Introduction

Joshua Qwek is an IT professional who has extensive experience completing information technology & security engagements.

He has successfully developed security strategies and frameworks, defined and implemented enterprise and system security architectures, as well as completed threat and risk assessments, information technology control audits and vulnerability assessments against international standards.

He is professional and immaculate in his consultation style, possesses excellent communication skills and excellent business acumen.

Experiences

Career Snapshot

Security Analyst

Designed & implemented a Security Strategy & Road-map, manages Security Incident & Problem Management procedures, established an Enterprise Security Governance Framework, performed Risk Assessments & Vulnerability Testings, maintain & upheld Information Security Policy,  input to Security Architecture of key projects, and conduct Security Awareness Panels & Workshops.

 

IT Auditor & Consultant

Performed Enterprise Threat & Risk Assessment (TRA) of federal agencies and enterprises, conduct social engineering, technical vulnerability assessment & penetration testing, developed IT Strategy and Governance frameworks, conduct Information Technology General Controls audit, performed financial budget model review worth $300 million, validated the securisation model for a major bank, reviewed the online banking cryptographic key & digital certificate management practices and performed cryptographic key verification for a large financial organization.

 

Test Manager & Pre-Sales

Establish testing methodology and formulated test plans to meet Common Criteria and FIPS certification, establish business case, perform requirement analysis, reviewing design specifications, project managed implementation of cryptographic solution to Australian defence and government agencies, written technical documents, and prepared strategy document & marketing plan for commercialization.

Adjunct Lecturer

Lectured and/or tutored Internet Security, Web Development, Enterprise Security, and Wireless & Network Security. Championed the creation of Internet/Cyber Security Lab.

 

Entrepreneurship

Co-established a web design company during the beginning of the Internet.

Passions in helping small business leveraging available technology.

 

Academic

Qualifications

Master of Business Administration (In Progress)

- Implemented an performance management system using balance scorecards for a large digital media marketing firm.

- Performed a sustainable research project for a local producer for agricultural chemical and fertilizer company.


Master of Commerce (Information System)

- Performed an qualitative research (action research) stretching over a year for Boeing Employee Credit Union in Washington, United States of America.

- Designed any electronic commerce strategy for the largest Credit Union in America while working as an intern.

 

Postgraduate Diploma in Electronic Commerce

- Specializing in Information & Cyber warfare.


Bachelor of Arts (Marketing & Media)

- Directed and produced a promotional commercials that receives high distinction.

 

Honors & Awards

Chamber of Commerce & Industry Australia's Medal for "Academically Best Graduating Master of Commerce Student"
Thomson Learning Prize for "Most Outstanding Master of Commerce (Information Systems) Graduate"

Memberships

Current Affiliations & Memberships

OWASP - Open Web Application Security Project
ISACA - Information System Audit & Control Association
AISA - Australia Information Security Association
ISC2 - International Information System Security Certification Consortium
itSMF - IT Service Management Forum

 

Lapsed Membership

ACS - Australia Computer Society

Certifications

Currently Maintained

CISSP: Certified Information System Security Professional
CISA: Certified Information System Auditor
ITIL Foundation: Information Technology Infrastructure Library (Version 3)
SCF: Sherwood Applied Business Security Architecture (SABSA) Charter Foundation

Standards

Familiar with the following standards

AS 4360 - Australian Standard Risk Management
ISO/IEC 27001/2 - Information Security Management
BS 15000/20000 - IT Service Management (ITIL)
ACSI 33 - Commonwealth Government IT Security Manual
PSM - Commonwealth Protective Security Manual
COBIT - Control Objectives for Information & Related Technology
PMBOK - Project Management Body of Knowledge
DSD Gateway Certification Guide - Australian Defence Signal Directorate Gateway Certification Guide
ISO/IEC 17025:2005 - Competence of Testing and Calibration Laboratories
FIPS 140-2 - Security Requirements for Cryptographic Modules
OSSTMM - Open Source Security Testing Methodology Manual
ISO 14000 - Environmental Management Standard
PCI DSS - Payment Card Industry Data Security Standard

 

Research

 

Specialization: Service marketing, organization and management development, consumer behavior, marketing management, and promotion strategy and production.

Link1 | Link2 | Link3

Copyright © 2011. All Rights Reserved.