Mohammad Makchudul Alam (Arif)
About Mohammad Makchudul Alam (Arif)
Mohammad Makchudul Alam, also known as Arif, is a seasoned security researcher with extensive experience in vulnerability assessment and compliance. He currently works at HackerOne and BGD e-GOV CIRT, and has a strong focus on digital payments and fintech data security.
Work at HackerOne
Currently, Mohammad Makchudul Alam serves as a Security Researcher at HackerOne, a position he has held since 2016. In this role, he focuses on identifying and addressing security vulnerabilities, contributing to the overall security posture of the organization. His responsibilities include conducting thorough assessments and collaborating with various teams to enhance security measures.
Education and Expertise
Mohammad Makchudul Alam holds a Bachelor of Science (B.Sc.) in Computer and Communication Engineering from International Islamic University Chittagong, where he studied from 2006 to 2012. He furthered his education by obtaining a Master's degree in Information Systems Security from Bangladesh University of Professionals (BUP) between 2017 and 2019. His expertise encompasses a wide range of vulnerability assessment and penetration testing tools, including Nessus, Acunetix, and Metasploit.
Background
Before his current roles, Mohammad worked at IT Consultants Limited as an IT Security & Compliance Administrator from 2017 to 2020. He also held the position of Team Leader for Automated Security & Safety at AXIATA (Bangladesh) Ltd from 2013 to 2017. His experience spans various aspects of IT security, compliance, and incident handling.
Achievements in Incident Handling
Since 2020, Mohammad has been working as an Incident Handler at BGD e-GOV CIRT in Dhaka, Bangladesh. His role involves monitoring and responding to security incidents, ensuring the integrity and security of digital infrastructures. He specializes in using Security Information and Event Management (SIEM) and Web Application Firewall (WAF) systems to assess and report threats.
Focus on Digital Payments and Security
Mohammad has a strong focus on digital payments, fintech data security, and fraud analysis. His skills extend to both logical and physical security controls, enabling him to develop effective strategies to achieve organizational security goals. He is experienced in compiling and improving policies to meet various compliance requirements, including PCI DSS and ISO 27001.