Experience
Professional Journey
Mar 2025 — Present
Manager, Cybersecurity Platform AP
IBM — Singapore
Leading the planning, architecture, and lifecycle management of enterprise infrastructure for the AP region. Driving automation and modernization to improve resilience, scalability, and security posture while mentoring a team of infrastructure engineers.
- Define and enforce infrastructure standards and policies aligned with CISO security directives
- Integrate security controls across all infrastructure layers — network, compute, storage, and cloud
- Lead vulnerability management and patching programs across the infrastructure estate
- Partner with SOC and incident response teams for rapid threat detection and recovery
- Conduct risk assessments and present remediation plans to executive stakeholders
- Manage and mentor infrastructure engineers, fostering continuous learning on emerging threats
Jan 2022 — Mar 2025
Back End Developer
IBM — Singapore
Designed and developed scalable backend services and microservices supporting cybersecurity platforms. Embedded security best practices throughout the development lifecycle and collaborated with security teams to harden backend systems.
- Developed REST and microservices supporting cybersecurity platforms and workflows
- Integrated with SIEMs, SOAR platforms, IAM systems, and vulnerability management tools
- Followed IBM secure software development lifecycle (SSDLC) standards
- Embedded security practices — input validation, secrets management, auth, and encryption
- Collaborated with penetration testing and red teams to harden backend systems
- Implemented observability — structured logging, distributed tracing, and metrics
- Supported incident response with rapid diagnostics and root cause analysis
Dec 2020 — Jan 2022
Cyber Security Command Center Analyst
IBM — Singapore
Analyzed and investigated security events, incidents, and threats to IBM-owned or managed systems. Collaborated with global teams and presented critical cases to the CISO leadership team.
- Analyzed reported events, incidents, and threats to IBM-owned systems
- Classified and investigated cases to determine data leakage and loss
- Presented high severity and critical cases to CISO Leadership team
- Followed up with Incident Response Coordinator for end-to-end case closure
- Communicated with CSIRT to improve policies and frameworks for efficient workflow
- Provided management reporting on trend analysis and case metrics
Oct 2019 — Nov 2020
Security Analyst
Klook — Singapore
Performed security reviews and real-time investigations to identify and remediate threats. Built security incident playbooks and organized cyber exercises including phishing campaigns.
- Performed security reviews of application, infrastructure, network, and database logs
- Analyzed security alerts for vulnerabilities, DoS attacks, malware, and data breaches
- Conducted real-time investigations for triage, containment, and remediation
- Designed security incident playbooks and operating procedures
- Stayed current with threat landscape and evolving attack techniques
- Organized cyber exercises for phishing campaigns and security drills
Oct 2017 — Oct 2019
Analyst
MUFG — Singapore
Performed security event monitoring and analyzed cyber threat intelligence to identify indicators of compromise. Executed incident response procedures and conducted malware triage.
- Monitored security events for malware, vulnerability exploits, DoS, and cyber-attacks
- Analyzed cyber threat intelligence to identify Indicators of Compromise (IOCs)
- Correlated security events from tools and infrastructure devices via log monitoring
- Initiated malware triage processes to assess threat types and severity
- Tracked vulnerability management and remediation from penetration testing
- Executed cyber incident response procedures for timely response