Mahmoud Yassin Ali Moustafa CISA, CISSP, CRISC, MCSE, COBIT, ITIL, PMP

Mobile +971-50-8116825

Myassin75@gmail.com Myassin66@hotmail.com Mahmoud.Yassin@nbad.com

Career objective

To purse a successful career in the IS field based on both my technical and business experience in various ITS Security & infrastructure projects.

Professional Snapshot

Professional with more than 15 years of experience in IT Operations with focused exposure in Banking & ISP Information Security. IT Infrastructure Management, Project Management, Network Management, Business Continuity Planning, New Technology Implementation, Process Improvement and Team Management. A keen planner, strategist & implementer with demonstrated abilities in IT operations management and new technology implementation for streamlining IT related operations. Expertise in spearheading numerous IT projects; ensuring delivery of projects compliant to the quality, time and cost parameters. Proven skills in managing teams to work in sync with the set parameters & motivating them for achieving business and individual goals. An effective communicator with excellent relationship building & interpersonal skills. Strong analytical, problem solving and organizational abilities. Possess a flexible and detail oriented attitude.

Proficiency Forte

Area of expertise
Project Planning & Management IT Operations Management Risk assessment and risk management skills. Auditing skills. Process design and architect and re-architect. Business banking infrastructure architect and implementation skills. End user training and security awareness sessions.

Network administration & operation of Different platforms Unix (SCO Sun Solaris) (windows NT-windows 2000- windows 2003 windows 2008). Web hosting Infrastructure Solution design and implantation of secure environment. Financial transaction and worldwide stock markets protocols like FIX & financial transaction security 3D security implementations. Technical Support Infrastructure Management Technology Implementation Network Management Liaising & Coordination Deliverables Management Team Management Information Security & Operations support

Technical Summary

Accurately scope, design, implement and support product based balanced security on Gateway & perimeter firewalls. IPS, NIDs, Gateway level AVs, end point security, data leakage control products and provide daily process based support reporting of the same for Banking & ISP environment Single headedly managing Organization IT Vulnerability Management Support for Design and implement centralized log feeding based on leading SIMs Information security Risk assessments and Threat Modeling IS Auditing Monitoring / tracking projects with respect to budgeted cost, demand forecasts, time over-runs to ensure timely execution of projects. Designing and implementation of LAN / WAN system involving design of network layouts and their configuration. Suggesting IT measures and safeguarding the information resources of the enterprise to maintain integrity, confidentiality and availability of data / application specific to Financial and ISP segments LAN & WAN Support & Monitoring - Financial & ISP Business Verticals. Windows Server: Administration & support for Web & Mail, Aix 4.1. Mac. Incident analysis and recommendation for remediation Process based Support

 Malware Reverse Engineering. Remote Users Enforcement Point Connection Compliance Cyber Gate Keeper. Juniper SSL Information Security Compliance Auditing based on various IT frame works. Comprehensive support to protect against DDOS, Phishing, Malware attacks, Spams and IP Abuse. Cyber Security fraud detection. Forensic analysis, and identifying risk channels(vectors) Supporting ISO & SIRT Teams in end to end Info Sec requirements. Enterprise Vulnerability \ Security Patch Management and Scanning for Windows clients and Servers Managing IT Compliance requirements in enterprise environment(PCI-DSS,SOX) Intrusion Prevention Systems (Both Reactive & Proactive): IPS, NIDS, HIDS Pen Testing: For Servers, Database, Clients, Gateway and Perimeter Components. Moderate Knowledge in HTML, Perl script, VB Script, SQL Server Administration and SQL Query. Engage with Info Sec Product Vendors (TAM) POP for end to Info Sec products. Suggesting IT measures and safeguarding the information resources of the enterprise to maintain integrity, confidentiality and availability of data / application specific to Financial and ISP segments Ensuring provision of technical consultancy to clients for various IT projects / operations. Monitoring & supervising the development of long-term partnerships with suppliers & vendors; managing day-to-day supplier performance to ensure meeting of service, cost, delivery and quality norms. Comprehensive understanding of end to end data flow architecture for Financial and ISP organization. Recommending recovery strategies and options, and assisting with the implementation of recovery solutions, coordinate business continuity plan exercises. People Management Leading, mentoring & monitoring the performance of team members to ensure efficiency in process operations and meeting of individual & group targets. Creating and sustaining a dynamic environment that fosters development opportunities and motivates high performance amongst team members. Product Working Knowledge: Microsoft Servers and Client, Aix, Messaging, Proxy, Web, Enterprise Server & Client Management, Symantec (SSC). McAfee EPO, Postini, Confidence Online, CGK, Iron Port, Web Sense, Blue Coat, Found Stone, ISS, Secure Computing, Tipping Point, Checkpoint, Pix, Moderate exposure in SIM-NFX. Arch sight. Log Management Solution (ARCHSIGHT) Implementation & project lead Encryption Mechanism for Email & Folder Encryption )

