Nizam Mahmood

CYBER SECURITY ARCHITECT AND CONSULTANT

As a strategic Information Security Architect and Consultant, I provide executive leadership and oversight to fortify the security and resilience of enterprise information systems and data. I am a results-driven cybersecurity executive with over 25 years of experience, specializing in transforming security postures through innovative architecture, rigorous governance, and risk-centric strategies.

My expertise lies in building and leading high-performing security organizations from the ground up, aligning complex security initiatives with core business objectives to enable growth while managing risk. I have a proven track record of managing major, multi-year security programs from concept to completion, consistently delivering on-time, on-budget, and on-target results.

Core Competencies Include:

• Security Architecture & Engineering: Designing and implementing advanced security architectures for complex environments to ensure the confidentiality, integrity, and availability of critical data.

• Governance, Risk & Compliance (GRC): Developing policies, standards, and technical hardening requirements to ensure compliance with regulatory frameworks and mitigate organizational risk.

• Risk Management: Expertly assessing inherent risk and developing tailored strategies to reduce it to an acceptable residual level, validated through comprehensive remediation efforts.

• Program & Project Leadership: Directing enterprise-wide initiatives in security posture management, business continuity, disaster recovery, and third-party risk management.

• Incident Response & Preparedness: Developing and implementing robust incident response plans to effectively manage and mitigate security events.

Skills: 

• Risk Management and Compliance.
• Security Architecture and Design.
• Incident Response and Forensics.
• Security Operations and Threat Hunting.
• Cloud Security and DevSecOps.
• Network Security and Infrastructure Protection.
• Security Awareness Training and Education.
• Vendor Management and Security Assessments.
• Team Leadership and Talent Development.

Professional Certification:

• Certified Information Security Manager – CISM
• Microsoft Cybersecurity Architect –  AZ – 500 + SC -100
• CompTIA Security+
• Microsoft Certified System Engineer – MCSE
• Oracle Certified Database Administrator – OCP
• Microsoft Certified Database Administrator – MCDBA
• Cisco Certified Network Associate – CCNA
• Sun Certified System Administrator – SCSA
• ITIL Foundations V3
• IBM WebSphere Application Server, Network Deployment Administration
• Microsoft Certified Technology Specialist

Education :

• Bachelor’s Degree in Electrical and Electronics Engineering   ( https://www.cuet.ac.bd)