Associate Manager — Robi Axiata PLC

Rejwan
Ahmed

Enterprise cybersecurity architect with 7+ years shaping security strategy, architecture, and governance across IT–Telco environments. Trusted to protect mission-critical platforms at Bangladesh's second-largest telecom operator.

300+IS Assessments
7+Years Experience
Star Performer
1Published Paper
Scroll

Security Architect.
Technology Leader.

I'm Rejwan Ahmed, an Associate Manager of Cyber Security Planning at Robi Axiata PLC — Bangladesh's second-largest mobile network operator and an Axiata Group subsidiary. I architect and govern cybersecurity across IT–Telco systems that serve tens of millions of subscribers.

My work sits at the intersection of security strategy, enterprise architecture, and risk management. I lead end-to-end information security assessments, vulnerability management programs, and cross-functional security projects — while translating complex threats into governance actions the business can act on.

Before pivoting into cybersecurity leadership, I built a strong foundation in full-stack software engineering and enterprise systems delivery. That dual fluency — developer intuition combined with security mindset — shapes how I approach DevSecOps, application security, and secure-by-design architecture.

Beyond Robi, I serve as Adjunct Faculty at United International University (UIU), teaching a Software Engineering Lab that integrates real-world DevSecOps practices into the next generation of engineers.

Security Architecture

Designing enterprise security blueprints aligned to Zero Trust, NIST, CIS, and ISO 27001 for complex IT–Telco environments.

Risk & Governance

300+ IS assessments for critical platforms including CBS, HLR/HSS, SIM Provisioning, IAM/PAM, and customer-facing services.

DevSecOps Leadership

Embedding security into CI/CD pipelines via SAST/DAST, container security, and API security across development lifecycles.

Teaching & Mentoring

Adjunct Faculty at UIU, designing industry-grade lab curricula that bridge academic software engineering with enterprise security.

Professional Experience

Jul 2025 – Present Robi Axiata PLC
Associate Manager, Cyber Security Planning
Cyber Security, Risk & Compliance Division · Dhaka, Bangladesh

Lead enterprise cybersecurity architecture and security governance strategy across complex IT–Telco infrastructure

Drive security framework compliance (NIST, CIS, ISO 27001, Zero Trust, MBSS) at organizational scale

Oversee security platforms including TrendMicro XDR, Tenable SC, Acunetix, Burp Suite, and AlgoSec

Lead CAPEX/OPEX planning, business case development, and extended cybersecurity team coordination

Promoted to Associate Manager (July 2025) Hall of Honor – Q1 2024
Dec 2022 – Jul 2025 Robi Axiata PLC
Cybersecurity Architect
Cyber Security, Risk & Compliance Division · Dhaka, Bangladesh

Performed 300+ end-to-end IS assessments for IT–Telco projects including CBS, EasyLoad, MyRobi/MyAirtel, HLR/HSS, SIM Provisioning, IAM, and PAM platforms

Automated IS assessment and approval workflow — reducing manual processing time significantly

Led Trend Micro XDR enterprise-wide rollout across the organization

Managed VA/PT lifecycle using Tenable SC, Acunetix, Burp Suite; coordinated remediation with vendors

Executed security monitoring, incident investigation, ERM/BCM support, and IS awareness programs

Conducted RFQ/RFI procurement for cybersecurity platforms and managed external security service providers

Star Performer – Q4 2023
Apr 2021 – Dec 2022 Robi Axiata PLC
Specialist, Enterprise Systems Planning & Management
Application Planning & Management, IT Division · Dhaka, Bangladesh

Managed full enterprise IT systems lifecycle: E2E solution design, implementation, UAT, OLA, deployment, and operations

Led design and deployment of DAM (Telco asset automation), Contact Center Solution, Queue & POS, Provident Fund, DMS, eBusiness Card, PABX, and NGP systems

Governed SLA compliance, CAPEX/OPEX planning, procurement, vendor management, and partner payments

Oversaw BCP/DR planning, system maintenance, performance monitoring, and incident management

Star Performer – Q3 2021 Star Performer – H1 2022
Oct 2020 – Apr 2021 Micromac Techno Valley Ltd
Programmer
Full Stack Development · Dhaka, Bangladesh

Designed and developed enterprise banking systems: Collateral Security Management System (CSMS), Litigation Management System (LMS), and Zero-Coupon Bond Management System

Delivered full-stack web application development and solution architectures for banking clients

Served as primary PoC for client communication, UAT facilitation, and SLA tracking

Jul 2014 – Apr 2017 Grameenphone Ltd
Senior Apprentice, Commercial Division
Commercial Operations · Dhaka, Bangladesh

Provided operational support and O&M activities ensuring smooth departmental operations

Prepared and analyzed business reports for operational insights and decision-making

Employee of the Month Nominee – Sep 2015

Skills & Capabilities

Network & Perimeter Security
IDS/IPS & Anti-DDoS Expert
Firewall Rule Analysis & WAF Expert
VPN & Network Security Ops Advanced
Signaling Firewall (SS7/Diameter) Advanced
Threat Detection & Response
Trend Micro XDR Expert
VA/PT (Tenable SC, Acunetix, Burp Suite) Expert
SIEM & SOAR Advanced
Incident Response & Triage Expert
Governance & Compliance
ISO 27001 Expert
NIST Cybersecurity Framework Expert
CIS Controls / MBSS Expert
Zero Trust Architecture Advanced
DevSecOps & AppSec
SAST / DAST Advanced
Container Security (Docker/K8s) Advanced
API Security Advanced
CI/CD Pipeline Security Advanced
Cloud & Infrastructure
AWS (Associate-level) Intermediate
Microsoft Azure (AZ-900) Intermediate
Linux (RHEL, CentOS, Kali) Advanced
VMware / Kubernetes Intermediate
Software Engineering
Python & Automation Scripting Expert
Django / Laravel / CodeIgniter Advanced
JavaScript / PHP / Java / C# Advanced
MySQL / MSSQL Advanced

Projects & Initiatives

🛡️

Trend Micro XDR Enterprise Rollout

Led the organization-wide deployment of Trend Micro XDR across Robi Axiata's enterprise IT infrastructure. Coordinated agent onboarding, policy configuration, alert tuning, and integration with incident response workflows to deliver centralized endpoint detection and response at scale.

