Summary

Dynamic Professional who utilizes creativity, teamwork and leadership to design and implement solutions that create customer value. Effective communicator with ability to create marketing materials convey value for both clients and end users.

The Reponsibility of Security Analyst involves in the live log monitoring, investigation on anomalies, identify root cause and escalation when necessary.SA role requires me to create active list, channels and filters time to time for real time alerts.My progression as a Team lead have given me the opportunity to further my people skills. Leading a team of Security Analyst has taught me many perspective of being a people's manager.This role also offers me exposure to Arcsight's agent, logger, syslog and also configuration of dashboards and refine rules for higher accuracy of true positives.The role has diverse me to another side of IT and have decided to leave for a more technical role as a security engineer with Netpoleon Solutions.At Netpoleon, I have implemented various projects from the presales till post sales support.This enables me to appreciate the importance of adhering to security policies, fine tuning of processes and how all these affects the work environment.With these experience, it allows me better apprehend my current role as an Enterprise level Security Analyst in-depth.

Education

Education
Aug 2003

Diploma in Information Technology

Ngee Ann Polytechnic

Professional Certifications

Arcsight Certified Security Analyst (ACSA)Certified

Cisco Certified Network Associate (CCNA)Certified

Computer Hacking Forensics Investigator (CHFI)Passed the course

GIAC Certified Incident Handler (GCIH)Certified

Logrhtym Certified EngineerCertified

Certified Sales Professional for Barracuda Products.

Certified Technician for Barracuda Web Application Firewall

Work History

Work History
Dec 2012 - Present

Security Analyst

Dimension Data Asia Pacific Pte Ltd

Position Title            : Security AnalystPosition Level          : AnalystSpecialization          : Network Security

Work Description:

RESPONSIBILITIES:

  • Accept, manage and update service requests and incidents to ensure contracted Service Level Agreements are met.
  • Provide technical support within the Security Incident and Event Management team to assist in the investigation and remediation of security incidents
  • Manage, own and co-ordinate the technical resolution of incidents either directly or in conjunction with customers.
  • Plan and coordinate incident remediation changes with other business units, vendors and customers, adhering to a predefined ITIL change management framework. This will include liaising with the customer, third party suppliers, vendors and partners to ensure effective results with minimal disruption to the customer’s day-to-day business operations, and the provision of a seamless, coordinated delivery of services.
  • Where necessary, liaise and work with Professional Services Engineers and Solutions Architects around incident investigation and reporting
  • Proactively identify, develop and document processes and procedures in accordance with policies and service guidelines.
  • Use lab equipment and resources to attempt to recreate incidents and undertake fault simulation activities.
  • Maintain detailed knowledge of the clients’ environment(s), where applicable, by maintaining and updating relevant documentation such as Network Diagrams, Configuration and Asset Databases along with process and procedural documentation.
  • Provide proactive, constant and clear communication on the status of incident / problem resolution between the client.
  • Management of issues effecting delivery of service to the customer.
  • Understand and manage the requirements of being part of a 24x7 on-call operation as required by the business.
  • Understand the scope, delivery mechanisms and processes of all relevant Services delivered by Managed Services
  • Facilitate effective and appropriate communication to all stake holders to meet SLAs and expectations
  • Participate in Service Improvement Plans
Jun 2009 - Mar 2010

Presales Consultant / Post-Sales Security Engineer

Netpoleon Solutions Pte Ltd

Position Title: Presales Consultant / Post-Sales Security Engineer

Position Level: Consultant

Specialization: Network Security

Work Description:

RESPONSIBILITIES:

Deploying of security devices to customers’ environment, security products from Barracuda, Checkpoint and Bluecoat.

Handle level two trouble tickets which involves network troubleshooting

Sales presentation to clients to introduce the features of our products

Live demo of security concepts to end users, customers and engineers

Conduct Proof Of Concept and write up proposals for security devices

ACCOMPLISHMENTS:

Successfully converted POC for Web Application Firewall into sales for various customers from government and banking industry.

Sep 2008 - Jun 2009

Security Analyst Team Lead

NCS Pte Ltd (Security Operations Centre)

NCS PTE LTD (Security Operation Centre)

Position Title: Security Analyst Team Lead

Position Level: Operations

Specialization: IT Security

Work Description:

RESPONSIBILITIES:

  • Manage a team of security analyst and ensure operations run smoothly
  • Analyze and provide recommendations to resolve problems caused by security incidents
  • Update security devices with the latest versions of patches and signatures
  • Maintain and monitor the security devices (e.g. IDS/IPS, Firewall etc) and provide health status reports for these devices
  • Proactively suggest and be involved in the enhancements to the security devices policies in view of any new security threats (e.g. firewall policies and access control lists, etc)
  • Software and Platform: Arcsight, Nessus
Apr 2007 - Sep 2008

Security Analyst

NCS Pte Ltd (Security Operations Centre)

NCS PTE LTD (Security Operation Centre)

Position Title: Security Analyst

Position Level: Operations

Specialization: IT Security

Work Description:

RESPONSIBILITIES:

  • Monitor network traffic and perform analysis of the security logs to detect possible network troubles or intrusions
  • Analyze and provide recommendations to resolve problems caused by security incidents
  • Update security devices with the latest versions of patches and signatures
  • Maintain and monitor the security devices (e.g. IDS/IPS, Firewall etc) and provide health status reports for these devices
  • Proactively suggest and be involved in the enhancements to the security devices policies in view of any new security threats (e.g. firewall policies and access control lists, etc)
  • Software and Platform: Arcsight, Nessus