Organizational Experience
National Bank of Abu Dhabi (Abu Dhabi United Arab Emirates) April 2007 till present

Lead Security & systems Eng- NOC. & SOC. teams lead. April 2007 till present

Managing & building of the SOC & NOC Monitoring and Operations team and taking care of new tasks deliverables Monitoring NetIQ SM & Arch sight SIM. Doing correlation analysis of NBAD internal and external Data and voice traffic validating the traffic based on correlation, identifying any service degradation or outage and recommending applicable action to operation support Managing a Threat Management specific to NBAD ISP segment(ETISLAT ,DU) configured and managing Symantec threat Management console Closing working with SIRT team to identify risks, and mitigation Coming up with Policy procedure based on information security requirement Vulnerability Management specific NBAD IT production environment. Providing daily weekly and Monthly SIEM reports Interacting with internal clients for day to day operations support Assisting IT auditing and Penetration testing My responsibility for maintaining the integrity and security of enterprise's servers and Systems which support the various operating units of the enterprise. Conducting system analysis and Infrastructure Architect, with limited support and direction from professional staff, to keep our systems current with changing technologies. Key technical resources for other Senior Staff, providing advice, training and Technical support for various projects. In addition, technical staff in the IT management team in evaluating current systems and making decisions on future Upgrades. I am Managing team of 8 persons for System Monitoring and first Level Support We monitor the network of 105 remote branches office support 7 countries (London Paris Washington Egypt- Sudan Kuwait Oman Bahrain) My Team mange AD with 5000+ users ATMs 670 ATM and Deposit machine

Notable Attainments: Part of NBAD Global Security Team - one of the premier groups of o Oversaw a basketful of tasks and led. o Security Operations Capability o Cyber Intelligence and Response Program o Cyber Security Business Intelligence Program o Vulnerability Management for 5000+ Windows Servers & UNIX o Abuse Monitoring and response on enterprise level o SMTP Spam email administration on enterprise level (iron port) o Found stone Scan Corporate Administrator - Subject matter expert o Corporate Virus defense team Subject matter expert on enterprise level o Trend Micro EPO & trend Micro HIPS administration - on enterprise level o Supporting ISO team to implement ISO 27001 & Auditing - on enterprise level o Tipping Point Administration for enterprise level o Supporting global regional team for day to day in Security Operation support. o Initiating new Information Security programs on regional levels o Defining security policy for end point client based on security compliance policy Cyber Global Governance (Cyber Gate Keeper CGK and AV) Maintained Internal Vulnerability Management Program to ensure full coverage from a system and scanning perspective; External Vulnerability Management Program to ensure full coverage and timely remediation. Patch Management in enterprise environment - for Windows Clients and Servers. Creating Patch Management Policy for NBAD Data Center Staff workstation Portable devices Implemented multiple layers of controls to protect NBAD networks against malware. Extended support to ISO Team on IT security compliance requirement, policies, and auditing. Took numerous initiative on global on advance threat management and remediation Implemented numerous process on global operation support level RSA Secure login for AD and Imprivata Single Sign-On

Projects
Arch-Sight implementation (SOC Team)
Product evaluation & selection

Product Requirements preparation (RFP selection Criteria & evaluation Matrix) System implementation Design the monitoring channels Define access profiles

Design Monitoring Policy and Procedure Define Escalation Paths based on application Criticality

EMC IONIX implementation (NOC team)

