Ismaïl Zemouri
Freelance Senior Cybersecurity Engineer | IAM & PKI Expert
Brussels, BE.About
Highly accomplished Cybersecurity professional with CISSP and AWS Cloud Architect certifications, specializing in Cloud Security, Digital Identity Protection, and Cryptography. Leveraging deep expertise in PKI, IAM, and Key Management, I deliver robust security solutions and strategic guidance. Proven ability to drive complex projects, enhance organizational security posture, and communicate effectively across technical and business stakeholders.
Work
Brussels, Belgium, Belgium
→
Summary
Developed and maintained advanced cryptographic solutions within the CISO Division, ensuring robust security for enterprise-wide digital assets and operations.
Highlights
Led critical Hardware Security Module (HSM) ceremonies, including key generation, installation, and code signing, safeguarding the Euroclear Enterprise Cryptography service.
Automated the TLS certificate lifecycle via Venafi within CI/CD pipelines, significantly enhancing efficiency and security compliance.
Functioned as a Registration Authority, managing the end-to-end lifecycle of smart cards for both internal and external users, ensuring secure access.
Provided expert support and troubleshooting for Key and Certificate Management, resolving issues, managing expirations, and ensuring seamless operations for over 1000 users.
Developed and maintained comprehensive Standard Operating Procedures (SOPs) and support documentation, improving operational clarity and facilitating knowledge transfer.
Brussels, Belgium, Belgium
→
Summary
Managed critical key lifecycles and HSM systems, ensuring adherence to stringent security policies and contributing to robust infrastructure upgrades.
Highlights
Managed the Adyton key lifecycle and authored security policies, ensuring strict compliance with ISAE3402 and ISO 27001 standards.
Implemented a Vault-based API access control and secret management project, enhancing the security posture of critical applications.
Led successful Adyton machine updates across Development and Quality Assurance environments, orchestrating comprehensive testing with multiple squads for production readiness.
Updated and improved existing security procedures and documentation, streamlining operations and enhancing audit readiness.
Applied Agile methodologies to create and update User Stories and tasks in Rally, improving project transparency and workflow efficiency.
Brussels, Belgium, Belgium
→
Summary
Provided expert pre-sales technical support for PKI and Identity & Access Management solutions, driving successful client engagements and product adoption.
Highlights
Delivered comprehensive PKI integrations, IAM enablement, and risk assessments, directly contributing to successful client solution deployments.
Collaborated closely with sales teams and product management to lead opportunities, conducting Proofs of Concept (PoCs) and delivering technical training on HTTPS/TLS protocols.
Trained new hires on diverse Identity & Access Management solutions, including Identity Governance & Administration (IGA) and Privileged Access Management (PAM).
Implemented PKI management solutions leveraging OpenLDAP technology via MS AD, enhancing digital security infrastructure for clients.
Conducted security awareness training and advised on best practices, fostering adherence to security rules and standards across client organizations.
Brussels, Belgium, Belgium
→
Summary
Managed school operations and led strategic initiatives for digital transformation and security enhancements over a six-year tenure.
Highlights
Led the school's digital transition, successfully integrating new technologies and improving operational efficiency.
Implemented significant access security improvements, safeguarding sensitive data and ensuring a secure learning environment.
Brussels, Belgium, Belgium
→
Summary
Provided IT support for secure infrastructure deployments, ensuring compliance with evolving security practices for critical governmental clients.
Highlights
Supported secure infrastructure deployments for the EU Commission, ensuring operational stability and data integrity.
Aligned deployment processes with container security best practices, enhancing the resilience and security of deployed systems.
Certificates
Languages
French
English
Arabic
Dutch
Skills
Security Technologies
PKI, SSL/TLS, VPN, IPsec, IAM, HSM (Adyton, Thales, nCipher, Luna Entrust), Smart Cards, API Security, SAST/DAST, HashiCorp Vault, Venafi, Prisma Cloud, Checkmarx, Digital Certificate Management, Identity Protection, Authentication Solutions, Access Management, Single Sign-On (SSO), Identity Federation, Key Management, Certificate Lifecycle Management, Cryptography, Digital Signatures, OpenID Connect, SAML, Critical Environments Security (Banks, Financial Institutions), Risk Assessment, Security Incident Management, Patch Management.
Cloud Platforms & Infrastructure
AWS Cloud Security, Cloud Security, IoT Security, Infrastructure as Code (IaC), Container Security, Cisco Cloud.
Methodologies & Standards
Agile Methodologies, Scrum, ISAE3402, ISO 27001, NIS2, Standard Operating Procedures (SOPs), Risk Analysis, Security Policy Definition.
Programming & Scripting
Python, REST, JSON.
Tools & Systems
GitHub, SNOW, OpenLDAP, MS AD, Rally, EJBCA, Archimate, Visio, Windows, Application Log Analysis.
Technical Expertise
PKI Architecture & Design, Key & Policy Management, Telecommunication Protocols (TLS/SSL), Public Key Infrastructure (Internal & Internet), Cryptographic Libraries (OpenSSL, MS CNG).