Senior Information Security Analyst
AIG Global Services (Malaysia) Sdn. Bhd.
Accomplishments:• AIGGS - Employee of the Quarter (Team) 2007• AIGGS - Employee of the Quarter (Individual) 2006• Headed and implemented the COE (Center of Excellence) intranet web portal project successfully for collaborative knowledge sharing.• Completed and implemented the HR "Skill set Management System" intranet system module project as project coordinator. • Deployed IBM ISS Security RealSecure Sensor for over 2000 UNIX/Windows servers for AIG globally, replacing Symantec ITA/HIDS in 6 months.
Projects:a) eDMZ Security Password Auto Repository • Vaulting of over 2000 UNIX and Windows servers privilege accounts throughout AIG globally (on-going).• Management of the PAR system configuration including backups, archive, AD authentication, HA, email agents.• Patch release management from e-DMZ Security. • Establish and manage privilege account password requests with respective business unit using standard processes.• Monitoring and handling of incident responses triggered by the PAR server's security events.
b) SSL-VPN Remote Access Service (Rollout for US, Taiwan and Japan)• Implemented Juniper NetScreen SA SSL-VPN configurations on both production and DR servers, define and administer access policy, performance tuning, and system troubleshooting.• Configure and testing of AIG BU US, Taiwan & Japan's web/client application requirements to ensure security compliance.
Operational Responsibilities (2nd / 3rd level): • Management and administration of security policies, standards and procedures in the e-DMZ Security PAR and eGuardPost systems.• Incident and escalation response, privilege access management and regulatory compliance checks on the following security system and platforms:- AT&T VPN software client (Dial & Broadband)- Juniper NetScreen SA SSL-VPN and RSA SecurID- Symantec Confidence Online and Data Loss Prevention (DLP) for Juniper SSL-VPN- Unix / Linux using CA Single Sign On and Access Control (eTrust)- Citrix MetaFrame Presentation Server- McAfee Endpoint Encryption• Review and implement Windows / UNIX requests for privileged access through PAR.• Deployment and management of HIDS from Symantec and IBM ISS - monitoring, reporting and responding to HIDS security events.• Perform documentation and procedural review on the security products maintained.