• Map the alignment of the current infosec strategy and procedures with organization’s needs and corporate goals.• Identify assets, threats and vulnerabilities with their likelihood and severity for risk assessment. • Propose appropriate risk treatment to align with organization’s risk appetite and tolerance with KRIs and KPIs.• Partner with technology teams to drive security hardening for risk mitigation.• Conduct gap analysis and compliance exercises to ensure compliance with regulatory bodies to avoid fines and heavy penalties due to non-compliance.• Educate L1 LOD to ensure controls and workflows comply to security standards as determined by the company policy.• Coordinate with operations for a seamless integration of security controls into daily workflows to ensure a balance between security and functionality.• Collaborate with Internal Audit to facilitate assessments, test activities, and reporting.• Leverage industry best practices such as NIST framework to design and implement robust security controls, such as encryption, authentication mechanisms, data backup and access controls.

The IT Enterprise environment was fast-paced and ever changing - I spearheaded turnkey projects that delivered customized Hewlett-Packard Enterprise (HPE) server, storage, network and security solutions under HPE belt.The competition was fierce from other huge enterprise such as Dell and Nutanix, I wasn't just selling hardware; I was a trusted advisor, promoting cutting-edge solutions like Hybrid Cloud, Hyperconverged Infrastructure, and Software-Defined Networks. Risk management and security consulting are some critical day-to-day aspects of my duties.Key takeaways :• Orchestrated a seamless project integration of hybrid cloud-based security solutions tailored to Hewlett-Packard Enterprise's FSI customers, optimizing threat detection and response capabilities.• Conducted comprehensive cybersecurity assessments and audits for Public Sector organizations, identifying gaps in compliance with PDPA regulations and providing recommendations for remediation, including the implementation of encryption protocols, access controls, and incident response plans to enhance resilience against cyber threats.• Facilitated collaboration between internal and external stakeholders to integrate security controls into project delivery processes, emphasizing proactive risk management (Prepare, Categorize, Select, Implement, Assess, Authorize and Monitor) and policy adherence to mitigate threats and vulnerabilities effectively.

As the Principal Consultant, I spearheaded day-to-day governance, compliance, project management and led a team of Software Developers to create our very own SaaS for residential properties. I identified hidden opportunities within daily activities, translating them into effective modules for our application to grow. As the sole sales person, I actively monitor and groom deals by ensuring seamless project implementation. While the complete development cycle couldn't be realized due to funding limitations and Go-to-Market timing, the groundwork laid is invaluable. We're excited to leverage these learnings and apply them to future ventures.

Acted as a team in resolving high-priority network and security incidents, coordinating seamlessly between internal BAT stakeholders and global Service Providers (OBS and Zscaler). I spearheaded deep-dive troubleshooting of complex firewall and proxy service issues, collaborating effectively with technical teams to pinpoint root causes and drive swift resolution. My strong communication skills fostered open dialogue and rapport with project, change, incident teams, and end-users, ensuring everyone was aligned and informed throughout the resolution process. This collaborative approach minimized downtime and ensured continued network and security stability for our internal users in British American Tobacco globally.

1. Manages security and proxy services for Royal Dutch Shell users globally;2. Oversees deep-troubleshooting complex incidents that involves firewall and proxy services;3. Coordinates with various teams to drive toward incident resolution;4. Assists in project implementation in terms of security and proxy designs;

-Post-sales project implementation in Banking and Insurance industries;-Consultant for network-based implementations;-Main person to coordinate project management in delegated assignments;-Designing of network diagrams;-Documenting projects that are completed;-Lead Engineer for Cisco-based implementations.