Mahmoud Mostafa
$14/hr
NOC, SOC, Network Security, cyber Security , information security, network admin, management
- Reply rate:
- -
- Availability:
- Full-time (40 hrs/wk)
- Location:
- Nasr City, Cairo, Egypt
- Experience:
- 9 years
Mahmoud Moustafa Fathy Hamouda || CCIE Security #67735
Objectives
An enthusiastic security engineer to work in a challenging Environment that will utilize my skills and offer
opportunity for challenge and career advancement. Looking to become one of the most important security
engineers.
Personal Profile
Nationality:
Egyptian
Date of Birth:
01/10/1994
Mobile:
-
WhatsApp
-
Email:
-
LinkedIn :
https://www.linkedin.com/in/mahmoud-moustafa
Education
•
Bachelor’s degree of faculty of computers and information -)
Menoufia University
Major: information technology
Grade: Very good with honors (83.93%)
Rank: Third in my graduating class
Experience
Overall Years of Experience
9 years
(July/2024 to present): Advanced Support (NOC & SOC) Manager
ITBuilders
•
•
•
•
Lead a team of support specialists, providing guidance, mentorship, and training to enhance their skills
and performance.
Lead and manage the daily operation
Develop and implement support strategies aligned with business goals and customer needs.
Drive initiatives to improve customer satisfaction through high-quality support interactions and resolve
escalated complaints.
•
•
•
•
•
•
•
•
•
•
•
Implement feedback mechanisms to gather insights for enhancing the overall customer experience.
Deep understanding of the product or service being supported to effectively troubleshoot complex
issues.
Prepare and present comprehensive reports on support metrics, trends, and accomplishments
Collaborate with sales, and other departments to address customer concerns and drive product
enhancements.
Streamline support workflows by identifying bottlenecks and implementing automation tools where
applicable.
Coordinate and manage (SOC) activities, ensuring compliance with relevant standards and regulations.
Implement and monitor security controls, policies, and procedures to safeguard sensitive data and
systems.
Develop and implement incident response procedures for the support team, SOC, and NOC to mitigate
risks and minimize downtime.
Lead escalation processes for critical incidents, ensuring timely resolution and effective communication
with all stakeholders.
Implement risk management strategies to proactively identify and mitigate potential security and
operational risks within the organization.
Monitor productivity ,efficiency, and KPI performance
(March/2023 to May/2024): Cyber Security operations center Team Leader | Security Consultant
ABSEGA (ITG Company)
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
Manage multiple customer Soc service
Managing SOC Team that runs 24x7, on a rotating shift schedule.
Security Testing and/or Security Operations.
Provide Deep investigation of security incidents.
Responsible for Threat Hunting Tasks for proactive Detection.
Analyze events, flows, alerts and advance analysis
Correlate events and find tuning
Provide threat intelligence activity
Build and deliver business and technical use cases for implementation in SIEM/Security.
Make recommendations to clients to mitigate threats
Report Security Events and make customer escalations based on traffic analysis
Develop and deliver customer presentation regarding security and enhancing their security posture
Participate in regular meetings with teams to determine appropriate actions required to address new
developing Security Threats
Generate reports required for audit and compliance requirements and required SOC governance reports
Participate in Client calls to tune security policy to client need
Design, Implementation of SIEM Use-cases, Reports & Dashboards
Follow up on remediation actions for security incidents.
Configuration and Management of Endpoint security technologies including Next Generation EPP, EDR
(October/2022 to February/2023): Security Team Leader
Crystal Networks (ITG Company)
(August/2021 to October/2022): Senior Security Consultant
Crystal Networks (ITG Company)
•
Discussing and Sizing new security solution with customer
•
•
•
•
•
•
•
•
•
Implement and Present technical demos and PoC for Customers.
Design, plan and implement network security solutions.
Handling Customers requests for Troubleshooting and Configuration.
Handling different Security Systems.
