Summary
Overview
Work History
Education
Skills
Additional Information
Certification
Timeline
Generic

KALPANAH SUPPEARMANIAM

IT Security Advisory
Semenyih,Selangor

Summary

Organized and dependable candidate successful at managing multiple priorities with a positive attitude. Willingness to take on added responsibilities to meet team goals.

Overview

12
12
years of professional experience
4
4
years of post-secondary education
1
1
Certification
2
2
Languages

Work History

IT Security Advisory

Maybank Group - Etiqa Insurance & Takaful
2018.07 - Current
  • Monitor Etiqa's file server sharing permission using File Reporter tool monthly basis
  • Reach out to application owner to refine access to folder based on the results by file reporter
  • Noted all findings / gaps are communicated to respective file server owner and properly monitor for closure.
  • Perform Security Baselines compliance check on Etiqa assets (Windows, UNIX & AS400)
  • To track and monitor the remediation to close the gaps by application team
  • monthly reporting on the progress of security baseline compliance check and remediation for dashboard reporting
  • Audit coordinator for Etiqa Cyber Security & DLP.
  • Conducted Security Awareness via email, Tik Tok video and organized Virtual IT Security Day
  • CISO team representative - reviewer for IAM team periodic task
  • SME/Advisor for IAM team
  • Monitor spam@etiqa.com.my inbox on periodic basis everyday (business hours)
  • Analyze all suspicious email (identify source) and provide analysis report (summary) back to sender on timely manner
  • Maintain problem log for all phishing / spam emails including root cause analysis
  • Carried out day-to-day duties accurately and efficiently
  • Monitored use of data files and regulated access to protect secure information.
  • Conducted security audits to identify vulnerabilities.
  • Recommend improvements in security systems and procedures.
  • Developed team communications and information for meetings.
  • Applied leading theories and concepts to development, maintenance, and implementation of information security standards, procedures, and guidelines.
  • Counseled senior-level management on current privacy and security trends and recommendations to mitigate risk.
  • Developed, implemented, and documented security programs and policies and monitored compliance across departments.
  • Created policies and procedures for emerging security technologies and proposals.

Project Manager - IT Security

SecureMetrcic Technology Sdn.Bhd
2016.12 - 2018.06
  • Work with IT operation personnel to implement security solutions as per regulatory and internal policies requirements
  • Gather requirements and coordinate project team members to deliver the solutions required by customers
  • Draft documentation, conduct user acceptance tests and trainings
  • Manage Change Requests
  • Project communications and reporting
  • Assist in implementing and maintaining security programs
  • Establish and maintain relationships with third parties/vendors
  • Ensuring that all projects are delivered on-time, within scope and within budget
  • Developed and initiated projects, managed costs, and monitored performance.
  • Fostered relationships with vendors to promote positive working relationships.
  • Identified, reviewed and applied policies and procedures.
  • Modified and directed project plans to meet organizational needs.

Senior Information Security Analyst

Citigroup Transaction Services (M) Sdn Bhd
2012.02 - 2016.11
  • Review and verification of all User Id/Profile provisioning managed by Junior ISA for internal, external and cross-border users (with compliance/regulatory clearance) accessing to business applications for which the security management systems are supported by GIDA, within Citi Group Information security policy
  • Providing 24 x 7 support for security in production system as necessary to proactively protect the integrity, confidentiality, and availability of information of the company
  • Provide access related support to users from across the globe for various critical applications, troubleshooting authorization issues, researching user issues relative security
  • Provide training and guidance of security management and user administration procedures
  • Ensure understanding and adherence to the specified standards of Quality and Audit/Risk requirements within I&A application team
  • Create, modify, and delete user profiles in various systems based on properly authorized request systems/forms
  • Process profile requests within the SLA established and agreed with the local and regionalized countries
  • Assist in ensuring compliance with relevant regulations covering third party security risk
  • Leading security education training and communicating security policies related to third party security risk
  • Provide L1/L2 support for problems raised on LINUX/UNIX/AS400
  • Effectively communicate and manage relationships with stakeholders globally
  • Provide customer service regarding the supported applications and systems via phone, mail and virtual ticketing systems
  • Remote access to troubleshoot user's issue, first level troubleshooting will be done before escalating any issue to higher level/application support
  • Provide guidance to Junior ISA on investigation of complaints, access/password related problems and provide timely response and resolution to users
  • Ensure proper documentation of profile requests, exception id provisioning, correspondences for all administrative processes by Junior ISA
  • Ensure completeness of tracking on undelivered error
  • Semi-Annually - send internal users profile listings (not on EERS) to Direct/Designated Manager for review of validity of users and functions
  • Monitoring and ensure periodic housekeeping of inactive user ID's by Junior ISA is completed timely and accurately
  • Perform preparation and planning works with Team Leader and participate in contingency drills
  • Perform UAT testing and provide sign off for new application
  • Assist in migration and transition of application security functions currently embedded within the businesses to Global Identification Administration (GIDA)’s Fulfillment Center
  • Assist in setting up of application’s security matrices together with Transition Team Senior Officer, Subject Matter Expert (SME) and businesses representatives

