BASSIM HASSAN _ BCM Consultant

BASSIM HASSAN
Digital Transformation Advisory |

Enterprise Architect | Solution Architect |Program
Manager | ITSM /Cybersecurity & GRC Consultant
EDUCATION | People Manager
ALBalqa Applied University :
BEng. Computer Engineering- BIO SUMMARY
Oxford Saïd Business:
(Strategic Program Leadership / A Proven IT/Cyber Security proficient with 27+ years’
Systems Transformation program )
experience across the Middle East & Multinational
providers:
London School:
Business Automation program ▪ (12+) years as Microsoft Regional Principal IT Manager
& | Global IT Support programs Lead
CERTIFICATIONS ▪ (2) years as Chief Information Security Officer
CISO | CISM | CISSP | IAPP- (CISO)/BCM | Financial
CIPM | GRCP| TOGAF | AGILE| ▪ (13+) years: Principal IT/Security/GRC/BCM: [ Solutions
CDMP | SCRUM SCM
Architect Lead | Consultant Lead| Risk Management &
AZURE Solution & Cybersecurity
Architect | OCI Multi Cloud & Governance Lead |Presales Consultant Lead & Services
AWS Practitioner Delivery & Support Manager]
Lead Implementer /Auditor for
ISO (27001-42001-27701-
Specialty and lengthy practicing experience working with
22301)|BCI BCM
Microsoft, Systems Integrators, Services Providers & key
CONTACT enterprises customers in Middle East & Gulf Region across
diverse industry sectors, business partners, and vendors in:
Nationality; Jordanian / based in
Saudi Arabia ITSM | Cyber security | Cloud Solutions | Business
Continuity (BCM) | GRC | Auditing & Governance
LinkedIn:
https://www.linkedin.com/in/bassi
Being a trusted advisor, business advocate & program lead:
mhassan/
▪ Digital Transformation & Modern platform Architecture
Mobile: +966596271361 / ▪ Cloud Solutions Design and Consultancy Services
+962789661999 ▪ (GRC) Cyber IT & Security Risk Management, & Auditing
Email: bassimhb@hotmail.com/
bassimhb16@gmail.com
▪ Business Continuity & Disaster Recovery planning
▪ Presales & Technical Consultancy Lead
▪ IT/Security Operations & Services Delivery Management
Professional Experience Summary:
During my 27 years of career journey, I carried several roles and responsibilities in managerial,
consultancy , advisory , programs management & people manager who engaging with CxO levels,
business leadership, stakeholders, and enterprise key customers , sales & engineering teams and being
responsible to lead enterprise programs , managing direct reporting and cross functions teams for scalable
projects in:
1. Digital Transformation Programs & Enterprise Architect developing business services transformation to the
Modern Architecture of (Infrastructure | Cybersecurity & Zero Trust | Business Applications & Data )
• Digital e-State Transformation roadmap planning including enterprise scale IT/Security Services
Management | Digital business processes | Zero Trust cyber security architecture
• Employee’s digital experience and work productivity & AI Intelligent support services
• Modern ITSM services including ITSM solutions like Service Now, Jira & BMC
• Program Management based on Agile / Scrum / DevOps methodologies and best practices.
2. IT/Security Operations & Services Delivery: Leading regional GEO coverage, distributed professional
engineer’s teams for services delivery, operations excellence, and client support service while managing
distributed team of (17) persons across the region.
3. Cloud Solutions Design and Consultancy Services: Cloud Infrastructure, business services & Cyber Security
solutions Architecture (Azure Specialty), & multi-cloud solutions with other platforms like (AWS /GCP/OCI)
4. (GRC)- Cyber IT & Security Risk Management, Governance & Auditing

• Building management systems, standard frameworks and related governance processes, policy,
procedures, and operating models.
• IT /Security Governance / Three line of Defense roles, CAB member & Risk register & process owner.
• Lead Implementer, & Auditor for ISO42001 ISO27001|IS027701|31000|COBIT| |NIST frameworks
• Local Saudi regulations mandated by SAMAH/NCA/NDMO/ SADIA/TADWAUL
• Consulting for (Responsible AI | AI Governance & Ethics ISO42001 AIMS | Data Privacy
5. Business Continuity Management & Disaster Recovery: Helping organizations in planning based on BCI &
ISO22301 standard and best practices.
6. Presales & Technical Consultancy Lead: working closely for (7) years in supporting sales teams including
account planning, revenue generation, business growth, customer engagements and bidding management and
managing CxO/BDM/TDM decision makers levels on closing multimillion sales deals with key enterprise
customers across Middle east region.
Accreditation & Certifications:

