Resume

Resume Objective

Experienced cybersecurity consultant with a dedicated focus on Identity and Access Management, proficient in Sailpoint (IGA) and PasswordSafe (PAM).

Resume demonstrated my expertise in DevOps/DevSecOps, Governance, Risk Management, and Compliance (GRC). Actively seeking an Identity and Access Management Consultation role to apply my cybersecurity proficiency and enhance organizational security.


Experience

Sept 2022 - Feb 2024

Cybersecurity Tech Lead

Vodafone

IAM/IDAM

  • Leading Privilege access program and implementing PAM from vendor selection, PoC and program management with different stakeholders to implement the solution in production.
    • Developing a framework for managing service and shared accounts effectively.
    • Evaluating accounts and access in collaboration with stakeholders and system owners.
  • Engage in account life cycle management and auditing as needed, collaborating in the design of workflows, system configuration, change documentation, optimization, and access-related support. This includes collaborating with application teams for the deployment of new applications and business teams to adopt new technologies within their business processes.
  • Deployment, administration, and operation of the SailPoint Identity and Access Management solution.
  • Establish a unified Access Control Model (RBAC) covering all critical assets within Vodafone Egypt.
  • Collaborating on the integration of various applications using methods such as APIs, databases, and SCIM.
  • Managing Privilege access program from vendor selection, PoC, and program management with different stakeholders BeyondTrust PasswordSafe.

GRC/IRM - Integrated Risk Management

  • Deployment, administration, and operation of the RSA Archer integrated risk management solution.
  • Collaborating on the integration of Archer with diverse cybersecurity systems, such as Sailpoint, Tenable, and FortiSoar, utilizing both RESTful and SOAP APIs.
  • Enabling Digital Transformation (Automation) of GRC Operations through Archer.
    • Vulnerability management automation and implementation.
    • Policy management workflow, digital approval/signature, and automated annual review.
    • Risk management and exemptions digital approvals/signatures.
    • Penetration testing and vulnerability assessments tracking and mapping them to assets and risks digitally.
    • Compliance management.
April 2020 - September 2022

Cyber Security Specialist - Compliance, Vulnerability Management & IAM

Vodafone
  • Working with Vodafone group to audit and Implement Vodafone security Cyber Security Baseline CSB.
  • Leading vulnerability management program in production to reach 95% of the environment without critical or high vulnerabilities.
  • Leading Privilege access program and implementing PAM from vendor selection, PoC and program management with different stakeholders to implement the solution in production.
  • Leading network segregation stream to transfer all legacy systems to comply with Vodafone standards for zoning and risk assessment for all legacy systems with mitigation plans.
  • Member of DevSecOps squad as a security champion. And applying security controls in all pipelineʼs stages. CICD
May 2021 - April 2022

Cloud DevOps - Part Time

Akwad
  • Managing infrastructure projects for different customers on AWS, Troubleshooting, Health checks & upgrades.
  • Working with EC2, SQS, S3, CodePipeline, CloudFront, CodeCommit & CodeDeploy.
  • Linux Automation using bash and Ansible
  • Auto deployment using Gitlab CI & Enhancing Git Ops
  • Working within an agile environment.
January 2019 - April 2020

Cybersecurity Specialist - Network Security

Vodafone
  • Firewall configuration, Troubleshooting, Health check & upgrades.
  • Configuration automation.
  • Managing physical access system.
February 2018 - December 2018

Technical Support Engineer - Part Time (During Military Service)

Consultix

Skills

  • AWS
  • SailPoint
  • PasswordSafe (PAM Solution)
  • Archer (IRM/GRC Software)
  • Risk Management
  • GRC
  • Tenable.SC (Vulnerability Management Software)
  • Cloud Security
  • Twistlock/PrismaCloud (DevSecOps Software)
  • Azure MFA
  • Bash
  • Linux administration
  • Automation & scripting
  • SAST, DAST & SCA
  • Java

Courses

Certificates

Education

May 2020 - November 2020
Coursera - University of Maryland on Coursera

Cybersecurity Specialization

September 2012 - July 2017
Ain Shams University

BE, Electrical Communication and Electronics