• Build high quality security and integration solutions for Financial Institutes and Banks.
• Work closely with Executive leadership to build strategic plans and execute them.
• Oversee cloud applications architecture, validate solutions being migrated to the cloud in terms of security and architecture.
• Create baselines and security standards for migrating applications to the public and private clouds based on their categorization.
• Help my clients to the best Cloud practices and cover cloud security requirements and needs.
• Help clients with better security posture, higher security score, build alerts and playbooks, integrate with SIEM, enhance asset management, and provide security solutions.
• Address security requirements by providing architectural designs and solutions.
• Conduct (Security Solution Plan SSP, Security Risk and Compliance Review SRCR, Information Security Architecture Review ISAR, Security Exception Review Forum SERF, etc.)
• Run Gap analysis reviews between multiple security standards including Cloud Security Alliance CSA and Cloud Control Metrics CCM.
• Keep current with Azure and AWS security services and solutions.
• Implement Office 365, Azure Active Directory AAD P2 solutions such as Privileged Identity, PIM, PAM, Access Package, Information Protection, Rights Management, Cloud Governance.
• Implement Azure Information Protection, M365 Security & Compliance Center and Azure Information Protection Scanner.
• Experience with data governance and retention (Retention policies/tags, data governance reports and dashboards)
• Experience with data privacy and compliance frameworks
• Experience in using and scripting in PowerShell
• Experience adhering to problem management best practices, driving rapid resolution, root cause analysis, and reducing future support impacts
• Implement Azure Policies, Azure Baselines, Security Controls, Benchmarks and Blueprints.
• Implement AWS/Azure AAD integration.
• Implement AWS Organizations and AWS Policies.

• CISO Deputy, Helping CISO in all CISO office tasks related to Cloud migration and Business Teams issues (approvals, procedures, and requests).
• Work closely with CIO, CISOs, BISOs, to run daily security strategies (Risk management, security events etc.)
• Work closely with Business and Project Teams to help resolve issues and procedures.
• Run Cloud Migration Implementation for BSNY, SIS and APS. (Cloud Policy and Regulatory requirements, Landing Zone Design, Gap Analysis, AWS Well-Architected, Governance, Security Audit and Attestations)
• Work Closely with CCoE to set policies and procedures regarding the Cloud.
• Establish and lead a security governance practice.
• Establish, update, respond to, and lead activities regarding audit controls and evidence applicable InfoSec activities.
• Provide Assessment, Attestation, and Audit Services using multiple security standards including Cloud Security Alliance CSA and Cloud Control Metrics CCM, ISO, FedRAMP, SOC2 and others.
• Evaluate, Assess, and Attest all applications security-wise before authorizing them to work in Prod.
• Design and implement Cloud Migration Strategy
• Run Security Exception Review Forum aka SERF.
• Run Information Security Architecture Review aka ISAR.
• Participate in Enterprise Architectural Review Forum aka ARF.
• Work with Business teams, and PMO to facilitate their delivery.
• Work with Dev Team and Architects to help with solution design.
• Review and contribute to Enterprise Standards. Conduct gap analysis, Address risks.
• Design, analyze and support the company's information technology structure, systems, and processes.
• Acquire, design, implement and operate the company's information technology resources.
• Deploy, acquire, maintain, and ensure security of information technology assets.
• Plan and test processes to ensure compliance with system requirements, business objectives, security standards and other technical requirements.
• Lead POC's, and spearheading implementation efforts with engineering and application product teams.

• Build high quality security and integration solutions for Financial Institutes and Banks.
• Managed and collaborated with, all security initiatives in Health & Wellness Account.
• Worked so closely with HIPAA audit team to provide acceptable solutions for their requirements.
• Digital transformation, upgrading over 250 Dot Net applications to .NET Core and Cloud. Responding to RFP, Proposing Cloud Architectures. Addressing pinpoints, gaining buy-in and satisfaction.
• Worked in presales and in writing/drawing cloud proposals for the client defined technologies.
• Led 9 Scrum teams to build & migrate new systems and modernize the existing pharmaceutical system from A to Z.
• Handled all security initiatives, worked with different security teams to close all vulnerabilities or issues.
• Involved the latest business demands such as cloud computing, mobile, virtualization as well as tried and true techniques such as access control, encryption, and host security.
• Collaborated with the business and other technologies experts to develop defense in depth security reference architectures, security architecture standards and frameworks spanning all layers of security from host, server, and network to application and data security.
• Worked with Operations teams to ensure security architectures are appropriately assessed and able to be supported.
• Technical Decision Maker Enterprise Architect.
• Strategic planner, worked with directors, Sr. Directors and VPs to set the strategies of their organizations.
• Primarily, managed large engagements, being responsible for quality, budget and staffing, working closely with senior client managers. Principals contribute to the firm’s development by acting as counsellors and sharing knowledge. Recognized as experts in their respective area of expertise, managing and guiding teams to success.
• Increased the measured revenue generation & cost saving.
• Senior Interviewing panelist.

Principal Architect

A multi-billion project for Walmart that integrates multiple systems (new and legacy) and customize JDA product, joined in a later stage of the project and my contribution and achievements were the following:

• Managed different teams onsite and offshore (developers, testers, JAD professionals and architects)
• Refactor, re-architect the major services and big parts of integration between these systems resolving the following issues (Performance, scalability, data conflicts, testability, maintainability, code repetition and code smells, extensibility, readability and so on)

Another project proposed for Walmart Pharmaceutical Market to digitally transform existing system and migrate it to the cloud using Java, Microservices and latest technologies.

