Justin Chua

CISSP-certified cybersecurity professional with 7+ years of expertise in designing, implementing, and optimizing robust security architectures.
I work closely with stakeholders to drive the entire project lifecycle, from strategic consulting and meticulous planning to seamless deployment and ongoing support.

My proven track record includes extensive hands-on experience with industry-leading solutions crucial for modern cyber defense:

- BullWall Ransomware Containment: Specializing in proactive endpoint defense and rapid breach mitigation.
- Certus Erasure: Expert in certified data sanitization and secure data lifecycle management, ensuring regulatory compliance.
- Netwrix Suite (Identity Manager, Auditor, Endpoint Protector, PingCastle Enterprise, Access Analyzer): Proficient in Identity and Access Management (IAM), privileged access management (PAM), security auditing, threat detection, and vulnerability management across enterprise environments.
- iStorage / Kanguru: Skilled in deploying secure physical storage solutions for sensitive data.
- Jetico: Specialized in container encryption and advanced data protection strategies.

As a Cyber Security Engineer at PrimusTech, I leveraged my Bachelor of Science in Cyber Forensics to manage and resolve daily cybersecurity queries, ensuring robust protection for both organizational assets and also critical information infrastructures across my customer base.
I gained invaluable experience navigating complex government cybersecurity compliance requirements and spearheaded vendor management for critical tenders and projects.

My technical proficiencies include extensive hands-on work with leading security technologies:

- Firewalls: Configured, managed, and troubleshot Check Point, Palo Alto Networks, and FortiGate firewalls for network segmentation and perimeter defense.
- Operational Technology (OT) IDS: Deployed and monitored Nozomi Networks and Claroty Networks to enhance industrial control system (ICS) security and threat detection.
- Vulnerability Management: Utilized Rapid7 Nexpose/InsightVM and Tenable Nessus for comprehensive vulnerability assessments. Managed end-to-end Vulnerability Assessment and Penetration Testing (VAPT) projects by collaborating with external providers.

I have also assisted in leading the hardening technologies for our HVAC (Heat Ventilation, Air Conditioning) systems within one of our MRT (Mass Rapid Transit) systems in 2021.

Applied academic knowledge from a Bachelor's in Cyber Forensics at Murdoch University to real-world cybersecurity challenges while working as a full-time Network Security Engineer at Netpoleon Solutions.

Engaged in hands-on tasks across various network security domains, building a strong foundation in security device management, vulnerability assessment, and threat detection. This experience provided practical insights into how network security measures contribute to broader cyber forensics investigations.

Key Accomplishments/Skills:

• Operated and maintained critical network security infrastructure, including Checkpoint Firewalls (CCSA certified), Barracuda security appliances (ESG, WSG, ESS, LB, WAF), and Forcepoint solutions.
• Participated in the analysis and implementation of threat intelligence and endpoint detection tools such as FireEye NX/EX/ETP/HX/PX.
• Leveraged Rapid7 Nexpose/InsightVM for vulnerability scanning and reporting, developing an understanding of attack surfaces and remediation priorities, which is crucial for forensic analysis.
• Gained exposure to secure identity and access management principles through hands-on work with Thales Luna7/KMS and Office 365 (Security, Azure AD, Exchange) configurations.
• Understood firewall policy management and network segmentation through practical application of Algosec AFA.
• Developed a foundational understanding of how network security logs and device configurations are vital for cyber forensic investigations.

Spearheaded critical technical support for diverse cybersecurity products, ensuring seamless operation and robust security posture for clients. Actively engaged in diagnosing, troubleshooting, and resolving complex technical issues, translating into enhanced system reliability and client trust. Gained comprehensive practical experience across various security domains including email, endpoint, web, and vulnerability management.

Key Responsibilities:

• Provided expert-level technical support for Office 365 services (Email, SharePoint, OneDrive), addressing configuration issues, access problems, and security-related inquiries.
• Resolved intricate support tickets for FireEye suite products (EX, NX, HX, ETP), involving advanced threat protection, malware analysis, and incident response functionalities.
• Managed and optimized performance of Barracuda security gateways (WSG, ESG, ETP, LB), troubleshooting web and email security policies, and load balancing configurations.
• Conducted in-depth troubleshooting for Rapid7 Nexpose, assisting clients with vulnerability scan configurations, report generation, and understanding scan results.
• Documented technical solutions and best practices, contributing to an extensive knowledge base for internal teams and client self-service.
• Collaborated cross-functionally with engineering and sales teams to escalate complex issues and provide valuable client feedback for product enhancements.