See How Many Clients You're Missing Each Month
Simply enter your business email & Topline AI Agent will show you.
Bishoy Wasfy
- Claim this Profile
-
English Professional working proficiency
- Technical Support
- Project Management
- Pos
- Team Leadership
- Troubleshooting
- Show all
Bio
Credentials
-
Certified Information Systems Auditor (CISA)
ISACAAug, 2022- Apr, 2026 -
Certified Information Systems Auditor® (CISA)
ISACAAug, 2022- Apr, 2026 -
Certified Information Security Manager® (CISM)
ISACAJul, 2022- Apr, 2026 -
GRCP
OCEG (Open Compliance & Ethics Group)Jan, 2021- Apr, 2026 -
Operational Risk Management (ORM)
Egyptian Banking InstituteJul, 2019- Apr, 2026 -
Certified Ethical Hacker (CEH)
EC-CouncilNov, 2016- Apr, 2026 -
PCI Security Standards Council
PCI Security Standards CouncilJan, 2015- Apr, 2026 -
Introduction to Project Management. Egypt
AmCham EgyptApr, 2013- Apr, 2026 -
Time Management Fundamentals. Egypt
AmCham EgyptApr, 2013- Apr, 2026 -
Introduction to Business analysis. Egypt
AmCham EgyptMar, 2013- Apr, 2026 -
Management Skills. Egypt
Excecutive Education, School of Business - The American University in CairoJan, 2012- Apr, 2026 -
Cards personalization (Chep& Magnetic) process. Italy
CIM ItalyJul, 2011- Apr, 2026 -
Chip Card personalization and programing. Jordan
STS - Specialized Technical ServicesMar, 2010- Apr, 2026 -
GRG ATM Hardware. Lebanon
GRG Banking Equipment (HK) Co. Limited.Nov, 2009- Apr, 2026 -
GRG ATM Software. Lebanon
GRG Banking Equipment (HK) Co. Limited.Nov, 2009- Apr, 2026 -
Master Card EMV TIP Testing Cases. Egypt
MasterCardOct, 2009- Apr, 2026 -
VISA EMV ADVT Testing Cases. Egypt
VisaJun, 2009- Apr, 2026 -
Hypercom access controllers (Nac,MegaNAC). Jordan
HypercomApr, 2009- Apr, 2026 -
Term-Master application related Hypercom. Jordan
HypercomApr, 2009- Apr, 2026 -
EMV Concept. Egypt. Egypt
UL Transaction SecurityAug, 2008- Apr, 2026 -
Visa Edit Backed system. Egypt
VisaSep, 2006- Apr, 2026 -
IBM’s OS/400 administration. Egypt
IBMDec, 2005- Apr, 2026 -
Programming Languages: C++. Egypt
New Horizons Computer Learning CentersFeb, 2003- Apr, 2026 -
Programming Languages: Visual Basic. Egypt
New Horizons Computer Learning CentersJan, 2000- Apr, 2026 -
Business Continuity Management System ISO 22301
BSI -
Certified Network Defender
EC-Council -
Certified Network Defender (CND)
EC-Council -
Certified Secure Computer User
EC-Council -
Certified Security Analyst
EC-Council -
Certified Security Analyst (CSA)
EC-Council -
Certified Security Professional (CSP)
EC-Council -
Certified Security Spcialist
EC-Council -
Computer Hacking Forensic Investigator
EC-Council -
Information Security Diploma
Arab Academy for Science, Technology and Maritime Transport -
ISO 22301
BSI
Experience
-
-
Egypt
-
Computer and Network Security
-
300 - 400 Employee
-
Information Security Services Senior Director
-
Dec 2023 - Present
Strategic Leadership: Providing strategic direction and vision for the Information Security Services department, aligning it with the overall business objectives.Team Management: Overseeing and managing a team of security professionals, fostering collaboration, and promoting professional development.Security Program Development: Leading the development and implementation of robust information security programs to safeguard organizational assets and data.Risk Management: Conducting comprehensive risk assessments and proactively identifying potential vulnerabilities to mitigate security risks.Policy and Compliance: Establishing and enforcing security policies, standards, and procedures to ensure compliance with industry regulations and best practices.Vendor Management: Managing relationships with security vendors and third-party service providers to ensure compliance with security standards.Security Architecture: Designing and implementing security architecture that aligns with business needs and supports scalability.Regulatory Compliance: Ensuring adherence to relevant industry regulations and standards, such as GDPR, HIPAA, or ISO 27001.Security Audits: Coordinating and participating in security audits and assessments to maintain a high level of security posture.Security Technologies: Evaluating, selecting, and implementing security technologies and solutions to enhance overall security posture.Strategic Planning: Contributing to long-term strategic planning and business continuity efforts by providing insights into security requirements and potential risks.
