Jérémie Ben-Arros
Security Solution Architect Team Lead
About
Passionate and results-driven Security Solution Architect Team Lead with over 7 years of experience in security, automation, and application security. Known for empowering teams through mentorship, promoting best practices, and delivering innovative security solutions. Adept at guiding complex projects to success by sharing expertise and fostering collaborative environments. Committed to driving organizational excellence by aligning technical capabilities with strategic objectives.
Work Experience
Ubisoft Inc.
Montréal, QC CA
June 2023 – Present
Security Architect Team Lead - Application Security
Highlights
- Drive initiatives in areas such as authorization and authentication with Azure, including SSO (both interactive and non-interactive flows), user provisioning (SCIM), and identity federation (OIDC).
- Serve as a technical security advisor for multiple teams developing pipelines and applications.
- Oversee direct reports to foster strong security partnerships and enable projects with broad organizational impact within Ubisoft.
- Create and maintain documentation of best practices for application security.
Ubisoft Inc.
Montréal, QC CA
July 2022 – June 2023
Solution Security Architect
Highlights
- Audit and enhance the security of GitLab source code infrastructure and configurations.
- Develop tools to manage and review IAM (Identity and Access Management) across over 100 Perforce instances.
- Create comprehensive documentation, including best practices and how-to guides, for secret management using the HashiCorp Vault product.
- Provide support to the incident response team during major security incidents.
Square Enix
Montréal, QC CA
August 2021 – June 2022
Security DevOps Specialist
Highlights
- Integrate security tools in development team pipelines.
- Automate an Elastic cluster deployment in GCP, and migrate source and ingestion pipelines on new cluster.
- Migrate with Terraform on AWS the DDoS solution.
- Evaluate various security tools (DDoS, Cloud Security, SCA, Web Application Vulnerability Management, Secure Coding).
- Assess security architecture and components of build pipeline.
Ubisoft Inc.
Montréal, QC CA
September 2019 – August 2021
Security Specialist
Highlights
- Design and document a secure Cloud environment in AWS to scale on SOC needs - with DRP compliance.
- Automate and maintain the SOC infrastructure.
- Share knowledge on best DevOps practices and how to protect an AWS environment within the company.
- Automate collection and analysis of IoC (Indice of Compromise).
In Fidem
Montréal, QC CA
September 2017 – September 2019
Information Security Consultant
Highlights
- Coordination and execution of Red-Team mandates and penetration tests (physical, networks, applications, mobile).
- Research and development relating to offensive security practice.
- Improvement of internal processes - development of a lab, automation of reports.
- Management of customer expectations and deliverables.
InterDigital
Montréal, QC CA
January 2017 – April 2017
Internship - Information Security Analyst
Highlights
- Execute daily investigations and automating them using several tools such as a SIEM, AD, SCCM and HIDS.
- Implementation of a monitoring server to improve visibility on security infrastructures.
- Formalization of incident response within the security incident management platform - FIR.
École de Technologie Supérieure
Montréal, QC CA
April 2016 – December 2016
Teaching Assistant - Telecommunications Network
Highlights
- Correct reports and help students understand networking concepts and tools such as Wireshark, Cisco Packet Tracer.
Alithya
Montréal, QC CA
April 2016 – August 2016
Internship - Java Developer
Highlights
- Improve code coverage using unit and integration tests (Selenium, MockMVC, JUnit, SonarQube).
- Development of a J2EE web application (Spring MVC, JPA and Hibernate, Git, Maven).
Ludia Inc.
Montréal, QC CA
March 2015 – August 2015
Internship - C++ Developer
Highlights
- Development of a card strategy game (C++): Kung Fu Panda.
InLibro
Montréal, QC CA
September 2014 – December 2014
Internship - Perl Developer
Highlights
- Automate and deploy monitoring tools to guarantee server uptime.
- Share software improvements to the Koha community (open-source).
Education
-
2017 2014
Bachelor's Degree in Information Technology Engineering
École de Technologie Supérieure - Montréal, QC CA
-
2013 2011
University Technology Diploma - Computer Science
IUT A Lyon 1 - Lyon, France
-
2013 2012
Expertise
Team Management
Cloud and systems
AWS
GCP
Azure
Entra ID
Windows
Unix
Automation (not exhaustive)
Kubernetes
Docker
Saltstack
Ansible
Vault
Nifi
Gitlab+CICD
Perforce
Grafana
Prometheus
Programming (not exhaustive)
Bash
Powershell
Terraform
Python
Go
Java
C++
JOLT
Javascript
React
Defensive Security (not exhaustive)
Splunk
Elastic/ELK
Crowdstrike
Offensive Security (not exhaustive)
Burpsuite
Nessus
nmap
Bettercap
Metasploit
Certificates
Certification - Certified Kubernetes Security Specialist (CKS) - LF-I5sj6eedlx
Cloud Native Computing Foundation (CNCF)
Certification - Certified Kubernetes Administrator (CKA) - LF-0eqtoqezos
Cloud Native Computing Foundation (CNCF)
Training - Mastering Burp Suite Pro
Contributions
Ansible AWX
Github - Ansible AWX
16 March 2021
Enable Hashicorp Vault namespace in Ansible AWX.
Saltstack
Github - Saltstack
13 May 2020
Fix issue with specific component (s3fs cache).
Apache Nifi
Github - Apache Nifi
16 April 2020
Fix issue to enable parsing email in Nifi.
Interests
Creativity
Piano
DIY
Outdoors activity
Biking
Climbing
Projects
- Northsec and Hackfest: Security conferences and participation to CTFs (2019/2018/2017)
- Hackatons: McGill Robothacks (2016), Slackathon (2016), Global GameJam (2016)