Preview: For the complete resume and contact info please download it.
[var] => content
[type] => preview
[var] => cut_url
Info Security & Compliance
Regional Information Security
Manager, ING Bank NV
Information Security InstituteISI
Singapore Youth For Christ
Admin Support Assistant
NS, Army Logistic Training Centre
Security Manager CISM
SANS GIAC Certified Incident HandlerGCIH
System Auditor CISA
System Security Professional CISSP
Security Professional CFSP
Cisco Certified Network
COURSES / EXAMS
ISO ISMS Lead Auditor
Master in Information Technology
Bachelor in Information
Diploma in Information Technology
Information System Security
Association ISSA, Singapore Chapter Committee Member
Information system audit
and control association
Systems Security Certified Consortium, Member
IBM Global Services
Security & Compliance Manager
Managing security and compliance
across offices in the Asia Pacific region for Michelin Asia Pacific.
Principal lead in the transformation of security management and user
administration throughout the region.
Lead the team in Michelin
Asia Pacific to achieve zero defect for IBM Key Control Objective KCO.
Overseeing & mentoring
the security & compliance team officers managing DBS Bank.
IBM Subject Matter Expert
in Data Centre Security & Compliance.
Enforce governance &
compliance of IBM policies, processes and deliverables to client.
Ensure that IBM security
policy management, security strategy and policy are being executed in
the service model.
ING Bank NV
Information Risk Management IRM,
Information Risk Manager
Primary responsibility in
the enforcement of ING Information Security Compliance in Asia countries.
Helping the business in
the region remain compliant against group security policies, respective
regulatory requirement, SoX & Basel II requirement.
Lead architect for the following
Centralization of Regional
User Entitlement Project
Regional Single Sign On
Regional IPS monitoring
& management Solutions
Regional Security &
Technical Compliance Solution
Regional Risk Assessment
Framework & Methodology
Regional Security Testing
& reporting Key Risk Indicators KRI & Scorecard to measure
the risk posture of the respective branch offices.
Managing and conducting
Technical Risk Assessment and providing security consultancy & risk
mitigating solution to Technology Business Unit.
Conduct security reviews,
policy reviews and preaudit reviews for IT implementation and existing
Determine & recommends
required security treatment & technical solution to respective Business
Unit, base on gaps identified.
Researching on emerging
threats and reporting the potential mitigating control to be applied
to the organization.
Progresses information security
related audit comments and ensures that remedial actions as well as
long term solutions are executed to cover the underlying risks.
Managing the security monitoring
team for the region.
Conduct security training
& awareness for new employees and existing employees.
Represent the IRM function
at management meetings.
DELOITTE & TOUCHE
Enterprise Risk Services ERS
Managing and Conducting
various General IT controls & compliance review for respective organizations.
Essentially, the review includes testing of system and management controls
as well as evaluating the risk of control weaknesses.
Conduct risk assessment
and analysis for Client’s Security Infrastructure.
Design security architectural
and writing technical proposals.
Assessing and providing
recommendations on the adequacy and compliance of operations and crisis
management policies and procedures against standards BS, for a local
iconic venue in Singapore.
Managing, consulting and
implementing a Security Operation Center for a government military agency
Performed security protocol
review and penetration test for transport agency in Singapore.
Performed a wireless security
assessment for a government transport entity in Singapore.
Performed a web application
penetration test for a global financial bank.
Analyze and review cryptography
protocol for a commuter’s proxy card payment service for a government
transport entity in Singapore.
Performed penetration testing,
operations review and server audit for an educational institute.
eCop.net Pte Ltd
Provide managed security
security consultancy to reputable companies which consist of Trading
Companies, Financial Institutions, Local Banks, Education Institutions
and Utility Companies.
Providing presales consultancy
in Managed Security Solutions.
Managing and Implementation
of Security Operation Center SOC on client’s infrastructure.
Writing technical proposal
and solutions for government tender and organization’s security requirement.
Engineering and coordinating
workflow in SOC environment.
Conduct Penetration Testing
and Vulnerability Assessment for client to assess their security posture
ISS Scanner, Nessus & Retina.
Conduct infosecurity audit,
assessment and reviews based on ISO standards.
Implementing ISO requirement
for the ISO certification for the firm.
Conduct system audits for
the following platforms: Wintel, Linux, Solaris and AIX.
Conduct reviews for physical
security on Client’s Data Centre.
Conduct a security infrastructure
consolidation review for a government agency in Singapore.
Secure Networks Laboratory
System administration both
in Windows and Unixbased Platform.
Windows Active Directory
configuration and support.
Setting up and maintaining
servers includes monitoring of log files.
Working experience in DHCP,
DNS, SMTP, Apache Server, Samba Server, Perl Scripting, Firewall Configuration.
Monitoring and responding
appropriately to security updates and advisories.
Providing system support
to users in ISRC.
Master of Information
Technology Queensland University of Technology
Graduated in Master of Information
Technology majoring in network services and securities.
Course GPA . scale ,
Bachelor of Information
Technology Honours – Cat A Queensland University of Technology
Graduated in the Bachelor of Information TechnologyHonours with High
Distinction. Receives Dean’s list award in .
Course GPA . scale , highest
Diploma in Information
Technology Temasek Polytechnic Singapore