• Cybersecurity / Business Continuity : CISO | CISM | CISSP | IAPP-CIPM | GRCP| GRCA | ISO27001-
Lead Auditor | ISO 42001 LA & Implementor| ISO27701 LA& Implementer | ISO22301 | BCI BCM
• Management : TOGAF | SCRUM SCM | AGILE-ICP & IPO| | ITIL| COBIT- TOGAF Digital Specialist |
DAMA-Data Management CDMP | PROCSI Change Management
• Cloud: Microsoft Azure Solution Architect | Azure Cybersecurity Architect | Azure Information Protection |
Azure AI Foundation | M365 Foundation | Amazon AWS Cloud Practitioner | Oracle Multi Cloud Architect
EDUCATION:
Academic Education:
▪ BE. Computer Engineering & Digital Systems – AL Balqa Applied University, Amman, Jordan, 1995
▪ Oxford - Saïd Business School Program: Leading Strategic Projects Program, 2020 /
Collaborative Leadership and Systems Transformation, 2021
▪ London School of Economics and Political Science - Automation Implementation in Business, 2022
▪ On-going Education & Development: AI Services Automation – Business Digital Transformation –
Responsible AI & Governance | Data Governance & Privacy
Leadership Education and Development
During my 27 years career journey, I integrated challenges, opportunities, and education to continuously develop
leadership skills, competencies, and building capabilities in: Influencing & Negotiation • Performance Driven •
Inductive Reasoning • Decision Making • Active Listening • Team Collaboration • Diversity & Inclusion •
Personal & Plenary Communication • Stakeholder Management
PROFESSIONAL SUMMARY
1. ALRajihi Bank – Advisory Contract: (2023) (Sr. Cyber-IT Risk Manager)

Report to Cyber- IT Risk Senior Director and responsible for
▪ Development of inclusive Cyber-IT strategics and associated OKRs planning that drive IT & Security
Risks assessment, mitigation and treatments effectiveness processes and governance frameworks.
▪ Identify and evolve IT Risk & cybersecurity capability strategies and maturity
▪ Developing and improving the organization Cyber-IT Risk conformance to all applied regulatory
compliance requirements in alignment to national and international regulations.
▪ Renovating the Cyber / IT Risk assessment and analysis processes and operation efficiency
2. Microsoft - Cloud +AI: Digital Employee Experience Org.: (Regional Principal IT Manager
| IT Global programs Stretch Lead)
3. (2011-2023)
Reporting to Middle East Area IT Director and responsible for: (KSA /Egypt/Jordan/Lebanon/Pakistan)
▪ Worldwide Microsoft IT Global Support Initiatives Lead/ Assistant

▪ Digital IT Services Transformation and Evolution Initiatives
▪ Managing Microsoft IT & Security Operations services Middle East - Distributed team (17) engineers.
▪ Microsoft IT Advisor supporting sales and digital advisory services teams
4. WATHEEQA Financial Investment – Saudi: (Chief Information Security Officer)

(2009-2011)
Report to Compliance Director and responsible for
▪ Managing Information Security and GRC programs ensuring compliance and fulfillment of
SAMA/TADAUL security regulation and policies policy and procurers’ mandatory requirements in
accordance with international standards (ISO27001/22301).
▪ Leading Cyber security, & business continuity (planning, operation, governance & incident response)
▪ Information Security planning & development in alignment company strategy & C-level stakeholders
5. Information Security & Training - Saudi: (Systems Security Presales Lead

