Resume — CV · 16 June 2026

Professional Profile

15+ years across four continents — auditing hundreds of programs, training thousands of professionals. 300+ certifications. DBA · MBA · MSc · PMP · QSA · CISSP-SME · CCISO · Multi-Accredited Lead Auditor.

Experience
Jun 2026 – Present Current
Chief Information Security Officer (CISO / DSSI)
UNIDEES · Full-time · Algeria

Officially designated CISO / Directeur de la Sécurité des Systèmes d'Information (DSSI) with a formally validated CISO Charter defining authority, independence, responsibilities, and executive positioning. Reports directly to the CEO, operating independently from IT operations to ensure proper separation between cybersecurity governance and operational IT execution. Leads information security governance, cybersecurity strategy, risk management, regulatory and normative compliance, ISO/IEC 27001-aligned ISMS supervision, security audits, SOC/CSIRT strategic oversight, executive reporting, and continuous improvement of UNIDEES' security posture. Defines and enforces security policies; supervises cyber risk assessments and treatment plans; ensures legal/regulatory compliance; oversees audits and corrective actions; validates security requirements for critical projects; delivers executive escalation on major risks and incidents.

Jan 2026 – Present Current
Head of Advisory & CSIRT (B.U. Director)
UNIDEES · Full-time · Algeria

Leads Advisory & CSIRT Business Units — Managed SOC, CSIRT operations, cyber advisory, auditing, training, certification, and strategic partnerships — with full P&L accountability. Governs Managed SOC service models, detection & response strategy, KPIs, SLAs, escalation, continuous improvement. Designed and leads the CSIRT: charter, operating model, playbooks, crisis management, full SOC–CSIRT integration from detection to recovery. Leads GRC, audit, and assurance programs (ISO 27001, 22301, 27701, NIST, PCI DSS, RNSI); manages PCI DSS and SWIFT CSP partnerships; oversees ISO/IEC 17021 franchise with accredited certification body.

Jun 2024 – Present Current  (GOLD: Jan 2026)
Certified GOLD Trainer | Authorized Instructor
PECB · Freelance · Canada, Africa & MEA · Worldwide · ID GT20395871

Authorized for 50+ programs: C|CISO, ISO 27032 CSLCM, CLPTP, SOC 2 SLA, NIST CSC; ISO 27001 Master/SLA/SLI, ISO 27005 SRM, ISO 27035 SLIM; ISO 27701 SLI/SLA, ISO 42001 SLI/SLA; ISO 22301 Master/SLI/SLA, ISO 20000 LI/LA, EBIOS RM, CMSA, ISO 21502 SLPM, CLEH, CCTA, CIR, and many others. Also delivers training through: ISC2, ISACA, CSA, EC-Council, INE Security, OffSec, SANS, TRECCERT, PMI.

Mar 2025 – Present Current
Professional Member | Subject Matter Expert (SME)
AfricaCERT · Part-time · Remote · Africa

SME on the AfricaCERT 3CF (Cybersecurity Common Controls Framework): control catalogues, maturity models, assessment toolkits, national implementation guidance. Expert input on governance, SOC/CSIRT maturity, IR, cloud security, and digital resilience for African institutions.

Nov 2024 – Present Current
Global Advisory Boards Member — C|CISO & C|PENT
EC-Council · Seasonal · Remote · IMEA + APAC

Shapes C|CISO and C|PENT programs: curriculum development, technical reviews, real-world practice integration, and capacity-building advocacy across APAC and IMEA regions.

Sep 2024 – Present Current
Global Accredited Senior Lead Auditor — Management Systems
MSECB · Freelance · Laval, Quebec, Canada

Third-party certification audits worldwide: ISO/IEC 27001:2022, ISO 22301:2019, CSA STAR Level 2. The only accredited auditor in Algeria (ISO 27001, CSA STAR, ISO 22301) and potentially the youngest worldwide as of 2024.

Jan 2015 – Present Current · 11+ years
vCISO & Cybersecurity Expert | Consultant, Assessor, Instructor
Independent (ANAE) · Freelance · Global

Strategic vCISO and expert consulting for SMBs, critical infrastructure, government, national cyber agencies, and global corporations. Pentesting & Red Teaming (PTES, MITRE ATT&CK, purple teaming), adversary simulation; SOC/CSIRT/CERT design and maturity (SIM3, SOC-CMM); IR & DFIR (ISO 27035/27037/27042/27043); GRC audits and gap assessments. Training: SOC & SIEM engineering, threat hunting, CISO-level governance, red/blue team, DFIR, ISO standards.

