Additional Info

Job title of nominated professional (or team name)Manager
Company (where nominated professional or team is working)Cybertronium
Websitehttps://www.cybertronium.com
Company size (employees)10 to 49
CountryMalaysia
Headquarters RegionAsia

Overview

Senior Security analyst with years of experience in a cyber security field, providing cyber security services to financial sector and small-medium enterprises clients. Proficient with the Security Information Event Management and Endpoint security technologies.

Experience with Security Tools: Azure Sentinel, DEVO, AlienVault, Splunk, LogRhythm, Mandiant Advantage, Elastic (ELK) Stack, Microsoft Defender for Endpoint, SentinelOne, Bitdefender, Cortex XSOAR, Cyberbit EDR & SOAR, and Trend Micro (Vision One, Cloud One, Tipping Point, Email Security, Apex Central/One, DDI)

Professional Experience
– Monitoring Security Information Event Management and End-Point Detection & Response Alerts and creating incident reports based on alarms triggered.
– Perform investigation based on the alarm and behavioural map triggered.
– Investigate security breaches and other cyber security incidents.
– Cyber Security Incident Responder (Remote helpdesk based on security incidents)
– Document security breaches and assess the damage they cause.
– Build cyber security detections using leading-edge approaches to identify malicious and suspicious behaviour.
– Use operational cyber security experience to build detections based on cyber security tools (IDS, IPS, Firewall, Proxy, Mail Filters, EDR, etc.) and IT logs to identify real-time and persistent threats.
– Develop reports documenting security breaches that have occurred and the extent of damage caused by those breaches.
– Craft security standards and best practices for a company.
– Keep up to date with the latest IT security trends.
– Work with the security team to develop digital security policies and implement them.
– Provide recommendations on security enhancements to senior management.
– Make decisions and evaluate the best tools for any given security issue.
– Monitoring and audit of system and processes like identity and access management which may involve methodologies like zero trust security

Certifications
• AZ-900 Certified Microsoft Azure Fundamentals
• AZ-104 Certified Microsoft Azure Administrator
• Certified Penetration Testing Professional
• Certified Ethical Hacker

 

Accomplishments

A seasoned security professional with experience in several areas including: network threat protection, SOC design and implementation, Microsoft Azure & AWS cloud security, Cyber threat intelligence, Mobile security, disaster recovery/business continuity planning, IT Strategy, Vulnerability Assessment and Penetration Testing, SIEM, PIM/ PAM, Risk Assessment and Management, Ethical Hacking, and ITIL standards based advisory services.