Mohammad Tohidur Rahman Bhuiyan

I ensure the alignment of RightTime's operations with the Board's strategic plan, overseeing senior executives, engaging with external stakeholders, reporting to the Board, and fulfilling tasks assigned by them. As Lead Auditor, I conduct critical audits of client IT and business systems, including phases like PCI DSS, IS/IT, ISec Grade Audit, Vulnerability Assessment & Penetration Testing (VA & PT). Making final decisions regarding audit conduct and observations. I am a Cyber Security Practitioner.

As Special Technical Faculty, major responsibilities were (include conducting classes of the following): > Information System Security, Information Security Management Standard (ISMS). > Enterprise Risk Management, Governance & Compliance, ISMS, BCP & DRP, ITIL, CEH, etc. > Training on ISOs 27001, ISo 9001, ISO 20000, etc. > Training on CISA, ISACA & Practical Auditing). > Data Base Designing: Microsoft SQL Server. > Customize Reporting Software: Crystal Report.

As Faculty, major responsibilities include (but are not limited to): > Conducting Diploma Classes on Information Systems (including Information Technology) Audit. > Conducting classes/workshops and training on security-related domains e.g. Vulnerability Assessment & Penetration Testing, Forensic Audit, Information Security Graded Audit, Specialized Audit, and Investigation (as and when required).

As Lead Auditor (LA), responsible for all phases of the audit. Besides, have management capabilities and experience and exercise authority to make final decisions regarding the conduct of the audit (Information System Audit, Penetration Testing, Forensic Audit, and or any specialized Audit) and any audit observations.

As Faculty, major responsibilities include conducting classes/workshop and training (as and when required): > Information System Audit (CISA Preparatory, Information Security Graded Auditing). > Information System Security, Information Security Management Standard (ISMS). > Enterprise Risk Management, Governance & Compliance, ISMS, BCP & DRP, ITIL, CEH, etc. > training on ISO 27000 series, ISO 20000, and ISO 9001, etc.

As Consultant, responsible for building the necessity for documentation of various stages i.e. regular user’s and technical user’s guide/ manual etc.

As Consultant, responsible for assessing and evaluating the present Information System Infrastructure (Hardware, Network & Software), mapping between all the stakeholders for smooth operation contingency. Besides, worked closely in the area of Business Process Reengineering.

As Manager, Operation; responsible to: > Ensure the total operation of MRP & MRV (Machine Readable Passport & Machine Readable Visa). > Drive initiatives in the management team that contribute to long-term operational excellence Contribute to Identifying and implementing ICT best business practices and project management. > Positive contribution to bringing up the total Information System of the project compliant with ISO 27002.

As Executive Director, Information System Division, responsible to: > Provide central leadership and vision in the use of ICT. > Set policies and standards for the implementation and use of ICT, including privacy and security standards. > Identify and implement ICT best business practices and project management. > Facilitate R&D activities to identify and establish effective ICT service delivery.

to assist clients’ businesses in reaching the next level of success. My responsibilities include dealing with complex tasks/operations related to IT-related infrastructure, integrating IT into businesses and showing clients the best possible ways of using their existing IT infrastructure to achieve business goals, Working as a bridge between the technical team and the rest of the staff members, Giving right advice to the clients.

As Senior Manager (Audit, IT & System Security), I led IT audit projects, provided internal consulting, and guided the IT Security team. As Manager (IT & System Security), I excelled in developing and implementing robust security strategies, risk management, and compliance frameworks, and fostering a culture of security awareness. As Manager (IT Operation), I coordinated IT functions, engaging with customers for service enhancement. Furthermore, I managed the establishment of Brac Bank's Tier-IV Data Center

As Head of IT, was responsible for administering and managing IT Division and coordinating with administration and accounts. Responsible for developing and controlling the department’s operation budget. Successfully established and maintained the country’s biggest electronic network and automation project (ERP for the corporate group). Integrated Data Warehouse and Data Mining Techniques and Tactics.

Enrolled on 09 Jul 91, commissioned on 02 Dec 1993, and flown 02 types of aircraft. During my tenure performed various jobs like Adjutant (admin officer), Duty Fighter Controller etc., and retired on 16 Mar 2002.