May 2024 – May 2026 Concluded
Founding President
CSA Algeria Chapter · Self-employed · Algeria

Founded Algeria's first official CSA Chapter: national awareness, CCM/CAIQ/STAR Program adoption, partnerships with industry, academia, and government.

Nov 2023 – May 2026 Concluded
Founding President
OWASP Algiers Chapter · Self-employed · Algeria

Founded and led as Chapter Leader and Board Chair: application security, secure development practices, events, workshops, CTFs, and training programs.

Oct 2025 – May 2026 Concluded
Chairman (Founding President)
CAS Algeria Chapter · Self-employed · Algeria

Founded the first CAS International Chapter in Algeria (Michigan, Sep 2025) — hub for professionals in testing, inspection, certification, and accreditation.

Jun 2024 – Mar 2026 Concluded
Certified Trainer and Authorized Instructor
TRECCERT · Freelance · Hannover, Germany

Official programs: ISO 27001 LI/LA, ISO 22301 LI/LA, ISO 20000 (ITSM), Cybersecurity (CYSE).

Oct 2024 – Dec 2025 Concluded
Franchise Partner | Regional Director | Accredited Lead Auditor
Accurate Global INC. (Maghreb) · Part-time · Algeria & Tunisia

Led launch and operations of Accurate ISO Maghreb; certification delivery under UAF-accredited standards (ISO 27001, 9001, 14001, 45001 — ISO 17021, 27006/7/8, 19011).

Sep 2024 – Dec 2025 Concluded
Founder | Senior Director — InfoSec & Cybersecurity Services
EKSec Group · Part-time · Algeria, UK, USA

Co-led multinational cybersecurity & GRC firm: vCISO, DFIR, threat hunting, compliance consulting (ISO, NIST, RNSI, PCI DSS), red/purple teaming, certified audits (ISO 27001, CSA STAR, VAPT).

Jul 2025 – Oct 2025 Concluded · 4 mos
CISO / DSSI — Head of Risks, Security & Compliance (Director)
GIE Monétique — National Electronic & Digital Banking Regulator · Full-time · Algeria

Led national InfoSec, cybersecurity, risk, and compliance strategy for Algeria's electronic payment ecosystem — internal governance plus sector-wide oversight of member banks, PSPs, and financial institutions. Redesigned the Security Framework: PCI DSS, SWIFT CSP, DORA, NIS2, ISO 27001, OWASP, CSA, CIS, NIST, aligned with RNSI and Law 18-07. Served as effective "CISO of CISOs" for Algeria's banking sector.

May 2024 – Oct 2025 Concluded
Cybersecurity Subject Matter Expert (SME)
Hack The Box (HTB) · Part-time · Remote · UK

Editorial and educational SME for 2M+ professionals: expert commentary on offensive security, red teaming, threat emulation, and capability building.

Mar 2024 – Oct 2025 Concluded
Distinguished Cybersecurity Expert — SME, Exam & Content Development
ISC2 · Hybrid · United States

SME for CC, CISSP, and the Unified Body of Knowledge (CC, SSCP, CSSLP, CGRC, CCSP, CISSP, ISSEP, ISSAP, ISSMP); global exam and curriculum development workshops.

Apr 2024 – Oct 2024 Concluded
CISO Africa & Head of Global SecOps
Brandvakt Africa / Group · Freelance · Remote · UAE

Directed cybersecurity strategy for Africa-region clients and global SecOps: SOC oversight, assessment frameworks, risk assessments, and incident response.

Mar 2024 – Sep 2024 Concluded
Cyber Security Contractor
TryHackMe (THM) · Contract · Remote · UK

Design, review, and validation of labs, CTF challenges, and interactive rooms across Red, Blue, and Purple tracks for a global cybersecurity learning community.

Jul 2023 – Nov 2023 Concluded
InfoSec Engineer & Cyber SOC Analyst L2/L3
Société Générale Group (SGA) · Full-time · Algeria

ISO 27001/27002/27005 ISMS governance; incident management with SIEM/EDR/DLP and Group CSIRT/CERT; DFIR, threat hunting, CTI; penetration testing and social engineering campaigns.