-
-
Governance, Risk and compliance (GRC) Director
-
Oct 2020 - Dec 2023
Ultimately accountable for developing, implementing and leading integrated GRC strategy and projects to monitor and evaluate the business, technology, and information risks, issues, and opportunities for customers and internally;Strategically plan and lead the execution of GRC work such that it's aligned with company and development goals;Ensure consistent bookkeeping and documentation of all GRC work;Represent GRC in communication with other departments and with customers;Develop, implement, monitor, and maintain vendor risk management programs for customers and internally;Develop, implement, monitor, and maintain vendor business continuity programs for customers and internally;Collaboratively develop, implement, monitor, and maintain complete security management programs for customers and internally;Ensure risk management priorities are reflected in strategic plans and initiatives;Monitor, test, and report on compliance standards, laws, regulations, executive orders, directives, policies, procedures, contracts, and corrective action plans relevant to customers and internal stakeholders; Oversee internal and external reviews, audits, inspections, and investigations; andPropose new or updated policies and procedures to promote compliance.
-
Network International
-
Egypt
-
Head of Logical Security and Risk Manager
-
Jan 2019 - Sep 2020
-
Egypt
o Conducting Information Security Reviews and Network Security Assessments.o Conducting a Risk assessment of NI systems and environments based on ISO27005 and NIST frameworks. o Assist in developing the required work quality/standards, by improving the staff awareness, create a successful backup program, and ensure problem-solving.o Act as an escalation point and ensure resolution of Logical Security client’s issues by identifying and reporting incidents in accordance with NI standards, and developing unique approaches for challenging situations that address a customized client need. o Work closely with the information security team, ensuring that the weekly, monthly and quarterly reports are produced and received by the concerned team for the appropriate required action.o Build relationships and interact with the applications owners to review and assess the handed over application(s), and ensure that all NI SEC parameters are adhered to.o Monitoring the on-going effectiveness of key controls and data privacy while conducting the internal/external access requests to gain assurance that they are operating in line with fraud/ operational risk appetite and any audit requirement.o Working closely with the NI concerned team or any other system/application. o Conduct the daily review for the user management activities audit trail report, keeping evidences in our records.o Ensure that the SCP (self-certification program) and risk reporting are detecting the practices that create fraud/business reputation risk, and mitigate audit finding guarantying no pending audit points.o Form a robust control by streamlining the Logical Security process and having it comprised in the Logical Security policy manual, ensuring that it is updated on regular basis.
-
Versos
-
Saudi Arabia
-
Head of Information Security Consultants
-
Nov 2017 - Dec 2018
-
Saudi Arabia
o Compliance implementation, testing and reporting for Customers’ organizations.o Conducting GDPR "General Data Protection Regulation" gap assessment and Complianceo Information Security Policies and Processes Development for customers’ organizations.o Conducting Information Security Reviews and Network Security Assessments for Customers’ organizations.o Conducting Risk assessment of customers systems and environments based on ISO27005 and NIST frameworks.o Conducting gap analysis for Customers organizations against ISO27001 and Saudi Arabian Monetary Authority “SAMA” Framework standards to assess clients’ security posture.o Conducting gap analysis for Customers organizations against PCI-DSS standard.o Document and present QA findings to leadership and the PCI Security Standards Council; o Provide status reports for consistent findings and proposed solutions of PCI-DSS.o Developing strategic information security programs for Customers’ organizations.o Designing and delivering information security awareness to senior management and users at customer side.