XDR Endpoint Security Threat Detection Enterprise Rollout
⚙️

IS Assessment Automation Framework

Designed and implemented an automated Information Security assessment and approval workflow, replacing manual processes for 300+ IT–Telco project security reviews. Significantly reduced cycle time for IS approval while improving consistency and auditability across compliance checkpoints.

Python Automation IS Governance Compliance
🏦

Banking Enterprise Systems — CSMS, LMS & ZCB

Full-stack design and development of three mission-critical banking systems: Collateral Security Management System (CSMS), Litigation Management System (LMS), and Zero-Coupon Bond Management System. Delivered end-to-end solution architecture, implementation, and UAT for institutional banking clients.

PHP Laravel MySQL Enterprise FinTech
📡

Telco Asset Automation (DAM) — Robi

Led end-to-end design and deployment of the Digital Asset Management platform for Robi's enterprise Telco infrastructure, alongside Contact Center Solution, Queue & POS systems, Provident Fund platform, DMS, and NGP — transforming operations across multiple business units.

Solution Architecture Telco Enterprise IT BCP/DR
🎓

DevSecOps Lab Curriculum — UIU

Designed an industry-grade Software Engineering Lab at United International University integrating DevSecOps across the full SDLC. The 6-phase curriculum covers Git workflows, Docker, CI/CD with GitHub Actions, REST APIs, security testing, and deployment — far beyond conventional CRUD-focused labs.

Django React Docker GitHub Actions DevSecOps
🔍

Multi-Platform VA/PT Program Management

Managed continuous vulnerability assessment and penetration testing programs across Robi's critical platforms — CBS, MyRobi/MyAirtel, HLR/HSS, SIM Provisioning, EasyLoad, IAM, and PAM — using Tenable SC, Acunetix, and Burp Suite. Coordinated remediation tracking with vendors and internal teams.

Tenable SC Acunetix Burp Suite VA/PT

Certifications & Training

Cisco CyberOps Associate

Cisco · Security Operations & SOC Analytics

CCNA

Cisco Certified Network Associate

Microsoft Azure Fundamentals

AZ-900 · Microsoft Azure

RHCSA

Red Hat Certified System Administrator

CKA

Certified Kubernetes Administrator

AWS Associate

Amazon Web Services · Cloud Architecture

DevSecOps

Secure Software Development Lifecycle

Published Research

International Journal · IJISA · June 2024
"From Nature to UAV — A Study on Collision Avoidance in Bee Congregation"
International Journal of Intelligent Systems and Applications (IJISA) · Vol. 16, No. 3 · PP. 74–88 · DOI: 10.5815/ijisa.2024.03.06
View Publication
Peer-Reviewed Publication

GitHub Activity

GitHub Stats
Top Languages
GitHub Streak
View Full GitHub Profile

Education

B.Sc. Degree
American International University-Bangladesh (AIUB)
B.Sc. in Computer Science & Software Engineering (CSSE)
Session: 2012
CGPA: 3.69 / 4.00
Higher Secondary
B C I C College
Higher Secondary Certificate (H.S.C) · Science
Passing Year: 2010
GPA: 4.80 / 5.00
Secondary School
Mirpur Government High School
Secondary School Certificate (S.S.C) · Science
Passing Year: 2008
GPA: 5.00 / 5.00

Academic & Teaching

Adjunct Faculty

United International University (UIU) · Software Engineering Laboratory · Summer 2026

Teaching a lab-first Software Engineering course that diverges from traditional CRUD-based pedagogy. The curriculum is structured around a six-phase real-world development lifecycle — from requirements engineering through DevSecOps-integrated CI/CD deployment.

Students work in 2–5 member teams using an industry-standard stack (Django + React + PostgreSQL + Docker Compose) to build and secure full applications from the ground up, with security integrated at each phase rather than treated as an afterthought.

Phase 1 — Requirements & Setup Git workflows, team formation, project scoping, SDLC overview
Phase 2 — Architecture & Design System design, UML, secure-by-design principles, API planning
Phase 3 — Backend Development REST APIs, Django, database design, input validation, auth
Phase 4 — Frontend & Integration React, component architecture, API integration, UX security
Phase 5 — Testing & Security pytest, SAST/DAST concepts, API security testing, Postman
Phase 6 — Deployment & DevSecOps Docker Compose, GitHub Actions, CI/CD pipelines, project show

Contact

Let's Connect

Whether you're looking for a cybersecurity architect, a security consultant, a technical collaborator, or want to discuss enterprise security strategy — I'd love to hear from you.

Open to Cybersecurity Leadership & Consulting Opportunities

With 7+ years in enterprise security architecture and a track record of protecting critical Telco infrastructure, I bring both strategic depth and hands-on technical capability to security leadership roles.

I'm particularly interested in opportunities at the intersection of security architecture, cloud security, and DevSecOps leadership — where I can help organizations build security into the fabric of their systems, not just bolt it on.

Available for collaboration & consulting