ABU SHAMS MD. SHAZID REAJ

Information Security Analyst | Auditor | Trainer | Ethical Hacker Certifications: ISO 27001, ITIL-F, CHFI, CEH, CSA, CTIA, CCNA

PROFILE
Experienced IT professional and certified instructor with a comprehensive understanding of Cyber Security, IT Governance, Risk, and Compliance. Highly skilled in delivering training sessions and workshops, committed to educating IT professionals on best practices for protecting and managing information security.
 

WORK EXPERIENCE
Trust Bank Limited, Head Office, Dhaka, Bangladesh Officer (Information Security, Risk, and Compliance) Dec 2017 – Present
• Developed and implemented information security management systems (ISMS) and information security frameworks/architectures.
• Conducted risk assessments, developed risk treatment plans, and classified IT assets.
• Developed and implemented policies, procedures, and guidelines related to information security.
• Conducted internal audits to ensure compliance with ISO 27001 standards.
• Conducted security awareness trainings, campaigns, and seminars.
• Addressed compliance issues on information security matters to senior management, Bangladesh Bank, and other regulatory bodies.
• Monitored and reported on the effectiveness of the ISMS and recommended improvements.
• Kept up-to-date with the latest developments and trends in information security and recommended best practices.
• Performed vulnerability assessments and penetration testing for networks, servers, and applications.
• Monitored and investigated event logs and security alerts through SIEM, generating reports.
• Tracked and ensured endpoint security for all IT assets and checked regular activity.


EDUCATIONAL QUALIFICATIONS
• M.Sc. Engg. (Electronics and Communication Engineering) 2021, ECE Discipline, Khulna University, Bangladesh CGPA: 3.69 out of 4
• B.Sc. Engg. (Electronics and Communication Engineering) 2016, ECE Discipline, Khulna University, Bangladesh CGPA: 3.23 out of 4
PROFESSIONAL CERTIFICATIONS
• PECB Certified Trainer Certificate no: CT06543-07-2023 [PECB]
• ISO/IEC 27001 Lead Implementer Certificate no: ISLI1104359-2022-08 [PECB]
• ITIL® Foundation, Version 4 Certificate no: GR671128958AR [AXELOS]
• C|HFI (Computer Hacking Forensic Investigator) v10 Certificate no: ECC1690723845 [EC-Council]
• C|EH (Certified Ethical Hacker) v11 Certificate no: ECC1352879064 [EC-Council]
• C|SA (Certified SOC Analyst) v1 Certificate no: ECC1248697053 [EC-Council]
• C|TIA (Certified Threat Intelligence Analyst) Certificate no: ECC6842901375 [EC-Council]
• CCNA (Cisco Certified Network Associate) Certificate no: MND78J8P1KEQQK3N [CISCO]


SKILLS
• Governance, Risk, and Compliance (GRC): Information Security and Management System (ISMS), IT Governance, ICT Risk assessment, Compliance assessments, and implementation of security frameworks.
• Information Security Administration: Nessus, Metasploit, SIEM, PAM, End Point Security, Kali Linux, Ethical Hacking, Digital Forensics, SWIFT Administration.
• Leadership and Communication: Team Leadership, Planning & Management, Training, and guidance.
• Project Management:
o SWIFT CSCF Audit (Coordinator-2023)
o Implementation of ISO 27001 (Coordinator-2023)
o Implementation of SIEM (Core Member-2021)
o Implementation of PAM (Core Member-2021)
o Implementation of Endpoint Solution (Member-2020)


TRAINING AND WORKSHOP EXPERIENCE
• Security Awareness Trainings: Conducted numerous training sessions and seminars to raise awareness about information security best practices among employees.
• Workshop Facilitation: Organized and facilitated workshops on various topics including ethical hacking, digital forensics, and IT compliance.
• Certification Training: Provided training for professional certifications such as ISO 27001, ITIL, CHFI, CEH, CSA, CTIA, and CCNA.
• Customized Training Programs: Developed and delivered customized training programs tailored to the specific needs of organizations and professionals.

Subscribe to our newsletter to receive all our updates!