Tsegay ABRAHAM

Definition and Implementation of the Security Policy
• Design and implementation of the organization’s security policy.
• Project management: planning, monitoring, and steering of IT security projects.
• Continuous monitoring of technological and regulatory developments to anticipate risks and adapt strategies.
• Advisory support to the DPO in tasks related to compliance and data protection.
• Application of security standards and enforcement of the security policy.
• Security needs assessment for business projects, risk evaluation, and proposal of mitigation measures.
• Auditing and monitoring the enforcement of security rules to ensure effectiveness and compliance.
• Crisis management: activation and coordination of crisis cells in case of major security incidents.
• Establishment and management of security committees to coordinate efforts and promote best practices.
• Preparation of reports for top management to support decision-making in security matters.

Advisory and Support :
• Providing guidance to top management on cybersecurity, aligning strategies with business objectives.
• Ensuring regulatory compliance, including GDPR and CNIL requirements.
• Promoting security awareness and training programs across the organization to strengthen security culture.

• Developed and implemented comprehensive information security strategies to protect organizational assets.

Operations and Technology :
• Implementation of a Security Operations Center (SoC) for continuous monitoring and incident response.
• Team management: leadership and development of the security team’s skills.
• Security incident management: rapid and effective response to minimize impacts.
• Deployment and oversight of advanced security technologies (IDS/IPS, next-generation firewalls, SIEM, EDR, XDR,
bastion systems).
• Identity and Access Management (IAM) to control access to resources and sensitive data.
• Cloud security: securing Office 365 and other cloud services to protect data and applications.
• Definition of administration strategies to ensure secure and efficient IT system management.

• Led incident response efforts, minimizing impact of security breaches and vulnerabilities.

• Deployed WAN/LAN infrastructures (Routers, Switches, NAS).
• Designed and implemented backup solutions (DRP/BCP).
• Administered Windows servers (NT to 2019), including AD, DNS, DHCP.
• Installed and managed Linux services (DHCP, DNS, FTP, LDAP).
• Implemented virtualization platforms: VMware, vSphere, Hyper-V.
• Installed and administered Microsoft Exchange Server 2010/2013.
• Managed VoIP telephony: deployment, administration, and user training.
• Led infrastructure installation, migration, and deployment projects.
• Oversaw IT asset management across Windows, Mac, and Linux.
• Maintained hardware: assembly/disassembly, troubleshooting, repairs.
• Provided helpdesk support: remote assistance, incident resolution.
• Delivered user training, wrote manuals and procedures.
• Acted as technical and commercial consultant for professional clients.
• Configured and maintained network infrastructure to ensure optimal performance and security.
• Monitored network systems for anomalies, troubleshooting issues to minimize downtime.