A highly motivated and dedicated professional backed by a unique combination of analytical, communicative and problem-solving skills in the area of Information Security. I'm result-oriented, dynamic and ambitious individual with the capacity to quickly learn and accept new responsibilities. Possess a personality that is energetic, a positive attitude and adaptive capabilities to take up challenges, complimented with the willingness to strive for excellence.
swimming, movie, ping pong & water rafting
- Specialize in IT Security Management, ITIL / Service Management Framework- Specialize Operation Security, Identity and Access Management- Design, Analysis, Implementation of Security and Networking Architectures- Intrusion Analysis, Incident Response Planning / Handling / Reporting- Deployment and management e-DMZ Security Password Auto Repository (PAR) and eGuardPost- Management CA Single Sign-On & Access Control- Deployment and management Juniper NetScreen SA SSL-VPN- Administrating and supporting various Microsoft Products- Administrating and supporting Solaris Unix, redhat and SUSE Linux- Administrating and supporting a variety of Open Source CMS - Administrating and supporting a variety of Router / Switch / Firewall / IDS / IPS- Experience in ITIL / Service Management Incident, Configuration and Change Management - Experience in BMC Remedy Service Desk, HP ServiceCenter, Service-now ITSM Tools- Deployment and management Symantec Confidence Online and AntiVirus Corporate Edition- Deployment and management Symantec ITA/HIDS and IBM RealSecure Server Sensor- Deployment and management Kaspersky Open Space Security- LAN/WAN configuration and administration
Mar 2005 - Present
Senior Information Security Analyst
Accomplishments:• AIGGS - Employee of the Quarter (Team) 2007• AIGGS - Employee of the Quarter (Individual) 2006• Headed and implemented the COE (Center of Excellence) intranet web portal project successfully for collaborative knowledge sharing.• Completed and implemented the HR "Skill set Management System" intranet system module project as project coordinator. • Deployed IBM ISS Security RealSecure Sensor for over 2000 UNIX/Windows servers for AIG globally, replacing Symantec ITA/HIDS in 6 months.
Projects:a) eDMZ Security Password Auto Repository • Vaulting of over 2000 UNIX and Windows servers privilege accounts throughout AIG globally (on-going).• Management of the PAR system configuration including backups, archive, AD authentication, HA, email agents.• Patch release management from e-DMZ Security. • Establish and manage privilege account password requests with respective business unit using standard processes.• Monitoring and handling of incident responses triggered by the PAR server's security events.
b) SSL-VPN Remote Access Service (Rollout for US, Taiwan and Japan)• Implemented Juniper NetScreen SA SSL-VPN configurations on both production and DR servers, define and administer access policy, performance tuning, and system troubleshooting.• Configure and testing of AIG BU US, Taiwan & Japan's web/client application requirements to ensure security compliance.
Operational Responsibilities (2nd / 3rd level): • Management and administration of security policies, standards and procedures in the e-DMZ Security PAR and eGuardPost systems.• Incident and escalation response, privilege access management and regulatory compliance checks on the following security system and platforms:- AT&T VPN software client (Dial & Broadband)- Juniper NetScreen SA SSL-VPN and RSA SecurID- Symantec Confidence Online and Data Loss Prevention (DLP) for Juniper SSL-VPN- Unix / Linux using CA Single Sign On and Access Control (eTrust)- Citrix MetaFrame Presentation Server- McAfee Endpoint Encryption• Review and implement Windows / UNIX requests for privileged access through PAR.• Deployment and management of HIDS from Symantec and IBM ISS - monitoring, reporting and responding to HIDS security events.• Perform documentation and procedural review on the security products maintained.
Dec 2003 - Feb 2005
MYSCAPE Sdn. Bhd.
Accomplishments:• Designed and developed the company's corporate website using Open source CMS.• Successfully implemented company's email server (Linux) with Open Webmail add-on virus and e-mail spam filter technology.• Established the IPSWITCH WhatsUp Gold Premium system to monitor client critical server through the Internet WAN link.
Operational Responsibilities:• Administration and support of Windows 2000 Active Directory, Unix (Solaris, SUSE, Red hat and HP-UX), DNS and DHCP Service using incident management processes.• Designed, installed and configured company's digital video surveillance system.• Administration of the company's firewall and network infrastructure.• Monitored and report on all managed server's event failures that occurs.
Apr 2003 - Jul 2003
Accomplishments:• Implemented FAX server for International Sales department to enable all the incoming fax distribute by CSID and output PDF copy on file server, respective user is able receive the email with fax copy attached • Implemented Citrix integration with Lotus Notes to enable employee working from home.• Implemented NTOP to monitor network bandwidth for the company and identified the network bottlenecks problems.
Operational Responsibilities:• Administration of company's IBM Lotus Domino, Notes and Citrix Metaframe Servers.• Check Point firewall and security policies configuration enforcement.• Monitored Legato backup server and performed daily backup routines.• Provided Level 1 support to end-users.
Mar 2001 - Jan 2003
Computer Lab Assistant
Operational Responsibilities:• Designed, implemented and provide Windows 2000 Active Directory Services, DNS, IIS Server administration.• Administration of Linux Mail, DNS, FTP, and Apache Servers.• Implemented Symantec Ghost for rapid deployment and restoring system snapshots to workstation.• Installed and configured wireless access point for the lab area.• Troubleshooting and maintaining the campus LAN / WAN.
Jul 1999 - Jan 2001
Operational Responsibilities:- Provide troubleshooting and technical support office PC and network- Responsible for sales and marketing company products to Malaysia IT retailer - Discuss marketing and price strategy with management - Customer service and support- Responsible for RMA's (Return Merchandise Authorization) and liaison with vendor and customer