Tam El Asmar

I am a driven and meticulous cybersecurity analyst with a strong motivation to identify and assess potential security risks, threats, and vulnerabilities. My focus lies in ensuring the confidentiality, integrity, and availability of assets, contributing to the protection of both organizations and individuals. My passion for information security drives me to seek impactful solutions that benefit both organizations and their stakeholders. I prioritize maintaining a robust security posture to safeguard sensitive data and minimize potential risks and adhere to ISO 27001 framework/standards.

System Administrator/CyberSecurity Specialist

• Design and implement security measures to protect computer systems, networks, and data.
• Monitor and detect potential security threats and vulnerabilities.
• Familiar/experienced with SIEM, SOAR, IAM, Azure Ad, Sailpoint, Azure tools, Wireshark, Tcpdump, Metasploit, Nmap, Omnipeek, etc.
• Conduct vulnerability assessments and penetration testing.
• Develop and implement security policies and procedures.
• Stay up-to-date with the latest cybersecurity trends, technologies, and threats.
• Install and configure software and hardware.
• Manage network servers and tools.
• Setup accounts and workstations.
• Monitored performance and maintained systems according to requirements.
• Troubleshoot issues and outages.
• Ensure security through access controls, backups, and firewalls.
• Update/patch systems.
• Train staff on new technologies.
• SQL Data Management/Security, Tableau/Power BI

Cyber Security Analyst
• Collaboratively authored and updated security plans in adherence to NIST and Quebec's Law 25 standards.
• Actively participated in security audits, (SOCI, SOCII), used playbooks, stakeholders’ communication; achieving commendable results.
• Conducted impromptu security inspections for site employees, safeguarding technical operations' legitimacy and adhering to privacy regulations.
• Devised batch scripts to facilitate check-ins and updates for over 200 systems.
• Spearheaded a comprehensive site-wide inventory project for large forestry of systems, meticulously maintaining accurate client records and compliance with relevant regulations.
• Techonlogies: SIEM (Splunk Enterprise Security, QRadar), XDR platforms (Trend Micro Vision One), EDR, IDS/IPS, Firewalls, Endpoint Security, Vulnerability Assessment Tools, Microsoft Cloud Technologies (Entra ID, Microsoft 365 Security Center), Active Directory, PowerShell, Python, Network Traffic Analysis, Threat Intelligence (VirusTotal, Hybrid Analysis), Incident Response Playbooks, Ransomware Defense, and Phishing Detection.
 

• McGill CyberSecurity Diploma CSC 
• McGill *Graduate CyberSecurity Diploma SIS 
• Completed Block 4 French CEGEP
• ISC2 CyberSecurity Certificate 
• Working towards Cissp

• 2022

• Microsoft Azure Virtual Training Day: 
  Well-Architected Framework

McGill University Diploma (GPA 3.77) courses;

• Access Control & Defence Methods
• Intrusion Test & Security Assessment (RedTeam)
• Security Program Architecture and Engineering 
• Security Risk Management Governance
• Security Incident Respond & Recovery Security 
• Programming Techniques 
• Operating Systems Admin
• Communication and Network Security
• Networking Fundamentals
• Information System Security