Summary
Work History
Education
Skills
Accomplishments
Qualificationskills
Career Overview
Timeline
Generic

MOHAMMED FOUAD HASSEN

Kuala Lumpur

Summary

Experienced Cloud Lead with 8+ years of comprehensive expertise in cloud technologies, development, and DevSecOps practices. Equipped with a strong developer background, proficiently utilizing major cloud platforms to architect and implement cutting-edge solutions. Proven track record of successfully integrating security into the development and deployment process. Adept at leading cross-functional teams, promoting collaboration, and effectively communicating technical concepts to diverse stakeholders. Recognized for optimizing performance, scalability, and security through innovative cloud and DevSecOps strategies. Committed to continuous professional development to stay at the forefront of technology advancements.

Work History

Cloud Security Lead Engineer

Carsome Group
Kuala Lumpur
- Current
  • Onboarded a complete SIEM solution (QRadar) for centralized security monitoring in my first 6 months
  • Onboarded a full CSPM solution (Crowdstrike) in my first 4 months to detect, investigate and remediate Cloud Security vulnerabilities and misconfigurations for AWS & GCP Accounts
  • Onboarded and improved threat intelligence solution in my first 6 months to detect and Alert about Cyber Threats with focus on Cloud
  • Key person in setting up the Control Tower for AWS and organization (guardrails) and overall organization Service Control Policies (SCPs)
  • Lead the efforts for Data Leak Prevention (DLPs) organization wide using Macie on AWS
  • Key person on implementing Single Sign-On with Microsoft Azure AD
  • Key person on onboarding SAST solution (SemGrep) and SCA tool (Snyk) in my first year
  • Key person on onboarding Probely as the main DAST tool for website and API testing
  • Lead the effort to create multiple automation workflows with AWS Lambda for misconfiguration detection and orchestration response as part of our security controls for AWS
  • Enabled TrustedAdvisor and worked with Stakeholders to optimize organization on AWS saving 20-30% of the overall cost
  • Lead the effort to optimize Cloud Security by comparing multiple solutions (Native and external tools) to get the best value from our current CSPM solution (Crowdstrike)
  • Started a Red Teaming program internally to improve the overall security awareness of the organization employees with practical phishing campaigns targeting multiple teams with focus on finance and accounting teams.

Engineering Lead

HealthVenture
  • Lead a TechTeam of 5 remotely for 3 years building healthcare startups with Full Venture Capital support from Inception to IPO during which 1 startup turned into a multi-million $ company on their series A
  • Key person on the team responsible for reviewing and maintaining SourceCode for various projects my team was involved in
  • Key person on the team responsible for onboarding code quality and security tools such as Sentry & SonarQube for Application monitoring and SAST
  • Key person on the team Responsible for turning any manual process into an automated workflow to optimize on time and expenses for startups at the early stages such as Fastlane for automating code deployment (CI/CD)
  • Was the key person responsible for deploying services on Google Cloud (GCP) using GKE, App Engine and buckets for Single Page Applications (SPAs)
  • I was the organization Administrator for the Attlasian package used internally to manage all projects.

Full Stack Developer

RedApe Solutions Sdn. Bhd.
  • Worked as a fullstack developer using MERN Stack (Mongo, ExpressJS, React and NodeJs)
  • Built components of frontend web applications using Angular and React
  • Worked with Python for task Automation and writing unit tests
  • Worked with Selenium and Appium on writing integration tests
  • Worked with Docker to dockerize applications for local deployment and Cloud deployments with AWS EC2
  • Built multiple static websites for various commercial purposes alongside customized email campaigns working closely with business development
  • Worked on building Dynamic websites using Django with MYSQL as the main web development framework.

