Summary
Overview
Work History
Education
Skills
Websites
Certification
References
Training
Disclaimer
Timeline
Generic
M. Rezaur Rahman

M. Rezaur Rahman

Dhanmondi

Summary

Seeking an opportunity that will enable me to contribute positively and looking for challenging professional growth, which will help me to apply my skills and knowledge in the field of Information and System Security.

Overview

15
15
years of professional experience
6
6
Certifications

Work History

First Assistant Vice President

Social Islami Bank PLC
02.2021 - Current
  • Supervision of Security Operation Center (SOC) for effective monitoring and implementation of general Information Security controls for protecting ICT systems against external and internal threats.
  • Regular monitoring of critical infrastructure for security vulnerabilities, loopholes and flaws. Conduct periodical checking for physical/logical access violation of the Bank's infrastructure.
  • Collaborate with cross-functional teams to ensure compliance with both internal and external policies, standards, and procedures.
  • Vulnerability assessment and penetration testing of ICT systems and remediation/rectification of findings.
  • Prepare for and facilitate internal, external and regulatory ICT audits, ensuring compliance with regulatory requirements.
  • Implementing Risk Management Framework and risk management with periodic assessment/analysis of ICT Risks. Implementation of risk mitigating controls, risk documentation and initiating risk approval process.
  • Identify potential ICT compliance risks and ensure appropriate mitigation strategies are in place.
  • Design and implement security solution, reviewing configurations for cyber security solutions for securing confidential data files, reducing cyber security threats and ensuring optimized resources utilization.
  • Periodic review of Business Continuity Plan, Disaster Recovery Plan, ICT Security Policy.
  • To develop/review of guidelines/policies/procedures for ensuring secured ICT operations for the bank.
  • Review/monitoring/implementation of security controls in Data Center and DR sites periodically.
  • Review of the PCIDSS, ISO 27001-compliance guideline along with other industry standards in comparison with the bank's current practice to find out the gaps and provide guidelines to the stakeholders to remediate the gaps.
  • Conduct awareness session of the employees to strengthen security posture of the Bank.
  • Department: Team Leader of “Information Security & Compliance Unit”, ICT Division

Executive Officer

Dutch-Bangla Bank PLC
10.2016 - 02.2021
  • Core team member involved in PCI-DSS certification and compliance issues
  • Design implementation, deploy and administration of the following security solutions
  • Security Information and Event Management (SIEM)
  • Data Loss Prevention (DLP)
  • File Integrity Monitoring (FIM)
  • Privilege Access Management (PAM)
  • Web Application Firewall (WAF)
  • Network Behavior Analyzer (NBA)
  • Internal Vulnerability Analysis and penetration testing according to security guidelines by using the different tools.
  • Hardening different operating systems and servers as per ICT policy.
  • Prepare and update different IT Security Policy as per latest approved security guidelines.
  • Installation, configuration and manage PKI (Public Key Infrastructure) of the Bank.
  • Risk identification, analysis and assessment of Critical IT assets.
  • Assess, evaluate and conduct technical reviews for different security solution procurements including preparation of request for proposal (RFP) and other necessary documents.
  • Manage and cooperate with the third party service providers to meet the project deadline as per work order.
  • Install and test newly implemented security solutions and software whenever required.
  • Technical report writings.
  • Prepare the contents of employee and customer security awareness program.
  • Department: IT Security Division

Senior Officer

Dutch-Bangla Bank PLC
04.2013 - 10.2016
  • Hardening different operating systems and servers as per ICT policy
  • Prepare and update different IT Security Policy as per latest approved security guidelines
  • Network maintenance and upgradation as per ICT security policy
  • Migration of different branches and divisions to active directory
  • Branch opening and server room inspection
  • Data center and server health check and report creation
  • Preparing reports on regulatory body's compliance issues
  • Day to day problem solving of different branches and divisions
  • Configure, monitor and troubleshoot Kaspersky anti-virus client/server to ensure network security
  • Coordinate with the third party service providers to meet the project deadline.
  • Department: IT Operation Division (IT Security Unit)

Assistant Officer - Senior Officer

Dutch-Bangla Bank PLC
05.2010 - 04.2013
  • Provide support on technical issues of different branches.
  • Problem management ticket solution to employees.
  • Processing of GEFU files based on Macros of Microsoft Excel.
  • Manage Different payment methods of CSR.
  • Payment systems of Dutch-Bangla Bank Foundations scholarship.
  • Fixed asset depreciation charging of Head Office.
  • Payments of beneficiary accounts from various IPO draws.
  • Department: Head office, ICT Division

Education

MBA - Finance

Stamford University
01.2014

B. Sc. - CSE

Rajshahi University of Engineering and Technology (RUET)
01.2009

H.S.C. - Science

Notredame College
01.2004

S.S.C. - Science

Ideal School and College, Motijheel, Dhaka
01.2002

Skills

  • Excellent Problem-Solving abilities
  • Incident investigation and analysis
  • Proactive and able to work under pressure
  • Excellent Diagnostic skills
  • Excellent communications skills
  • Adaptable learner
  • Analytical ability
  • Design and implement Security solutions
  • Design and deployment of different security solutions
  • Vulnerability Analysis and Penetration Testing along with hardening systems
  • Prepare and implement IT Security policies, guidelines and standards
  • ICT governance and compliance
  • Assess, evaluation and procurement of security solutions
undefined

Websites

Certification

Computer Hacking Forensic Investigator (CHFI) – Certificate number : ECC7095231468

References

Shahidul Islam, Sagar, Vice President, shahidul@dutchbanglabank.com, +8801938801751, Dutch-Bangla Bank Limited, IT Operation Division

Training

  • Malware Analysis and Ransomware Attack Investigation- 5 days long course, conducted by Dr. Neel Kumar from Cyberfox Ltd.
  • Autopsy Basics and Hands-on – (8 hours long) – conducted by Basis Technology
  • RSA NetWitness Logs & Network Analysis and RSA NetWitness Logs & Network Core Administration, organized by RSA, conducted by Hawee Lee from RSA, 4-day training
  • WorkshopPLUS - SQL Server: Features and Administration and WorkshopPLUS - SQL Server: Common Tasks and Solutions for Non SQL Administrators, organized by Microsoft Bangladesh, conducted by Pooja Kamath(Microsoft Field Engineer (Data Insights) Microsoft), 5-day training
  • WorkshopPLUS - Active Directory: Troubleshooting, organized Microsoft Bangladesh, 4-day training
  • Qualys Online Vulnerability Scanning and Reporting, 1 day long training session, organized by DBBPLC
  • Prevention of Money Laundering and Combating Terrorist Financing, organized by DBBPLC, Conducted by Bangladesh Financial Intelligent Unit (BFIU), Bangladesh Bank.

Disclaimer

I do hereby declare that all the above information is true and correct to the best of my knowledge. Signature (M. Rezaur Rahman)

Timeline

First Assistant Vice President

Social Islami Bank PLC
02.2021 - Current

Executive Officer

Dutch-Bangla Bank PLC
10.2016 - 02.2021

Senior Officer

Dutch-Bangla Bank PLC
04.2013 - 10.2016

Assistant Officer - Senior Officer

Dutch-Bangla Bank PLC
05.2010 - 04.2013

B. Sc. - CSE

Rajshahi University of Engineering and Technology (RUET)

H.S.C. - Science

Notredame College

S.S.C. - Science

Ideal School and College, Motijheel, Dhaka

MBA - Finance

Stamford University

Similar Profiles

CREATE PROFILE
M. Rezaur Rahman