-
QNB Group
-
Egypt
-
Deputy Head Information Security Department
-
Nov 2015 - Sep 2017
-
Egypt
o PCI “Payment Card Industry” Project manager.o Risk Assessment Program Manager.o Information and communications technology Change Manager. o Serve as project manager/lead within IT security projects.o Develop Security Awareness strategy and implementation plan.o Develop policies, procedures and standards that meet existing and newly developed policy and regulatory requirements including, PCI, NIST, ISO and internal or external regulations (CBE, VISA Card, Master Card…. Etc.)o Collaborate with a team of Information Security Consultants to provide subject matter expertise to project teamso Coordinate and execute proactive Information Security consulting to the business and technology teams covering Infrastructure Security, Disaster Recover, Management of Data, Network Architecture and Design, User Access Management, and Management of Third Parties.
-
Security Meter
-
Egypt
-
Senior Information Security Counsaltant
-
May 2015 - Dec 2015
-
Egypt
• Liaise with the business and technical communities for the development of project scope, plans, costs, and business cases.• Evaluate reports performed by the bank PCI-Team.• Document and present QA findings to leadership and the bank PCI-Team.• Provide status reports for consistent findings and proposed solutions with the QSA “Qualified Security Assessor” • Interact with QSA, PA-QSA and ASV security professionals to confirm findings and resolve misunderstandings resulting from the review• Manage the project team to analyze the QA test process and help develop procedural strategies for reviewing reports and services• Help ensure relevant test coverage and appropriate sampling• Participate as an integral part of the team, exhibiting ownership, follow through, initiative, awareness and effective communication with peers and management• Proactively identify opportunities to improve the quality of reporting and usability of that information• Contribute to newsletters, whitepapers and other written communication sent by the QSA “Qualified Security Assessor” as needed• PCI DSS Reports on Compliance (ROC), Approved Scanning Vendor (ASV)• Scan Reports, and PCI PA-DSS Reports of Validation (ROV); • Facilitate interaction between the business and Target’s PCI DSS Qualified Security Assessor (QSA)• Apply established PCI DSS scoping criteria• Obtain and review evidence of compliance to support technical or complex PCI DSS requirements• Support the completion of the annual PCI DSS Report on Compliance• Scope, interpret, and prioritize both application and network vulnerability test results• Manage and communicate key compliance milestones for critical systems and complex processes• Work with Business /IT teams to understand requirements and capture the requirements• Responsible for compliance initiatives, program PCI, compliance (PCI Data Security Standards V3) ensure compliance with regulations by year end
-
-
EFT- IT Director
-
Dec 2013 - Dec 2014
-
Egypt
• Manage the team of IT Security. • Manage the team of IT resources.• Manage the POS field service team. • Manage the Card personalization team. • Manage the Card printers field service team.• Manage the support team.• Manage the monitoring and operations team.• Manage the development team.• Provide project management for all Information Technology projects.• Provide business analysis for all Information Technology projects.• Ensure delivery of the value added services for merchants.• Ensure cardholders satisfaction and manage issuance cycle “in-post and out-post”.Direct and manage the e-business services of e-Zi and “ Vodafone one.• Manger implementation of business processes across the departments.• Oversee the technical roll out for new merchants.• Release periodic reports for merchants based on the merchant transactions’ data available at e-Zi and Vodafone databases.• Lead and monitor the delivery of merchants value added services (sending e-mail shots and SMS for targeted cardholders as agreed with merchants).• Review and monitor the transactions data to ensure the accuracy.• Provide analysis about merchant’s transactions and cardholders’ related information.• Lead merchants’ technical training on system and e-Zi and Vodafone tools (POS) usage.• Develop plans and programs that meet corporate e-business strategy.• Oversee e-business support operations.• Manage Website implementation project.• Create weekly team schedules to ensure appropriate coverage of work activities.• Monitor and manage the processing environment to ensure hardware and application capacity and performance.• Plan and execute adjustments to the processing hardware and application environments to ensure capacity in line with projected volume growth• Ensure processing environment availability and uptime to meet with “Service Level” requirements
