Securing Digital Architectures with Precision.
Independent Cybersecurity consultant with over 8 years of experience in the banking and financial sector. SOC Manager, Incident Response expert, Pentest and member of the Tunisian FinancialCERT.
>
8+
YRS EXP
L3
SOC LEAD
10+
CERTS
4
COMPANIES
// CONSULTING_SERVICES
What I Offer
As an independent cybersecurity consultant, I work with organizations to address specific needs requiring rapid and tailored expertise — from strategic advisory to hands-on technical assistance.
Senior Cybersecurity Consultant
Strategic and technical advisory for organizations seeking to strengthen their security posture. Risk assessment, roadmap definition, and implementation oversight.
SHORT TO MID-TERM MISSIONS
Cyber Security Manager
Leading and structuring security operations — team management, process definition, escalation procedures, and KPI reporting to C-level executives.
OPERATIONAL LEADERSHIP
Cybersecurity Analyst / Expert
In-depth threat analysis, incident investigation, and technical expertise across SIEM, EDR, XDR, and threat intelligence platforms to support decision-making.
TECHNICAL EXPERTISE
SOC Manager / SOC L3 Analyst
Building and managing SOC operations from the ground up — playbook development, L1–L3 team structuring, alert triage, and advanced incident response.
SOC OPERATIONS
ISMS Auditor (ISO 27001)
Gap analysis, audit preparation, and ISO 27001 implementation support. Helping organizations achieve and maintain compliance with international security standards.
GOVERNANCE & COMPLIANCE
Penetration Testing
Offensive security assessments to identify and exploit vulnerabilities before attackers do — across infrastructure, web applications, and mobile platforms.
OFFENSIVE SECURITY
AVAILABILITY STATUS
Open to New Missions
// TECHNICAL_CAPABILITIES
The Defense Arsenal
Enterprise-grade security platforms, threat intelligence tools, and compliance frameworks deployed across the Tunisian financial sector and beyond.
SIEM / SOAR
-
Splunk / Sentinel
-
ELK / QRadar / Wazuh
-
Cortex XSOAR
-
Shuffle / LogRhythm
EDR / XDR
-
CrowdStrike
-
SentinelOne
-
Cortex XDR / TrendMicro
-
Sophos / Sekoia / HarfangLab
Governance
ISO 27001
NIST CSF
MITRE ATT&CK
GDPR
OWASP
Kill Chain
// DEPLOYMENT_HISTORY
Professional Trajectory
02/2023 — PRESENT
Cybersecurity Consultant
Banking & Financial Council (CBF) · Independent · Tunis
- ▹ Member of the Tunisian FinancialCERT
- ▹ Lead & manage SOC team (L1→L3): recruitment, training, performance evaluation
- ▹ Define SOC processes — playbooks, escalation paths, communication workflows
- ▹ Drive continuous improvement of SIEM, SOAR, EDR, XDR, TI platforms
- ▹ Coordinate with CERT, IT, Risk Management during major incidents
- ▹ Ensure compliance: ISO 27001, NIST, MITRE ATT&CK
TECH ENV
TrendMicro · Cortex XDR · ELK · QRadar · LogRhythm · Wazuh · MS Sentinel · Shuffle · MISP · OpenCTI · GitLab · TheHive
- ▹ Investigated and analyzed security incidents escalated by L1 analysts
- ▹ Supported clients in incident response and remediation processes
- ▹ Monitored and qualified alerts from EDR/XDR/SIEM tools
- ▹ Correlated sensors and sources to aid decision making
- ▹ Produced investigation reports and attack visualizations
- ▹ Reduced false positives through process optimization & threat intel
TECH ENV
SentinelOne · CrowdStrike · HarfangLab · Splunk · Cortex XSOAR · Qualys · MISP · Sekoia XDR
02/2022 — 08/2023
SOC Analyst L2
INTRINSEC · Independent · Tunis
02/2019 — 02/2022
Cybersecurity Analyst
Banking & Financial Council (CBF) · Full-time · Tunis
- ▹ Member of the Tunisian FinancialCERT
- ▹ Led implementation of security policies, audits, and ISO 27001 readiness
- ▹ Monitored infrastructure availability, backups, and IAM
- ▹ Investigated and responded to incidents reported by member banks
- ▹ Produced detailed incident reports with impact analysis & remediation
- ▹ Deployed & managed MISP, TheHive, Cortex, ELK, Graylog
TECH ENV
MISP · TheHive · Cortex · GLPI · OpenVAS · Nagios · Centreon · Zabbix · ELK · Graylog · SIEMonster · Sophos Intercept X · AD · WSUS · O365
- ▹ Identified potential threats and conducted joint research on risks
- ▹ Acted as communication hub for the financial sector during crisis periods
- ▹ Sent information bulletins to members following attacks
- ▹ Issued vulnerability alerts and mitigation guidance to banks
TECH ENV
Sandbox · Kali Linux · Metasploit · Nmap · Burp Suite · SQLmap · Wireshark · John the Ripper
02/2018 — 02/2019
Cybersecurity Consultant
KEYSTONE · Full-time · Tunis
Verified Credentials
ISO 27001
Lead Auditor
ISO 27001
Lead Implementer
Blue Team
Level 1
SC-200 Microsoft
Security Analyst
(ISC)²
Certified CC
Splunk Core
Certified User
Sekoia
Security Analyst
Blockchain &
Financial Services
FIRST
CVSSv3 Certificate
CCNA
Security
// ACADEMIC_RECORD
Education & Languages
2018
National Engineering Degree in Telecommunications
International Institute of Technology (IIT)
SFAX, TN · Systems & Network Security
2015
Applied Bachelor's in Network Administration & Security
ENET'COM — National School of Electronics & Telecom
SFAX, TN
2010
Baccalaureate in Computer Science
Mahmoud Megdiche High School
SFAX, TN
AR
ARABIC
NATIVE
FR
FRENCH
C1 — ADVANCED
EN
ENGLISH
B2 — UPPER INT.
// ESTABLISH_CONNECTION
Ready to Fortify Your Assets?
Currently accepting consulting engagements. Available for SOC leadership, incident response, threat intelligence, and ISO 27001 implementation mandates.