{"data":{"jobs":{"edges":[{"node":{"frontmatter":{"title":"Infrastructure & Cloud Consultant","company":"Exakis Nelite","location":"Casablanca, MA","range":"Mars 2023 - Present","url":"https://www.exakis-nelite.com/en/home/"},"html":"<ul>\n<li>\n<p>Azure Microsoft</p>\n<ul>\n<li>Successfully exported .ost and .pst files, as well as Outlook online archives, for a migration of 1500+ users to a new tenant in Azure</li>\n<li>Successfully executed the migration of 220+ users from Google Workspace to Office 365 using Microsoft's Exchange Migration Batches, seamlessly transferring mailboxes while assigning E3 licenses by groups to easily manage the licenses. Additionally, successfully migrated Google Drive content to OneDrive, ensuring a comprehensive transition to the Microsoft ecosystem</li>\n<li>Implemented and configured Conditional Access policies within Microsoft 365 and Azure Active Directory to enforce granular access controls based on user context, device compliance, and location factors.</li>\n<li>Developed and enforced policies and procedures for granting, reviewing, and revoking privileged roles and access through PIM, ensuring adherence to security and compliance requirements.</li>\n<li>Successfully performed synchronization of on-premises Active Directory with Azure Active Directory using Azure AD Connect.</li>\n</ul>\n</li>\n<li>\n<p>Manage Engine</p>\n<ul>\n<li>Successfully integrated and operationalized the ManageEngine ADManager platform, enabling efficient management and maintenance of client's Active Directory infrastructure.</li>\n<li>Delivered a POC of PAM360 ManageEngine that effectively showcased the core functionalities and benefits such as a streamlined privileged access, robust security controls, comprehensive audit trails (Session recording of RDP &#x26; SSH), simplified access provisioning and request workflows whilst implementing the concept of (self-service access request and RBAC), and also password management and rotations to potential clients.</li>\n<li>Set up and established the ManageEngine Endpoint Central solution to optimize endpoint security, patch management, and software deployment for the client, while also deploying and configuring ManageEngine's Patch Manager to ensure timely and efficient patch deployment across client systems.</li>\n<li>Established centralized control and management of devices (Network devices &#x26; VMs &#x26; HyperVisors) through ManageEngine OpManager, providing real-time visibility into performance (CPU &#x26; RAM usage), availability (DISK usage/utilization), and health.</li>\n<li>Collaborated with a client to implement ManageEngine Mobile Device Management, facilitating efficient mobile device provisioning, enrollment, tracking, and also policies. To ensure compliance, data protection, and device security.</li>\n</ul>\n</li>\n<li>\n<p>Pentest</p>\n<ul>\n<li>40% reduction in critical vulnerabilities through penetration testing (OWASP ZAP, Burp Suite) on 3CX, identification and tracking of the remediation of 50+ critical flaws (detected via Nmap and Nessus) by applying security patches, system updates, and configuration hardening, and conducting Red Team APT exercises to optimize threat detection and response.</li>\n</ul>\n</li>\n</ul>"}},{"node":{"frontmatter":{"title":"Security/Cloud Engineer","company":"Jaas","location":"Morocco, France","range":"Mars 2021 - Fevr 2023","url":"https://jaas.ma/"},"html":"<ul>\n<li>\n<p>Deployment and configuration of an Elastic Stack-based SIEM solution for clients, integrating Filebeat and Winlogbeat agents for comprehensive system and application log collection.</p>\n</li>\n<li>\n<p>Design of custom dashboards for effective anomaly detection and in-depth security event analysis.</p>\n</li>\n<li>\n<p>Implementation of correlation rules for proactive detection of advanced threats, including APTs, malware, and lateral movements, strengthening overall security posture.</p>\n</li>\n</ul>"}},{"node":{"frontmatter":{"title":"Cyber Security & DevOps & Cloud Consultant","company":"Freelance","location":"World Wide","range":"June 2020 - Present","url":"https://mouhcinemes.vercel.app/"},"html":"<ul>\n<li>\n<p>Client-focused DevSecOps and Cybersecurity Consulting:</p>\n<ul>\n<li>Worked closely with clients to implement secure coding practices, threat modeling, and vulnerability assessments, providing actionable recommendations to increase their cybersecurity posture.</li>\n</ul>\n</li>\n<li>\n<p>Cloud Security Solutions for Clients:</p>\n<ul>\n<li>Designed, deployed, and maintained secure cloud architectures across multiple platforms (AWS, Google Cloud, Azure) to meet unique client requirements and improve their cloud security.</li>\n</ul>\n</li>\n<li>\n<p>Automated Security Measures for Clients:</p>\n<ul>\n<li>Strategically utilized tools like Terraform and Ansible for infrastructure as code (IaC), automating and streamlining security-related tasks in client systems for enhanced security and efficiency.</li>\n</ul>\n</li>\n<li>\n<p>White-box Pentesting for Client Systems:</p>\n<ul>\n<li>Conducted comprehensive white-box penetration testing on client systems, identifying security weaknesses by having full knowledge of the system under test; provided detailed reports and advised on effective mitigation strategies to enhance overall security.</li>\n</ul>\n</li>\n</ul>"}}]}}}