Software Developer

Caduceus Lane (Egypt)
  • Founded the software development team hiring my own team to work on developing professional web and mobile based services for healthcare marketing agencies
  • Lead the effort to get the company certification as medical content provider from renowned medical service platform CEGEDIM
  • Developed web medical content to be published on platforms such as content management systems built for medical professionals
  • Developed multiple 2D Games for educational purposes to spread awareness and promote specific FDA approved Drugs
  • Mentored and trained multiple interns and helped them start their own career in software development benefiting both them and the company.

Education

Bachelor Degree in Information Systems -

Arab Academy for Science
Egypt
09.2013

Skills

  • AWS
  • GCP
  • Security controls
  • Infrastructure services
  • Onboarding
  • Core security solutions
  • Security information and event management
  • SIEM
  • CSPM tools
  • NodeJs
  • MERN Stack
  • Web applications
  • Automation
  • Python
  • Bash
  • Version Control Systems
  • Git
  • VAPT tools
  • Web/ Mobile Application Security
  • Securing code
  • DevSecOps tools
  • SonarQube
  • Sentry
  • CI/CD pipelines

Accomplishments

  • Leadership, Created and managed a solid development team to support healthcare startups as part of my role with HEALTHVENTURE. Leading the product development within the broader venture capital landscape., Hired and managed the Cloud security team in CARSOME laying out the foundation for:, Building an effective DevSecOps process and implementing DevSecOps pipeline, Conducting continuous gap analysis for the Infrastructure on AWS and coming up with a clear plan to address them., Experience with the entire software development with a clear ability to understand and improve the teams' performance.
  • Strategy and Planning, Built the Cloud Security & DevSecOps strategy for CARSOME managing a team of 3 Engineers., Brought up the Cloud Security maturity to an acceptable level implementing the AWS well-architected framework for CARSOME via implementing Control Tower and organizational policies on Cloud., Implemented a full CSPM solution for CARSOME to detect and remediate misconfigurations and vulnerabilities as part of the daily operations., Supported the organization's plan to migrate from Gitlab to JIRA and implemented multiple automation workflows for ITSM., Built the entire software development department from scratch for a healthcare development company during my early years working in EGYPT. During my time the team expanded from 2 to 10 developers working on 6 figure $ projects.

Qualificationskills

  • Seasoned in AWS and GCP Security controls and infrastructure services.
  • Key person responsible for onboarding core security solutions such as Security information and event management (SIEM) and CSPM tools.
  • Experience working with NodeJs as part of the MERN Stack developing web applications.
  • Skilled in automation with (Python & Bash).
  • Experienced in managing version Control Systems (Git).
  • Knowledge and skill working with VAPT tools for Web/ Mobile Application Security.
  • Experienced in Securing code through DevSecOps tools such as SonarQube and Sentry.
  • Experienced in building CI/CD pipelines with CircleCI and TravisCI & GitlabCI.
  • Experienced in writing unit and integration tests with Selenium and Appium.
  • Building online communities for developers and Cybersecurity professionals such as CSA Malaysia Chapter and ITSOS.
  • Experienced in building Secure code through onboarding and operations of DevSecOps tools.

Career Overview

Experienced Cloud Lead with 8+ years of comprehensive expertise in cloud technologies, development, and DevSecOps practices. Equipped with a strong developer background, proficiently utilizing major cloud platforms to architect and implement cutting-edge solutions. Proven track record of successfully integrating security into the development and deployment process. Adept at leading cross-functional teams, promoting collaboration, and effectively communicating technical concepts to diverse stakeholders. Recognized for optimizing performance, scalability, and security through innovative cloud and DevSecOps strategies. Committed to continuous professional development to stay at the forefront of technology advancements.

Timeline

Cloud Security Lead Engineer

Carsome Group
- Current

Engineering Lead

HealthVenture

Full Stack Developer

RedApe Solutions Sdn. Bhd.

Software Developer

Caduceus Lane (Egypt)

Bachelor Degree in Information Systems -

Arab Academy for Science

Similar Profiles

CREATE PROFILE
MOHAMMED FOUAD HASSEN