Feb 2023 – May 2023 Concluded
Senior Cybersecurity Consultant
Intelligent Network — iNET · Full-time · Algeria

Cybersecurity strategy and risk advisory; policies, procedures, technical controls; offensive security services; incident investigation and remediation.

Jan 2020 – Jun 2020 Concluded
Head of Cybersecurity
MicroExpert · Freelance · Algeria

Led cybersecurity division (pentesting, VA, red teaming); defensive architectures; negotiated strategic Kaspersky Lab partnership for the Algerian market.

Oct 2018 – Oct 2019 Concluded
Projects Manager — Information Security & Cybersecurity
SLH (Smart Link Holding: SLC & Divona) · Full-time · Algeria

NOC cybersecurity initiatives; Lead Penetration Tester; datacenter security strategies; incident response plans and playbooks.

Jan 2019 – Aug 2019 Concluded
Independent Cybersecurity Consultant
Algerian Government Sector · Part-time · Algeria

Advised government agencies; led audits, VA, and penetration testing to evaluate cybersecurity maturity.

Apr 2017 – Apr 2018 Concluded
Lead Penetration Tester
Taghellist Technology · Full-time · Algeria

Security assessments and penetration tests; internal security projects; company-wide security awareness training programs.

Nov 2017 – Jan 2018 Concluded
Ethical Hacking Instructor
ILM Center · Part-time · Algeria

Education modules on pentesting, VA, and threat analysis; mentored university students; organized events and CTF competitions.

Jan 2013 – Dec 2017 Concluded
Freelance Web Developer — Cybersecurity Assessor & Ethical Hacker
Upwork · Remote · Global

VAPT worldwide (OWASP, OSSTMM, PTES); ethical hacking and source code reviews; web development for clients globally.

