Tristan Rafinon
Paris
Summary
Results-driven and highly skilled Vulnerability Analysis and OS Hardening Engineer with a proven track record of securing complex IT environments. Adept at identifying and mitigating security risks through comprehensive vulnerability assessments and implementing robust hardening measures. Proficient in conducting in-depth analysis of operating systems to enhance their resilience against cyber threats. Strong expertise in developing and implementing security policies, procedures, and best practices. Committed to staying abreast of the latest industry trends and emerging threats to ensure proactive defense strategies. Exceptional communication skills, collaborating effectively with cross-functional teams to achieve organizational security objectives.
Overview
6
6
years of professional experience
1
1
Certification
Work History
Vulnerability Analyst and Hardening
BPCE IT
11.2022 - Current
- Vulnerability Analysis with Qualys on multiple technology on a international sized infrastructure
- Monthly scan of all assets / regular meetings with teams affected by critical vulns
- Implementation of OS middleware hardening
- Implementation of hardening on servers in sensitive areas (PCI-DSS, Swift, etc.) / regular meetings with
technical and application teams - Monthly scanning of new masters to guarantee a high level of risk coverage
- Increased the average CIS compliance of the infrastructure
- Create and manage dashboard on Splunk
- Supporting international teams in vulnerability management and hardening
Cybersecurity Consultant
Afd Tech - Part of accenture
09.2021 - Current
Cybersecurity Consultant
Ministry of Health (Orange Cyber defense)
09.2021 - 11.2022
- Administration, supervision and maintenance of security equipment
- Security incident Management and request processing
- Vulnerability analysis and reporting with Nessus
- Firewalling and Network traffic analysis (F5, Palo Alto, Juniper)
- Bind DNS management and analysis
- Managing VIP on F5
- Proofpoint management.
Noc Analyst
Rampar
09.2017 - 08.2021
- L2//L3 Support
- Qualys expertise, scanning and reporting, created multiple weekly scan with various intensity, weekly and monthly report
- Server patch management on an iso 27001 infrastructure
- Linux Administration (kerberos, password manager)
- Splunk, Data analysis and reporting, created dashboards and extracted datas in order to troubleshoot multiple issues
- Vulnerability remediation on both windows server and linux
- Checkpoint management, network troubleshooting and port opening, whitelisting
- Windows Administration, managed active directory and made GPO, deployed update through WSUS.
Education
MASTER IN CYBERSECURITY -
ESGI
01.2021
Network Engineer -
ESME Sudria
01.2018
BTS IN SYSTEM NUMÉRIQUE OPTION INFORMATIQUE ET RÉSEAU -
Lycée Diderot
01.2017
Skills
- Splunk / Qualys / Nessus
- Vulnerability Analysis / OS Hardening
- CVE / CVSS
- Debian / Red Hat / Bash / Windows
- Fortinet / Cisco / Checkpoint
- F5 / Palo Alto / Juniper / Checkpoint
- Bind DNS
- Documentation and Reporting
- Process Enhancement
- Issue Identification
- Risk Mitigation
- Information Gathering
Certification
- Splunk Fundamentals 2, Splunk, 2021
- Splunk Fundamentals 1, Splunk, 2020
- Certified Ethical Hacker, EC-Council, 2019
- TOEIC, ETS Global, 900, 2019
- Cisco CCNA, Cisco, 2018
Languages
French/English speaking
Projects
Helios,
helios, is a student project about mapping a cloud infrastructure. the goal is to simplify visualization of the infrastructure between different services, https://github.com/Bleets/helios
ROblind
The project aims to produce an alternative to the traditional guide dog for blind and visually impaired people., https://sites.google.com/site/20162017gr02/home
Timeline
Vulnerability Analyst and Hardening
BPCE IT
11.2022 - Current
Cybersecurity Consultant
Afd Tech - Part of accenture
09.2021 - Current
Cybersecurity Consultant
Ministry of Health (Orange Cyber defense)
09.2021 - 11.2022
Noc Analyst
Rampar
09.2017 - 08.2021
MASTER IN CYBERSECURITY -
ESGI
Network Engineer -
ESME Sudria
BTS IN SYSTEM NUMÉRIQUE OPTION INFORMATIQUE ET RÉSEAU -
Lycée Diderot
Similar Profiles
ALICIA KARLA DIOHALICIA KARLA DIOH
STAGE EN BANQUE at BICEC cameroun/BPCESTAGE EN BANQUE at BICEC cameroun/BPCE
Prescilia RIVAT-URSOPrescilia RIVAT-URSO
Chargée d'assistance réseaux at BPCE AssuranceChargée d'assistance réseaux at BPCE Assurance
Harry ViennotHarry Viennot
DevOps Intern at BPCE Infogérance & TechnologiesDevOps Intern at BPCE Infogérance & Technologies