Hello,
My name is Sean Yap.
I am a security engineer and this is my CV!
Working Experiences
Grab
Oct 2023 - Present
Senior Security Engineer
- Perform system architecture review, code review, training of staff, penetration testing and red teaming for Grab applications and services.
- Perform oncall duties for hackerone and incident response.
Grab
Sep 2021 - Sep 2023
Security Engineer
Defence Science and Technology Agency (DSTA)
June 2020 - Aug 2021
Cyber Security Engineer
- Assess risk and prepare Threat Risk Assessments (TRA) of projects/systems.
- Perform Vulnerability Assessment and Penetration Testing (VAPT).
NUS Department of Psychology
December 2018 - April 2020
Web-Developer / Research Assistant
An independent contract job under the National University of Singapore's (NUS), Faculty
of Art & Social Sciences, Department of Psychology, to design, develop and deploy a
website for Auditory English
Lexicon Project (AELP).
- Develop Websites according to client's specifications; admin dashboard/panel, access control and management functionality using .NET MVC.
- Compliance with programming standards in accordance with NUS coding standards and HP's Fortify Static Code Analyzer.
Accenture Singapore Pte. Ltd.
May 2019 - August 2019
Security Analyst, Intern
An internship with Accenture where I tried my hands on working in a Security operations
center (SOC) and experiencing life client-side.
- Support security team in Investigating and analysing internal and external security offences.
- Assist with daily security operations center (SOC) operations.
Websparks Pte Ltd
May 2018 - Aug 2018
.NET Developer (C#), Intern
An Internship with Websparks to
work on creating, modifying and implementing custom CMS solutions on the Sitefinity platform.
- Use of .NET MVC (C#) with Razor view engine to develop secure web pages, plugins and modules for integration with Sitefinity.
- Assess security testing tools and implement them within CI/CD pipelines to automate security testing.
- Assist in data management and programming technologies.
GlaxoSmithKline
March 2014 - May 2014
Associate Business IT Partner, Intern
GlaxoSmithKline
(plc) is a Multinational pharmaceutical company in which I fulfiled an
internship. I primarily worked on the healthcare professionals website,
health.gsk.sg.
- Support commercial team on securing web services and perform security testing on CMS plugins.
- Make use of CMS software to update content and manage access of web pages.
Licenses and Certifications
(ISC)2
Issue Date: March 2023
Certified Information Systems Security Professional (CISSP)
- Credential ID: 832600
- Certification URL: credly.com/badges/01774d50-8cf6-478a-9f67-75fde1b451e2
(ISC)2
Issue Date: October 2023
Certified Cloud Security Professional (CCSP)
- Credential ID: 832600
- Certification URL: credly.com/badges/93703790-3d82-4d0d-a118-fa66aee78c31
(ISC)2
Issue Date: October 2020
Systems Security Certified Practitioner (SSCP)
- Credential ID: 832600
- Certification URL: credly.com/badges/8a3822a2-4a38-4854-be71-81e1d03c46c4
OffSec
Issue Date: November 2024
OffSec Certified Expert 3 (OSCE3)
- Credential ID: 121544465
- Certification URL: credential.net/1362f1b5-f9ac-4b41-b3e8-48b216abb6cc
OffSec
Issue Date: November 2024
OffSec Exploit Developer (OSED)
- Credential ID: OSED-14387
- Certification URL: credential.net/b7cbc94a-54b4-4aeb-8b44-6bf96f0c2da4
OffSec
Issue Date: April 2023
OffSec Experienced Penetration Tester (OSEP)
- Credential ID: OSEP-40596
- Certification URL: credential.net/9aa40e4e-ff93-4d8d-90a0-f02cedb64077
