Singapore
Offensive security leader specializing in red team operations, identity attack simulation, and adversary emulation. I lead offensive security engagements that demonstrate how attackers move from initial access to domain compromise across hybrid identity environments.I focus on developing scalable offensive security services including AI Red Team, Threat driven purple team, AI Asssister Red Team, identity-focused adversary simulation, purple team engagements, and detection validation exercises aligned with MITRE ATT&CK.Developed adversary emulation environments replicating enterprise networks to simulate real attacker techniques.Founder of GuideM - One of the top cutting edge Cybersecurity Training Institution in the Philippines with over 1600+ LIVE Students.
Lead and deliver Advanced Adversary Simulation and Red Team engagements, Purple Team across JAPAC, working with organizations in finance, healthcare, telecom, aviation, energy, and government. Focus on high-impact offensive security programs that emulate real-world threat actors, uncover critical attack paths, and measurably strengthen cyber resilience. Develop tools, methodologies, and training to strengthen offensive capabilities and educate stakeholders on emerging threats. Contribute to Global Cross Team-team initiatives, fostering partnerships that enhance strategy and align with evolving regulatory and threat landscapes. Drive full-spectrum offensive initiatives including Red Team strategy, Purple Team orchestration, hybrid identity assessments (AD/Entra ID), cloud and SaaS attack surface analysis, and collaborative detection engineering to uplift SOC maturity across diverse environments. Partner closely with regional and global teams at Unit 42 to advance offensive security capability, innovate methodologies, and support clients through complex and rapidly evolving threat landscapes.
• Conducted comprehensive red and purple team assessments, enhancing clients' cybersecurity posture against evolving threats. • Executed ransomware readiness reviews, identifying vulnerabilities and recommending strategic mitigations. • Led assumed breach assessments with pre-deployed implants, simulating real-world attack scenarios for effective threat analysis.
- Spearheaded end-to-end red team engagements (scoping → threat model → execution → reporting for large enterprise clients and internal business operations driven red team. - Acted as Lead for offensive tooling development and automation (loaders, covert communication stubs, C2 orchestration) to raise the technical ceiling of engagements. - Created the Purple Team execution playbook scalable purple-team playbooks and detection content (SIEM rules, EDR hunts, telemetry mapping) that the company can operationalize. - Designed realistic adversary emulation plans mapped to customer threat models and MITRE ATT&CK, focusing on identity, network, endpoint, cloud and application vectors.
- Drives business excellence through leadership and business decision making resulting to expansion of the business, - Manages technical engineers and SME deliverables. - Work with clients for vendor recognition for Cybersecurity Training. - Redefine and Strategize learning innovation through Subject Matter Engineered hands on laboratories. - Leads architectural implementation of state of the art learning platform used by GuideM - Teaches and Course Development involvement for both offensive and defensive courses delivered by the company.
Deliver training to both in-house and public audiences
- Provide innovation within the context of the Vulnerability and Penetration Testing (VAPT) program in relation to both process and technology. - Design, implement, and support VAPT solutions identified as necessary for the protection of Firm assets Serve as a Subject Matter Expert (SME) for the VAPT function Serve as the system owner for common VAPT toolsets, platforms, and processes - Provide assessment reports that are easily understandable by the target audience and include practical and reasonable recommendations based upon sound risk management principles Assess the sufficiency of policies, standards and procedures relative to VAPT best practices. Author standards and procedures designed to continually improve security posture Engage in continual environmental monitoring to understand the threat environment relative to the organization - Perform authorized attack surface reviews and penetration tests against specific targets at the direction of the Information Security Manager Provide input into security risk assessments by leveraging specialized knowledge Report compliance failures to management for immediate remediation - Maintain assigned systems to ensure availability, reliability, integrity, including the oversight of current and projected capacity, performance, and licensing Define, create, and delivers reports and relevant metrics to the Information Security Manager - Contribute to the Firms security-related information repositories and other marketing/awareness endeavours - Mentor junior members of the VAPT group and provide constructive consultation to other peer groups such as Development - Provide exemplary customer service by striving for first call resolution and demonstrating, empathy, respect, professionalism, and expertise