Ahmed Abdullah Mohamed

• Responsible to manage Identity Management Support teams and Cyber security activities.
• Lead a team of AD Support Engineers / Identity Management Engineers, focusing on process improvement, data integrity, and collaboration with cross-functional teams.
• Managed a team size of 40 members and run daily operations with around 1500 tickets per day in SNOW including incidents, service requests and change requests.
• Oversee the manual management of Windows Admin privileges across multiple domains (120+)
• Ensuring compliance with access protocols and managing audits of the Local Admin Group (LAG).
• Oversee daily audits of the LAG report, implementing best practices to maintain authorized access to Windows servers.
• Collaborated with cyberark team to onboard domains to cyberark and onboarded privileged access, vaulting passwords in cyberark safe.
• Managed Sailpoint services for user access management including account enable, password reset, adding members to active directory groups and responsible for Access Certification Governance (ACG).
• Collaborated with SNOW team to automate sailpoint access provisioning and deprovisioning in service now with an approval workflow.
• Played a key role in Centralizing access requests in SNOW by building forms for end users and enabling automation with sailpoint and cyberark.
• Provided requirements to Engineering team to develop tanium packages (powershell scripts) to manage active directory.
• Onboarded applications to sailpoint to manage user access provisioning and deprovisioning.
• Collaborated with key stakeholders to develop and refine access protocols and procedures, ensuring they meet organizational standards and security requirements.
• Provided strategic insights and recommendations to enhance access management processes and improve overall efficiency.
• Managed escalation points for access-related issues, serving as a liaison between the engineering team and upper management.
• Ensured timely reporting and documentation of team activities, including daily status reports and compliance audits.
• Fostered a culture of continuous improvement within the team, encouraging skill development and knowledge sharing.
• Align team objectives with organizational goals and ensure objectives are met within specified timelines.

• - Managed a team of 12 members providing 24/7 support for Windows Active Directory across 130+ domains at Fiserv.
• - Led provisioning access and removing orphaned accounts.
• - Assigned INC, RITM, change requests for user access and service account access to servers and applications.
• - Reviewed and approved actions in Tanium tool for access control.
• - Conducted daily audits of user and service accounts in Active Directory and cleaned up unapproved/unnecessary access.
• - Maintained Admin access budget for each business unit.
• - Prepared audit reports and presented to senior leadership.

• - Initiated tech refresh program for upgrading and migrating obsolete Windows servers at Fiserv.
• - Identified and onboarded skilled Project Managers and engineers (Windows, Linux, Middleware).
• - Coordinated with business units for tech refresh projects and assigned tasks.
• - Managed upgrade of 24 Windows 2016 servers to 2022 and built new DR environment.
• - Planned scope, requirements, configurations; coordinated with lead engineers.
• - Successfully completed DR exercise and passed audit.
• - Obtained clearance for Go-live after validations.
• - Handed over documentation to BU and Server Operations teams.

• - Managed Certificate Management project to renew 80k SSL certificates using Venafi at Fiserv.
• - Led an 8-member team to ensure certs were renewed before expiry to avoid outages.
• - Pulled reports, refined data, coordinated with app teams and BU division leads.
• - Managed tickets from SNOW queue for renewing, decommissioning, and auto-renewal.
• - Ran incident calls for expiring certificates and sent daily status reports to senior leadership.
• - Managed Identity & Access Management project with a 6-member team.
• - Provisioned access to end users on AD and application tools based on tickets.
• - Worked on change requests for bulk user access provisioning.
• - Supported application teams for domain integration in Sailpoint.
• - Sent weekly and monthly reports to senior leadership.

• - Managed OS Patching BAU and Transition project for patching 30k servers globally.
• - Led a 65-member team delivering patching activities on monthly, quarterly, half-yearly cycles.
• - Responsible for escalations and RCA, prepared 24/7 shift schedules, ran daily and monthly meetings with dashboard and status reports.
• - Conducted knowledge transfer and training to Fiserv India team for patching execution.
• - Handed over SOP and supporting documents for patching activities.

Led Database Patching Readiness and BAU project for Oracle and DB2 in

North America.

-Collaborated with engineering teams to build patching scripts including

pre and post checks, DB start/stop scripts.

-Engaged ICTO server teams to deploy scripts on Linux and AIX servers.

-Tested scripts in lab environment, fixed errors with engineering teams.

-Prepared SOP for database patching activity.

-Conducted stakeholder meetings and created status reports

and presentations.

-Managed patching for 1300 Oracle databases and 200 DB2 databases.

-Led a 6-member team running patching activities on half-yearly cycles

with scheduled change records.

-Managed EMEA, APAC, and LAC Patch Readiness and BAU project.

-Onsite at Frankfurt for EMEA patching readiness.

Tasks included data cleanup, server data validation, coordinating with

support teams for application installations.

-Conducted stakeholder meetings, created status reports

and presentations.

-Completed milestones with minimal timeline impact despite

firewall challenges.

-Coordinated firewall issues with SANE firewall team and end users.

-Patching applied to 15k servers in EMEA and LAC regions.

-Led Patching and Vulnerability Management project for North America.

-Managed around 10,000+ servers globally for regular maintenance and

scheduled changes.

-Supervised compliant ticketing system and timely resolution of

technical incidents.

-Monitored and patched servers using HP OpenView service desk, BMC

Remedy, WSUS, HPSA, Saltstack, SCCM.

-Administered Windows server platforms hosting web and database

applications ensuring security patches, antivirus updates, backups,

and maintenance.

-Participated in CAB meetings and change review calls.

-Created and submitted change orders for patches, hot fixes, and SQL

policy updates.

-Performed root cause analysis and remediation for security compliance.

-Managed physical and virtual VMware servers including new builds,

security and performance.

-Prepared dashboards and presentations for client meetings and

project status.

-Provided training for junior engineers.

-Implemented VMware vSphere infrastructure design, maintenance,

monitoring, troubleshooting and capacity planning.

-Deployed patches on non-persistent images using Landesk and

manual processes.

-Managed snapshots for VDI images and VMware vSphere.

-Installed, upgraded and troubleshooted various software applications and

OS updates.