Rahat.

CyberSecurity Specialist

Md Rahat Rahman
Akas

I specialize in building audit-ready security programs grounded in ISO 27001 and NIST CSF — helping organizations achieve compliance, manage risk, and establish effective security governance.

Bangladesh Based | Global Reach
Md Rahat Rahman Akas - Cybersecurity Specialist

Core Skills & Expertise

Core competencies built through real-world consulting, ethical hacking, and enterprise operations.

GRC & Risk Management

Risk Assessment
Risk Assessment
Security Policy
Security Policy
GRC
GRC
BCP / DR
BCP / DR
Security Awareness
Security Awareness

Frameworks & Compliance

ISO 27001
ISO 27001
NIST CSF
NIST CSF
GDPR
GDPR
HIPAA
HIPAA
PCI-DSS
PCI-DSS
Gap Assessment
Gap Assessment
Audit Management
Audit Management
Compliance Reporting
Compliance Reporting

Threat Intelligence & Strategy

Threat Intelligence
Threat Intelligence
Vulnerability Assessment
Vulnerability Assessment
OSINT
OSINT
Threat Modeling
Threat Modeling

Ethical Hacking & Tools

Penetration Testing
Penetration Testing
Splunk
Splunk
Sentinel
Sentinel
Wireshark
Wireshark
Burp Suite
Burp Suite
Metasploit
Metasploit
Nmap
Nmap
IDS/IPS
IDS/IPS

Soft Skills

Communication
Communication
Problem Solving
Problem Solving
Leadership
Leadership
Adaptability
Adaptability
Stakeholder Mgmt.
Stakeholder Mgmt.
Executive Reporting
Executive Reporting

Experience

A track record of delivering security outcomes — from enterprise operations to compliance consulting and offensive security research.

Independent · Self-Directed logo

Cybersecurity Consultant — GRC & Offensive Security

Independent · Self-Directed

2025 – CurrentRemote
ISO 27001NIST CSFGRCEthical Hacking

Architecting ISO 27001 and NIST CSF-aligned security programs across GRC, risk management, and offensive security domains. Focused on designing audit-ready control environments, conducting gap assessments against international standards, and applying ethical hacking methodologies to identify vulnerabilities — delivering security programs that are both compliant and resilient against real-world threats.

Genex Infosys Ltd. · Grameenphone Enterprise logo

Service Account Manager

Genex Infosys Ltd. · Grameenphone Enterprise

2023 – 2025Dhaka, Bangladesh
SLA ManagementKPI MonitoringService Delivery

Managed corporate client operations for Bangladesh's largest telecom, overseeing SLA compliance, KPI monitoring, and cross-functional service delivery across enterprise workflows. Recognized with the Attrition Warrior Award (Sept 2023) for outstanding performance under high-pressure operations.

Mist Leetcon · Riot Center · Independent logo

Penetration Tester & Security Researcher

Mist Leetcon · Riot Center · Independent

2022 – 2023Hybrid
Red TeamingPenetration TestingVulnerability Research

Conducted penetration testing and vulnerability research across CTF environments and independent engagements — identifying critical system weaknesses, cryptographic flaws, and network entry points. Applied offensive security techniques to strengthen defensive postures against real-world attack vectors.

Impressive Works

Here are some of the projects I've worked on. Each one was a unique challenge that helped me grow.

Malware Sandbox

Docker-based malware sandbox with automation, monitoring, and live reporting.

Malware Sandbox

Cybersecurity Tool

And many more

Certifications

Professional credentials that validate my knowledge and dedication to industry standards.

Mastermind Assurance

ISO/IEC 27001:2022 Lead Auditor

Mastermind Assurance

ISMS AuditingRisk ManagementISO 27001
SkillFront

ISO/IEC 27001:2022 Information Security Associate

SkillFront

ISO 27001Information SecurityRisk Assessment
IBM SkillsBuild

Governance, Risk, Compliance & Data Privacy

IBM SkillsBuild

GRCData PrivacyCompliance
Cisco

Ethical Hacker

Cisco

Penetration TestingOffensive SecurityVulnerability Assessment
Red Team Leaders

Certified Cybersecurity Educator Professional (CCEP)

Red Team Leaders

Instructional DesignEducational DeliverySecurity Architecture

Latest Thoughts

Insights and articles on cybersecurity, technology, and my learning journey.

Have a security challenge? Let's architect the solution.

Start the conversation

Security framework architect. Helping organizations achieve compliance, reduce risk, and build lasting resilience.

Rahat

LinkedInGitHubX (Twitter)Medium