Product evaluation & selection

Product Requirements preparation (RFP selection Criteria & evaluation Matrix) System implementation Design the monitoring channels Define access profiles Design Monitoring Policy and Procedure Define Escalation Paths based on application Criticality Prepare Service Maps & application Redundancy groups

NETIQ APPMANAGER implementation (NOC team)

Product evaluation & selection Product Requirements preparation System implementation Design the monitoring channels Service map Design Define access profiles Design Monitoring Policy and Procedure Define Escalation Paths based on application Criticality Prepare Service Maps & application Redundancy groups

Data Center ALTIRIS operation & Patch Management

Product evaluation & selection

Product Requirements preparation (RFP selection Criteria & evaluation Matrix) System implementation Design the Patching Test environment Integration with Change control system

Define patching polices and procedure per systems , application , OS Define access profiles

 Define Approval & Escalation Paths based on application Criticality

Data Center Polices & Procedure

Commission Policies Decommission Policies Access Control policies Server maintains procedure

Data Center Physical Security

Surveillance System Mantrap Door Finger Print Biometric Access

Managed File Transfer

A new Managed Transferee platform from CFI proj-net to be Compliant with PCI-DSS data in transit Requirements An data encryption

Email Encryption
An IRON-PORT Email Encryption Gateway implementation and integration PCI-DSS, SOX compliance. A NETIQ Security Configuration Manager for Checking the PCI-DSS compliance and Deviations reports to be tracked. Working with Deloitte & Touch to meet the PCI-DSS bank wide implementation and VISA and Master Compliance requirements.

Active Directory
Design Active Directory Security & Group Policy

Design & documentation of AD DR Recovery Plan and supervise Testing of the Plans Maintain Access shields depend on security Clearance of the Objects and subjects Maintain Group Policy Shield from NetIQ to simulate group policy design and workflow(designer-publisher-approver) before role out in actual environment Design Event to be monitored like (high level security groups objects domain admin accounts )

Design an access policy for keeping Critical account access in password Vault (striping system admin from domain admin accounts )

Exchange
Manage Exchange Security & server Security Policy Email spam filtering with ironport mail gateway Design client to server email encryption

Ad & exchange auditing

 Audit All AD events in Security Management and Generate Alerts on Certain Event that violate or Breaches Security Policy Implementing NETIQ SM AD audit module for auditing critical events in AD

Implementing NetIQ SM exchange auditing for auditing critical events in exchange servers including backend CAS HUP Audit all Exchange events and user access including on behalf mail box access

Email Encryption
Design PKI system for 4000 plus Email user Including Managing Auto Enrollment Managing Revocation KEYS Management

Dealing Room
Build & Design the Most up to data Dealing room with user furnishing Enough Network Points and IP telephony and Single processing unit manage 4 Screens.

Including central connectivity for Dealer to powerful processing unit and 4 screens per each dealing position. FIX Encrypted traffic for Dealers.

Reuter Service Architect and Design and Integrate internally across NBAD Network can be accessed from any Remote Branch the infrastructure includes (third-party fire wall FortiGate) RMDS servers, DACS Servers , Satellite Feeders Reuters Dealing System implementation

Reuters EIKON upgrade for 3000 Extra dealing system implementation and security Design Bloomberg Service architect and design and integrate the service internally across NBAD networks

Data Base Activity Monitoring (IBM GARDIUM)

Build & Design the Database activity monitoring which one of PCIDSS requirement for (Microsoft SQL servers ,Oracle 9 I, 10 G , 11 G servers ,Sybase servers.) the project have the following activities:-

1. Database discovery.
2. Databases logging policy design and implementation.

3. Databases user's activity logging. 4. Database Administrators activity logging. Forensic Investigation
Design and build incident handling polices & procedure for National bank of Abu Dhabi

Define Tools and Steps of any forensic Investigation to mitigate Security Risks We test some tools like Case but we are following manual Procedure

DMZ Securitys Password Auto Repository (PAR)

Design and build access control & password polices & procedure for National bank of Abu Dhabi

Design Remote Session Video Recording System EGP Security Enhancement

1. 2. 3. 4. 5. 6. 7. 8. No Console and/or Console Access. Only access is via associated role Based secure web interface(s). Embedded Hardware Firewall Encryption for Stored Passwords Full Hard Drive Encryption Secure Communication Database Security Application Security

9.

