Safa BEN KRIMA

Experience

• 

  La Poste Tunisienne

  Jul 2015 - Jul 2015

  Technician Internship

  Configuration and simulation of a network architecture using GNS3.Keywords: IPv4, IPv6, OSPF, RIP,VLAN, NAT, DHCP

• 

  Tunisie Télécom

  Feb 2016 - May 2016

  End of Studies Internship

  Design and development of a platform for automation, integration, and monitoring of the SIP Trunk network.Keywords : VoIP, Nagios, PRTG, HTML, PHP, Mysql

• 

  Amen Bank

  Jul 2017 - Aug 2017

  Human Resources Internship

  Participation in the daily operations of a banking branch.

• 

  Groupe SFM

  Jun 2018 - Jul 2018

  Engineering Intern

  Development of a module for estimating traffic loss due to radio site outages.

• 

  Mantu

  Feb 2019 - now

  - Deployed endpoint security policies via Intune, based on industry standards.- Configured Microsoft security services and solutions such Microsoft 365 defender, Microsoft Defender for Endpoint, Microsoft Entra ID, Azure Sentinel and Azure Policy.- Investigated EDR alerts, identifying and mitigating security issues promptly.- Performed Security Assessment of Azure environment and provided recommendations to enhance security posture.- Developed documentation of findings, including detailed reports and presentations, to communicate security vulnerabilities and recommendations.- Regularly deployed phishing simulation tests to enhance organizational awareness and resilience against email-based threats.- Implemented a vulnerability management process using Qualys.- Developed an automated patching process to remediate vulnerabilities. Show less - Configured SIEM, implementing use cases and detection rules based on MITRE ATT&CK Framework.- Monitored and analyzed security logs and alerts with SIEM tools to identify potential security incidents.- Investigated and responded to security incidents, including malware infections, phishing attempts and unauthorized access events.- Conducted a thorough security audit and assessment of Active Directory to ensure compliance and identify vulnerabilities.- Developed security awareness training sessions to enhance organizational cybersecurity knowledge. Show less - Developed and Implemented a Disaster Recovery Plan (DRP) to ensure continuity and resilience of IT operations.- Established Recovery Point Objectives (RPO) and Recovery Time Objectives (RTO) for critical IT services, enhancing system recovery capabilities.- Designed and implemented a backup strategy based on RPO.- Documented and assigned DRP responsibilities, creating clear guidelines for disaster response procedures.Keywords: BCP, DRP, RPO/RTO, Backup, Restore, Veeam, SQL, Cloud Show less

  • Senior Information System Security Officer

    Mar 2022 - now

  • Information System Security Officer

    Oct 2019 - Mar 2022

  • End of studies internship

    Feb 2019 - Sept 2019