About Kuro

A Slashie ,Consultant ,and Medium Blogger. Kuro is principally engaged in the consulting experience of the Cybersecurity, network infrastructure security, web security ,mobile application security and technical assessment testing / auditing (ISMS, SWIFT, regulatory compliance), especially in Financial security sector. Through years of experience and research,He is committed to assisting clients in solving information security, either management policy or technical issues with his diverse backgrounds and expertise.

In addition to computer system vulnerability assessment projects, he also develop and participate in new information security methodologies, frameworks in the Deloitte infrastructure security service team. As a Security Solution Architect,he is responsible for development, integration and delivery of cyber security services to various customers. Other responsibilities include working with sales and bids teams to identify potential opportunities and also to sign off bids, plus many more.


Experience

  • Big Four Accounting Firms : Deloitte CyberSecurity Consultant 勤業眾信 資安技術顧問
  • Financial Industry : Information System Security 資訊安全管理
  • Sticker Maker : ( https://line.me/S/shop/sticker/author/1656721)
  • Regulatory Compliance : 金融機構合規檢視, ISO 27001, CIS Control, STIGs, SWIFT CSCF, Singapore TRM Guidelines, Philippine MORB, Cyber security maturity assessment
  • Technical Assessment : Computer System Security , Pentesting, Mobile Application Security, Secure Configuration Baseline, General Data Protect, Network Architecture, Solution Architecture.

Services

  • Find opportunities to be an lecturer, Instructor or speaker
  • Cybersecurity Consulting Services
  • Vulnerability Analysis : Web application, mobile application, System and etc.
  • Network Security Architecture
  • Cyber Security Audit
  • CyberSecurity Framework : CIS Control, ISO 27001, STIG, CMMC

Blog


Community / Conference Volunteer:

– HITCON( Hacks in Taiwan Conference ) Staff : 台灣駭客年會

  • 2018/2019/2020

– COSCUP(Conference for Open Source Coders, Users and Promoters) Staff : 開源人年會

  • 2016/2018/2020

– SITCON (Students’ Information Technology Conference) Staff : 學生計算機年會

  • 2016/2017

Certification

Penetration Testing Certification :

  • CEH, EC-Council Certified Ethical Hacker
  • ECSA, EC-Council Certified Security Analyst
  • CPSA, CREST Practitioner Security Analyst

Network Security Certification :

  • CCNP Security, Cisco Certified Network Professional : Security
  • NSPA, Network Security of Packet Analysis
  • NSE 2, Fortinet Network Security Associate
  • CyberArk Trustee, CyberArk Trustee Certification

Network Infrastructure Certification :

  • CCNP Enterprise, Cisco Certified Network Professional : Enterprise
  • VCP-NV, VMware Certified Professional – Network Virtualization
  • CCNA R&S, Cisco Certified Network Associate : Routing and Switching

Cloud

  • AZ-900, Microsoft Azure Fundamentals

Project Management :

  • SFPC, CertiProf Scrum foundations Professional Certificate
  • PMEC, Project Management Essentials Certified

Auditor :

  • ISO/IEC 27001

Other :

  • ISO/IEC 17025, General requirements for the competence of testing and calibration laboratories (Mobile Application Security Lab )
  • CyberArk Certified Sales Professional
  • CyberArk Certified Pre-Sales Engineer

Professional Organization :

  • ISACA
  • Computer Audit Association