Selected Projects & Strategic Engagements
01
CISO/DSSI Charter & Governance Model
Formalized the CISO/DSSI function, authority, independence, executive reporting, ISMS oversight, cyber risk governance, SOC/CSIRT supervision, escalation rights, aligned with ISO/IEC 27001.
02
Cybersecurity Governance & Operating Model Design
Designed governance structures covering security committees, reporting lines, roles and responsibilities, control ownership, risk acceptance, decision-making workflows.
03
Advisory & Cybersecurity Business Unit Structuring
Built and led operating models for cyber advisory, Managed SOC, CSIRT operations, audits, training, certification services, client portfolio, and business performance.
04
Managed SOC & CSIRT Capability Development
Designed SOC/CSIRT operating models, service catalogs, escalation workflows, playbooks, incident classification, KPIs/SLAs, end-to-end detection-to-recovery processes.
05
Sector-Level Cybersecurity Framework Redesign
Redesigned and aligned security frameworks with PCI DSS, SWIFT CSP, ISO/IEC 27001, NIST CSF, CIS Controls, OWASP, CSA CCM, RNSI, and national cybersecurity regulations.
06
ISMS, BCMS, PIMS & Certification Readiness
Led implementation, maintenance, audits, gap assessments, and maturity programs aligned with ISO/IEC 27001, 22301, 27701, 27005, 27035, and 31000.
07
Cyber Risk, Compliance & Assurance Transformation
Designed risk registers, treatment plans, residual risk acceptance, control mappings, compliance dashboards, audit programs, executive reporting packs.
08
Incident Response & Crisis Management
Developed IR plans, tabletop exercises, cyber crisis simulations, SIEM/SOAR use cases, logging requirements, alert prioritization, escalation paths.
09
VAPT & Offensive Security Engagements
Led and performed vulnerability assessments, penetration tests, red/purple team activities, source code reviews, attack path analysis, technical reporting.
10
Cyber Capacity Building & Ecosystem Development
Delivered training, certification preparation, executive awareness, board-level reporting, conformity assessment support, and national capacity-building initiatives.
Education
2025 – 2026
Doctor of Business Administration (DBA)
Atlanta College of Liberal Arts and Sciences
USA  ·  GPA 4.0  ·  EQF Level 8  ·  210 US Credits
2025 – 2026 (in progress)
Master of Science — Computer Science, Software Engineering
Woolf University
Europe
2025 – 2026
Master of Computer Science (MSc)
Atlanta College of Liberal Arts and Sciences
USA  ·  A+  ·  GPA 4.0  ·  EQF Level 7
2025 – 2026
Master of Business Administration (MBA)
Atlanta College of Liberal Arts and Sciences
USA  ·  A+  ·  GPA 4.0  ·  EQF Level 7
2021 – 2022
Mini-Master of Business Administration (mMBA)
International Business Management Institute (IBMI)
Berlin, Germany  ·  Business Management
2019 – 2022
Higher Technician Diploma (BTS) — Computer Science & Networking
INSFP — State Approved Academy
Algeria  ·  15.08/20  ·  BAC+2
Core Expertise
Cybersecurity Governance & Strategy
GRC — Governance, Risk & Compliance
ISO Management Systems (ISMS · BCMS · PIMS · AIMS)
PCI DSS · QSA · SWIFT CSP · SOC 2
Security Auditing & Certification
SOC / CSIRT / CERT Operations
Penetration Testing & Red Teaming
DFIR & Incident Response
Cloud Security (CSA · Zero Trust · CCSK)
OT / ICS / SCADA Security (ISA 62443)
Cybersecurity Training & Capacity Building
Certifications (300+ total)
DBA (EQF 8) MBA (EQF 7) MSc CS (EQF 7) PMP · ID 4377931 QSA (PCI SSC) PCIP (PCI SSC) CISSP · SME CCISO Cybersecurity MASTER ISO 27001 ISMS Master ISO 22301 BCMS Master SecurityX (CASP+) CMSA ISA/IEC 62443 SLI ISO 27032 SLCM ISO 27035 SLIM ISO 27005 SRM ISO 27701 SLI/SLA ISO 27400 SLM ISO 31000 SLRM ISO 42001 LA/LI ISO 21502 SLPM EBIOS Confirmed NIST CSF SOC 2 SLA CLPTP eCPPTv2 eCTHPv2 CCSK v5 CCZT GRCP · GRCA CC (ISC2) OEHE · OOSE CPTAv2 TAISE (CSA)
Frameworks & Standards
ISO 27001/2/3/4/5/6/7/8 · ISO 27032/33/34/35/37/42-43 · ISO 22301 · ISO 20000 · ISO 19011 · ISO 17021 · NIST CSF/RMF/SPs · PCI DSS · SWIFT CSP · RNSI · NIS2 · DORA · OWASP Top 10s, WSTG, MSTG, ASVS, SAMM · MITRE ATT&CK & D3FEND · CSA CCM/STAR/CAIQ · SOC 2 · EBIOS · OCTAVE · PASTA · STRIDE · PTES/PTEF · SOC-CMM · CTI-CMM · OSSTMM · SABSA · TOGAF · COBIT · SCF · Zero Trust · CIS Controls · GDPR
Languages
Arabic — Native
English — Fluent / Bilingual (C1)
French — Intermediate
Awards & Recognition
Global 30 Under 30 in Cybersecurity 2026 — Top Cyber News Magazine
Best Cybersecurity Thought Leader UK 2026 — Best of Best Review
Featured: AP News & BarChart and others · Jan 2026
Youngest QSA · CISSP-SME · ISMS Master · BCMS Master · Cybersecurity MASTER worldwide (2023–2026)
TryHackMe GOD Rank — Top 0.1% Global
HackTheBox Pro Hacker · Top 10 Teams (2018/2019)
Memberships
PMI · Member (2026)
FIRST · Program Committee (2025)
CAS · Global Professional Member
AfricaCERT · Member & SME
ISACA · Member (ID 2032862)
APISecU · Global Ambassador
PECB · Member & Approved Partner
The CISO Society · Global Member
CSA · Member & Volunteer
OWASP · Member & Volunteer
ISC2 · Member & Volunteer
Community & Volunteering
DEFCON Group Algeria DC11213
Founder & Leader · 2017–2026
Imperium CTF Team
Founder & Leader · 2018–2020
Shellmates Club
Instructor, Mentor & Organizer · 2017–2018
Computer Geeks Community
Founder & Teacher · 2017–2018
Cyber Capacity Building Program
Free training initiative — OWASP, CSA, CAS Chapters
CTF & Competitions
🥇 MCTF 2019 — 1st National
🥇 ISCA CTF 2018 — 1st (Ministry of National Defense)
🥇 HimayaTiC CTF — 1st Place
🥈 CSAW CTF 2018 — 2nd MENA Region
Kaspersky Industrial CTF 2018 — 9th International
RITSEC CTF 2018 — 9th International
NASA SpaceApps 2017 — 2nd Regional