-
-
IT Services and IT Consulting
-
1 - 100 Employee
-
Electronic Funds Transfer “ EFT” Dept. Manager
-
Dec 2011 - Nov 2013
POS and ATM secure developmentPOS and ATM security implementationManaging the ePOS technical support and filed merchant support teams.Managing and supervising Cards Personalization and mailing Products team.Planning for new POS projects developing scope of work.Overseeing all aspects of projects using planning, monitoring and controlling.Defining the project’s objectives and overseeing quality control throughout its life cycle.Reviewing the deliverables. Resource requirements and work plan for the project.Managing the development and delivery for the project.Receiving, analyzing and managing problems efficiently and competently.Preparing and completing action plans.
-
-
POS Support Manager and Product Manager for Hypcom POS
-
Jan 2008 - Dec 2011
Manage the software change requirements for Hypercom customers.Helping our clients get certified meeting new mandates of Visa, Master Cards, Amex and any similar organizations.Responsible for MasterCard & Visa certifications for both issuer & acquirer (EMV)Manage the software bug reports for Hypercom customers, report them to the Software team, work on developing bug fixes, and supervise testing of new SW releases and bug fixes.Quality Assurance on software.Developing implementation plan – supervising the implementation of new projects.Conducting Clients New User Training on Hypercom products.Supervising 24x7 support to customers.Supervising all other support Engineers.
-
National Technolgy Froup
-
Egypt
-
Cards Personalization Security and mailing Products Manager.
-
Jan 2008 - Dec 2011
-
Egypt
Conducting all the activities related to Card Management Systems product planning and execution throughout the product lifecycle, including: gathering and prioritizing product and customer requirements, defining the product vision, and working closely with engineering, sales, marketing and support to ensure revenue and customer satisfaction goals are met. Also includes ensuring that the product supports the company's overall strategy and goalsEnsure successful fulfillment of SLA’sSupporting Sales activities including participation and input for RFP responses, customer meetings as well as providing senior operational input during the tendering process.Regular, ongoing and effective communication of all required operational / business metrics.Provide on-site support and guidance during the initial start up of the operation.
-
-
IT and AS/400 system Administrator/ Information Security team member
-
Oct 2004 - Dec 2007
* PCI-DSS gaining certification and maintenance * Responsible for restructuring and maintaining the current servers and network* Management and implementation of several assorted communication projects* Supervise over day-by-day user support functions.
-
-
Application Developer
-
Mar 2003 - Oct 2004
-
Egypt
* Programming, information system, and Database by developing and maintaining a group of project and programs that was used to automatic the system of work.*Computer Training by working as an instructor for the Management Training Center.*Network Administration.
-
Education
-
Arab Academy for Science, Technology and Maritime Transport
Diploma of Information security, Computer and Information Systems Security/Information Assurance -
1998 - 2002
Higher Institute of Computer Science
Bachelor's Degree, Computer Science
Suggested Services
This profile is unclaimed. These are suggested service rates with 0% commision upon successful connection
Industry Focus. “Computer and Network Security”
Looking to Create a Custom Project?Get StartedNeed a custom project? We'll create a solution designed specifically for your project.
References
Social Profiles
Community
You need to have a working account to view this content. Click here to join now -
