CV | Sean Yap

Working Experiences

Grab

Oct 2023 - Present

Senior Security Engineer

Perform system architecture review, code review, training of staff, penetration testing and red teaming for Grab applications and services.
Perform oncall duties for hackerone and incident response.

Grab

Sep 2021 - Sep 2023

Security Engineer

Defence Science and Technology Agency (DSTA)

June 2020 - Aug 2021

Cyber Security Engineer

Assess risk and prepare Threat Risk Assessments (TRA) of projects/systems.
Perform Vulnerability Assessment and Penetration Testing (VAPT).

NUS Department of Psychology

December 2018 - April 2020

Web-Developer / Research Assistant

An independent contract job under the National University of Singapore's (NUS), Faculty of Art & Social Sciences, Department of Psychology, to design, develop and deploy a website for Auditory English Lexicon Project (AELP).

Develop Websites according to client's specifications; admin dashboard/panel, access control and management functionality using .NET MVC.
Compliance with programming standards in accordance with NUS coding standards and HP's Fortify Static Code Analyzer.

Accenture Singapore Pte. Ltd.

May 2019 - August 2019

Security Analyst, Intern

An internship with Accenture where I tried my hands on working in a Security operations center (SOC) and experiencing life client-side.

Support security team in Investigating and analysing internal and external security offences.
Assist with daily security operations center (SOC) operations.

Websparks Pte Ltd

May 2018 - Aug 2018

.NET Developer (C#), Intern

An Internship with Websparks to work on creating, modifying and implementing custom CMS solutions on the Sitefinity platform.

Use of .NET MVC (C#) with Razor view engine to develop secure web pages, plugins and modules for integration with Sitefinity.
Assess security testing tools and implement them within CI/CD pipelines to automate security testing.
Assist in data management and programming technologies.

GlaxoSmithKline

March 2014 - May 2014

Associate Business IT Partner, Intern

GlaxoSmithKline (plc) is a Multinational pharmaceutical company in which I fulfiled an internship. I primarily worked on the healthcare professionals website, health.gsk.sg.

Support commercial team on securing web services and perform security testing on CMS plugins.
Make use of CMS software to update content and manage access of web pages.

Licenses and Certifications

(ISC)²

Issue Date: March 2023

Certified Information Systems Security Professional (CISSP)

Credential ID: 832600
Certification URL: credly.com/badges/01774d50-8cf6-478a-9f67-75fde1b451e2

(ISC)²

Issue Date: OCtober 2023

Certified Cloud Security Professional (CCSP)

Credential ID: 832600
Certification URL: credly.com/badges/93703790-3d82-4d0d-a118-fa66aee78c31

(ISC)²

Issue Date: October 2020

Systems Security Certified Practitioner (SSCP)

Credential ID: 832600
Certification URL: credly.com/badges/8a3822a2-4a38-4854-be71-81e1d03c46c4

Offensive Security

Issue Date: April 2023

OffSec Experienced Penetration Tester (OSEP)

Credential ID: OSEP-40596
Certification URL: credential.net/9aa40e4e-ff93-4d8d-90a0-f02cedb64077

Offensive Security

Issue Date: June 2021

OffSec Web Expert (OSWE)

Credential ID: OS-AWAE-8949
Certification URL: credential.net/2cf77f81-09e1-4d0f-b693-1f73f22405cc

Offensive Security

Issue Date: May 2020

OffSec Certified Professional (OSCP)

Credential ID: OS-101-53860
Certification URL: credential.net/6b97f0f1-2373-42cf-8b5d-e9ac4503e1e3

Offensive Security

Issue Date: Nov 2022

OffSec Wireless Professional (OSWP)

Credential ID: OS-BWA-29878
Certification URL: credential.net/ec29f8cf-88d6-47d7-aa73-16f55cf6f7e5

CREST

Issue Date: October 2020

CREST Practitioner Security Analyst (CPSA)

Credential ID: 66149085

CREST

Issue Date: October 2020

CREST Registered Penetration Tester (CRT)

Credential ID: 66149085

Pentester Academy

Issue Date: January 2021

Certified Red Team Professional (CRTP)

Student ID: ADLIB1777
Certification URL: credential.net/09c76874-8dc1-4ef9-bc35-7b6ef5de3cb9

