Skip to content

About Jym

I am a Certified Information System Security Professional with 20 years of experience across diverse roles.

LinkedIn | Github

Achievements

  1. As Intern (2003), I developed the 1st multi-user WinCE Singapore Police Force Traffic Enforcement app (that’s way before things like iOS & Android) & augmented native mail app to enforce multi-user AES storage encryption.
  2. Knowledge-Transfer of 1st batch of Singapore ICA (immigration) passport scanners was pioneered by me. I also pioneered the product development of > 50% cost-effective versions of such multi-illumination optical scanners that are deployed in ALL money changers in Singapore.
  3. Created the first ICAO PKI LDS verification SDK used by Immigration hand-held devices based on WinCE.
  4. Early generation of SingPass (national authentication system) root cause analysis to trace very obscure issues through the use of visual source-code analysis, in < 1 week of joining ex-company. It was troubleshooting secure codes within Hardware Security Module enclaves.
  5. Product development & patent of a virtual printer driver that cut down the time to deliver service-value from months to days. I also designed & implemented self-service software licensing sub-systems to encourage adoption of optical security solutions.
  6. Delivered ST Engineering Cyber Security Operations Center on time & within budget. As technical lead, I drafted Tender Technical Specifications, managed Product Testing & Vendor short-listing, project delivery … to co-development of detection use-cases along side with HPE Security consultants, & as advisor to various business stake-holders. Before that, I was deeply involved with other government SOCs, designing high performance tests, gained in-depth understanding of what works & what doesn’t.
  7. Test & Evaluation of cutting edge startups. Grew a team of fresh hire & mid-career engineers to evaluate product categories that are now buzz-words. We tested cutting edge stuff (then) to understand strengths & weaknesses. Things like Malware Sandboxes, Remote-Browsers, Continous Validation, Cyber-Range Automation, Endpoint Detection & Response, User Endpoint Behaviorial Analytics & the likes.