-
Council of Europe
- Sysadmin
2015 - 2015
* Created a Windows 10 provisioning kit for specific workgroup joined laptops that leverages Desired State Configuration
* Created a sysprep image based on Windows 10 version 1511 for Press workstations
* Wrote a Direct Access and Bitlocker Client provisionning kit for Windows 7 clients
* Upgraded Adobe Reader X to XI
* Automated Chrome deployment and hardened its configuration through Group Policies
* Migrated and standardized Oracle JRE to 1.8
* Deployed a PowerShell constrained endpoint to send Direct Access cluster connection history to a syslog server
* Attended course SANS FOR610 - Reverse-Engineering Malware
https://www.sans.org/course/reverse-engineering-malware-malware-analysis-tools-techniques
-
Council of Europe
- Sysadmin
Strasbourg
2015 - 2015
* 2nd Windows PowerShell MVP award
* Moderator at patchmanagement.org
* Delivered trainings in Windows PowerShell
* Gave two talks about Desired State Configuration and Nano Server at Basel PowerShell User Group
* Gave a talk about Desired State Configuration at Microsoft TechDays Tour 2015 in France
* Wrote an article for PowerShell Magazine
http://blogs.technet.com/b/nanoserver/archive/2015/06/30/how-to-use-wds-to-pxe-boot-a-nano-server-vhd-the-powershell-version.aspx
* Prepared infrastructure for Windows 10: GPO, WMI filters, KMS, ConfigMgr, WSUS, logon scripts, other scripts
* Migrated to Internet Explorer 11 and using Enterprise Mode
* Automated the deployment of PKI and freeradius authorities' certificates, the enrollment of computer certificates and the update of Wireless and 802.1 network cards' profiles
* Switched WSUS servers to HTTPS
-
Council of Europe
- Sysadmin
Strasbourg
2014 - 2014
* Participated in project Windows 2012 R2 Direct Access Cluster and laptops
* Participated in PoC on Microsoft inTune
* Passed Microsoft certification exam Administering Windows Server 2012 # 70-411
https://www.microsoft.com/learning/en-us/exam-70-411.aspx
* GCFA Certified Forensics Analyst till 2018
http://www.giac.org/certified-professional/emin-atac/133890
* Wrote articles for PowerShell Magazine
http://www.powershellmagazine.com/author/emina/
* Windows PowerShell MVP award
http://mvp.microsoft.com/en-us/mvp/Emin%20Atac-5000890
* Created a new hybrid image for new Committee of Ministers' laptops
* Upgraded Configuration Manager to 2012 R2 and latest CU
* Migrated DFS, KMS and WSUS to Windows server 2012 R2
* Attended courses:
- SANS FOR508: Advanced Digital Forensics and Incident Response
http://www.sans.org/course/advanced-computer-forensic-analysis-incident-response
* Migrated Hyper-V hosts to Windows 2012 R2 and all virtual machines to Generation 2
* Coach for the PowerShell Winter Scripting Games 2014
http://mikefrobbins.com/2013/12/23/introducing-the-coaches-of-the-2014-winter-scripting-games/
-
Council of Europe
- Sysadmin
Strasbourg
2013 - 2013
* Installed and configured Windows 2012 Direct Access server
* Won PowerShell Scripting Games 2013 Event 2 (judges vote) and Event 5 (crowd favourite) in Advanced category
http://powershell.org/wp/2013/05/14/scripting-games-event-1-winners-1/
http://powershell.org/wp/2013/06/04/scripting-games-event-5-winners/
* Installed System Configuration Manager 2012 SP1 (with 15 Distribution Points)
* GIAC Certified Forensic Examiner (GCFE) till March 2017
http://www.giac.org/certified-professional/emin-atac/133890
* Passed Microsoft certification exam Administering and Deploying System Center 2012 Configuration Manager # 070-243
* Attended courses:
- 20411 Administering Windows Server 2012
- 20688 Managing and Maintaining Windows 8
* Delivered a proof of concept for Windows to Go based on Windows 8.1 with offline domain join over Direct Access
-
Council of Europe
- Sysadmin
Strasbourg
2012 - 2012
* Updated the user account creation process: mailbox created from the Exchange 2010 CAS using PowerShell implicit remoting
* Walkthrough Microsoft WDRAP (Risk and Health Assessment Program for Windows Desktop) and external security audit of desktops
* Participated in the PowerShell Scripting Games 2012 (advanced category): http://blogs.technet.com/b/heyscriptingguy/archive/2012/05/01/final-advanced-leaderboard-for-the-2012-scripting-games.aspx
* Passed Microsoft certification exam Windows 2008 R2 Server Virtualization # 070-659
* Installed 2 Hyper-V 2012 nodes with Replica and NiC Teaming
* Reviewed KMS configuration to support failover
* Migrated MSSQL Database of System Center Configuration Manager (SCCM 2007) to a SQL 2008 R2 cluster
* Installed a DFS on 2008 R2 Servers for software distribution
* Revised the daily scan engine to leverage PowerShell version 3 new workflows feature: execution time divided by 4
* Attended courses:
- 10747 Administering System Center 2012 Configuration Manager
- SANS FOR408: Computer Forensic Investigations - Windows In-Depth http://www.sans.org/course/computer-forensic-investigations-windows-in-depth
* Delivered a ConfigMgr 2012 RTM Pilot
* Revised deployments scripts to deploy workstations in remote offices and use the DFS namespace on premises
* Migrated Domain Controllers of the Press Room to Windows Server 2012
* Deployed SP1 of Windows 7 in the CM environment using WSUS running on Windows Server 2012 Core edition
-
Council of Europe
- Enterprise Desktop Administrator
Strasbourg
2011 - 2011
* Wrote daily scan engine that uses powershell fan out remoting.