Information Security Analyst

Citigroup Transaction Services (M) Sdn Bhd
2010.05 - 2012.02
  • Create, modify, reset and delete user profiles in various systems based on properly authorized request systems/forms
  • Conduct inquiries from all employees on phone and mail
  • Provide customer service regarding the supported applications and systems via phone, mail and virtual ticketing systems
  • Remote access to troubleshoot customer's issue
  • First level troubleshooting will be done before escalating any issue to higher level/application support
  • Handle ticketing tools to create ticket which will do escalation for helpdesk, vendor and ID for admin
  • Process profile requests within the service turnaround standards established and agreed with the local and regionalized countries.( SLA)
  • Performing inactivity checks and other housekeeping tasks in various systems
  • Keep contact with external security administration/developer teams
  • Ensure all access control activity and administration is strictly applied as per corporate policy instructions
  • Keep procedures up to date
  • Assist in investigation of complaints, access/password related problems to provide a timely resolution to the Designated Branch coordinators.
  • Proved successful working within tight deadlines and fast-paced atmosphere.
  • Monitored use of data files and regulated access to protect secure information.

Education

Bachelor’s Degree - Human Resource Development

Universiti Teknologi Malaysia (UTM)
2007.07 - 2010.05

Malaysia Higher School Certificate (STPM) - Business Administration/Accounting

SMK, Pelajaran Malaysia (SPM), SMK Seri Semantan
2006.01 - 2007.01

Skills

Security awareness

undefined

Additional Information

  • AWARDS AND ACHIEVEMENT , Best employee of 2nd Quarter 2013 4th Quarter Team Excellence Award Employee of the Quarter 4 Years Of Service Award University Dean’s Award (UTM)

Certification

Certified Scrum Master

Timeline

Certified Scrum Master

2019-08

IT Security Advisory

Maybank Group - Etiqa Insurance & Takaful
2018.07 - Current

Project Manager - IT Security

SecureMetrcic Technology Sdn.Bhd
2016.12 - 2018.06

Senior Information Security Analyst

Citigroup Transaction Services (M) Sdn Bhd
2012.02 - 2016.11

Information Security Analyst

Citigroup Transaction Services (M) Sdn Bhd
2010.05 - 2012.02

Bachelor’s Degree - Human Resource Development

Universiti Teknologi Malaysia (UTM)
2007.07 - 2010.05

Malaysia Higher School Certificate (STPM) - Business Administration/Accounting

SMK, Pelajaran Malaysia (SPM), SMK Seri Semantan
2006.01 - 2007.01

Similar Profiles

  • Muhamad Saiful Nizam Bin Mohamad

    Muhamad Saiful Nizam Bin MohamadMuhamad Saiful Nizam Bin Mohamad

    Customer Advisor at Etiqa Insurance & Takaful BerhadCustomer Advisor at Etiqa Insurance & Takaful Berhad

    View Profile
  • Syed Yahya Syed Mohamed

    Syed Yahya Syed MohamedSyed Yahya Syed Mohamed

    Head Core Applications at Etiqa Insurance & TakafulHead Core Applications at Etiqa Insurance & Takaful

    View Profile
  • Adila Syahira Abdul Hamid

    Adila Syahira Abdul HamidAdila Syahira Abdul Hamid

    AVP, IRRS(Head of Recon & Receipting) at Etiqa Takaful and InsuransAVP, IRRS(Head of Recon & Receipting) at Etiqa Takaful and Insurans

    View Profile
KALPANAH SUPPEARMANIAMIT Security Advisory