Feb 2017 – Jul 2017 · 5 mos

• Key Roles and Responsibilities
• + Applying technical projects lead to knowledge and experience to guide a successful security implementation of the application and infrastructure within the organization that is involved: change management procedure, BCP/DRP, password/PIN policy, employee termination process, self-testing security standard.
• + Maintain a report and work closely with the product and system owner to reduce the security risk within the organization
• + Performing internal penetration testing and the security assessment on infrastructure and application (Web & mobile)
• + Working security responder for the security incident.
• + Working as the PIC for the vendor communication and management for requirements, finding, and mitigation and translating the needs to the business requirements
• + Working as the PIC to help organizations fulfill the security requirement of the regulator.
• Security Framework: OWASP Mobile Security Standard, ASVS, ISO 27001/2

Jan 2016 – Feb 2023 · 7 yrs 1 mo · Indonesia

• Working as an Independent IT Security Consultant on helping Financial Services, Telecommunications, Startups, and Small businesses to secure their infrastructure and application.
• Engagements:
• + Vulnerability Assessment and Penetration Testing (Blackbox, Graybox) of the growing startup
• + Application and Infrastructure Security Assurance of the growing Startup and small businesses
• + Datacenter ISO 27001:2013 consultant of one of the biggest telecommunication companies in Indonesia.

Jul 2015 – Sep 2016 · 1 yr 2 mos · Greater Jakarta Area, Indonesia

• My experience and project involved working as the Cybersecurity Consultant for one of the first digital banks in Indonesia, a Government Financial institution, a port owned by the Government.
• Perform non-technical activity on penetration testing project:
• + Manage team and Lead the penetration testing project.
• + Manage communication with clients for penetration testing projects.
• + Gather requirements to do penetration testing project.
• Perform security vulnerability assessment and penetration testing within this area:
• + Mobile and Web Application
• + Infrastructure and network technology
• Perform IT General control:
• + Operating System (Windows, Linux, and Unix Based)
• + Database (SQL Server, MYSQL, PostgreSQL)
• Perform information cyber security program development:
• + Cyber Security Management - Information Security Audit Guidelines based on ISO 27001/27002 and NIST.
• + Technical Audit Guidelines based on ISO 27001/27002 and NIST for network devices (F5, Juniper, and CISCO), databases (PostgreSQL, MYSQL), and server (Unix, Linux).
• Perform internal development:
• + Manage, develop, and improve internal documentation for the internal team.
• + Helping team to create a standard report for activities documentation
• + Helping the team to improve the standard report for the client.

Aug 2012 – Sep 2014 · 2 yrs 1 mo · Jl. Kebon Jeruk Raya No. 27. Kebon Jeruk Jakarta Barat 11530 · On-site

• Perform duties as Computer Science Lab Teacher as:
• 1. Assisting students with their programming assignments and projects, providing guidance and troubleshooting as needed.
• 2. Supporting instructors by preparing and maintaining laboratory environments, including installing and configuring software applications and operating systems.
• 3. Assisting in the design and implementation of software projects, including testing, debugging, and documenting code.
• 4. Collaborating with other technology professionals to ensure the smooth operation of the computer science laboratory.
• 5. Teaching laboratory classes, including demonstrating programming concepts and providing hands-on training and assistance to students.
• 6. Developing programming assignments and projects for students, ensuring that they are challenging and relevant to current trends and technologies in computer science.
• 7. Assessing student grades for laboratory assignments and projects, providing feedback and coaching as needed to help students improve their skills and understanding.