Cybersecurity & Telecommunication Systems · ENSA Marrakech
Engineering Secure Systems from Code to Cloud
I am a final-year engineering student at ENSA Marrakech, specializing in Cybersecurity and Telecommunication Systems. I design secure systems, automate security controls across CI/CD pipelines, analyze cloud and infrastructure risks, and build defensive cybersecurity solutions.
My practical experience comes from academic projects and internships spanning DevSecOps, security automation, mobile security, SOC operations, and infrastructure protection. I am currently preparing for a final-year internship/PFE where I can contribute to real security engineering challenges.
| Focus Area | What I Work On |
|---|---|
| DevSecOps automation | Embedding repeatable security checks into delivery pipelines |
| Cloud and IaC security | Reviewing cloud architecture and infrastructure definitions before deployment |
| SOC engineering | Improving event visibility, incident analysis, response, and recovery workflows |
| Security assessment | Finding vulnerabilities, hardening systems, and translating risk into practical fixes |
| Project | Description | Verified Technologies |
|---|---|---|
| Next-Gen DevSecOps | AI-assisted platform for generating, validating, and executing secure CI/CD artifacts from natural-language requirements. | FastAPI, React, Jenkins, Docker, Terraform, AWS, SonarQube, Trivy, Prometheus, Grafana |
| SOC Self-Healing HoneyNet | Defensive SOC proof of concept combining WAF controls, honeypot deception, centralized monitoring, local analysis, remediation, and rollback. | NGINX, ModSecurity, Splunk, Logstash, Elasticsearch, Grafana, Ollama, Flask, Python, Bash |
| TLS Posture Analyzer | Android network-security auditing interface for endpoint extraction, TLS configuration analysis, APK decompilation, and security reporting. | Python, FastAPI, React, Vite, JADX, Apktool |
| StockPilot | Inventory management application with authentication, stock tracking, threshold alerts, and PDF document generation. | Java, Spring Boot, Spring Security, Spring Data JPA, Thymeleaf, H2, MySQL, Bootstrap |
| Secure Storage for Android | Android application demonstrating private storage, encrypted preferences, safe logging, data export, and cleanup. | Java, Android, Android Keystore, EncryptedSharedPreferences, JSON |
| OpenStreetMap Location Application | Android location application that stores positions through a PHP backend and displays them on OpenStreetMap. | Java, Android, Volley, OSMDroid, OpenStreetMap, PHP, MySQL |
PLAN Define threats, trust boundaries, and measurable security requirements
↓
CODE Apply secure coding practices and prevent secret exposure
↓
BUILD Run static analysis, dependency checks, and container scanning
↓
TEST Validate application behavior and infrastructure controls
↓
DEPLOY Enforce reviewed IaC, policy gates, and least privilege
↓
MONITOR Correlate events, investigate risk, respond, and improve controls
- TryHackMe — Security Engineer
- TryHackMe — Cyber Security 101
- Cisco — Introduction to Cybersecurity
- MLIA Edu — Mobile Application Security
- ISC² — Network Security Fundamentals
- ISC² — Information Security Principles
- ISC² — Identity & Access Management Fundamentals
- ISC² — Incident Response & Disaster Recovery
Open to Final-Year Internship / PFE Opportunities in Cybersecurity and DevSecOps
