Mahmoud EL-MOUDAD - SecOps Engineer

Professional Summary

Security Operations Analyst with 6 years of expertise in SIEM administration, threat detection, and incident response. Specialized in deploying and managing IBM QRadar, Microsoft Sentinel, and Splunk platforms across enterprise environments. Proven track record in designing detection rules aligned with MITRE ATT&CK framework, reducing false positives, and leading SOC teams. Strong background in cloud infrastructure (Azure, Linux), IAM solutions, and client-facing support in MSSP environments. Bilingual professional (French C2, English C1) based in Luxembourg with Master's degree in Digital Transformation and Engineering background in Computer Networks.

Work Experience

SOC Analyst

EDAN POST Luxembourg

Oct 2024 – Present

Monitor and analyze security events for multiple customers using SIEM and EDR solutions
Investigate alerts with threat-intelligence tools and communicate recommendations to clients
Tune detection rules and procedures to reduce false positives and improve SOC efficiency
Conduct incident response and post-incident analysis

Platform SIEM Engineer

Sogeti, Luxembourg

Nov 2022 – Sep 2024

Administered and deployed IBM QRadar and Microsoft Sentinel for multiple client environments
Designed and fine-tuned detection rules, performed technical audits, and proposed improvements
Managed user identities and access control through Keycloak and Active Directory
Proactively monitored SIEM infrastructure on RedHat Linux 7 and VMware vCenter
Integrated diverse data sources into SIEM platforms for comprehensive monitoring
Managed Microsoft Azure cloud services for SOC operations

Support MSSP Consultant

Dataprotect, Casablanca

Mar 2022 – Oct 2022

Orchestrated integration and advanced support for QRadar SIEM, Guardium, and Tripwire solutions
Managed service requests and incident resolution within strict deadlines
Ensured continuous monitoring of client platforms and proactive service continuity

IT Consultant

Corporate Software Expertise Data, Casablanca

Apr 2019 – Feb 2022

Led major projects implementing QRadar SIEM and Guardium Data Protection solutions
Deployed solutions for high-profile enterprise clients in telecom, financial, and logistics sectors
Implemented sensitive data masking and protection solutions
Led infrastructure migration projects and version control system upgrades
Handled requirements gathering, bid responses, technical documentation, and team training

Education

Master's Degree - INTENSE

Innovation and Digital Transformation of the Enterprise

Université Côte d'Azur, Nice, France

2018 – 2019

Engineering Degree

Computer Engineering and Networks

Ecole Marocaine des Sciences de l'Ingénieur, Casablanca

2014 – 2019

Technical Skills

SIEM QRadar, Sentinel, Splunk

Security Tools Guardium, Tripwire, EDR

Scripting Python, Bash, PowerShell

Cloud/Infra Azure, Linux, VMware

IAM Keycloak, Active Directory

Detection MITRE ATT&CK, Rule Tuning

Threat Intel Analysis, Incident Response

Other O365, GIT, Informatica

Certifications & Training

CompTIA CySA+

In Progress

IBM Certified Associate Administrator - QRadar SIEM V7.3.2

IBM

ITIL v4 Foundation Certificate in IT Service Management

AXELOS

Certified in Cybersecurity (CC)

ISC2

IBM Blockchain Foundation Developer & Essentials

IBM

MTA: Windows Server Administration Fundamentals (98-365)

Microsoft

MTA: Database Fundamentals (98-364)

Microsoft

Languages

French C2 (Native)

English C1 (Professional)

Key Attributes

Proactive

Resourceful

Problem-Solver

Methodical

Thorough

Collaborative

Clear Communicator

Detail-Oriented