Ben Cheung, M.Eng., CISSP
Details
Cybersecurity and Compliance
The George Washington University
2018 : 2020
Bachelor's degree
Computer Science
Kutztown University of Pennsylvania
1999 : 2003
Assessing 3rd party vendor threat environment to evaluate risk remediation control and strategy to minimize the impact of vulnerabilities based on industry cybersecurity frameworks and standards for controlled non-classified data to ensure regulatory compliance.
Work with Third-Party vendors along with business owners and other appropriate stakeholders to ensure their understanding of associated risks and actions required to address and remediate any information security vulnerability gap with their vendor, including business continuity planning strategy.
Create routine cybersecurity report to proactively inform the senior management of potential threats, enabling timely decision-making and strategic adjustments to bolster the organization's cyber defense posture to protect the organization's digital assets.
Regularly identify and analyze potential security threats and vulnerabilities through various tools and techniques.
Develop and deliver engaging cybersecurity awareness programs to educate employees about potential threats and best practices, such as phishing.
2020 : Present
Scotiabank
Senior Manager Information Security
Oversee the I.T. System infrastructure at an Aerospace Manufacturer. These responsibilities include, but are not limited to, the following :
- Conduct server security administration, compliance reporting in Vulnerability Management System in accordance with NIST Framework, such as MFA Security Compliance and Security Awareness program.
- Support other risk function initiatives as the subject matter expert for TPRM, such as new regulatory requirements in relation to Data Security.
- Conducted server security, compliance reporting in Vulnerability Management System in accordance with NIST Cybersecurity Framework
- Setup MFA Security Compliance; Oversee a security deployment of USB and Computer encryption
- Successfully created a regular security awareness program for cyber-attack, such as Phishing and Ransomware
- Setup, configure and manage Pure Storage and NetApps Storage appliance
- Business Continuity Planning with proper Backup and Disaster Recovery.
- Setup, configure and manage VSphere VCenter and EXSI Servers.
- Setup, configure and manage Windows servers, including but not limit to Active Directory, DNS, Web Server, SQL Servers, and Group Policies
- Maintain and update Symantec Endpoint Antivirus Server and clients.
- Maintain and configure Cisco Switches and Router.
- Plan, configure and manage an email hosting migration to Google Apps
- Support Epicor ERP System
2011 : 2020
Avionic Instruments
System Administrator
Skills
Aerospace, cybersecurity awareness, Cybersecurity Incident Response, Electronics, Embedded Systems, Engineering, Engineering Management, Integration, Manufacturing, Microsoft Office, Program Management, Programming, Regulatory Complinace, Systems Engineering, Third Party Risk Management (TPRM), Threat & Vulnerability Management, Windows
About
Ben an experienced cybersecurity practitioner passionate about safeguarding digital assets and mitigating cyber threats. With 15+ years of experience in information security and technology, he is committed to ensuring the confidentiality, integrity, and availability of sensitive data in today's interconnected world.
Proficient in vulnerability management, third-party risk management, incident response, and regulatory compliance with industry standards. Accomplished in creating cybersecurity awareness and vulnerability management programs. Familiar with securing cloud environments through comprehensive security measures.
Profile Photo