VAL IT COBIT implementation IT Infrastructure Team

Adaptation and implementation of VAL IT concept In It infrastructure Follow Cobit Risk evaluation matrix

INNOKAT (innovation knowledge & advanced technology) Dec 2004 till march-2007 Senior Infra Structure and Security Consultant
Infrastructure architect &Security architect Data center building & design Risk Assessment for E-government AJMAN Government Risk assessment of Abu Dhabi Ministry of Finance Payment Systems

Stock market interfaces (Abu Dhabi stock market Dubai stock market) with Alsafwa Finance company and Full System penetration testing

Preparing Feeders connectivity & infrastructure (Reuter Bloomberg ) and Secure third party infrastructure within Abu Dhabi Islamic bank

FIT Trading platform & infrastructure security assments and penetration testing Dubai Stock Market Security assessment and enhancements

Etisalat Web Hosting platform Architecture Review and assessment for C-panel control Panel security Functionality Managed several "full cycle" infrastructure projects. Devolve project plans, wrote RFP, lead design session and coordinated testing, training and implementation.

 Facilitate process improvement sessions to close gaps between existing and proposed business processes and system architecture.

Lead infrastructure architect & design, implementation projects of windows 2003 active directory, SMS 2005, exchange 2003 , ISA server and migration to exchange 2007 , web application hosting solutions .

Architect and design network infrastructure for web hosting platform including security measurements, risk mitigation, availability and 24/7 SLA requirements of the said environment. Security Architect Handled the following functions : o Consolidation of Internet Gateway & Security Gateways. o Implementation of Content Filter and Proxy Filtering; Trend Micro Anti Virus Gateway Solution; Pix firewall (Rule base and LAN zoning). o Drafting of Policy for Content Filter & Spam Filter. o Drafted, designed and implemented end to IT security infrastructure along with the team (Firewall, Anti Virus, Spam, IPS/IDS, etc.) based on GSD311. o Presentation of detailed IT security implementation architecture. o Managed the project applying PMI (first time). o Proxy gate way consolidation Reduction of administrative time, cost and dependency o Supporting ISO team to implement ISO 27001 & Auditing on enterprise level o Tipping Point Administration for enterprise level o Supporting global regional team for day to day in Security Operation support. o Initiating new Information Security programmes on regional levels o Defining security policy for end point client based on security compliance policy o Cyber Global Governance (Cyber Gate Keeper CGK and AV) o Maintained Internal Vulnerability Management Program to ensure full coverage from a system and scanning perspective; External Vulnerability Management Program to ensure full coverage and timely remediation. o Design scripts to automate repetitive tasks automate application deployments and streamline OS migrations. Implementation of Altiris automation and imaging

Research new technologies and helped developed comprehensive solutions for clients requirements.

Developed operation & security policies and procedure, standardized documentation and designed business continuity solutions.

Leading Security penetration test to many enterprise

Summary of projects with INNOKAT

Aus (American university SHARGAH)

Architected and design and implementation of a BDD 2.0 (business desktop deployment using SMS 2005 SP2, desktop imaging and scripting.

Dubai British School (5 branches Dubai )

Analyzed business needs and designed technical solutions to meet the gathered requirements using Microsoft and third party solutions. Design Data Center Architecture and infrastructure requirements. Hp Blade Bl20 selection and deployment as infrastructure.

This include AD directory design & exchange 2003 Design and implementation. HP San storage capacity of 2 TB as central storage repository for all school information

Implementing services like DHCP, DNS, WINS.

Implementing SMS 2005 for software distribution and batch management.

Design communication & Network & security Requirements.

Online system for student enrollment and knowledge base infrastructure deployment including web based design and security. Online exam system deployment and security deployment for the said solution.

