MUHAMMAD MUSLIM MANSOR

Experience

• 

  Telekom Malaysia

  Jul 2002 - Jun 2006

  Solution Consultant (StateNet Project)

  •Develop vendor-neutral, customer-specific value added solution for State Government (based on normal solution development life cycle)•Support customer network during analysis and planning phase towards every project implementation •Plan every migration and evolution to ensure smooth integration of new equipment, operations and services including WLAN, network security, web surveillance, VoIP, data storage (NAS, SAN)

• 

  Multimedia University

  Jul 2006 - Jan 2011

  Lecturer/ Researcher/ Security Consultant

  •Supervised undergraduate Final Year Project (FYP) - mainly Computer & Network Security topics•Handled both undergraduate & postgraduate lecture/tutorial/lab session - Wireless Technology (Master of Embedded Engineering) - E-Commerce & Internet (Master of Adv Manufacturing Mgmt) - Information Theory & Error Coding (undergraduate) - Computer Security & Disaster Recovery (undergraduate) - Communication Network (undergraduate) - Antenna & Propagation (undergraduate) - Computer Organization & Architecture (undergraduate)•Conducted consultations to multiple forensics investigations and security posture assessment exercises for government agencies, banks and small medium industries (SMIs)•Delivered various seminars in related area of expertise (ethical hacking & digital forensics) for Asia Pacific countries and Malaysia government (Prime Minister Office, MINDEF, State Government, government agencies), Telcos and MNCs. Tunjukkan kurang

• 

  EC-Council Academy

  Jan 2009 - Jan 2012

  Certified Instructor (Freelance)

  •Conducting various ethical hacking, digital forensic and penetration testing workshops/ classes for EC-Council Academy customers (mainly government sector, multinational companies and finance sector)•Delivering official course for EC-Council Certified Network Administrator (ENSA), Certified Ethical Hacking (CEH), Computer Hacking Forensic Investigator (CHFI), EC-Council Certified Security Analyst (ECSA) & EC-Council Certified VoIP Professional (ECVP)

• 

  Asia Pacific University of Technology and Innovation (APU / APIIT)

  Jan 2009 - Jun 2010

  Invited Lecturer (Part time)

  •Handling lecture/tutorial/lab sessions for final year undergraduate subjects: - Network & Computer System Security - Data Recovery, Tracing & Evidence Gathering - Legal Evidentiary Aspect of Forensic Computing

• 

  Localhost Sdn Bhd

  Jan 2011 - Jan 2012

  Principal Security Consultant

  • Leading industry consultations to forensics investigations and security posture assessment (SPA) exercises for government agencies, banks and small medium industries (SMIs). Scopes are:- Internal & external network penetration testing, physical security evaluation, social engineering exercise & awareness, server security evaluation, wireless network discovery & testing- Data recovery, incident handling & evidence gathering & analysis (for internal corporate investigations)- Advice on ISO27001 implementation & policy review Tunjukkan kurang

• 

  Shell Business Service Center

  Jan 2013 - Jan 2015

  Forensic Analyst APME - Cyber Defense Team

  • Provide IT forensic consultation and expertise service for both internal & external Shell investigation (fraud/ code of conduct/ intellectual properties infringement/ cyber security incidents/ malware outbreaks)• Act as IT forensic expert for region Asia Pacific & Middle East• Actively engage with stakeholders to promote IRM/Cyber Defense campaign across the entire Shell landscape

• 

  Standard Chartered

  Nov 2015 - Jan 2019

  Senior Specialist & Operation Manager - Cyber Forensic Lab

  • Assist Service Head from initial setup of cyber forensic capabilities within StandardChartered Bank group (including onboarding service catalogue, processes & procedures) until managing Cyber Forensic Lab operation and contribute in uplifting Cyber Threat Response (Tier-1 and Tier-2) incident response capabilities.• Act as Senior Forensic Specialist in cyber forensic service (including advanced host forensic, remote and enterprise forensic, log analysis and network forensic, malware analysis and reverse engineering, password recovery, expert advisory) to internal stakeholders (Cyber Threat Response SIRT & Shared Investigative Service SIS)• Engage with various stakeholders within the bank to provide forensic expert advice & opinion in new technology onboarding into enterprise IT ecosystem• Building strategic advisory partnership and relationship with forensic industry, practitioner and researcher communities (Cyber Security Malaysia, SANS/GIAC, HTCIA) Tunjukkan kurang

• 

  Celcom Berhad

  Jan 2019 - Nov 2022

  Head, Cyber Threat & Incident Management / Acting Head, Information Security

  • Lead initiatives related to Cyber Threat Response within Celcom Axiata, including improving state of visibility on security monitoring, maintaining Cyber Incident service catalogue, processes & procedures, managing Cyber Incident operation• Act as mentor to Cyber Threat & Incident team & Internal Investigation team (under Internal Audit) in uplifting team knowledge and capability on in-depth cyber security analysis (including remote and enterprise forensic, log analysis and network forensic, malware analysis and reverse engineering, password recovery, expert advisory) • Contribute in NIST Cyber Maturity journey for Celcom Axiata especially in Detect, Response and Recover pillar, currently reaching Level 3.7• Engage Celcom Senior Management & Board members on frequent basis, as acting Head of Information Security updating Cyber Security initiatives within department, division, organization and also Group level Tunjukkan kurang

• 

  CelcomDigi

  Jan 2022 - now

  Head, Cyber Defense Center (CDC)

  • Lead Cyber Defense Center (CDC) comprising Cyber Threat & Incident (CTI), Cyber Assessment & Testing (CAT) and Cyber Protection Technologies (CPT), improving current organization’s capabilities in Prevent, Detect and Response • Harmonize working model, strategy and process between 2 former organizations (xCelcom & xDigi) towards higher Cyber Maturity level for CelcomDigi• Leverage automation / innovation on tools and process to deliver quality output and continuous operational excellence Tunjukkan kurang