Tawhidur Rahman

CVS Health |                                                                                                    03/2025 - Present

Shift Manager                                                                                                            Farmingville, NY                                                                             

Results-driven retail supervisor with expertise in managing store operations and leading teams to deliver outstanding customer service. Proven ability to oversee cash management, ensure strict policy compliance, and resolve customer relations issues effectively. Adept at training and coaching team members, facilitating communication between staff and management, and collaborating with external partners to enhance community outreach and support pharmacy operations.

Digital Bangladesh (ICT Division)                                                                                      Jun 2019 - Nov 2024

Senior Technical Specialist                                                                         Bangladesh

• Lead South Asia’s Computer Security Incident Response Team (CSIRT), overseeing investigations and breach resolution while applying NIST guidelines, which strengthened the national cyber-defense strategy and reduced incident response time
• Developed and implemented cybersecurity policies, digital forensic procedures, and compliance frameworks based on NIST standards, resulting in consistent security practices across the agency
• Administered security infrastructure-including SIEM, IDS/IPS, next-generation firewalls, and endpoint protection-across government networks, which improved threat visibility and reduced detection gaps
• Designed digital forensics techniques using reverse-engineering tools that increased investigation efficiency and enhanced threat detection capabilities
• Conducted security awareness training programs reaching 1,000+ government personnel, elevating organizational security posture
• Led contributions to national digital development initiatives and helped shape cybersecurity policy using NIST guidelines and reverse-engineering techniques, resulting in a standardized security framework adopted by the ICT Division

UNODC                                                                                      Jan 2022 - Jul 2022

Senior Consultant, Ransomware                                                                                 Vienna

• Delivered hands-on training on cybercrime investigation and ransomware standards to law-enforcement officers in Southeast Asia and Pacific countries, using Python scripts and IDS/IPS labs, which increased participants’ ability to identify ransomware incidents
• Organized a series of expert meetings with regional analysts and law-enforcement leaders to share ransomware tactics, technical requirements, and collaboration strategies, resulting in a joint regional response framework
• Produced an analytical report on the ransomware threat landscape, including case studies and mitigation approaches, using threat-intel tools and Python analysis, which guided regional stakeholders in updating their security policies
• Provided bilateral technical consultations with national cyber units, applying incident-response procedures and reverse-engineering techniques to strengthen their ransomware response and prevention capabilities, leading to improved national readiness

The World Bank                                                                                       Jul 2015 - Jun 2019

Team Leader, National CIRT Bangladesh                                                                         Bangladesh

• Reduced incident response time by 50% by building and directing a CIRT team, using NIST guidelines and Python automation to streamline investigation and response workflows
• Increased security effectiveness by 30% by implementing continuous monitoring with a SIEM platform, conducting intrusion detection analysis, and deploying security controls aligned with ISO 27001
• Enhanced cyber defense capabilities by refining incident response processes, leading security engineering projects, and launching awareness initiatives
• Managed SOC activities such as threat hunting, forensic analysis, and vulnerability management, which improved detection of critical threats and reduced unresolved vulnerabilities by 20%