Migrate from old security products to new one.
Providing support and professional services for Cisco, and Non-Cisco Security
products
Install, Support and maintain hardware and software according to best practice.
Knowledge transfer & on-job training for customers and team members.
(Dec/2017 to June/2021): IT Security Administrator
CENTAMIN Egypt (Sukari Gold Mines)
•
•
•
•
•
•
•
Install, configure and troubleshoot all the company security devices/application (switches, routers, FTD,
ASA with firepower, ISE, Kaspersky, WSA, F5 LTM/ASM, ESA, SMA, Palo Alto, Qualys, WLC…)
Keep an eye out for needed updates and logs
Define network policies and procedures
Provide end user security awareness induction
Creating LLD/HLD
Detect external and internal vulnerabilities
Document current configuration for disaster recovery
(Jan/2017 to OCT/2017): Security Engineer
IT Vikings
•
•
•
•
Implement and Present technical demos and PoC for Customers.
Design, plan and implement network security solutions.
Handling Customers requests for Troubleshooting and Configuration.
Handling different Security Systems.
Projects
•
•
•
•
•
Implement Cisco ISE
Configure AAA for radius, tacacs, Guest portal, BYOD portal, posture to achieve compliance, integrate
with DNA and other solution to achieve zero trust
Implement Cisco FTD
Configure FTD in routed mode and enable application, URL, DNS, prefilter policy, SSL decryption, IPs,
network discovery, file analysis, Remote access and site-to-site VPN and other features to enhance
security.
Implement Cisco WSA
Configure WSA as a transparent proxy using WCCP and integrate with SecureX.
Implement Palo alto
Configure Palo Alto layer 3, layer two and tap interfaces as a datacenter firewall and configure security
policy, security profile, enable zone protection, Dos protection and other features to enhance security.
Implement ASA with firepower
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
ASA managed through ASDM and firepower through FMC; configure ASA for remote access VPN and
siteto-site VPN and Firepower as NGFW to enhance security.
Integrate WLC with ISE
Configure WLC to integrate with ISE to configure BYOD and Guest through wireless.
Implement Kaspersky Security center
Manage Kaspersky endpoint security configuration using Kaspersky security center.
Implement F5 LTM
Manage traffic between multiple exchange server, SharePoint, helpdesk application and other services.
Implement F5 WAF
Protect publish application ex OWA, SharePoint and CCTV app.
Implement F5 DDOS
Protect APM VPN portal from DDOS attacks
Hardening cisco Router and Switch
Protect border router and internal switch by apply security recommendation by cisco for switch and
router.
Implement Mutli-Factor Authentication Security Cisco DUO
Add two-factor authentication for different services (remote access VPN, tacacs…)
Implement FireMon (Firewall Analyzer)
Implement FireMon by adding firewalls, check policy configuration, and detect shadow policy and
misconfigured rules.
Implement Cisco Email Security (ESA) and advanced phishing protection (app) Configure
cisco ESA according mail security best practice.
Integrate FTD, ESA, SMA with SecureX
Integrate security devices with SecureX to provide single dashboard for security devices.
Implement Qualys
Monitor all published services vulnerabilities and take action to mitigate these vulnerabilities
Implement Valimail
Monitor Dmarc and take action against violation with DMARC policy
Implement Forti-Siem
Integrate different security solutions and OS with Forti-Siem
Implement Forti-Gate
Implement fortigate and allow other Security Fabric devices to integrate
Implement CrowdStrike EDR
Deploy advanced endpoint detection and response solution for proactive threat hunting and rapid
incident response.
Technical & Business Skills
•
•
•
•
•
•
•
•
•
Cisco FTD Implementation and Troubleshooting.
Cisco ASA with firepower Implementation and Troubleshooting.
Cisco WSA Implementation and Troubleshooting.
Cisco ESA and APP Implementation and Troubleshooting.
Cisco SMA Implementation and Troubleshooting.