• Provided consultancy, solutions, and training about identity management and federated identity OAuth2.0/OIDC.
• Created the technical/architectural roadmap, worked closely with senior management to articulate the technical vision. Re-organized the structure/architecture of the main products, technical standards, guidelines.
• Led authentication team to move the company to the cloud era utilizing microservices and modern architecture.
• Built Federated Identity solution, a centralized service for all their internal and external (clients) applications, integrated with Okta, Auth0, AAD, Google and social media options.
• Configured custom attributes for OIDC access tokens in both Okta and AAD.
• Full CI/CD pipeline, with features added iteratively.
• Created and executed software development plans and releases, Facilitated the Scrum process and sprints.
• Hybrid Identity, Migrating Active Directory to the cloud AAD and SSO options. CA SiteMinder, Federated Access including Ping Federate and Microsoft ADFS2 Factor Authentication and Password Management.
• Used PowerShell scripts to implement Infrastructure as a Code in addition to the Azure Resource Manager Templates ARM.

• Architected, designed, implemented the E-payment system, and the foundation framework Sicom.Framework
• Managed multiple concurrent projects, lead different distributed teams.
• Managed multiple teams onshore and offshore who reported to me directly.
• Solved major business problems by refactoring/re-writing/expanding legacy systems with design patterns.
• Expanded technical business capabilities by introducing great architecture and easily integrating with partners.
• Established a C# shop in a Linux/Mac and C environment and refactored all development and architectural standards to ensure efficiency and consistency and quality through design patterns and structures.
• Set standards, Conducted Code reviews & Security reviews, explained the rationale for my decisions to developers of different levels.
As a security Architect
• Created a security framework that utilizes and expands .NET 4.5 security mechanisms (Encryption, Hashing and Signing).
• Created very secure E-payment (loyalty, payment, taxation) platform in accordance to PCI & PA-DSS compliance.
• Listed all the security holes and vulnerabilities in the existing systems along with remedy and a list of recommendations.
• Resolved security issues and concerns of innovative systems by utilizing standard advanced technics like Digest Authentication, Asymmetric encryption and signing to guaranty the integrity and confidentiality of the data.
• Worked side by side with network security team and third party (CoalFire) security auditors to get my products PCI|DDS certified before production.

• Major Success. Very happy stakeholders (Users, Client, Management etc.) in a very short time achievement.
• Designed and implemented fearless API services that are consumed by AngularJS/Html5 (Mature level 3 Restful and full of features following best practices by then)
• As an architect, envisioned the roadmap and set the organization capabilities according to TOGAF.
• Ran a team of 15 members taught best practices, planned releases and enforced quality.
• Set groundbreaking development standards and guidelines for developers to follow.
• Lead the development and design of new applications, leveraging and enhancing existing building blocks or creating new reusable components and per customer requirements through the utilization of the latest technologies in the market, also utilizing the Azure cloud and NoSQL as an alternative option.
• Created and executed software development plans and releases, Facilitated the Scrum process and sprints.
• Introduced DevOps, planned and automated the process.

• Designed & Developed the Fine-Grained Access security framework FGA: this is where all authentications of all kinds are happening based on the identity and its claims.
• I built it on top of WIF and VAB of enterprise library. That served all kinds of .NET applications (Console, Web, MVC and Web services). FGA provided extensive auditing for each request to any API. FGA provided protection across all layers and to all the components of the system across layers.
• Siteminder simulator for developers: it is a configurable mechanism for developers to be able to test their applications in the absence of Siteminder on local machines.
• Resolved a major problem in authentication in certain place where I utilized HttpModule, Security Policies, Http Headers to resolve it and it worked well.
• Extended the existing framework for more future possible solutions. (Configuration based authentication mechanism)
Microsoft Architect
• Architected and Implemented solutions for technical problems that faced the enterprise (Header policy, WCF watcher, Custom Authentication, Multi-profiles Site minder simulator, Corticon).
• Revamped and enhanced key applications using MVC5, Web API, and HTML5, resulting in a significant increase in operations, productivity, and effective engineering.
• Designed, refactored, administered, and implemented crosscutting, innovative features on the enterprise level such as: Fine Grain Security, Caching, Logging and exception handling using unity, enterprise library, and .NET.
• Architected Wrappers for Corticon to rectify and prevent software issues such as versioning and dependency.
• Crafted and documented enterprise level solutions using EA UML while assisting and coaching developers on the best practices for the development of web services and applications.
• Completed code reviews as a top contributing team member and executed effective solutions that improved processes, development, and problem-solving techniques.
• Systematized various processes as an auto-generation of code using CodeDom and T4 while directly collaborating with other teams to fulfill and exceed designated objectives.
• Managed .NET multithreading and claim based security through providing detailed evaluations and operative solutions to the performance of various applications.

• Worked closely with the Network administrator and team to create a monitoring system that integrates with AD to report the validation (Last logion, Last password change etc.) and generate detailed reports. (I know there are way better tools now, but I made that in 2007)
• Worked closely with the Database administrator and team to create a monitoring system that monitors all the database instances and nodes and immediately alert by email and messages. (I know there are way better tools now, but I made that in 2007)
• Produced unique .NET applications, primarily used for internal encompassing web applications and services as well as Windows Applications using SQL or Oracle Java & JSP applications.
• Built many customized applications and services using active directory, office 2007 and lotus notes.
• Evaluated and augmented existing systems through designing and documenting business processes and workflows using UML and BPN.
• Compiled existing business requirements through feedback from workers and department heads in order to perform an expert analysis and present useful resolutions for any issues.