Description

SPLUNK Architect Certification with more than 8 years of experience in Splunk and Cyber Security for major accounts such as Société Générale, BNP PARIBAS, Groupe BPCE.

My technical skills, rigor and team spirit are my assets for the success of my projects.

Languages

French
Native or bilingual
English
Fluent
Arabic
Native or bilingual
Spanish
Basic

Workplace preferences

Can work on-site

Paris (up to 50km)

Dexia BE
Admin Hadoop
BANKING AND INSURANCE
May 2017 - June 2018 (1 year)
Paris, France
Plan, configure, deploy, run, monitor, troubleshoot and secure HADOOP,ELK clusters

- Definition of the physical and application architecture of a multi-logical environment Hadoop cluster (REC, DEV, PRD)
- Automated installation of Hadoop components (HWX) via Ansible
- Activation of high availability on all critical services (HDFS, YARN, Hive).
Integration of components into the enterprise active directory
- Enable Hadoop security via SSL and Kerberos authentication
- Transfer of application logs to an ELK
- Centralized authorization management via Ranger
- Support for data scientists using Zeppelin (Scala, python, R interpreter)
- Kafka cluster administration for a banking application (topic definitions, number of partitions/producers/consumers)
- Throubleshooting and optimization of Spark jobs
HDFS,SPARK,ANSIBLE,KAFKA,MAPREDUCE,ELASTICSEARCH
BPCE
Tech Lead SOC
BANKING AND INSURANCE
May 2020 - Today (6 years and 1 month)
Paris, France

- Implementation DLP scenarios (Mail, Web, sensitive business applications, etc.) and information leakage scenarios for the SSI team
- SPLUNK ES integration (Splunk Entreprise Security)
- Splunk administration (adding sources, upgrading to Splunk 8.0)
- Splunk architecture review (cluster upgrade from 12 indexers to
24 indexers)
- Supervision and maintenance of the Splunk platform
- Development of python scripts for data collection.
- Automated configuration of universal forwarders via Ansible
SPLUNK,SOAR,ES,PYTHON,SQL,ANSIBLE
Société Générale - GTPS
Architecte SPLUNK
BANKING AND INSURANCE
June 2018 - June 2020 (2 years and 1 month)
Paris, France
Implementation of the SPLUNK platform for security use cases
- Clustering of Indexer instances
- Review of Splunk architecture (cluster upgrade from 12 indexers to 24
indexers)
- Set up server deployment
- Activation of SPLUNK user authentication via leLDAP
- Syslog configuration for data collection to Splunk
- Collection of metrics and logs from Shinken, Unicron (CMDB), N agios
- Development of Uses cases in Capacity planning Infra and security
- Development of advanced reports and dashboards
- Definition of storage solutions and data structuring (S3 storage)
- Deployment of dbconnect to collect data from an external database to the Splunk tool
- Deployment of the ITSI (IT Service Intelligence) module for predictive
predictive maintenance
- Upload Nagios alerts to ITSI
- Monitoring with Gafana and development of plugins
- Development of machine learning toolkit
- Assist splunk teams in maintaining dashboards in production
production
- Train security team in complex searches and splunk modules