Amor Jelassi

Security Specialist (Team Lead), October 2023 – Present.

• Lead a team of security professionals to protect the company's network, data, and assets from cyber threats.
• Oversee the development and implementation of security strategies, policies, and protocols.
• Collaborate with cross-functional teams to assess and mitigate security risks.
• Manage incident response and recovery plans, ensuring minimal disruption to operations.
• Report to senior management on the effectiveness of the company's security posture, and potential improvements.

Security Specialist, February 2021 – October 2023.

• Conducting risk assessments to identify potential vulnerabilities, threats, and risks to the organization's infrastructure and data
• Monitor network traffic to detect unauthorized access attempts or malicious activities.
• Performing audits and assessments to ensure compliance with industry regulations, standards, and internal security policies (SOC 2)
• Developing and implementing incident response plans to address and mitigate security incidents and breaches (SOAR).
• Monitor systems and networks for potential security breaches, unauthorized access, and malicious activities.
• Conducting vulnerability assessments and managing the process of identifying, prioritizing, and remediating vulnerabilities in systems and applications (Nessus Pro, MS Defender Vulnerability Management).
• Collaborating with IT teams to design and implement secure infrastructure and systems
• Assessing and selecting security tools and technologies to enhance the organization's security posture.

In addition to my primary role, I work as a Cybersecurity Consultant, where I help various clients with security incident investigations.

• Provide expertise in forensic analysis, security audits, and incident response.
• Ensuring that organizations can identify, respond to, and recover from security incidents effectively.
• Provide actionable recommendations to strengthen security measures.
• Offer training to teams, enhancing their ability to handle future incidents, and improve overall security posture.

• Led a team of security analysts in monitoring and investigating security events.
• Coordinate incident response activities, and escalated critical threats.
• Perform periodic audits of user accounts to ensure compliance with established policies and procedures.
• Monitor security access logs and analyze system events for suspicious activity.
• Monitor, detected and reported security incidents using SIEM software.
• Investigate security alerts, and worked on incident mitigation.
• Vulnerability management with Tenable SC, Tenable IO, and Nessus Pro.
• MS Azure Security (Azure Automation Account, Sentinel, Azure Security Center, Endpoint Management)
• Security awareness bulletins for internal users
• Participation in projects and security assessments for internal use, as well as for our customers.

• Administration of network infrastructures, servers, storage, and backups.
• Management of a fleet of 500 servers (including 400 VMs) and 1,400 workstations, spread over 4 remote sites.
• Management of backups and storage.
• Migration of server and user messaging (Lotus to Office 365).
• Realization of level 2 and 3 support for technical incidents (assistance to operating and development teams).
• Deployment of test, dev, and production environments, and their adaptations to group internal procedures.
• Web services management (IIS).
• Scripting Shell / PowerShell
• Configuration of SSH, SFTP, SMTP services ..
• Very varied environmental installations (Linux, Windows).
• Server monitoring and alert management (Nagios, Centreon).
• Implementation of Active Directory, DNS, DHCP, and WSUS services.
• Management of GPOs and scheduled tasks in the Windows environment.
• Preparation of weekly reports.
• Creation of documentation (Wiki, KeyPass).

• Realization of Level 2 and Level 3 supports on technical incidents.
• Administration of firewalls and installation of VPNs (Juniper, Cisco ASA).
• Implementation of a Business Recovery Plan, a Remote Desktop Service (RDS) portal, and access management.
• Virtualization P2V servers (Linux and Windows).
• Management of web services (IIS, Apache, Httpd).
• Management of the JIRA application.
• Backup management (Backup Exec, Bacula, and Veeam Backup)
• Server monitoring and alert management (Nagios, SNMP client, Eyes of Network, Cacti, Weathermap).
• Network administration: configuration of the various network equipment (Cisco switches, Dell, SMC, Cisco routers, WiFi access points).
• Administration VoIP.
• Creation of documentation (Wiki, Cadet).
• Administration of virtualization systems: Deployment, administration, and supervision of servers on VMware platforms (VCenter, ESXi), and the deployment of vSphere HA (High Availability).

• Daily checks and monitoring of the system infrastructure
• Maintenance of IT equipment (PC, printers, servers, etc.)
• Advice and assistance to Customers
• Telephone support and remote maintenance

• VoIP management (Asterisk, SIP, etc.)
• Configuration of network equipment (Routers, Switch, firewall ...)
• Management and installation of access control (time clocks, surveillance cameras).