Looks like you have JavaScript disabled. For the full Twine experience, you will need to re-enable it.

I’m Md. Mahfuzur Rahman, a cybersecurity architect focused on designing secure, scalable enterprise infrastructures across on-premises, hybrid, and multi-cloud environments. I translate complex security risks into business-focused strategies, lead cross-functional teams, and drive secure digital transformations that protect critical assets while enabling innovation. I am certified CISSP, CCSP, AWS Security Specialty, and PCNSE, with deep expertise in zero-trust design, cloud security, risk management, and regulatory compliance (ISO 27001, NIST SP 800-53, GDPR). I enjoy turning ambitious security visions into resilient architectures and measurable improvements in governance and cyber resilience at scale.…I’m Md. Mahfuzur Rahman, a cybersecurity architect focused on designing secure, scalable enterprise infrastructures across on-premises, hybrid, and multi-cloud environments. I translate complex security risks into business-focused strategies, lead cross-functional teams, and drive secure digital transformations that protect critical assets while enabling innovation. I am certified CISSP, CCSP, AWS Security Specialty, and PCNSE, with deep expertise in zero-trust design, cloud security, risk management, and regulatory compliance (ISO 27001, NIST SP 800-53, GDPR). I enjoy turning ambitious security visions into resilient architectures and measurable improvements in governance and cyber resilience at scale.

Md. Mahfuzur Rahman

Architect, DevOps Developer, Cloud Developer, +2





I’m Md. Mahfuzur Rahman, a cybersecurity architect focused on designing secure, scalable enterprise infrastructures across on-premises, hybrid, and multi-cloud environments. I translate complex security risks into business-focused strategies, lead cross-functional teams, and drive secure digital transformations that protect critical assets while enabling innovation. I am certified CISSP, CCSP, AWS Security Specialty, and PCNSE, with deep expertise in zero-trust design, cloud security, risk management, and regulatory compliance (ISO 27001, NIST SP 800-53, GDPR). I enjoy turning ambitious security visions into resilient architectures and measurable improvements in governance and cyber resilience at scale.…I’m Md. Mahfuzur Rahman, a cybersecurity architect focused on designing secure, scalable enterprise infrastructures across on-premises, hybrid, and multi-cloud environments. I translate complex security risks into business-focused strategies, lead cross-functional teams, and drive secure digital transformations that protect critical assets while enabling innovation. I am certified CISSP, CCSP, AWS Security Specialty, and PCNSE, with deep expertise in zero-trust design, cloud security, risk management, and regulatory compliance (ISO 27001, NIST SP 800-53, GDPR). I enjoy turning ambitious security visions into resilient architectures and measurable improvements in governance and cyber resilience at scale.

Available to hire

I’m Md. Mahfuzur Rahman, a cybersecurity architect focused on designing secure, scalable enterprise infrastructures across on-premises, hybrid, and multi-cloud environments. I translate complex security risks into business-focused strategies, lead cross-functional teams, and drive secure digital transformations that protect critical assets while enabling innovation.

I am certified CISSP, CCSP, AWS Security Specialty, and PCNSE, with deep expertise in zero-trust design, cloud security, risk management, and regulatory compliance (ISO 27001, NIST SP 800-53, GDPR). I enjoy turning ambitious security visions into resilient architectures and measurable improvements in governance and cyber resilience at scale.

Skills

Experience Level

Expert

Expert

Expert

Expert

Expert

Expert

Expert

Expert

Expert

Intermediate

Intermediate

Intermediate

Work Experience

Global Domain Lead – Information Security Change Management at Brenntag Asia Pacific Ltd

April 1, 2024 - April 1, 2025

Led global information security change governance, establishing standardized processes to assess, approve, and document major security changes across all regions. Collaborated with global stakeholders to integrate security into the enterprise change management lifecycle, improving visibility and governance over critical IT and cloud transformations. Directed the Threat Prevention unit for APAC, overseeing detection, analysis, and mitigation of advanced threats to protect business-critical assets. Conducted in-depth security posture assessments of supply chain vendors, quantified business risk, and delivered remediation roadmaps. Implemented data encryption, DLP, and SIEM solutions; developed data classification and loss prevention strategies; led root-cause analysis of incidents and training to prevent recurrence. Oversaw firewall, network devices, and application security controls hardening to improve resilience and compliance.

Regional Cyber Security Specialist – APAC at Brenntag APAC

April 1, 2022 - April 1, 2024

Led regional security governance, reviewing and authorizing enterprise-grade security changes aligned with ISO 27001, NIST SP 800-53, and risk appetite, reducing operational risk and improving audit readiness. Collaborated with global stakeholders to integrate security into cloud transformations. Directed Threat Prevention unit for APAC, performing vendor risk assessments and delivering prioritized remediation roadmaps. Architected and implemented encryption, DLP, and SIEM controls; defined data classification and loss prevention strategies; conducted root-cause analysis of incidents and delivered targeted training. Strengthened firewall, network device, and application security control configurations to enhance resilience.

Senior Consultant IT Security at NCS PTE Ltd. (A SingTel Company)

January 1, 2020 - March 1, 2022

Led multiple enterprise-scale cybersecurity projects for government and private sector clients, focusing on secure infrastructure design, implementation, and migration. Defined network and data security strategies, architectural blueprints, and risk mitigation plans aligned with industry best practices and compliance frameworks. Conducted penetration test remediation consulting, risk assessments, and policy development to enhance overall security posture. Supported the development of System Security Plans (SSPs) and Risk Assessments in accordance with NIST SP 800-18 and NIST SP 800-53, ensuring government security requirements compliance. Established best practices, standards, and procedures for secure operations and provided subject matter expertise on complex cybersecurity issues.

Senior Technical Consultant at WizVision Pte Ltd

April 1, 2018 - December 1, 2020

Led the infrastructure team in designing, deploying, and optimizing complex IT security and infrastructure solutions across hybrid and on-premises environments. Developed and implemented backup and disaster recovery strategies, risk assessments, and incident response plans. Collaborated with development and automation teams to deploy and maintain CI/CD pipelines, enhancing delivery speed, accuracy, and failover capabilities. Integrated DevOps and security practices, containerization (Docker, Kubernetes), and cloud platforms (AWS, Azure) to modernize enterprise environments and improve security automation.

Senior System Engineer at WizVision Pte Ltd

August 1, 2012 - April 1, 2018

Designed and maintained security and infrastructure across hybrid and on-premises environments. Implemented backup and disaster recovery strategies, conducted risk assessments, and contributed to CI/CD pipelines. Integrated DevOps security practices and containerization (Docker, Kubernetes), and leveraged cloud platforms to improve security automation and resilience.

Founder & Security Architect (Part-time) at SecYork Technology

January 1, 2023 - Present

SecYork is a part-time cybersecurity consulting initiative that complements my full-time professional roles and enables ongoing architectural innovation. Deliver cloud security, architecture, and GRC consulting for SMEs. Lead architect of DAEM, a SaaS solution for digital asset lifecycle governance and automation. Provide advisory on IAM, Zero Trust, secure cloud adoption, and compliance readiness.