Americana head quarter

Analyzed business needs and designed technical solutions to meet the gathered requirements using Microsoft and third party solutions. Database replication, DFS, SAN storage solutions, load balancing, and clustering. Architected and Implemented DNS, WINS, DHCP, Windows 2003 Active Directory, Exchange 2003, MOM 2005 and SMS 2003. Migrated - in parallel from NT 4.0

Domain and Exchange 5.5 to Windows 2003 AD and Exchange 2003

Designed an application hosting solution for the Restaurant network website. This is an internationally accessed website with a 24X7 uptime requirement. Design Full Security for point of sale communication to Head office in Sharja Design Security Access mechanism for All AD users and apply RSA tokens for Cashers and supervisor logins The architecture was based on a highly available and highly secure requirement that included designing a hardened installation of Windows 2003 server, IPSec, firewall port configuration for a pix front end and a checkpoint backend, clustering database servers, and load balancing web servers using F5 load balancer.

INNOKAT Data Center

Analyzed business needs and designed technical solutions to meet the gathered Requirements using Microsoft and third party solutions. This included hardware Firewall, File replication, Database replication, DFS, SAN storage solutions, network Structure, load balancing, and clustering. Architected and Implemented DNS, WINS, DHCP, Windows 2003 Active Directory, Exchange 2003, MOM 2005 and SMS 2003.

And Exchange 2003

Design solution for VPN connection between INNOKAT data center and its branches

Ajman E-government Data Center

Design, Architected and implemented a solution to migrate user data from a standalone SQL to consolidated SQL server FARM Design Database Security include Data encryption

Database to active directory and provided a web front end for account provisioning and password resets.

 Analyzed business needs and designed technical solutions to meet the gathered Requirements using Microsoft and third party solutions. This included hardware Firewall, File replication, Database replication, DFS, SAN storage solutions, network Structure, load balancing, and clustering. Architected and Implemented DNS, WINS, Full Security and Risk Assessment for the whole E-government program including review of the payments interfaces with Ajman Bank DHCP, Windows 2003 Active Directory, Exchange 2003, MOM 2005 and SMS 2003. And Exchange 2003

Dec 2004 till Dec 2005 ETISALAT E-company web hosting solution design and proposing manager.
Design the technical solution built on Microsoft WEB HOSTING 3.5 platform Designed an application hosting solution for the Company to allow Etisalat users to Dynamically Host their applications website. This is an internationally accessed website with a 24X7 Uptime requirement. The architecture was based on a highly available and highly secure requirement that included designing a hardened installation of Windows 2003 Server, IPSEC, firewall port configuration for a pix front end and a checkpoint backend, Clustering database servers, and load balancing web servers and san access. Security assessment of C-Panel Control panel of the web hosting and Security Access mechanism for the C-Panel Manage customer presentation and demo Participating in writing the RFP Lead the implementation team Lead solution acceptance from customer

Lead Internal and external security penetration in white-box and black-box mode using SAINT penetration tools Draft the legal agreement for the Web hosting users highlighted the Etisalat responsibility and customer responsibilities in term of security Prepare and introduce implementation team

Ajman E-government portal design project manager

Design the customer requirements document Participating writing the RFP Lead solution acceptance from customer Lead deployment project for first phase of Ajman free market portal

National bank of Oman Security as service assessment and lead RFP process project

Define customer requirement from implementing the Google security

solution Leading the integration team to integrate the core banking DB to Encrypted traffic thru all application layers.

 RMS

Applying Data Classification and writes management with Microsoft Lead solutions acceptance from customer

Jan-2005 till DATE Senior technology consultant (Abu Dhabi department of finance (DOF)

E-government project Migrate DOF Active directory with Custom department in one forest using federation services Define E-government GPO's participating with /ADS IC Supervise and manage implementation project

E-government project Exchange server 2005 mail system (DOF& Custom department)
Define the current mail system Define the scope of the E-government initiative for mail system writing the RFP for vendors to apply Choose best vendor Supervise and manage implementation project National E-Payment gateway consultation project

Prepare the RFP for vendors to apply highlight the security requirements from payments solution Supervise the proposing phase on behave of DOF Choose best vendor Supervise and manage implementation project

Study the change management process & reengineering to deploy new value added payments services with NBAD

MTC ATHEER at Iraq Infrastructure

Prepare the technology platform for the ISP Design Company security Policy and procedure Design the Data Center Hardware and Physical Security Lead the security testing across all layers

