Identity Engineer, Chief Information Security Officer
Dec 2017 • Implemented security policy, standard, procedures in preparing for the IPO. • Architected and implemented the overall company’s internal system including id management systems, device management, password management, endpoint protection, RBAC, networks, and more. • Conducted Web vulnerability assessments for our Web apps and API endpoints mainly using BurpSuite. While doing the assessment by ourselves, private bug bounty program has been run. • Implemented automation tools for automating daily system administrator’s operations. NRI Secure Technologies, Junior Security Analyst & Incident Handler, Oct 2011 ~ OctHandled Incident response for multiple companies across industries, including one of the largest
University of California, Berkeley・
Mechanical Engineering, Mechatronics