Ziaur-Rashid-profile-pic

Zia Rashid

TU Cyber Fellow, The University of Tulsa.

Tulsa, Oklahoma

smziaurrashid@gmail.com

S M Zia Ur Rashid

Graduate Research Student (TU Cyber Fellow), The University of Tulsa

Tulsa, Oklahoma, United States

Biography

Zia is a graduate student in the School of Cyber Studies at The University of Tulsa (TU) under the supervision of Dr. Weiping Pei. He is a TU-Team8 Cyber Fellows and a member of Security and Privacy Research Group lead by Dr. Pei, currently working on Anti-money Laundering project, focusing Graph ML approach to detect malicious & fraud account and transactions. His principal research and technical interests are in information security and privacy. His research foci include AI/ML driven security, vulnerability and risk management, offensive approach for defensive security including web, network, mobile, ci/cd, kubernetes, docker, and cloud environment. He is also passionate in red teaming and ethical hacking. Prior to starting his MS in Cyber Security at TU, he worked as an Information Security Specialist at Augmedix Inc. (NASDAQ: AUGX). He was also a member of Synack Red Team (SRT) and an organizing member of Defcon 30 Cloud Village. He received his bachelor degree in Electrical and Electronic Engineering at International Islamic University Chittagong, Bangladesh in 2019. Since his undergrad, he participates in bug bounty programs and contributes to secure Microsoft, US Department of Defense (DoD), Github, Uber and so forth.

Research Interest

Cyber Security | Information Security | AI/ML Security

Education

The University of Tulsa
Aug., 2022 — May, 2024

MS in Cyber Security

International Islamic University Chittagong
2015 — 2019

Bachelor of Science in Electrical and Electronic Engineering

Experience

Application Security Analyst, Paycom
July, 2024 — Present
Cybersecurity Research Intern, CISO Global Inc.
July, 2023 — Aug., 2023
Graduate Research Assistant (TU Cyber Fellows), University of Tulsa
Aug. 2022 — May, 2024
Red Team Member (SRT), Synack Inc.
Jan., 2021 — June 2023
Information Security Specialist, Augmedix Inc.
Sept., 2020 — July, 2022

Conference Papers

S M Zia Ur Rashid.“AI Red Teaming: Exploring Vulnerabilities in GenAI/LLM Systems.” [Phoenix Summit 2024]

PDF Conference Talk

S M Zia Ur Rashid.“The Ghost In Your DNS: Unmasking Subdomain Hijacking.” [BSidesOK 2024]

PDF Conference Talk

S M Zia Ur Rashid.“Anatomy of AWS Hacking: Jungle Edition.” [Synack Black Hat USA 2022]

PDF Conference Talk

S. M. Zia Ur Rashid, Ashfaqul Haq, Sayed Tanimun Hasan, Md Hasan Furhad, Mohiuddin Ahmed and Abu S.S.M Barkat Ullah. “Faking smart industry: exploring cyber-threat landscape deploying cloud-based honeypot.” Wireless Network (2022).

S M Zia Ur Rashid, Ashfaqul Haq, Sayed Tanimun Hasan, Md Hasan Furhad, Mohiuddin Ahmed and Abu S.S.M Barkat Ullah. “Faking Smart Industry: A Honeypot-driven Approach for Exploring Cyber Security Threat Landscape.” In Proceedings of the EAI WiCON 2021 - 14th EAI International Wireless Internet Conference, November 09, 2021, Orillia, Canada (online).

PDF BibTeX Springer Conference Paper

S. M. Z. U. Rashid, Jalal Uddin, Ariful Islam, "Know Your Enemy: Analysing Cyber-threats Against Industrial Control Systems Using Honeypot," 2019 IEEE International Conference on Robotics, Automation, Artificial-intelligence and Internet-of-Things (RAAICON).

PDF BibTeX IEEE Conference Paper

S. M. Zia Ur Rashid, MD. Imtiaz Kamrul and Asraful Islam. “Understanding the Security Threats of Esoteric Subdomain Takeover and Prevention Scheme.” In Proceedings of the International Conference on Electrical, Computer and Communication Engineering (ECCE 2019), 07-09 February, 2019, Cox's Bazar, Bangladesh.

PDF BibTeX IEEE Conference Paper

▣ Asraful Alam, Hobaibul Islam, Mohammad Tausiful Islam, S. M. Zia Ur Rashid, Md Jonayed Hossen and Md Sultan Mahmud. “CPG-Based Industrial Manipulators on AVR System for PTP Applications.”In Proceedings of the International Conference on Electrical, Computer and Communication Engineering (ECCE 2019), 07-09 February, 2019, Cox's Bazar, Bangladesh.

PDF BibTeX IEEE Conference Paper

▣ Asraful Islam, S. M. Zia Ur Rashid, Md. Abdus Salam and Ariful Islam. “Towards Blockchain-based E-voting System.” In Proceedings of the 2018 2nd Int. Conf. on Innovations in Science, Engineering and Technology (ICISET), 27-28 October 2018, Chittagong, Bangladesh.

PDF BibTeX IEEE Conference Paper

▣ Md Jamshed Alam, MD. Imtiaz Kamrul, S. M. Zia Ur Rashid and Syed Zahidur Rashid. “An Expert System Based on Belief Rule to Assess Bank Surveillance Security.” In Proceedings of the 2018 2nd Int. Conf. on Innovations in Science, Engineering and Technology (ICISET), 27-28 October 2018, Chittagong, Bangladesh.

PDF BibTeX IEEE Conference Paper

CVE Assigned

▣ CVE-2018-16971, CVE-2018-16970. “Wisetail Learning Ecosystem (LE) upto v4.11.6 Multiple IDOR Vulnerability.”

▣ CVE-2018-16606. “IDOR On ProConf Peer-Review And Conference Management System.”

Contact Me

My Phone

+880-1852-575265

Email Address

hello@ziaurrashid.com

Postal Address

Tulsa, Oklahoma