 IRAQ

Lead the security Program certification from Regulation authority in

Design the full Physical Security in the company and design logical access control Risk Assessment and Manage internal Controls to mitigate risks

Microsoft Dec 2002 Nov 2004 Microsoft Security consultant (Online Services Division ) Internal division for Microsoft Data Center

Online Services Division

Microsoft Online Services Security and Compliance (OSSC) is Department that lead and manage all logical & physical security design, survey, audit, and related security consulting services Microsoft worldwide critical infrastructure including data centers, leased collocations, and other types of facilities. My Role as Security Consulting include working directly with other internal teams as well as provides direction to a dedicated vendor team in such areas as security system design, project management, risk analysis, and Infrastructure surveys. My role is also responsible for working directly with numerous external security vendors as well as other vendor organizations like architects, engineers, and construction / project managers to ensure accurate and timely delivery of services.

:Notable Attainments
Part of the SOC Monitoring and Operations team and taking care of new tasks deliverables Monitoring nfx & SCOM SIM. Doing correlation analysis of Microsoft internal and external Data and voice traffic validating the traffic based on correlation, identifying any service degradation or outage and recommending applicable action to operation support Managing a Threat Management specific to Datacenter segment, configured and managing Symantec threat Management console. Closing working with SIRT team to identify risks, and mitigation

Coming up with Policy procedure based on information security requirement Responsible for the coordination, installation, upgrade and conversion or servicing of alarm systems, access controls, video cameras, burglary, radio systems and all other types of physical security equipment. Approve/modify all security contractor designs.

Oversee all projects to ensure they are delivered in accordance with established requirements and deadlines and within budget. Provide system solutions of specific security concerns identified through contract, legal, regulatory or industry requirements.

 Develop, manage, and maintain security related processes, procedures, system baselines, training, and improvement plans. Document and improve work processes in order to make workflow more efficient and productive. Collaborate across groups such as Data Center Operations, Data Center Development, Security Operations, Global Security Operations Center (GSOC) and other Security Consulting groups to overcome challenges and deliver results.

Lead a team of vendor Security Consultants/Project Managers to design security systems, manage projects, and conduct risk assessment or site surveys while maintaining currency with industry best practices and state of the art design guidelines utilized by the Security program.

Direct external relationships to ensure the viability of all security systems, legacy and new, with the goal of minimal business disruptions as the result of failed or improperly configured or installed systems. Implement technology solutions aligned with Microsoft security strategy and budget guidelines.

Research and recommend appropriate technical security physical systems (CCTV, access control, alarm, etc.) and design and/or engineer such systems for specific applications to achieve security program goals.

Ensure state-of-the-art physical security programs, methods and equipment by conducting research through benchmarking and evaluation of vendor-provided products and services.

Develop and administer processes for internal and external security system audits and serve as primary contact for such audits when required. Represent the security capabilities and operations procedures to internal and external auditors and be accountable for ensuring those capabilities are designed in conformance with audit requirements. Act as primary contact for security system emergency issues.

Participate in OSSC Security budgeting process as well as contribute to others budgeting processes for security system needs in other groups.

Projects
Microsoft Dubai Data Center Data Center Physical Security Project Evaluation 1- CCTV 2- Access card system 3- Access procedures and control Staff login and access Rights thru VPN 1- VPN Access use policy

2- VPN security measure 3- Use Smart Card access 4- Quick and Efficient mechanism for Access

MS Data Center Dubai Join the EMEA private Cloud 1- Define the requirements 2- Define security gaps 3- Define access rights policy Password management appliance 1- Enterprise Password Vault 2- Remote Access firewall for external parties Local Forensic Team 1- Act as local forensic team in cases of MS staff violation 2- Include Redmond Forensic Team in any case need to be escalated.

Fujitsu (Egypt-UK-USA) Jan 2001 30 Nov 2002 Senior Infrastructure & security Consultant

Total Project manager for Infrastructure ,security of the core banking system Implementing security during SDLC of the core banking system from old system UNIX & Oracle to windows & Oracle using PowerBuilder interface (the project implemented at agriculture & development bank of Egypt first phase 200 branch delivered 100 branches up till now.

