ISO27001 Certification
Navigating global success
Client
ORES
Date
2023 – 2024
Technologies
SPLUNK – TENABLE – MICROSOFT AZURE – CIS SECURE SUITE – TREND MICRO VISION ONE – INTUNE – ALGOSEC
Contributing on implementation, optimization and maintenance of the Information Security Management System (ISMS) ensuring that Ores operations comply with ISO/IEC 27001 standard & NIS2 directive ,Protecting critical infrastructure and sensitive data from security threats with a focus on security policy development, risk assessment, and coordinating stakeholder collaboration to enhance security posture in a sector where reliability is paramount.
Main Tasks
Supporting the CISO to align security initiatives with organizational goals, providing expert advice on ISMS, risk management, and security strategies.
Conducting gap analyzes between standard’s defined rules and the existing ones, thus the capacity management, technical and functional impact of the proposed solutions.
Managing Security Operation team focused on OT and on-premise infrastructure, overseeing threat detection and incident response.
- Implementing and maintaining vulnerability management program to proactively identifying and mitigating security risks.
Acting as a Subject Matter Expert for implementing Security Solutions such as SIEM(Splunk) & Tenable Vulnerability Management.
“Karim participated in the project to set up an External SIEM/SOC, writen the security incident management procedure…, He set up vulnerability management program with the deployment of a vulnerability scanner solution. What I really appreciated about Karim was his rigor and his organization”
Stéphane Baldino
Chief Information Security Officer – ORES
