Ibrahim Hussam

Leadership:

Leading a team of 5 Technical Leads, who collectively manage a group of 20 software engineers, ensuring project delivery, cross-team collaboration, and alignment with organizational goals.

Initiatives:

• Introduced and standardized the usage of Private AWS API Gateway across all Valeo digital tool chain
• Designed the first hybrid system in Valeo which combines GCP and AWS to help Valeo R&D team to work closely with BMW and other OEMs to co-engineer electric cars software
• Introduced AWS Step Functions to handle a complex workflow solution
  

Achievements Highlights :

• Currently leading the migration of a monolithic application to microservices architecture.
• Design and implemented AWS Private API Gateway to improve API Management for private APIs hosted in Valeo VPCs, the private API gateway connects to private APIs in Valeo through AWS VPC Link and is only accessible from Valeo hybrid network through Interface Endpoints so that traffic doesn't go through the internet
• Designed data pipelines which are responsible for extracting data from different data sources ,load them into Valeo data warehouse hosted in BigQuery and transform them to be ready for modeling and KPIs calculations, the orchestration of this data pipelines is done through Tibco Business Works and the data extraction is done through dedicated REST APIs on top of each data source
• Designed a hybrid GCP + AWS + On-Premise architecture for a package ingestion pipeline that allows Valeo to securely receive terabytes of packages through Valeo's standard APIGEE Gateway from external partners to Valeo's private AWS VPC without exposing it to public access
  In GCP , APIGEE Gateway is used to securely expose endpoints to the customer using signed urls, with which the customer shall upload the packages to an encrypted Google Cloud Storage bucket
  The GCS Bucket is a publisher to a pub/sub topic for which it publishes the file upload event metadata
  In AWS Valeo VPC, an always running container hosted on ECS Fargate is subscribed to the GCP Pub/Sub topic to react to the file upload events and starts downloading the packages from GCS, then it triggers an AWS Step Functions Workflow
  AWS Step Functions are used as a serverless workflow manager with a poll model, where workers poll for the job status
  Other steps in the workflow are a mixture of Java Spring services hosted on ECS Fargate Containers and EC2s
  Packages are stored in an HSM S3 bucket
  DynamoDB is used to persist the workflow traces

• In partnership with Amazon Luxembourg AWS Prototyping team, I've implemented a POC for a custom Storage Encryption Gateway module, which acts as a proxy function between the Nexus files ingestion system used by Valeo to ingest project files and the storage and archiving systems (AWS S3 and Glacier)
• Storage Encryption Gateway Proxy is responsible for reverse proxying S3 service, generating a new encryption key for each file and sending it to a cloud HSM service to be encrypted with a master key, then storing the encrypted key in DynamoDB store to be used for later file retrieval
• The gateway proxy is also responsible for modifying request headers to add the encryption headers needed by S3 to do the SSE-C encryption upon receiving the file and verifying the integrity of the key with the MD5 header
• Cloud HSM should be replaced with On-prem HSM for the production solution
• Technologies used: Java Spring Cloud Gateway, DynamoDB, AWS Postgres RDS, CDK, Docker Compose, AWS ECS, Cloud Watch
• Implemented and participated in designing a generic framework for CI/CD to be used by embedded software teams as a template for their devops pipelines, the framework consists of: Jenkins pipeline script written in Groovy which orchestrates the execution of custom build and test scripts
• Each project using the framework should provide their custom build and test scripts and use the framework's Json configuration files to define different stages, in which each stage object contains data like Slave Name, Stage Docker Image Name, Stage Scripts Folder Name, timeout, etc
• A group of Python tools are being called during execution to parse, analyze and upload stage results to a central repository as well as publishing results and stage metrics of each stage to a dashboard web application
• Designed and implemented Purchasing and Invoicing Tool for Valeo Egypt using ASP.NET MVC 5 and MySQL
• Designed simple JWT based authentication module to solve the problem of user data redundancy between our main Application Lifecycle Management system and other affiliate systems (dashboards, requirements management, etc.)
• Leveraged Knowledge in AWS Fargate, Cloud Watch, Jenkins, Docker, Java, Chef, Python, Continuous Integration, C#, MySQL, PostgreSQL

• Participated in implementation of 2017 Electronic Census for Egypt that surveyed and saved data for approximately 100 million citizen,the system consisted ofAndroid mobile application to conduct the survey
  Back-end web API to process the collected data
  Web dashboard to display reports and statistics and we based system configuration.
  
• Participated in backend implementation of Investment map web application for "General Authority for Investment and Free Zones", the system consisted of 3 modules:Single page application using angular js to browse investment opportunities and integrates with google maps to locate opportunities at different sectors and cities.
  ASP.NET MVC Web Application to manage Investment Map Content
  ASP.NET Web APIs data provider for the Investment map single page application.
  
• Leveraged Knowledge in C# , ASP.NET MVC, WebAPIs, Entity framework, AngularJs, SQL Server 2016

Participated in implementation of The official portal of Confederation of African Football, the portal consisted of :

• Subsite for each competition,National team and club
  News , events , competitions and live results
  Integration layer with external APIs to synchronize competitions fixtures,stadiums ,results ,live match lineups,events and commentary.
  Backend to manage dynamic site content using ASP.NET MVC5
  Leveraged Knowledge in DotNetNuke7 , ASP.NET MVC , ASP.NET Web APIs , SQL Server 2008

• Migrated a digital media website from ASP.NET web Forms to MVC 2.0
• Implemented Integration with mobile payment gateway that is used for music and games mobile purchases
• Leveraged Knowledge in MVC 2.0, SQL Server, Javascript,Jquery ,SOAP web services