| Sr. Security Architect)
(2006-2009)
Report to Sales Director and responsible for
▪ Leading and driving technical sales activities at CxO/BDM/TDM decision makers levels on closing
multimillion sales deals in IT/ Cyber Security Solutions
▪ Engaged closely with Sales / AMs in sales life cycle till customers’ technical decisions and deal closing
▪ Building & leading art of edge turnkey ICT infrastructure solutions, multi-tier defense in depth Cyber
security solutions & Security Architecture assessment, review services (AS IS / TO BE) roadmaps
▪ Practiced security compliance, risk management, risk assessment, IT Audit governed by industry and
security regulatory and risk management frameworks in alignment to international standards (27001)
▪ Building Resilience Business Continuity Plans following BS-25999 / ISO 22301:2012, BCM assessment
and disaster recovery solutions
▪
6. OMNIX- Salam Int.- Qatar: (Systems Security Presales Lead
| Sr. Security Architect)
(2004-2006)
Report to Sales Director and responsible for
▪ Leading and driving technical sales activities at CxO/BDM/TDM decision makers levels on closing
multimillion sales deals in IT/ Cyber Security Solutions
▪ Engaged closely with Sales / AMs in sales life cycle till customers’ technical decisions and deal closing
▪ Building & leading art of edge turnkey ICT infrastructure solutions, multi-tier defense in depth Cyber
security solutions & Security Architecture assessment, review services (AS IS / TO BE) roadmaps
▪ Practiced security compliance, risk management, risk assessment, IT Audit governed by industry and
security regulatory and risk management frameworks in alignment to international standards (27001)
▪ Building Resilience Business Continuity Plans following BS-25999 / ISO 22301:2012, BCM assessment
and disaster recovery solutions
7. Computer & Communication Systems– Jordan: (IT Support Team Lead

| Services Delivery Lead)
8. (1996-2004)
Reporting to < Professional Services Director and responsible for
▪ Solutions implementation, services delivery, support roles & training to enterprise customers
Key Customers:
▪ Saudi : Mobily | STC | NIC | SAMA | Tadawul | Banque Saudi Fransi | Saudi Hollandi Bank …etc.
▪ Qatar: QNB | Qatar Gas |Dalala Holding | Qatar Petroleum ...etc.
▪ Jordan: Central Bank | Jordan Electricity | Amman Applied University | Jordan University / Zain –
Jordan / Orange – Jordan…etc.
KEY ACCOMPLISHMENTS
Proven records with in leading, designing and landing key value proposition enterprise scale projects/program
Microsoft (2011-2023)
• Enterprise IT Global Support Programs – (WW Global Support, Middle East IT scale) – recognized with
(8) awards as Microsoft IT Excellence Champion:
▪ Digital Transformation program of Digital FIRST Support & Intelligent services & Zero Trust
transformation across Microsoft sites
▪ Azure Cloud Migration program across Microsoft IT Global Support - 180 sites - Transformed
97% of on-premises physical/ Azure IaaS Resources Optimization for 1 M$+ cost saving | Security
Compliance as per global policy for 200+ IaaS VM’s and applications (3 years).
▪ Business Continuity & Disaster Recovery planning champion for (7 years).
▪ Leading Microsoft Azure Learning & Cloud core-skills training program to Global IT Managers
▪ Microsoft Global Hackathon 2021 Award Winner & Advisor
▪ Local GEO: Landing 50+ of IT infrastructure projects across assigned Microsoft sites geographies incl.
new sites establishment|/ expansion/ renovation / Digital workplace / WAN migration / network upgrade
/ VOIP deployment and related infrastructure service.
▪ Scored Outstanding YoY digital employee experience, productivity/efficiency & customer
satisfaction KPIs
▪ Microsoft IT strategic Alliance programs with key customers like Aramco/SABIC / STC/ Saudi
Post…etc. by supporting sales activities and customer engagements to extend leads for business
opportunities and technology consumptions –MSIT- MS Cloud Transformation Journey and Microsoft
IT Cyber Security
WATHEEQA Financial Capital (2009-2011)

• Lead Implementation of Information Security management system (ISO 27001) during early startup of the
company and achieving trading license certificates.
• Developed comprehensive Business Continuity plan (BCI) in accordance with SAMA/TADAUL
regulations requirements that been audited and authorized by TADWUL operation compliance & license.
• Successfully completed external auditing bi-annually for 2 years in a row without any interruption to
business services suspension due to policy violations.
IT & Security Projects across Gulf Region (1996-2009)

