Senior Technical Consultant (App / Networking / Security / Crypto - Holistic Architecture etc)

• Jan 2023 - Present

Job Seeker

• Oct 2022 - Present

Taking a Break

• Sep 2022 - Oct 2022

Security Analyst

• Jun 2020 - Sep 2022

Cyber Security Operations / VAPT (Host / App Security) / Risk Management / Attack Countermeasures

• Jan 2018 - Mar 2020

All about Information Security. Next phase : To research into Offensive Countermeasures... All about Information Security. Next phase : To research into Offensive Countermeasures...

Security Development Manager (Sales and Business Development)

• Dec 2015 - Sep 2016

MC worked in Singtel Cyber Security Institute with the new hybrid role, Technical Delivery and Customer facing consultancy, in both technical and customer’s engagement activities. Key responsibilities of this roles were to ensure the training environment is technically fit and managing customer’s expectations, helped in scoping full spectrum of security operations training, attack scenarios design, aligning with customer requirements and mapping into the Singtel Cyber Range environment to ensure customers would gain highest level of benefit through the specialized and customized training. In addition, to ensure the deliverables were correctly and completely deliver to customers as key takeaways in enabling happy customers and contribute to future business expansion. Show less

Project Manager

• Jun 2014 - Dec 2015

MC served as Project Manager playing the role as Application Security Architect to ensure vendors and in-house colleagues were meeting the governance requirements, and assisting applications development team to design and develop secure web based application based on OWASP processes. The past years of security experience allowed me to provide the ‘holistic spectrum’ of protection to the assets in SB. Key areas of responsibility: - To lead outsourced service providers in building secure applications and ensure meeting with governance requirements. - To implement security governance programme including the development, implementation, maintenance and monitoring of the corporate security policies, standards, guidelines and procedures. - To be the subject expert in providing consultancy and advice on technical matters relating to Information Security to the application, infrastructure and business operations team to comply with mandatory security policies, standards and procedures. - To conduct assessment on system implementation, which includes vulnerability and penetration testing and processes. - To conduct threats modeling and risks management exercises - To identify and evaluate new security technologies Show less

Security Architect

• Jul 2011 - May 2012

MC was serving the expert role as the Security Architect in HP SOE team managing all security within Singapore Government Architecture and Framework that included desktops, laptops up to servers, LAN, WAN, end-to-end security deployment and topology etc. The role blended all previous experience learnt to ensure security well covered in protecting Singapore government’s precious data assets. MC was serving the expert role as the Security Architect in HP SOE team managing all security within Singapore Government Architecture and Framework that included desktops, laptops up to servers, LAN, WAN, end-to-end security deployment and topology etc. The role blended all previous experience learnt to ensure security well covered in protecting Singapore government’s precious data assets.

Project Manager

• Feb 2005 - Mar 2011

Key areas of contribution: • Provided senior and upper management with cyber security strategy so that security implementation can be fully communicated and supported (P) • Provided expert advice to Incident Response, Management, operation teams and other business stakeholders to ensure appropriate categorization of threats by different severity and measure to eliminate the identified and ‘potential’ threats; review and enhance Incident Response plan (Practical and Hands-on (P)) • Provided Cryptographic advisory to application team in building secure application that will not compromise sensitive data being used within and outside the application (P) • Secure Communication and Network Design and Architecting (P) • Security Management, Risk Management and Governance align with business objectives (P); via heat chart, and other statistical tools with presentation to management • Review and Evolve new security practices to ensure technology infrastructure is protected against latest threat scenarios to ensure all risks due to different types of electronic impact be mitigated; review, develop and implement of security policy, standards, guidelines and procedures for compliance purposes. (P) • Review and enforce compliance with local and individual corporate security requirements and best practices (P) • Provide Vulnerability Assessment and Penetration Assessment advice to operation team on Network and systems weaknesses based on criticality of each threat/vulnerability and protection around each them from holistic standpoint pragmatically (P) • Provide expert advice on log management, review and facilitation to SIEM for optimum correlation and case/incident investigation purpose; this include Custom application, system, network appliances etc. • And other security services. Show less

Deputy Manager

• Jun 2004 - Jan 2005

MC worked as a Deputy Manager in a FSI Singapore, driving the Technology Risk Management (TRM) functions to address all security related matters, from Corporate Security Policy Management, driving the Security Awareness Training Programs, managing in house risks assessments and assisting internal users group to mitigate corporate information risks. MC worked as a Deputy Manager in a FSI Singapore, driving the Technology Risk Management (TRM) functions to address all security related matters, from Corporate Security Policy Management, driving the Security Awareness Training Programs, managing in house risks assessments and assisting internal users group to mitigate corporate information risks.

Senior Security Consultant

• May 2002 - May 2004

From May 2002 to May 2004, he worked as a Senior Security Consultant in ISECUREP. Wilson led a group of consultants, managed risk assessment and deployment projects for their customers, which range from Small Medium Enterprise (SME) to Government and huge Multi-National Company (MNC). This includes vertical level of consultancy roles (low to high end consultancy) and horizon level of communication with his peer. From May 2002 to May 2004, he worked as a Senior Security Consultant in ISECUREP. Wilson led a group of consultants, managed risk assessment and deployment projects for their customers, which range from Small Medium Enterprise (SME) to Government and huge Multi-National Company (MNC). This includes vertical level of consultancy roles (low to high end consultancy) and horizon level of communication with his peer.

Managing Director / Technical Manager / BD

• Jun 2000 - Jun 2001

In September 2001, VP Operation of Secure Network Consulting Inc. (SNCi) U.S., a subsidiary of Axent Technologies (Nasdaq AXNT) invited Wilson and hired him to set up the first security service (today is called Symantec Security Services) office in entire Asia Pacific Region. Within a period of less than 7 months, he hired and grew the team to consist of 4 security consultants and security engineers and had provided lots of great advices and services to local companies. In addition, he was engaged by local polytechnic as part time lecturer, sharing his experience preparing talents for the next lap. Show less

Security Management Officer

• Jun 1999 - Jun 2001

MC played the role of Security Manager in Economic Development Board (EDB) Singapore. He looked at every aspect of IT security in EDB and worked with every person in the Chief Information Officer’s office (CIOO) to ensure that systems and data were protected and comply to standards and guidelines, as established in IDA IT Security Guidelines and IM8C, etc. Walking through with CIOO team the entire System Development Life Cycle, to contribute and ensure high level of security is properly in place. The role granted Wilson great opportunity to serve the organization with high level of integrity and fairness. In addition, Wilson worked on many other security functions too. Show less

Security Architect (Certification Authority)

• Sep 1998 - May 1999

From September 1998 to May 1999, After Wilson completed his Master Degree course in August 1998, he worked in Netrust Pte Ltd as the Security Architect (Certification Authority). Being the Security Architect, Wilson managed the various security infrastructures and applications in the company. Through the job, he was exposed to local and wide area networks and security, cryptographic algorithms and their applications, smartcard solutions (storage of keys), International standards such as PKIX and others, as well as Web commerce. In addition, Wilson had been actively involved in making the Certification Practice Statement (CPS) and Certificate Policies (CPs) available to the public in Singapore. Show less