Manage the Internet banking security platform for the bank.

Job Accountabilities:
Building and managing the infrastructure & security team

Actively involved throughout the qualification process; takes a lead role in the Assessment of the commitment of the company (including 3rd parties) and the Customer and the associated risk prepare and validate the project plan.

Acquires, assesses, assigns and manages the resources required (the company and/or 3rd parties/suppliers) for the project. Plans, monitors and controls project. Decides and applies methodology. Build and

Maintain project plan using project planning tools (prince 2) and techniques. Implement project review, change control and acceptance procedures that conform the chosen project methodology.

Identifies issues and assesses risk pre-bid throughout the project life. Identifies and executes a course of actions designed to minimize or avoid risk. Develop risk models.

Take accountabilities for the project financials. Produce and maintain the project P&L. produces revenue, profit, cash flow actual, and forecasts. Ensure and authorize

Revenue-earning deliverables to be processed for payment.

Defines the quality management system and overall Quality Plan. This plan will contain and identify Quality control responsibilities for all aspects of the project, including the audit process.

Provides input to the contract negotiations between the company and the customer and 3rd parties. Defining the key milestones / attributes / deliverables / planning / reporting and review process. Manages conformance to the contract and delivery of commitments.

 Defines and agrees with the client needs for ongoing support services.

Define and adheres to a regular reporting process both internally and confirming to the corporate requirements.

Technical Responsibility Highlights

Maintain Secure High Availability CITRIX farm to over 1800 Concurrent Connections for Bank employees with NFUSE, XML and CSG services in an ASP environment.

Implement and Manage Microsoft Cluster servers for File/Print services and SQL servers. Provide team leadership and management skills on software and hardware

Implementations.

Work with security internal systems to provide intrusion detection, audit capabilities, a secure environment. Design, implement, and administer Patch Deployment plan using BigFix.

Implement SOL 2000 Reporting services to provide custom reports for internal services as well as end users. Provide Application Design guidelines for new custom applications in an ASP environment. Manage multiple environments for application testing during various stages from alpha release to production. Work with management to create deployment processes and procedures to create a stable production environment. Troubleshoot and document new application implementations in a Citrix environment.

Manage deployment of new servers to allow for growth of Citrix environment. Create Document Standards for all team documentation.

Manage Central Storage point of all documents created by asp team using Microsoft SharePoint 2003 services. Create disaster recovery plan for quarterly testing all enterprise systems within Provide high level troubleshooting skills for resolving complex hardware and application.

Issues within a multiple team conflict resolution CAT.

Work with network operations to manage 4 terabyte SAN provide title plant image services and SOL 2000 database storage. Manage and verify SOL 2000 backups and redundancy on Microsoft Cluster Servers. Create custom SOL scripts for data migration and data manipulation.

Create and manage custom reports using SOL 2000 reporting services for internal services Work with WAN team to implement firewall updates for new software implementations and troubleshoot connectivity issues.

Provided management of assigned projects that allowed on time environment and application rollouts. Lead software-design sessions from design recommendations to production requirements. Designed, created, and managed complete parallel test environment for alpha testing new software application implementation. Evaluate and review new software applications and Hardware for enterprise implementations Implement and manage Web Trends reporting for multiple enterprise web site trend analysis

System Engineer (Fujitsu Egypt)

Part of Project team for implementation 8. customization of Core Banking system for Bank Of Alexandria Implementing, and customizing the package for core banking system Unix & Informix (the project implemented at bank of Alexandria 90 branches all over Egypt).

Sharing in implementation, Data Conversion 8.. Staff supervision in Bank of Alexandria Project Phase 1. Introduce technical consulting in Cairo Far East bank Project. Technical Project Manager for RAFDAIN Bank in Abu-Dhabi, and Introduce technical consultant to ICL-Emirates.

Sharing in Pre-sales activities for ARA-Bank Applications (Proposals and presentation).

Feb,1998- Jan2001 (Technical project Manager international computer limited (I.C.L) Egypt,
Analysis, design, development, training and support of the Automatic switch System for the ATM system Cairo Bank of Egypt, the main objective of this project is to enhance the performance of the implemented SLM-SOFT ATM network allover Egypt. Participating at design & analysis for I.C.L banking switch and manage development team.