* Rewrite Remote Desktop Gateway connections tracking script in PowerShell
* Upgrade of System Center ConfigMgr 2007 to R3 and installation of Forefront Endpoint Protection 2010 over SCCM R3
* Configure account delegation in AD and a pool of virtual machines for extern helpdesk (level 1): automation of the user account unlock process under PowerShell
* Automation of the user accounts closure in PowerShell: warn 1,7 and 30 days before expiry then disable, hide in GAL, move expired and send daily report
* Design the Windows 7 architecture: scripted unattended deployment (build on the fly) of Windows 7 SP1 based on WAIK with the IE9, Office 2010, and over a 802.1x network, (no SCCM, no MDT, no WDS, 50 different mainboards -> no sysprep images, FR-fr MUI for W7, IE9 and O2010, implement the least security privilege model in W7 and allow user to become admin for 1 hour)
* Deployment of standard ADMX templates for Windows 7 and Office 2010 and design of custom ADMX templates for third-party software: Adobe Reader, Acrobat, Oracle JRE and Office 2010.
* Packaging of sofware on demand: Silverlight, Visio and Project Pro 2010, Acrobat, Quicktime, Java Runtime Env.,...
ex: Google Chrome http://marc.info/?l=patchmanagement&m=129960203032223&q=p3
* Training and delegating the daily maintenance tasks to an extern partner (security compliance analysis, standard software packaging and update deployment process)
-
Council of Europe
- Enterprise Desktop Administrator
Strasbourg
2010 - 2011
* Rewrite 3 unitary daily job scripts (daily custom security compliance audit scripts): analysis of registry, files, and events in PowerShell
* Rewrite find expired user passwords job in PowerShell
* Installation of a KMS (Key Management Server) for Windows 7 and Office 2010 activation
* Upgrade SCCM & WSUS to SP2 and move from MSSQL 2005 to 2008
* Project for the Committee of Ministers: deploy a Windows 2008 R2 domain controller and a fully unattended hybrid sysprep image to 65 laptops. (Locked down by GPO, no printing, 3 keyboard layouts)
* Migrate Domain Controller from Windows 2008 Core edition to Windows 2008 R2 in the press room env.
* Documentation of the packaging/update/upgrade/deployment process for all standard software: Adobe Reader, Adobe Flash, Mozilla Firefox, Office 2003
* Move daily maintenance scripts to a SVN repository
-
Council of Europe
- System Administrator
Strasbourg
2009 - 2010
* Deployment of Vista SP2, with Internet Explorer 8 and Office 2007 SP2 in the press room.
* Deployment of Windows 7 in September 2009 in the press room to replace Windows Vista.
* Replace the TSG by a Remote Desktop Gateway on Windows 2008 R2 enterprise (RDG) to increase its capacity.
* Migration of SMS 2.0 to System Center Config Mgr 2007 SP1
* Move scripts of the press room to a SVN repository
-
Council of Europe
- System Administrator
Strasbourg
2008 - 2009
* Deployment of a double boot configuration in the press room -XP SP3 and Vista SP1- using the WAIK and the new WIM image format. Hybrid sysprep image for Vista SP1. Reinstall from scratch in 30 minutes (no WDS, no SCCM, no BDD)
* Installation of 2008 server core edition and promote to a Domain Controller in the press room
* Installation of a Terminal Service Gateway (TSG) on a Std. Windows 2008: Scripting tracking of connect/disconnect of users and monthly usage report. Installation and configuration of a pool of virtual computers
-
Council of Europe
- System Administrator
Strasbourg
2007 - 2008
* Migration from Office XP to Office 2003, FR user Interface, Proofing Tools, compatibiliy pack for 2007 formats and Symantec Enterprise Vault
* Fully automated unattended deployment of Windows XP of press room's computers: 7 keyboard configurations, standard software, 4 printers over tcp/ip, thick sysprep images. Reset configurations in less than 10 minutes.
* Co-author of the universal USB infection vector countermeasure: @sys:DoesNotExist
The best way to disable Autorun for protection from infected USB flash drives: http://blogs.computerworld.com/node/13003
Microsoft Windows Does Not Disable AutoRun Properly: http://www.us-cert.gov/cas/techalerts/TA09-020A.html
-
Council of Europe
- System Administrator Assistant
Strasbourg
2006 - 2007
* Automation of the user account creation process: extraction of useful info from web requests, creation of roaming profile, exchange mailbox, multi-sites, multi servers, move to final OU, send html welcome letter (Turnover of 800 accounts per year).
* Creation of Kiosk configuration on Windows XP based on the Shared Computer Toolkit: script to transform a standard domain joined computer to a locked-down kiosk computer.
* Installation of the ECDL infrastructure server and configuration of 20 training computers in 2 rooms: script to allow to switch on demand to and back from a locked down training room.
* Automation of Windows XP unattended installation from a ramdisk (winpe V1) and design it also for offline security analysis