B.Sc Eng & M.Sc Eng at Computer Science & Engineering

Islamic University, Bangladesh- (2004)

HSC

M.M. College Jessore- (1998)

Global Manager, Cyber Security Service Lead

Advantest Corporation , Corporate IT Group - (2022/07- Current)

* Lead total 8 (4 governance, 4 security engineers) team members including 3 Japanese members.
* Lead Cyber Security planning and implementation for Endpoints, Networks, Web applications & Cloud.
* Lead security solution (NGFW, WAF, IDS/IPS, CASB, DLP, SIEM and Endpoint Protection) implementation Overall lead of vendor management
* Lead security committee and CSIRT team
* Lead cyber security governance, policies making etc.
* Lead ISMS certificate acquisition Lead overall IT risk management
* Lead Penetration test (including SCA & SBOM), SIEM, Security Monitoring and Governance

Assistant Manager

Mitsubishi HC Capital Inc. IT DX Dept Information Security Governance Group - (2018/10 – 2022/06)

(Including domestic and overseas offices)
* Technology lead for overall cybersecurity planning
* Installation of SASE/SWG platform, Zero Trust, Defense in depth implementation
* Implements L3/L4, L7 security measures
* Security review of products to be installed
* Project management * Periodic penetration test
* Security incident response * Vendor management
* Yearly security risk assessment
* Updating Security rule, regulations, procedure related documents

Security Engineering Team Lead

MetLife Insurance K.K - (2016/05 -2018/09)

* Manage 6 members DLP team, review the report from the vendor, suggest the improvement and get it done.
* Penetration test of Web application, wired, wireless network.
* Interact with different assessment guidelines including OWASP, IPA, CWE/SANS Top25 etc.
* Configuration analysis and assessments of network devices according to vendor guidelines (Cisco etc..)
* Managing mail, endpoint & cloud storage DLP systems (Symantec, McAfee, CES CASB).
*Operation of CyberArk IDM/IAM system
* SIEM (Splunk) log analysis, monitoring and reporting for DLP
* Security incident response * Vendor management

Server Engineer (Security)

Rakuten Inc. - (2013/03 – 2016/04)

* Build and manage SOC / SIEM monitoring infrastructure for security log analysis (Splunk and ELK)
* Security review of servers with Apache, DNS, Iptables, DHCP, FTP, Nginx, MySQL, Postgress, Jenkins, Docker and many other services
* Linux server design, build, operation, monitoring and troubleshooting.
* Project management with offshore teams (China and India) for various infrastructure projects

Intersoft KK (Deutsche Bank Japan)

Infra Engineer - (2007/05 – 2013/02)

* Infra transition from physical to cloud using Vmware platform
* Linux based web (Apache), Proxy (Squid), DNS (Bind) NFS, Samba, MySql etc service configuration, maintenance.
* Windows 2008 based AD, user & access management, File server (DFS), IIS
server configuration, maintenance
* Documentation for ISMS * Regular Network monitoring and reporting
* Daily infrastructure operation (Job, Event Log, security Monitoring)
* Shell Scripting for repetitive task * Project Management with Offshore office

Network Eng.

Flora Limited Bangladesh - (2004/07 – 2007/01)

* Branch to branch IPSEC VPN tunnel connectivity
* Office VLAN design and connectivity
* High availability Load balancing cluster setup, Maintenance (with all the necessary services like Bind, Apache, Qmail, Vsftpd etc.. )
* Daily infrastructure operation (Job, Event Log, Security monitoring etc..)
* Shell Scripting for automation of Regular administration task