Ritch Catoto-Santos Email & Phone Number

Philippines

• Promotes information security across the organization and effectively coordinates the security activities in the company with focus on Security Awareness and Training
• Strengthens security awareness of the employees by releasing regular security tips and advisories, conducting quarterly Phishing Campaign drills, conducting information security awareness training for new hires during.
• Identity and Access Management - Conducts access reviews to ensure that the right people and job roles have the right access to the company tools and creates User Access Matrix (UAM) afterwards for the reviewed tools
• Conducts Third Party Security Assessment and Free and Open-source Software Assessment to ensure that all third parties or partners have good security posture before entering into an agreement or before purchasing a.
• Strategically aligns InfoSec controls with business strategy to support organizational objectives
• Maintains and enforces information security policies and standards, together with our Corporate Governance and Data Privacy teams

Philippines

• Promotes information security across the organization and effectively coordinates the security activities in the company
• Strengthens security awareness of the employees by releasing regular security tips and advisories, conducting quarterly Phishing Campaign drills, conducting information security awareness training for new hires during.
• Identity and Access Management - Conducts access reviews to ensure that the right people and job roles have the right access to the company tools
• Conducts Third Party Security Assessment to ensure that all third parties or partners have good security posture before entering into an agreement or before purchasing a product or acquiring a service
• Strategically aligns InfoSec controls with business strategy to support organizational objectivesMaintains and enforces information security policies and standards, together with our Corporate Governance and Data.
• Ensures compliance of our InfoSec controls - the confidentiality, integrity, and availability of information

Pasig, National Capital Region, Philippines

• Conducts researches about malware analysis and emerging threats (focusing on 64-bit malware analysis) to leverage the skills and knowledge of Anti-Malware engineers.
• Handles escalations (last line) of Threat Response Team (TRT), mainly about file analysis, malware detections, exploits, new and unusual file formats, grayware files, etc.
• Supervises special project known as “Profiling Examination” (bi-annual) that aims to profile the technical skills of anti-malware engineers (TRT) for Smart positioning and skills improvement.
• Works in collaboration with other teams within Anti-Malware Department in providing holisticsolutions to emerging threats and P0 cases.
• Conducted several technical-sharing known internally as Transfer of Information (TOI) thatcovered the following topics:
• IDA Pro 6.3 Basics

Pasig, National Capital Region, Philippines

Trains newly hired anti-malware engineers (Batches 70, 71, 76, 79, 80, 81, and 82) using the revised curriculum, which is comprised of the following modules:Module 1 - Basic WIN32 Programming and File AnalysisModule 2 – Binary Infectors (File Infector Analysis, Scan and Clean Patterns)Module 3 – Blended Threats (Trojan, Trojan Spy, Worm, Backdoor, Rootkit.

Pasig, National Capital Region, Philippines

• Prepares the final acceptance exam for Trend University trainees as a final requirement in passing the anti-malware training.
• Takes part in the final deliberation of the exam’s result.

Tokyo, Japan

Deployed to Japan business unit to serve as an on-site support for malware analysis service (forensics, RTL malware report creation, etc.), to provide accessible expert advice, to conduct knowledge sharing, and to provide specialized APT service support.

Arlington, Texas, United States

• Deployed to US business unit representing TRT that plays the role of both Threat Response Engineer (PSP – handles premium customer cases) and Technical Lead.

Pasig, National Capital Region, Philippines

• Handles escalations of Threat Response Team (first line) and other customer-raised issues.
• Processes urgent team concerns and issues.
• Conducts technical-sharing (TOI) to upgrade and improve the skills of anti-malware engineers.
• Analyzes mobile applications like Android and Symbian.
• Creates Smart patterns to detect future malware variants in order to prevent and address malware outbreaks in infected systems.
• Verifies Smart patterns as well as complex scan and clean patterns for viruses of other TRT engineers in order to provide quality solutions to customers.

Pasig, National Capital Region, Philippines

• Responsible in creating one-to-many and malware detections, which aims to address varying malware samples of different malware families in order to prevent reoccurrence of system infections.
• Creates heuristic patterns for proactive detections of future malware samples.

Quezon City, National Capital Region, Philippines

• Provides real time solutions (in line with Service Level Agreement - SLA) to customers experiencing malware threat and system problems due to malware infection.
• Analyzes file received from clients and determines if it is malicious, grayware, or normal.
• Analyzes URL (web sites) and blocks it if verified to be malicious.
• Assists in training applicants for Apprenticeship Program.

Arlington, Texas, United States

Deployed to US business unit representing TRT that plays the role of both Threat Response Engineer (PSP – handles premium customer cases) and Smart pattern engineer.

Quezon City, National Capital Region, Philippines

• Part of a development group that specializes in SOC (System-on-a-chip) design verification of consumer products like digital cameras, ink-jet printers, and network cameras.
• Undergone patent creation trainings and workshops as well as Environmental Management System (EMS) and Quality Assurance awareness programs.
• Undergone three months of extensive hardware (SOC) training and project specific training on design verification.