Cisco ISE Implementation and Troubleshooting.
Cisco WLC integration with cisco ISE.
Cisco Umbrella.
Cisco secure network analytics (Stealth Watch).
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
Cisco DUO Mutli-Factor Authentication.
Cisco Secure Endpoint (AMP4E) Implementation and Investigation.
Cisco SecureX Integrations.
Palo Alto Implementation and Troubleshooting.
F5 LTM, ASM, DDOS, GTM Implementation and Troubleshooting.
FireMon Implementation.
Kaspersky Security center.
CrowdStrike EDR
Qualys vulnerability scanner.
ValiMail Dmarc solution.
Routing & switching implementation and troubleshooting.
Site-to-site and remote access VPN.
TrustSec.
Wireshark.
Forti-Gate.
Forti-NDR
Forti-EDR
FortiSiem
Forti-SOAR
FortiManager
FortiAnalyzer
FortiEMS
Incident handling & Response.
Threat hunting.
Cisco prime.
PKI Microsoft.
VMware.
Manage Engine Data Security plus.
Documentation & Network Design.
IT Management and Soft-skills
Training & Certificates
• CCIE Security #67735
• Certified Ethical Hacker (CEHV12 training)
• Certified information System Security Professional (CISSP training)
• AWS Certified Cloud Practitioner
• F5 Certified BIG-IP Administrator
• Fire Jumper FE Network Security
• Certified Professional: Kaspersky Endpoint Security and Management (002.11.6)
• Cisco Certified CCNA Security (210-260)
• Cisco Certified Specialist - Network Security Firepower
• Cisco Certified Specialist - Network Security VPN Implementation
• Cisco Certified Specialist - Security Identity Management Implementation
• Cisco Certified Specialist - Web Content Security
• Cisco certified CCNP Security
• Cisco Certified CCNA (200-120)
• Cisco Umbrella MSSP Console Onboarding Stage 1
• Cisco Umbrella MSSP Console Onboarding Stage 2
• Cisco Umbrella MSSP Console Onboarding Stage 3
• F5 Certified Application Delivery Fundamentals 101
• Palo Alto Certified Networks Accredited Systems Engineer (PSE) Palo Alto Networks Certified Network Security
Engineer (PCNSE)
• Fortinet-certified-associate-cybersecurity
• Fortinet Certified Fundamentals in Cybersecurity
• Fortinet Certified NSE1 Network Security Associate
• Fortinet Certified NSE2 Network Security Associate
• Fortinet Certified NSE3 Network Security Associate
• Black Belt - PLSS - Secure Endpoint Support Stage 1
• Black Belt - PLSS - Email Security Support Stage 1
• Black Belt - PLSS - Security ISE Support Stage 1
• Black Belt - PLSS - ASA Support Stage 1
• Black Belt Partner Academy Security Powered by Fire Jumper - Deployment - Network Security - Stage 2 FY21
• Black Belt Partner Academy Security Powered by Fire Jumper - Deployment Stage 1 FY2
• Black Belt Partner Academy Security Powered by Fire Jumper - Deployment - Visibility and Segmentation - Stage
2 FY2
• FireMon
• CCNP Routing & Switching (training)
• MCSA (server 2012) (training)
• Incident handing & Response (training)
• F5 LTM (training)
• F5 ASM (training)
• F5 DDOS (training)
• F5 GTM (training)
• FortiSiem (training)
• CrowdStrike (training)
Activities
Competitor at Cisco Netriders
I participated in NETRIDERS CCNA competition 2016 and won the fourth place in Egypt at
Round 1 and the 21th place on the level of Turkey, Middle East and North Africa at round two.
I participated in NETRIDERS CCENT competition 2015 and won in round one the first place in Egypt and in
round two the14th place on the level of Turkey, Middle East and North Africa
Languages
•
•
Arabic: Mother tongue
English: very good (reading, writing)
