 Conducting routine vulnerability assessments, ethical hacking and security audits. Planning and implementing phishing scams for training and education. Preparing vulnerable machines for testing, enumerating Linux and windows AD environment.  Assisting senior cybersecurity analysts, IT teams, and other departments to implement security measures, address vulnerabilities. Implementing security patches and updates for software, applications, and systems. IT support activities, network segmentation and implementing least privilege access.

 Managed, coordinated, ensured deliverables for 16 deliverables ranging from system study, solution design, hardware and software procurement to supervising vendors for IT Consultancy for the Bangladesh Insurance Sector Development Project (BISDP).  Acted as the sole point of contact (SPOC) for the specified project, liaising with project consultants, subject matter experts (SMEs), clients, and delivering project updates to the managerial committee. Planned realistic implementation schedule, detailed project planning following Critical Path Method (CPM), Gantt Chart and Program Evaluation Review Technique (PERT). Prepared ‘Terms of References’, prepared tender documents following World Bank Procurement Procedure for 4 organizations. Facilitated to the comprehensive system design of 11 applications, encompassing 6 enterprise-level applications. Explored the global insurance industry Information technology standards and watched demos of renowned vendors like Microsoft, Oracle, SAP etc to ensure the delivery of the state-of-the-art solutions and technology.

 Risk Assessment:o Identified and assess the risks at organization level and project level.o Conducted in depth risk assessment following NIST Risk Management Framework (RMF), ISO 27001 Risk Assessment Methodology and FAIR (Factor Analysis of Information Risk). ISO 27K Internal and External Audit: o Conducted audits on projects leveraging in-depth understanding of internal controls, business process, systems, application, and IT controls and auditing against best practices. o Supported SOX and SOC2 Audit compliance requirements for 4 of Accenture client's BU.o Supported the mitigation of Internal Audit Findings.o Implemented Oracle Identity & Access Management.o Conducted infrastructural audits in DC and DR (Data Center and Disaster Recovery) ISO 27K Implementation: o Established ISMS policy based on Accenture Information Security Management Policy 1457.o Incorporated PDCA management cycle to ensure the system and structure of the proposed ISMS implementation architecture.o Implemented 100+ Client Data Protection (CDP) controls in the 14 categories of ISO 27001. o Executed Business Continuity Management (BCM) procedures for three projects, covering routine management, documentation, and auditing.o Passed ISO 27K External Audit by DNV with 0 Major findings.o Achieved Accenture Spot and Industrialization Award for Performance Excellence.

• Managed ITIL Service Delivery areas of Service Level, Availability, Capacity, and Financial Management.• Planned business-based Macro Level Capacity Planning which included a periodic (every quarter) capacity management plan/forecast (FC) • Managed ISO 20K capacity for 25 services.• Produced a periodic (every quarter) capacity management plan/forecast (FC) based on future business forecast and current utilization of the configuration items such active/passive network items, server/application licenses, storage items, database requirements, end-user equipment aligning with business priorities. • Improved Capacity Planning process through integrating E2E Manage Engine tool and centrally managing capacity to ensure 0 surprises.• Achieved Accenture Industrialization Award.