• Leading presales activities for enterprise scale, multi-stages of multimillion IT/Cyber security turnkey
solutions for several key customers in Saudi, Qatar & Jordan
• Designing, architecting, and delivering IT/Cyber security turnkey solutions for several key customers in
Saudi, Qatar & Jordan
▪ Closed deals from 500$k to multimillions including IT & Security Integrated Solutions
▪ Closing deals from 100$k to 1 $M in both support services also in Consultancy services
▪ Developed and expanded Vendors partnerships & portfolio and working closely with sales teams
on win-win deals like Microsoft – Juniper – Cisco – IBM – Symantec – McAfee – CA …etc.
• Leading tens of Cybersecurity and Business Continuity & Risk Management projects
▪ Turnkey IT/Security Infrastructure Architecture solutions
▪ Developing ISMS/BCM based on global standards like ISO 27001 / 22301 /BCI GPG.
▪ IT/Information Security Risk Management and Governance Consultancy projects.
▪ Development /reviewing Policy & Procedure for Organizations
▪ ISMS/ Cyber Security Architecture Assessment and Evaluation.
• Implementing & Delivering 100+ of various Microsoft solutions projects to key enterprise customers in
Jordan and GCC along of post-delivery support and training
PROFESSIONAL DEVELOPMENT & CERTIFICATIONS
Leadership & Management

• Advanced leadership training (Microsoft internal Leadership programs / Oxford / London School)
• Strategic Program Management
• PROCSI Change Management
• Active Leadership
• Collaborative Leadership & System Transformations
• Agile Framework & Business Value Analysis
• TOGAF 9 / TOGAF Digital Specialist
• SCRUM SCM
Microsoft /Amazon AWS / Oracle Cloud Certifications

• Amazon Cloud Practitioner
• Oracle Multicloud Architect
• Microsoft Global Hackathon 2021 Award Winner
• Microsoft Cybersecurity Architect
• Microsoft Specialist – Architecting Microsoft Azure Solutions
• Microsoft Certified: Information Protection Associate
• Microsoft 365 – Foundation Certified
• Microsoft Azure AI Foundation
• Oracle Cloud Foundation
Cyber Security / Data Management & Governance Certifications

• CISSP / CISM / CIPM- IAPP (Data Privacy)
• DAMA -Data Management Professional (CDMP)
• EC-Council & PECB CCISO
• ISO27001-Lead Auditor/ ISO42001 Implmenter & Auditor / ISO27701 Implmenter
• BCI-Business Continuity Management & ISO22301 Transition
• GRCP / GRCA / CCSK / E|CH / CHFI
• COBIT 4.1/ 5 / 2019
MICROSOFT - ON JOB TRAINING

• Microsoft Leadership Mentoring Program- 4 months
• Information Security Risk Management Mentoring Program with Digital Security team - GRC team
• Enterprise Architect/ Digital Advisor Mentoring Program – 6 months
• On Job Training – BPM / Digital Security
• On job training - Area IT management – Middle East & North Africa region
• On job training – Technical Security Professional-Threat Management, Identity
MICROSOFT SOLUTIONS – TRAINING

• Azure Infrastructure Architecture and workload solution Architecture.
• MS Secure /Secure Modern Enterprise strategy.
• Secure Productive Enterprise (M365- EMS – O365 – Hybrid Cloud / Modern Identity / ATP /AIP)
• Identity and Information Protection Solutions.
• Threat Management solutions / Threat Modeling and Information Security Risk Management.
• Cyber Security Services Portfolio & Azure Site Recovery and Business Continuity solutions.

BASSIM HASSAN _ BCM Consultant

Uploaded by

Document Information

Copyright

Available Formats

Share this document

Share or Embed Document

Sharing Options

Did you find this document useful?

Is this content inappropriate?

Copyright:

Available Formats

BASSIM HASSAN _ BCM Consultant

Uploaded by

Copyright:

Available Formats

BASSIM HASSAN

Digital Transformation Advisory |

4. (GRC)- Cyber IT & Security Risk Management, Governance & Auditing

Accreditation & Certifications:

Leadership Education and Development

1. ALRajihi Bank – Advisory Contract: (2023) (Sr. Cyber-IT Risk Manager)

▪ Worldwide Microsoft IT Global Support Initiatives Lead/ Assistant

4. WATHEEQA Financial Investment – Saudi: (Chief Information Security Officer)

5. Information Security & Training - Saudi: (Systems Security Presales Lead

7. Computer & Communication Systems– Jordan: (IT Support Team Lead

WATHEEQA Financial Capital (2009-2011)

IT & Security Projects across Gulf Region (1996-2009)

Leadership & Management

Microsoft /Amazon AWS / Oracle Cloud Certifications

Cyber Security / Data Management & Governance Certifications

MICROSOFT - ON JOB TRAINING

MICROSOFT SOLUTIONS – TRAINING

You might also like