photo de profil d'un membre

Maelys MONTANTIN

Ingénieur Cybersécurité

Résumé

Cybersecurity is a major issue in today's world. Many objects of everyday life are now connected, not without risks. This is why the security of information systems, which represents all the means and techniques implemented to ensure the integrity, availability and confidentiality of a company's assets, is fundamental.
A recent graduate, I am very mobile and I want to discover new environments. I am keenly interested in the latest innovations in cybersecurity. "feet on the ground and head in the stars" is a motto that describes me very well. My sense of organization as well as my seriousness are my main assets.

La cybersécurité est un sujet majeur du monde d’aujourd’hui. De nombreux objets de la vie de tous les jours sont désormais au connecté, non sans risques. C'est pourquoi la sécurité des systèmes d'informations qui représentant l'ensemble des moyens et des techniques mises en œuvre pour assurer l'intégrité, la disponibilité et la confidentialité des actifs d'une entreprise est fondamental
Diplômé depuis peu, je suis très mobile et j'ai envie de découvrir de nouveaux environnements. Je suis vivement intéressée par les dernières innovations en cybersécurité. Mon sens de l'organisation ainsi que mon sérieux sont mes principaux atouts.

Expériences professionnelles

Responsable sécurité opérationnelle

Compagnie des Alpes , Paris - CDI

De Février 2023 à Aujourd'hui

Cyber risk & security consultant

Headmind Partners , Paris - CDI

De Février 2020 à Juillet 2020

When I joined Beijaflore’s cyber risk and security, I participated in an intensive training course on cyber security and developed my knowledge in this field. Through theoretical lectures and concrete case studies, I was able to understand the different challenges of cyber security.

The Formation :
• Cyber-Risks
• Identification of issues of Confidentiality, Integrity, Availability and Accountability (CIA)
• Training in risk analysis according to the 27005 methodology

• Security mechanisms
• Threat classification and risk assessment according to the EBIOS (Expression of Needs and Identification of Security Objectives).
• Presentation of the different technical elements allowing security controls:
• Firewall and configuration rules (whitelist / blacklist, etc.)
• Proxy / Reverse proxy
• Key management (PKI)
• Log management (SIEM)
• IAM (Identity and Access Management)
• Encryptions mechanism
• Data backup

• IAM (Identity and Access Management)


• Security policies
• ISO 27001 standard
• SMSI Concept
• PDCA (Plan Do Check Act)
• Military Programming Law (MPL)

• Operational systems
• Virtual Machine
• Active Directory
• Web and application servers
• Databases
• FTP/SFTP/FTPS
• Proxy
• SSL/SSH
• Mobile OS

• Awareness of the technical elements of an information system :
• The network: OSI model and TCP/IP protocol
• The different types of networks: LAN, WAN, VLAN, WLAN, MPLS, DMZ

• Network architecture
• Awareness of the principles of network architecture: project and production phases, role of the security architect
• Technical architecture
• Application architecture: 3-tier architecture
• Network architecture elements: Firewall, WAF, IDS/IPS, SIEM, Proxy/Reverse Proxy, VPN
• Perimeter defense and defense in depth

Environment
• Linux, Ubuntu
• Windows, MS Project
ISO 27001, 27002, 27005

Développeuse full stack java/angular

Apside , Rennes - CDI

De Septembre 2019 à Février 2020

Apside is a digital services company based in Rennes. It is involved in consulting and engineering in information systems and industrial, scientific, automotive and financial computing.

I was assigned to internal projects during my inter-contract period.
- Training in Angular
- Advanced Java Training

Formation complémentaire

Cyber Security / SOC analyst

M2i Formation - Cybersécurité

2020 à 2021

Training objective: Acquire the necessary skills to monitor a company's information system, detect any suspicious or malicious activities and propose an action plan in the event of security incidents.
Modules :
- Network Reminders / Windows and Linux
- Python Reminders
- Hacking/ countermeasure technique
- Intrusion test with Python
- Linux/Windows Hardening
- SOC integration and implementation of an SIEM
- Digital Investigation
- Crisis management
- Risk analysis with the EBIOS method
- ISO 27001/27002

Associations

ESEO SPACE

responsable mécanique

Curiosity

Membre

Parcours officiels

ESEO Angers – Ingénieur / Master – Ingénieur Généraliste – 2019

Langues

Français - Langue maternelle

Anglais - Courant

Allemand - Technique

Chinois - Notions

Compétences

Java
Gestion d'équipes
UML
Cybersécurité
Telecom / Réseaux
java8
Angular
cyber-sécurité
analyse de risques cyber
Réseaux informatiques
cyber-résilience
Linux
ISO27001
firewall
IAM
pentest
Audit interne

Centres d'intérêt

  • pratique Volley-ball
  • danse de salon ( salsa
  • samba
  • valse
  • ...)
  • lire des romans policiers.