Previously, he worked as an IT Security Engineer and as a Penetration tester in other companies. Moreover, he has a lot of Cyber Security & Penetration Testing Certifications and countless accepted Vulnerabilities from worldwide Companies.
He detected with the Support of Josef Hassan many CVEs. Some examples are written down below. 18x CVEs are already published:
He is a certified EC-Council Instructor, and he gave many courses in onsite as online in the UK, Saudi Arabia (Government), Netherlands and many more.
Ahmed Hassan worked on the following Points:
Conducting IT audits (ITGC audits) as part of annual audits
Planning and implementation of technical security checks (vulnerability analyses, penetration tests) at different levels (infrastructure, web applications, applications)
PCI-DSS Implementation and Improvement for safe Payment Steps for banks or Collaborators with these banks
Planning and implementation of IT vulnerability analyzes (penetration tests) of various IT network infrastructures, websites, and web shops
Advice for IT departments regarding IT security technologies to improve general IT security and support for security awareness training and cyber security simulations
Incidentally, Ahmed Hassan deals with the identification of vulnerabilities (e.g. CVE-2023-0564) on websites and programs of various organizations and governments (bug bounty programs). He has already reported several vulnerabilities, including at Huawei, UK Ministry of Defense, NASA, US Department of State, EU-CERT, SAP, Siemens, Nokia, Singapore Government, Indian Government, MTN, UK-Government, stkrr.nl, Scottish Government lufa, Lego, University of Texas of Austin and more.
Hall of Fame for example from BOSCH and United Nations:
As mentioned above I have identified several further Vulnerabilities in worldwide and huge Companies/Governments.
https://psirt.bosch.com/hall-of-fame/websites-hall-of-fame.html (search for Ahmed Hassan)
https://unite.un.org/content/hall-fame/list (search for Ahmed Hassan)
Offensive Security Certified Professional (OSCP)
Cerified EC-Council Instructor (CEI)
PCI-DSS Implementer -> for specifically the Bank Area
Certified Ethical Hacker (CEH)
eLearn Security Junior Penetration Tester (eJPT)
eLearn Security Professional Penetration Tester (eCPPT)
eLearn Security Web application Penetration Tester (eWPT)
eLearn Security Web Application Penetration Tester Extreme (eWPTX)
eLearn Security Mobile Penetration Tester (eMAPT)
eLearn Security Certified Penetration Tester eXtreme (eCPTX)
Cyber Security Foundation (CSFPC)
Certified Network Security Specialist (CNNS)
Certified AppSec Practitioner (CAP)
CyberSAFE CBS-410 Instructor
German, Englisch, Arabic, French