Experience

Coinhako

• Singapore
• Technology, Information and Internet
• 100 - 200 Employee

• Chief Information Security Officer

  • Jan 2022 - Present

  Singapore



Ensign InfoSecurity

• Singapore
• Computer and Network Security
• 500 - 600 Employee

• Strategy Lead Consultant

  • Jun 2021 - Jan 2022

  Singapore Advisory, research and leadership on cybersecurity strategy, governance, policy, emerging trends, regulations and frameworks. Influencer and driver of cybersecurity transformation journeys.



Cyber Intelligence House

• Head Of Operations and CISO

  • Oct 2015 - Jun 2021

  Singapore * Managed company operations, including service sales, support services and cybersecurity services with team of 20+ personnel. www.cyberintelligencehouse.com * Business development of services, technology and partnerships. Built up the company infrastructure and services from ground-up with strong hands-on focus with technology and services. * Head of intelligence analyst team and penetration testing teams.



Silverskin Information Security Oy

• Finland
• IT Services and IT Consulting
• 1 - 100 Employee

• COO and CISO

  • Aug 2011 - Sep 2015

  Helsinki * Responsible for managing the company operations. www.silverskin.com. * Headed, supervised and motivated 20+ penetration tester and senior cybersecurity consultant staff members * Consulted customers in application security, firewalls, information security management, IT audit, network security, PCI DSS, penetration testing, security architecture design, security audits, SDLC security, IT/DevSecOps and vulnerability assessments.



Nets

• Denmark
• Financial Services
• 700 & Above Employee

• Corporate Security Manager

  • Oct 2010 - Aug 2011

  Helsinki • Responsible for corporate security management of the largest credit card payment acquirer in Finland • Developed business continuity and disaster recovery plans, aligned security operations with enterprise risk management and developed security policies, operating procedures and cybersecurity awareness training.



Posti Group Oyj

• Finland
• Transportation, Logistics, Supply Chain and Storage
• 700 & Above Employee

• Information Security Manager

  • Aug 2007 - Oct 2010

  • Responsible for information security management of the Itella Corporation, the national post company of Finland. www.posti.fi • Developed information security policies, procedures, standards and guidelines for the corporation. • Developed Enterprise Risk Management (ERM) framework risk management methods and tools. • Conducted risk assessments, audits and compliance checks. • Provided SAS70, PCI DSS, ISF SOGP, ISO27000 auditing, advice and guidance services for business units.



Nixu Corporation

• Finland
• IT Services and IT Consulting
• 200 - 300 Employee

• Sr. Security Consultant and CISO

  • Jan 2005 - Aug 2007

  • In charge of internal cybersecurity of Nixu, a listed cybersecurity company. www.nixu.com • Provided cybersecurity advise for clients in Saudi Arabia, Riyadh and Helsinki, Finland as senior cybersecurity consultant. • Audited cybersecurity and made risk assessments of Nixu's customers. • Implemented cybersecurity policies, procedures and guidelines for the corporation.



Avaintec

• Finland
• IT Services and IT Consulting
• 1 - 100 Employee

• Information Security Manager

  • 2002 - 2004

  • In charge of security and implementation of ISO/IEC 27001 certification of the company. Avain Technologies is a agile secure software development company. www.avaintec.com • Developed and implemented information security policies, procedures and guidelines. Communicated with company management and board for policy acceptance support. • Implemented technical information security controls to meet the requirements of the policies. • Assessed cybersecurity risks and audited internal… Show more • In charge of security and implementation of ISO/IEC 27001 certification of the company. Avain Technologies is a agile secure software development company. www.avaintec.com • Developed and implemented information security policies, procedures and guidelines. Communicated with company management and board for policy acceptance support. • Implemented technical information security controls to meet the requirements of the policies. • Assessed cybersecurity risks and audited internal compliance with policies. Show less