OffSec
Issue Date: June 2021
OffSec Web Expert (OSWE)
- Credential ID: OS-AWAE-8949
- Certification URL: credential.net/2cf77f81-09e1-4d0f-b693-1f73f22405cc
OffSec
Issue Date: May 2020
OffSec Certified Professional (OSCP)
- Credential ID: OS-101-53860
- Certification URL: credential.net/6b97f0f1-2373-42cf-8b5d-e9ac4503e1e3
OffSec
Issue Date: Nov 2022
OffSec Wireless Professional (OSWP)
- Credential ID: OS-BWA-29878
- Certification URL: credential.net/ec29f8cf-88d6-47d7-aa73-16f55cf6f7e5
CREST
Issue Date: October 2020
CREST Practitioner Security Analyst (CPSA)
- Credential ID: 66149085
CREST
Issue Date: October 2020
CREST Registered Penetration Tester (CRT)
- Credential ID: 66149085
Pentester Academy
Issue Date: January 2021
Certified Red Team Professional (CRTP)
- Student ID: ADLIB1777
- Certification URL: credential.net/09c76874-8dc1-4ef9-bc35-7b6ef5de3cb9
Amazon Web Services (AWS)
Issue Date: June 2022
AWS Certified Security - Specialty
- Certification URL: credly.com/badges/f9f6229e-20be-4afb-a1b7-a8d7ebd2c923
Amazon Web Services (AWS)
Issue Date: June 2022
AWS Certified Solutions Architect - Professional
- Certification URL: credly.com/badges/488537bd-e2f8-421d-a45d-de610a9e6c7c
Amazon Web Services (AWS)
Issue Date: January 2021
AWS Certified Solutions Architect - Associate
- Certification URL: credly.com/badges/49ec23e8-e208-460f-b101-ac146688fcc6
Microsoft
Issue Date: October 2021
Microsoft Certified: Azure Fundamentals
- Certification ID: 992045597
- Certification URL: credly.com/badges/04e0b2bf-cad4-4d00-a0bb-ebb54cacba32
PortSwigger
Issue Date: December 2021
Burp Suite Certified Practitioner
- Certification Token: AFAE0175639D6735
- Certification URL: portswigger.net/web-security/e/c/afae0175639d6735
Harvard Business Publishing Corporate Learning
Issue Date: December 2022
Grab: Emerging Leaders Harvard Program
- Certification URL: credly.com/badges/b7a70013-ef26-49c4-b609-1dfef2afbf76
Education
-
2020
Obtained Bachelor of Computing (Information Security) with Honours (Distinction)
@ National University of Singapore (NUS)
- Graduated with a CAP of 4.23, out of 5.
- Completed University Town College Programme (UTCP), Resident of Tembusu College.
- Teaching Assistant for module CS2113T, Software Engineering. -
2015
Obtained Diploma in Information Security
@ Nanyang Polytechnic (NYP)
Graduated with a GPA of 3.74, out of 4.
-
1995
Born in Singapore
Contact
Location
Singapore
Skills
Programming Languages
C, C++, C#
Java
PHP
MIPS32
x86 Assembly
Python, Visual Basic
Databases
SQL
MySQL
PostgreSQL
Oracle Database
SQLite
Microsoft Access
Software Engineering Tools
Microsoft Project
Microsoft Visio
Visual Paradigm
IDEs
Microsoft Visual Studio
Eclipse
PHPstorm
NetBeans
Source Code Editors
Sublime Text
Microsoft Visual Code
Notepad++
Multimedia Tools
Adobe Photoshop
Adobe Dreamweaver
Adobe Premiere
Operating Systems
Windows, Windows Server
Ubuntu, Raspbian
Arch Linux
Fedora, Red Hat
Frameworks
Twitter Bootstrap
ASP.NET, Webforms, MVC, core
Node.js, React.js, Express.js
Hypervisors
VMware Workstation
VirtualBox
Web Hosting Control Panels
Plesk
cPanel
Content Management Systems (CMS)
WordPress
Adobe Experience Manager (AEM)
Sitefinity
Static Code Analysis Tools
IBM Security AppScan
Micro Focus Fortify
Identity Management Systems
IBM Security Identity Manager
IBM Security Access Manager
Web Application Security Tools
Burp Suite
OWASP ZAP
Beginner
Proficient
Expert
Master
Languages
English
Mandarin
Hobbies
Jogging
Tennis
Competitive Programming
Chess
Reading
Assembling PCs