Ffjuaxfrilnyjx1voetj

Kengo Suzuki

Identity Engineer, Chief Information Security Officer

I have over 6 years of experience as a security engineer and 2 years of experience as a developer. Working as a security group leader under a start-up achieved IPO, I have a solid deep experience in driving and implementing security policies which maximize business opportunities.

Work Experience

FOLIO, Inc., Senior Security Architect, Jan 2018 ~ Present

Leading company-wide initiatives, transformations, and various aspects of Information Technology Security and Governance for Japan
- Leading a team of 8 full time and 2 subcontracts
- Increased efficiency of operation while saving 10% of budgets
- Building a strategic plan by combining a guideline from the Japanese Financial Services Agency and Cyber Security Framework from NIST.
- Utilizing AzureAD, Intune, Jamf, AWS, and others for the purpose of automated internal systems
- Enabling 100+ members on enabling remote works in safe and convenient manner
- Associated with external organizations, such as JPCERT/CC, 金融ISAC, and OpenID Foundation, for building next-gen policies

Money Forward, Inc., Security Group Leader, Nov 2014 ~ Dec 2017

• Implemented security policy, standard, procedures in preparing for the IPO.
• Architected and implemented the overall company’s internal system including id management systems, device management, password management, endpoint protection, RBAC, networks, and more.
• Conducted Web vulnerability assessments for our Web apps and API endpoints mainly using BurpSuite. While doing the assessment by ourselves, private bug bounty program has been run.
• Implemented automation tools for automating daily system administrator’s operations.

NRI Secure Technologies, Junior Security Analyst & Incident Handler, Oct 2011 ~ Oct 2014

- Handled Incident response for multiple companies across industries, including one of the largest financial institution in Japan.
- Built and deployed various network-based security appliances such as Juniper SSG, SourceNext(Snort), BIG-IP(ASM), focusing on improving web-based security while maintaining availability, fault tolerance.
- Managed logs collection scheme and built collelated analysis in ArchSight(SIEM) in order to carry out SOC(SecurityOperationCenter).
• Developedaneasy-to-installcloudbasedWAFserviceusingIncapsula.

Education

University of California, Berkeley, Master of Science (MS), Mechanical Engineering & Mechatronics, 2010 ~ 2011

University of California, Berkeley, Bachelor of Science (BS), Mechanical Engineering, 2006 ~ 2011

Skills

  • Programming: Golang, JAVA(Android), Kotlin, Python, Ruby, Objective-C
  • Languages: English(Business), Japanese(Native)
  • Systems: Terraform(Contributor), Teleport, GCP, AWS, GSuite, Azure AD, Active Directory, Okta, Intune, Jamf, Graylog, ArchSight, Logstash, Beats, Fortigate, Juniper SSG, CISCO ASA, Big-IP LTM, Big-IP ASM, Snort, Imperva

Publications

Readings 00 00@2x

俺らの愛したセキュリティ

  • Written the first Japanse book explaining about FAPI WG (http://openid.net/wg/fapi/)'s "Read Only" security profile
  • More than 300 sales 
  • https://booth.pm/ja/items/864595

Readings 00 01@2x

No Security No Life

  • Written the first Japanse book explaining about FAPI WG (http://openid.net/wg/fapi/)'s "Read and Write" security profile
  • More than 300 sales
  • https://booth.pm/ja/items/1042809

Powered By
CakeResume