Mohammad Makchudul Alam (Arif)
About Mohammad Makchudul Alam (Arif)
Mohammad Makchudul Alam, also known as Arif, is a seasoned security researcher based in Dhaka, Bangladesh, currently serving as an Incident Handler at BGD e-GOV CIRT since 2020. He has extensive experience in IT security, compliance, and vulnerability assessment, with a strong focus on digital payments and fintech data security.
Work at Bugcrowd
Mohammad Makchudul Alam has been employed at Bugcrowd Inc as a Security Researcher since 2016. In this role, he focuses on identifying vulnerabilities and enhancing security measures for various clients. His extensive experience in security research contributes to the effectiveness of Bugcrowd's crowd-sourced security solutions.
Current Role at BGD e-GOV CIRT
Since 2020, Mohammad has worked as an Incident Handler at BGD e-GOV CIRT in Dhaka, Bangladesh. In this position, he is responsible for managing and responding to security incidents, ensuring that appropriate measures are taken to mitigate risks and protect sensitive information.
Previous Experience at IT Consultants Limited
Prior to his current roles, Mohammad served as an IT Security & Compliance Administrator at IT Consultants Limited from 2017 to 2020. His responsibilities included developing and implementing security policies and ensuring compliance with various regulations, which enhanced the organization's security posture.
Educational Background
Mohammad studied at the International Islamic University Chittagong, where he earned a Bachelor of Science (B.Sc.) in Computer and Communication Engineering from 2006 to 2012. He furthered his education at the Bangladesh University of Professionals (BUP), obtaining a Master's degree in Information Systems Security from 2017 to 2019.
Expertise in Security Tools and Compliance
Mohammad possesses expertise in a variety of vulnerability assessment and penetration testing tools, including Nessus, Acunetix, and Metasploit. He has experience in compiling and improving policies to meet compliance requirements such as PCI DSS and ISO 27001, focusing on digital payments and fintech data security.