Analysis and development was done for both member nodes and the central node. Analysis, design, development, training and support of the credit & ATM Card Issuance System for maintaining the personal of Cairo bank's cardholders. The application generates cards and PIN numbers for each new client. Pre-sales support for both of the above systems.

During my last working year in the company I took over the management of the Automatic Teller machine. Visual Basic 6.0, and Visual C++, as well as MS-SQL Server 7, and Access 97 &

Informix as database engines were used in the previous two systems.

- Feb,1996- March 1998 (Information System Specialist Al-AHRAM News Paper Management and computer Center (A.M.A.C)

 One of the largest software house for commercial computer services enterprises. Analysis, design, development, training and support of the billing system for electric company of Egypt which deals with data over 30,000,000 records per month the system implanted on IBM 9000 mainframe with language COBOL & db2 database.

Analysis, design, development, training and support of the distribution System for maintaining the distribution of AL-AHRAM newspaper presses at Egypt and outside Egypt. Analysis, design, development, training and support of the Advertising System for maintaining the advertising accounting at AL-AHRAM. During my last working year in the company I took over the management of the electric billing system.

COBOL, Visual Basic 6.0, and Visual C++, as well as MS-SQL Server 7, and Access 97 & 082 for mainframe as database engines were used in developing the previous three systems.

Free Lancer consultant:

o General Company for telecommunication Oracle DBA performance & tuning on HP UNIX servers Prima soft (Egypt) o Design Data Warehousing system for ERP System (Heat) o o o Arab contractors (Osman Ahmed Osman) Design & Development for Enterprise web site Design & Development for human resource system General Motors Egypt Inventory control for spare parts

GAZEL ELMAHLA (textiles &weaving)(graduation project) o analysis, design, development & implementing online internet o Retail system for hyper markets (multi branches).

Education
B.Sc. in Of Business Administration (Management Information System)Cairo University 1996 English section

Certification Status

Title
Oracle Certified DBA VER 8 Microsoft Certified Professional Microsoft Certified Systems Engine

Date Achieved
Oct 31, 2002 Dec 24, 2000 Feb 28, 2001

HP blade infra structure certification

Certified Sun Solaris Administrator version Certified CISSP Certified ITIL VER 1 Certified PMP Certified COBIT Renew Certification CISSP CISA Certification Certified for CIRSC Applied for ISO 27001 Lead auditor in process

2002

7 June .2003 2004 2005 2005 2009 2010 2011 2011 2011

Training (management & planning courses)

Project Planning. Practical Project Management. Business Report Writing Skills. Effective Presentation Skills. Project Management. Practical Business Risk Management. Effective Management Skills. Effective Time Management.

Technical courses
Windows 95. (MCP CERT[FIED) MS-SOL Server 7.0 Course, Microsoft Egypt, September 1999. Implementing and Supporting NT Server 4.0. (MCP)

Implementing And Supporting NT 4.0 Workstation. (MCP) SOL Server 7.0 Administrating. (MCP) SOL Server 7.0 Implementing. (MCP) UNIX courses I.C.L Egypt Oracle administrating courses 3t version 7 Informix administrating & development

Security courses for Racal[ system at banking TCP/IP course (MCP)

Banking technical courses Payment institute (Organized By! NACHA National automated Clearing house Associations): Washington University Seattle
Check Technologies Online Retail Payments. Cross Border Payments. Wire Transfer Systems. Risk Management. Electronic Data Interchanges (EDI). Swift operations & technologies.

Courses related to IBM mainframe operating system:

VSE/ESA OS COBOL mainframe Assembler mainframe CICS (online programming for application DB2 Nonstop operating system Nonstop S.Q.L

Personal Information:

Nationality: Egyptian

Visa status: resident Dale of birth : 14/05/1975 Marital Status: Married Personal e-mail: myassin75@gmail.com

o o

Myassin66@hotmail.com Myassin2004@yahoo.com

Work-mail: Mahmod.yassin@nbad.com

Mobile No.:

0508116825 -0556776977

Languages

Arabic Native Speaker French : beginner

English Excellent Deutsch: fair