybersecurity Program Strategic architect
Kundenname anonymisiert, Casablanca
2/2012 – 8/2014 (2 Jahre, 7 Monate)
IT & Entwicklung
Tätigkeitszeitraum

2/2012 – 8/2014

Tätigkeitsbeschreibung

(A-L) Cyber Defense Soul Concept / Blueprint 06/2012 – 07/2014
Role: Security Program Strategic architect
Industry: Statewide initiative (Rabat)
Scope:
Adoption of frameworks, participation in the development of compliance, guidelines, and best practices
Blueprinting necessary data source compliant with NIST, CSI
Blueprinting security controls for network, data, physical access
Soul concept of SIEM Team, enforcing change control
Soul concept of initial 3rd tier SOC
Planning for scalability of the security operation center to 8 tier
Threat modeling, threat emulation
Building business & security needs requested from management
Assisting C-suite strategically about threats and how to mitigate them
Skills & Technologies: Nist 800 53, Nist 800-94, Nist 800-16, CIS critical security controls, CISA US-CERT, MITRE Defender, OWASP, NVD CVE, Tenable, UTM, IPS/IDS, SIEM/XSOAR

Eingesetzte Qualifikationen

Architektur (allg.), Certified Information Systems Security Professional (CISSP), CISM (Certified Information Security Manager), Compliance management, Corporate Security, Cyber Security, Sicherheitskonzept, Sicherheitsmanagement

Zertifikate

CompTIA CySa+
Dezember 2021
MITRE ATT&CK Defender™ ATT&CK® Threat Hunting Certification
Dezember 2021
MITRE ATT&CK Defender™ (MAD) ATT&CK® Cyber Threat Intelligence Certification
Dezember 2021
CompTIA CSAP
August 2021
CompTIA security+
Dezember 2020
IBM Cybersecurity Analyst Professional Certificate
Dezember 2020
CISA ICS Cybersecurity Risk
Dezember 2019
CISA ICS Cybersecurity Threats
Dezember 2019

Qualifikationen

by industry leaders in the security field such as IBM, MITRE Defender ATT&CK, CompTIA, CISA to name few.
Before he became Expert IT-Architect at MMK DIGITAL, he stayed with Mercedes-Benz Bank, as Senior SOC Analyst (Threat Hunter & Threat Intel). Here, he was mainly concerned with defending the bank from advanced threats as well as developing the overall security posture of security operation center maturity.
His professional career began in 2012 at Orange Telecom, followed up by several government agencies for Cyber Defense that lasted for 9 years. B. is a true Cyber-Sec Head enthusiastic, that played many roles during his career from senior SOC positions, to advanced lead roles, as well as managerial roles such as CISO and ended up by GHCS (Global Head of Cybersecurity).

Über mich

by industry leaders in the security field such as IBM, MITRE Defender ATT&CK, CompTIA, CISA to name few.
Before he became Expert IT-Architect at MMK DIGITAL, he stayed with Mercedes-Benz Bank, as Senior SOC Analyst (Threat Hunter & Threat Intel). Here, he was mainly concerned with defending the bank from advanced threats as well as developing the overall security posture of security operation center maturity.
His professional career began in 2012 at Orange Telecom, followed up by several government agencies for Cyber Defense that lasted for 9 years. B. is a true Cyber-Sec Head enthusiastic, that played many roles during his career from senior SOC positions, to advanced lead roles, as well as managerial roles such as CISO and ended up by GHCS (Global Head of Cybersecurity).

Persönliche Daten

Sprache
  • Englisch (Muttersprache)
  • Deutsch (Gut)
  • Französisch (Fließend)
  • Arabisch (Muttersprache)
Reisebereitschaft
National
Arbeitserlaubnis
  • Europäische Union
Home-Office
unbedingt
Profilaufrufe
111
Alter
34
Berufserfahrung
10 Jahre und 7 Monate (seit 01/2012)
Projektleitung
9 Jahre

Kontaktdaten

Nur registrierte PREMIUM-Mitglieder von freelance.de können Kontaktdaten einsehen.

Jetzt Mitglied werden