Noteworthy Completed Projects and Key Involvements
Graduate Student Researcher
Role: Graduate Student Researcher -The University of Texas at Arlington (UTA)
Responsibilities
- Optimized resource allocation and scaling strategies for microservice-based cloud applications, enhancing computational efficiency and overall system performance.
- Designed and implemented a Kubernetes-based Resource Manager to orchestrate microservices, dynamically improving deployment scalability and operational resilience.
- Identified and mitigated critical resource bottlenecks in microservices architecture, ensuring peak performance across distributed cloud environments.
Implementation of Extended Detection and Response (XDR) Tools
Role: Project Manager - BRAC Bank PLC
Particulars
- Strengthened cybersecurity posture by automating detection, fostering collaboration across teams, and driving continuous threat-hunting and system improvements.
- Directed the strategic adoption and deployment of XDR solutions, aligning with business objectives and integrating with existing security tools to enhance threat detection and response.
- Orchestrated vendor selection, contract negotiations, and seamless XDR integration, ensuring efficient data collection, governance, and operational optimization.
Real-Time Threat Detection & SIEM Integration Project
Role: Project Manager - BRAC Bank PLC
Particulars
- Led the SIEM deployment, overseeing requirements analysis, vendor selection (EOI, RFQ, RFP), and architecture design to align with corporate security and compliance objectives.
- Maximized threat detection by configuring log sources, fine-tuning detection rules, and integrating SIEM with security tools, minimizing false positives and negatives.
- Planned and enhanced real-time monitoring and incident response, improving security event analysis, threat detection, and ensuring ongoing compliance.
Advanced Ransomware Prevention and Early Detection
Role: Project Manager - BRAC Bank PLC
Particulars
- Proactively secured systems by patching vulnerabilities, leveraging threat intelligence, maintaining offline backups, minimizing ransomware risks, and ensuring swift recovery.
- Implemented a multi-layered security architecture, including firewalls, EDR, and DDoS mitigation, to enhance ransomware defense and ensure early threat detection and response.
- Drove employee training and developed a comprehensive incident response plan, empowering staff to act as the first line of defense and ensuring coordinated responses to ransomware attacks.
SOAR and Threat Intelligence Integration for Proactive Automated Response
Role: Project Manager - BRAC Bank PLC
Particulars
- Initiated automation of incident response workflows, working closely with security analysts to enhance efficiency through SOAR and SIEM integration.
- Designed a comprehensive library of automation scripts and playbooks, enabling swift and efficient incident management.
- Optimized automation performance, tracking key metrics and reporting enhancements in threat intelligence and incident response capabilities.
IT Auditing for Secure Digital Operations
Role: Project Manager & Team Member - Bangladesh Computer Council Funded Projects by World Bank Group
Particulars
- Spearheaded the National Data Center (NDC)) IT audit, a Tier-3 facility providing 24x7 IaaS, PaaS, and SaaS, ensuring secure, continuous operations for the government's digitalization initiative.
- Contributed to IT and cybersecurity audits for Tier IV National Data Center, validating 99.995% SLA uptime, safeguarding 2 Petabytes of cloud storage, and assessing security equipment to enhance national data resilience through multi-layered defense and redundancy systems.
- Steered the IT audit of toll plaza systems for the Road Transportation Highway Division (RTHD), evaluating electronic and manual toll collection systems and bolstering the government’s highway maintenance funding strategy through efficient toll collection.
Bangladesh (BGD) e-GOV CIRT
Role: Team Member - Bangladesh Computer Council Funded Projects by World Bank Group
Responsibilities
- Collaborated in establishing a Cybersecurity Research Wing, assisting with incident response policies, infrastructure setup, and partnerships with international CERTs to enhance e-government security.
- Worked alongside in developing the National Cyber Security Strategy and Risk Assessment Framework, supporting efforts to strengthen cyber defenses and aiding implementation across government agencies.
- Facilitated the setup of a Digital Forensic Lab, providing input on tools, assisting in investigator training, and ensuring compliance with legal requirements for cybercrime investigations.
- Participated in Vulnerability Assessments for Bangladesh Bank, helping identify risks, recommending remediation actions, and offering security insights for system improvements.
- Assisted in deploying Cyber Sensors in Critical Infrastructures, contributing to risk assessments and implementing monitoring systems to safeguard vital sectors from cyber threats.
PCI-DSS Compliance and Security Enhancement Project
Role: Project Manager & Team Member - Eastern Bank PLC
Responsibilities
- Piloted PCI-DSS implementation, managing project planning, risk assessments, and gap analysis to secure payment card data.
- Synchronized cross-functional teams, developed policies, and ensured compliance through testing and continuous monitoring.
- Guided technical enforcement of security controls, including access control and vulnerability management, enhancing payment security and reducing risks.
Enterprise SIEM Deployment and Incident Response Initiative
Role: Team Member - Eastern Bank PLC
Responsibilities
- Contributed to requirements analysis and vendor selection for SIEM implementation, aligning the solution with organizational security needs.
- Assisted in designing and configuring the SIEM architecture, setting up log sources, and customizing detection rules for real-time monitoring and incident response.
- Supported real-time monitoring by tuning SIEM alerts and assisting the security team in threat analysis, improving incident detection and response.
Financial Systems Security Assurance Project
Role: Project Manager & Team Member - KPMG Bangladesh "Big Four"
Responsibilities
- Assisted in IT security audits for the central bank's (Bangladesh Bank) key payment systems, ensuring the robustness of critical financial operations.
- Supported cybersecurity audits for major banks (Dhaka Bank PLC, BRAC Bank, NCC Bank PLC, Prime Bank PLC, Al-Arafah Islami Bank PLC), enhancing IT infrastructure security and credibility.
- Contributed to strengthening IT security for core banking systems and ERP platforms, ensuring compliance and operational resilience across financial institutions.
Oracle JD Edwards Implementation and Optimization
Role: Team Member - IBCS-PRIMAX Software(Bangladesh) Limited
Responsibilities
- Supported the first Oracle JD Edwards implementation in Bangladesh, covering Financials, Procurement, Inventory, and Sales modules.
- Conducted business analysis and process optimization, managing client needs, vendor coordination, and automating manual processes.
- Ensured database security and maintenance, handling backups, monitoring, and capacity planning while supporting end-user training and system integration.
Airtel Bangladesh IT Operations and Security Support Initiative
Role: Team Member - IBM Bangladesh
Responsibilities
- Assisted in securing Airtel’s key customer-facing applications, such as the Prepaid Top-Up Transfer and E-Self Care platforms, enhancing customer service delivery.
- Contributed to multiple IT support projects for Airtel Bangladesh, including CRM, PreTUPS, and the Pay Via Scratch Card Application, ensuring seamless operational efficiency.
- Supported Airtel’s operational growth as the second-largest mobile operator in Bangladesh by enabling reliable IT and security support through IBM.