Salwa EL OUATTAB
Casablanca,CAS
Summary
Dynamic cybersecurity specialist with a keen focus on Cloud security, particularly Microsoft Office 365/Azure and AWS. Proficient in effectively communicating technical concepts to IT teams, end users, and clients and possesses a strong grasp of business objectives as well as a passion for leveraging technology to address organizational challenges.
Overview
1
1
year of professional experience
1
1
Certification
Work History
Cybersecurity Specialist
N+ONE Datacenters
08.2023 - Current
- Elevated our Microsoft secure score by 25% through the implementation of various security measures, including conditional access policies, Multi-Factor Authentication (MFA), Identity Protection, Access reviews, and leveraging Defender for Endpoint as part of proactive threat detection and response strategies.
- Implemented a robust Data Loss Prevention (DLP) policy in Microsoft Purview, preventing sensitive data leakage beyond our domain. Leveraged Purview's monitoring capabilities to fine-tune policies and mitigate violations, while regularly monitoring DLP reports to identify potential security incidents. Dynamically adjusted enforcement based on user risk levels through integration with Insider Risk Management, ensuring compliance and proactive data protection.
- Managed subscriptions for both our organization and clients, implementing Microsoft Defender for Cloud to safeguard workloads, including Just-In-Time (JIT) for VMs, adaptive application controls, and VM vulnerability assessments.
- Conducted routine audits on Azure resources, ensuring compliance with security standards such as the CIS benchmark and industry regulations like ISO 27001 and PCI DSS.
- Enhanced the IAM model through an extensive restructuring of Microsoft ENTRA ID roles and RBAC roles at the subscription level, leveraging ABAC as well to emphasize the principle of least privilege.
- Led the support and implementation of Microsoft Intune across corporate endpoints, primarily focusing on Android, iOS, and Windows devices. Applied compliance policies and configuration profiles to ensure devices remained aligned with the company's specific security protocols.
- Facilitated security awareness sessions on phishing attacks, social engineering, and password management, followed by a successful phishing simulation using Microsoft's attack simulator, achieving a 90% success rate.
- Enforced compliance with company-specific policies by deploying Azure Policy with Terraform.
- Conducted client consultations to recommend tailored security architectures in Azure that align with their unique requirements and budgetary constraints.
- Led the company's ISO 27001:2022 recertification process, drafting missing policies and procedures, restructuring the statement of applicability and risk assessment workbook, and collaborating with external auditors to validate implemented controls.
Cloud Security Intern
N+ONE Datacenters
02.2023 - 08.2023
- Conducted audits of both client and internal AWS infrastructures against the AWS Well-Architected Framework, identifying non-conformities, and implementing remediation measures.
- Deployed AWS SecurityHub, enhancing our security posture, and increasing our security score by 31.5%.
- Spearheaded the implementation of a robust Security Operations Center (SOC) infrastructure using AWS services including Athena, Glue,Cloudtrail, EventBridge, Lambda functions for exception handling and alert enrichment, SecurityHub, GuardDuty, and Quicksight for dashboard visualization.
- Established an AWS site-to-site VPN connection between our VPC and on-premises network, facilitating seamless alert transmission to our on-premises SOC for further analysis and response.
- Conducted AWS workshops to educate colleagues about AWS services and best practices, fostering a culture of continuous learning and skill development within the organization.
- Monitored client EC2 instances, set up automated notification alerts using CloudWatch and SNS, and executed automated patching with Systems Manager for efficient maintenance of system security and compliance.
- Built and Implemented our environment's IAM Model.
Education
Engineering Degree - Computer Science
ENSEM
Casablanca, Morocco08.2023
No Degree - Physics And Engineering Science
CPGE
El Jadida, Morocco07.2020
High School Diploma -
Ibno Mandour High School
Casablanca, Morocco07.2018
Skills
- Azure Security, RBAC, Azure Policy, Azure Key Vault, Azure Monitor, Azure Functions, Azure Logic Apps
- Identity and access management (IAM), Zero Trust, Microsoft Purview, Microsoft Entra ID
- Exchange Online, Data Loss Prevention (DLP), Microsoft Intune
- Microsoft 365 Defender, Microsoft Defender for Endpoint, Microsoft Defender for Cloud
- AWS Security, SecurityHub, GuardDuty, IAM, CloudTrail, CloudWatch, Lambda Functions, Systems Manager, AWS Inspector, AWS Config, Macie
- AWS Athena, Quicksight, AWS Glue, SNS, SQS, EventBridge
- Infrastructure as Code: Cloudformation, Terraform
- Coding and scripting: Bash, Python and C#
Certification
AWS Solutions Architect Associate - SAA-C02
Azure Security Engineer Associate - AZ-500
Cisco Certified Network Associate - CCNA
Microsoft Cybersecurity Architect - SC-100 (In progress)
Timeline
Cybersecurity Specialist
N+ONE Datacenters
08.2023 - Current
Cloud Security Intern
N+ONE Datacenters
02.2023 - 08.2023
Engineering Degree - Computer Science
ENSEM
No Degree - Physics And Engineering Science
CPGE
High School Diploma -
Ibno Mandour High School
Similar Profiles
Rajesh Raj MadhaRajesh Raj Madha
Senior Graphic Designer & UI UX Designer at Pi DatacentersSenior Graphic Designer & UI UX Designer at Pi Datacenters
Darshana JambhaleDarshana Jambhale
Sales Head - Strategic Accounts, PAN India at CtrlS Datacenters Ltd.Sales Head - Strategic Accounts, PAN India at CtrlS Datacenters Ltd.
Vijaya Krishna ThotaVijaya Krishna Thota
Cybersecurity Analyst at CtrlS DatacentersCybersecurity Analyst at CtrlS Datacenters