Cloud security architecture and design patterns
Mousa Al Bateh
Cloud Security Architect
Prague
Summary
Cloud Security Architect with 7+ years software engineering experience and advanced security certifications (CCSP, AWS SAA-C03). Specialized in designing secure cloud architectures, identity and access management (IAM), and microservices security. Expertise in secure coding practices, compliance frameworks, and cloud-native security implementations.
Overview
9
9
years of professional experience
8
8
Certificates
4
4
Languages
Key Qualifications and Certifications
- AWS Solutions Architect Associate (SAA C03) - 2025
- Certified Cloud Security Professional (CCSP) - 2025
- Oracle Java Certified Foundations Associate - 2023
Work History
Software Development Engineer II (IAM)
Expedia Group
Prague, Hlavni mesto Praha
10.2023 - 08.2025
- Architected secure microservices for Identity and Access Management (IAM), implementing OAuth 2.0 protocols and security best practices for authentication/authorization systems
- Monitored health dashboards and logs in production environments.
- Provided technical support for incident resolution and improved IAM processes.
- Organized Scrum meetings and researched requirements.
- Designed and implemented secure REST API architecture patterns including threat modeling and vulnerability assessment across microservices
- Expanded client offerings by staying current with industry trends and new technologies.
- Mentored junior developers to enhance technical skills and foster continuous learning.
- Led infrastructure security improvements reducing security-related incidents by 15% through architecture review, secure coding practices, and vulnerability remediation
Software Development Engineer
Zaplo
Prague, Hlavni mesto Praha
10.2022 - 10.2023
- Integrated third-party APIs to enhance application capabilities and performance.
- Led software deployments and coordinated with IT operations for smooth testing to production transitions.
- Resolved critical software issues to minimize user downtime and optimized performance through efficient algorithms.
- Collaborated across the systems development lifecycle, from requirements gathering to production releases, while contributing ideas in team meetings.
- Reduced technical debt by refactoring legacy code and implemented security measures to protect sensitive data.
Software Development Engineer II (IAM)
Expedia Group
Prague, Hlavni mesto Praha
06.2021 - 12.2022
- Developing new features for managing identity and access.
- Developing REST APIs.
- Fixing backend and frontend bugs.
- Optimizing software performance.
- Fixing technical debts.
- Coaching and training new joiners.
- Assisting team members on problems and offering solutions.
- Maintaining EC2 instances for testing and development.
- Assisting operations by solving bugs/defects of high priority.
Software Engineer
Casenet LLC
Prague, Hlavni mesto Praha
04.2020 - 05.2021
- Fixed bugs in Back-end (Java) and Frontend (JavaScript) using TDD.
- Modified REST API endpoints to meet business requirements and improve performance.
- Increased testing coverage by adding unit and integration tests.
- Improved code performance and conducted general cleanup.
- Reviewed colleagues' pull requests and utilized Git for version control.
- Employed Jenkins for CI/CD testing/deployment before merging.
- Wrote automation scripts for environment setup and internal processes.
- Coordinated with the team and Scrum Master daily (Agile) and worked with Spring Framework and Apache at a basic level.
Dev/QA Engineer
Other Companies
01.2017 - 01.2020
Education
Bachelor of Business Administration -
Abu Dhabi University
Abu Dhabi 01.2006 - 2010.01
Skills
Secure Coding
Accomplishments
1. Led security reviews and threat modeling for microservices architecture at Expedia, identifying and remediating critical vulnerabilities in IAM systems.
2. Bitcoins trading application (uses MongoDB and developed in Java and hosted on Linux)
3. Automation frameworks for increasing efficiency (Internal tools used by team)
4. Framework for analyzing visual patterns using different available frameworks such as Sikuli and AI.
5. Development of helper framework for analyzing and reading texts using OCR libraries.
6. Development of integrations between REST APIs and SAAS solutions.
Additional Information
Regarding Permits:
Czech Republic:
No permit required for work/living.
Other countries:
Possible to work as a contractor (B2B)
Interests
Microservices security and DevSecOps
Identity and access management (IAM)
Cloud compliance and governance
Incident response and threat modeling
Personal Development
Certification
Toastmaster - Competent Communicator
Timeline
GitHub Foundations
07-2024
Postman API Fundamentals Student Expert
07-2024
API Designer (Api Academy)
07-2024
Software Development Engineer II (IAM)
Expedia Group
10.2023 - 08.2025
Java Certified Foundations Associate (Oracle)
06-2023
Software Development Engineer
Zaplo
10.2022 - 10.2023
Software Development Engineer II (IAM)
Expedia Group
06.2021 - 12.2022
Microsoft Technology Associate: Database Administration Fundamentals (MTA)
04-2021
Problem Solving (Basic) Certificate, HackerRank
11-2020
Java Certificate, HackerRank
07-2020
Software Engineer
Casenet LLC
04.2020 - 05.2021
Dev/QA Engineer
Other Companies
01.2017 - 01.2020
Bachelor of Business Administration -
Abu Dhabi University
01.2006 - 2010.01
Languages
Arabic
Native or Bilingual
English
Full Professional
Russian
Very Good
Spanish
Basic
References
References will be awarded on request.
References
References will be awarded on request.