Amazon Web Services (AWS)

Issue Date: June 2022

AWS Certified Security - Specialty

Certification URL: credly.com/badges/f9f6229e-20be-4afb-a1b7-a8d7ebd2c923

Amazon Web Services (AWS)

Issue Date: June 2022

AWS Certified Solutions Architect - Professional

Certification URL: credly.com/badges/488537bd-e2f8-421d-a45d-de610a9e6c7c

Amazon Web Services (AWS)

Issue Date: January 2021

AWS Certified Solutions Architect - Associate

Certification URL: credly.com/badges/49ec23e8-e208-460f-b101-ac146688fcc6

Microsoft

Issue Date: October 2021

Microsoft Certified: Azure Fundamentals

Certification ID: 992045597
Certification URL: credly.com/badges/04e0b2bf-cad4-4d00-a0bb-ebb54cacba32

PortSwigger

Issue Date: December 2021

Burp Suite Certified Practitioner

Certification Token: AFAE0175639D6735
Certification URL: portswigger.net/web-security/e/c/afae0175639d6735

Harvard Business Publishing Corporate Learning

Issue Date: December 2022

Grab: Emerging Leaders Harvard Program

Certification URL: credly.com/badges/b7a70013-ef26-49c4-b609-1dfef2afbf76

Education

2020

Obtained Bachelor of Computing (Information Security) with Honours (Distinction)

@ National University of Singapore (NUS)

- Graduated with a CAP of 4.23, out of 5.
- Completed University Town College Programme (UTCP), Resident of Tembusu College.
- Teaching Assistant for module CS2113T, Software Engineering.
2015

Obtained Diploma in Information Security

@ Nanyang Polytechnic (NYP)

Graduated with a GPA of 3.74, out of 4.
1995

Born in Singapore

Contact

Location

Singapore

E-Mail

sean@seanyap.com

www.linkedin.com/in/sean-yap-yu-rong/

Current Work Place

Grab

Skills

Programming Languages

C, C++, C#

Java

PHP

MIPS32

x86 Assembly

Python, Visual Basic

Databases

SQL

MySQL

PostgreSQL

Oracle Database

SQLite

Microsoft Access

Software Engineering Tools

Microsoft Project

Microsoft Visio

Visual Paradigm

IDEs

Microsoft Visual Studio

Eclipse

PHPstorm

NetBeans

Source Code Editors

Sublime Text

Microsoft Visual Code

Notepad++

Multimedia Tools

Adobe Photoshop

Adobe Dreamweaver

Adobe Premiere

Operating Systems

Windows, Windows Server

Ubuntu, Raspbian

Arch Linux

Fedora, Red Hat

Frameworks

Twitter Bootstrap

ASP.NET, Webforms, MVC, core

Node.js, React.js, Express.js

Hypervisors

VMware Workstation

VirtualBox

Web Hosting Control Panels

Plesk

cPanel

Content Management Systems (CMS)

WordPress

Adobe Experience Manager (AEM)

Sitefinity

Static Code Analysis Tools

IBM Security AppScan

Micro Focus Fortify

Identity Management Systems

IBM Security Identity Manager

IBM Security Access Manager

Web Application Security Tools

Burp Suite

OWASP ZAP

Beginner

Proficient

Expert

Master

Languages

English

Mandarin

Hobbies

Jogging

Tennis

Competitive Programming

Chess

Reading

Assembling PCs

Download / Others

CV in PDF format

Download

Hello, My name is Sean Yap.I am a security engineer and this is my CV!

Working Experiences

Licenses and Certifications

Education

Obtained Bachelor of Computing (Information Security) with Honours (Distinction)

Obtained Diploma in Information Security

Born in Singapore

Contact

Skills

Programming Languages

Databases

Software Engineering Tools

IDEs

Source Code Editors

Multimedia Tools

Operating Systems

Frameworks

Hypervisors

Web Hosting Control Panels

Content Management Systems (CMS)

Static Code Analysis Tools

Identity Management Systems

Web Application Security Tools

Languages

Hobbies

Download / Others

CV in PDF format

Hello,
My name is Sean Yap.
I am a security engineer and this is my CV!