GLENN LIM GUAN HONG
Cybersecurity Leader
Singapore
Summary
Cybersecurity leader with 18+ years of experience driving enterprise security programs, managing complex risk landscapes, and delivering secure digital transformation across global organizations. Proven ability to lead cross-functional teams, strengthen security posture, and align cybersecurity strategy with business objectives. Deep expertise in GRC, cloud security, incident response, threat management, and regulatory compliance (SOX, ISO 27001, PDPA, PIPL). Adept at advising senior stakeholders, influencing decisions, and building resilient security frameworks.
Overview
19
19
years of professional experience
13
13
Certifications
Work History
IT Security Manager
Star Alliance
10.2024 - 07.2025
- Strengthened ISO 27001 compliance by conducting end-to-end security assessments and closing critical gaps across business applications.
- Improved incident readiness by managing the cyber incident response plan and leading multiple tabletop exercises.
- Reduced security risks by reviewing penetration testing results and driving remediation with vendors and internal teams.
- Enhanced business resilience by overseeing BCM frameworks and contingency planning.
- Optimized application security by identifying cost-saving opportunities and reducing complexity in legacy systems.
- Conducted security assessments, penetration test reviews, and vulnerability analysis.
- Updated and enforced IT security policies across the organization.
- Ensured compliance with ISO 27001 and partner security requirements.
- Supported secure architecture design for new digital services.
- Managed vendor negotiations and technical evaluations.
- Embedded risk management into daily operations.
Information Security Quality & Compliance Specialist
Johnson & Johnson
10.2023 - 09.2024
- Improved SOX compliance posture by supporting TDRA assessments and strengthening internal controls.
- Enhanced SAP and cloud security by ensuring proper access controls, encryption, and audit alignment.
- Unified global teams by facilitating collaboration across legacy streams and driving consistent security practices.
- Advised global stakeholders on security controls, data protection, and compliance requirements.
- Conducted regulatory compliance assessments (SOX, PIPL).
- Recommended improvements for change management, incident management, and access governance.
- Ensured security controls for cloud application development and migration.
Cloud Solution Architect
Google Cloud
12.2020 - 10.2023
- Designed secure cloud architectures using GCP services (Compute Engine, GKE, BigQuery, Cloud Storage).
- Accelerated digital transformation for enterprise clients through secure cloud adoption.
- Improved cybersecurity resilience by implementing cloud-native security controls.
- Gathered business requirements and translated them into secure cloud solutions.
- Architected scalable, high-performance cloud environments.
- Delivered secure computing services to enhance operational efficiency.
Cybersecurity Pre-Sales Consultant
Certis Cisco Cyber Security Group (E-Cop)
01.2016 - 12.2020
- Won over $2.3M in cybersecurity tenders, including WAF and managed security services.
- Designed and deployed security solutions for government agencies (SIEM, IDS/IPS, WAF).
- Strengthened client security posture through risk assessments and tailored recommendations.
- Conducted POCs, solution demos, and technical presentations.
- Built strong client relationships and delivered technical advisory.
- Led strategic bids and proposal development.
Software Specialist
ST Electronics (InfoSoft)
10.2011 - 12.2015
- Developed an anti-malware sandbox solution using secure coding practices (MVC4, ASP.NET).
- Improved application security using Checkmarx and secure SDLC practices.
- Integrated enterprise security products (SIEM, WAF, IDS/IPS).
Web Designer & Network Specialist
A*STAR Biomedical
01.2007 - 09.2011
- Designed and developed intranet systems and facility booking platforms.
- Managed Windows Server environments, LDAP, and SSO.
- Supported network security, patching, and system hardening.
Education
Bachelor of Science - Cyber Forensics, Information Systems & Management
Murdoch University
Perth10.2013
Diploma - Computer Science
Nanyang Polytechnic
Singapore06.2004
Skills
SIEM management
Cybersecurity strategy
Identity and Access management
Threat intelligence
Data loss prevention
Security awareness training
Compliance management
Incident response
Social engineering defense
Penetration testing
Information governance
Intrusion detection
Disaster recovery planning
Cloud security
Forensic analysis
Accomplishments
- Led over $2.3M in cybersecurity tender wins.
- Delivered Project Alpha, a high-impact cybersecurity initiative using Checkmarx & Nessus.
- Mitigated multiple high-risk incidents with zero business downtime.
Certification
CISSP
CORE COMPETENCIES
- Cybersecurity Governance & Strategy
- Risk Management (SOX, ISO 27001, PIPL, PDPA, TPRA)
- Cloud Security Architecture (GCP, SAP)
- Incident Response & Crisis Management
- Penetration Testing & Vulnerability Management
- Security Operations (SIEM, IDS/IPS, WAF)
- Stakeholder & Executive Engagement
- Vendor & Third-Party Risk Management
- Security Policy, Compliance & Audit
- Secure SDLC & Application Security
Timeline
IT Security Manager
Star Alliance
10.2024 - 07.2025
Information Security Quality & Compliance Specialist
Johnson & Johnson
10.2023 - 09.2024
Cloud Solution Architect
Google Cloud
12.2020 - 10.2023
Cybersecurity Pre-Sales Consultant
Certis Cisco Cyber Security Group (E-Cop)
01.2016 - 12.2020
Software Specialist
ST Electronics (InfoSoft)
10.2011 - 12.2015
Web Designer & Network Specialist
A*STAR Biomedical
01.2007 - 09.2011
Bachelor of Science - Cyber Forensics, Information Systems & Management
Murdoch University
Diploma - Computer Science
Nanyang Polytechnic