SOEUN LOSHA
Phnom Penh,12
Summary
Dynamic IT Security Manager with a proven track record at Canadia Bank PLC, excelling in cybersecurity compliance and risk management. Expert in SIEM management, I led initiatives that significantly enhanced security architectures and team performance. Passionate about strategic planning and cross-functional collaboration, I drive impactful results in safeguarding organizational assets.
Overview
12
12
years of professional experience
11
11
Certifications
Work History
Manager IT Security Operation Center
Canadia Bank PLC
01.2023 - Current
- Engineered and optimized enterprise security architectures, including PAM (Privileged Access Management) and SIEM (Security Information & Event Management) solutions to enhance visibility and access control.
- Spearheaded the deployment of Next-Gen AV (NGAV), Endpoint Detection & Response (EDR), and Browser Security Isolation (BSI) to fortify endpoint defenses.
- Implemented and managed External Attack Surface Management (EASM) to identify and mitigate internet-facing risks and shadow IT.
- Architected and deployed Email Security and Multi-Factor Authentication (MFA) solutions, significantly reducing phishing and unauthorized access attempts.
- Executed security hardening across critical infrastructure, including PAN-OS (Palo Alto), Fortigate, F5-WAF, and email gateways.
- Subject Matter Expert (SME) for complex financial network architectures, including Smart Vista, Flexcube, Temenos (T24), ICBA, and Mobile Banking platforms.
- Secured Middleware environments (WSO2, Flexcube) and transaction systems (TX) to ensure high availability and data integrity.
- Integrated Mobile Security Application (Shielding), utilizing advanced code obfuscation and encryption to protect corporate mobile assets against malware and reverse engineering.
- Conducted deep-dive forensics on sophisticated real-world threats, including Cobalt Strike beacons, AutoIT malware, and Microsoft Exchange Server Elevation of Privilege (EOP) exploits.
- Directed daily SIEM case management, ensuring 100% adherence to SLAS and maintaining a robust security posture through rigorous incident workflow monitoring.
- Key contributor to PCI-DSS implementation, ensuring all technical controls met stringent international payment card standards.
- Led Vulnerability Management initiatives, providing cross-functional teams with expert guidance on CVE prioritization, patching strategies, and risk mitigation.
- Proposed strategic modifications to project plans, enhancing alignment with business objectives.
- Authored comprehensive technical documentation and standard operating procedures (SOPs) to ensure audit readiness and regulatory compliance.
- Mentored Tier 1 & 2 analysts on root-cause analysis techniques to accelerate Mean Time to Resolution (MTTR).
- Led team in developing strategic banking initiatives at Canadia Bank PLC.
- Ensured compliance with all applicable laws, regulations, industry standards.
- Monitored budgets and expenditures to optimize resource allocation while ensuring adherence to quality standards.
- Oversaw daily operations, maintaining efficiency and quality standards.
- Managed vendor relationships by negotiating contracts and ensuring timely delivery of goods and services.
Deputy Manager, Cybersecurity
BIC Bank PLC
01.2022 - 01.2023
- Investigated potential data breaches and security violations to mitigate risks to the organization.
- Performed regular system audits to detect vulnerabilities and strengthen network architecture.
- Conducted risk assessments and identified potential threats to the organization's IT infrastructure.
- Monitored network activity to detect any suspicious activities or attempts at malicious attacks.
- Monitored emerging trends in cybersecurity and best practices for defending against cyberattacks.
- Collaborated with regulatory bodies to achieve compliance with security standards.
- Conducted annual review of firewall security policies to ensure compliance with standards.
- Coordinate and advise the relevant team on remediating findings from the External Pentest team.
- Developed cybersecurity policies to safeguard sensitive banking information.
- Created policies and procedures for protecting information systems from unauthorized access, modification, or destruction.
- Implemented encryption protocols across various networks used within the organization.
- Analyzed existing system architectures for potential weak points that could be exploited by hackers.
- Scheduled regular reviews of employee access privileges to prevent unauthorized access to sensitive data.
- Reviewed and updated disaster recovery plans for data protection strategies.
- Updated network systems to support confidential company operations and eliminate hacking.
- Successfully processed hundreds of cyber tips, receiving information, and initiating investigation for speedy resolution.
- Assisted with developing disaster recovery plans in case of a security breach.
Senior Manager, Technology Security
Prince Bank PLC
01.2020 - 01.2022
- Managed and coordinated security projects including PCI-DSS, Next-Gen AV, DLP, RASP, PGP Command Encryption, and Digital Brand Protection, ensuring compliance and risk mitigation.
- Enhanced security measures for SWIFT infrastructure by assessing vulnerabilities and implementing targeted improvements, resulting in strengthened protection against threats.
- Perform risk assessment on business, software, and network infrastructure implementation.
- Coordinated with IT department to implement new technologies and system enhancements, streamlining processes and improving security posture.
- Led cross-functional teams to achieve project milestones, ensuring collaboration and efficiency.
- Provided strategic direction to departmental heads regarding resource allocation decisions.
- Reported to executive leadership on performance metrics, challenges, and strategic opportunities.
- Developed long-term relationships with key stakeholders, including customers, suppliers, and regulatory bodies.
- Planned and delivered training sessions to improve employee effectiveness and address areas of weakness.
Manager, Technology Security
Prince Bank PLC
01.2019 - 01.2020
- Developed and directed implementation of security standards and best practices to safeguard organizational assets.
- Managed and coordinated security projects including SIEM, PAM, mobile banking security assessment, and data encryption.
- Administered and optimized SIEM system (LogRhythm) to improve security monitoring capabilities.
- Administered and optimized PAM system (CyberArk) to secure privileged access.
- Administered and optimized WAF (Cloudflare) to strengthen web application security measures.
- Monitored log reports and user network activities to identify security threats.
- Perform Security Enhancement Core Banking infrastructure, Card Management Infrastructure, Digital Mobile App Infrastructure.
- Perform annual disaster recovery exercise (DRP Lead).
IT Specialist
LUCKY369 Online CASINO
01.2018 - 01.2019
- Managed network systems to ensure optimal performance and reliability.
- Manage, configure, and troubleshoot Sonic wall firewalls.
- Manage and configure Zabbix Server.
- Designed and implemented solutions to enhance network quality.
- Plan network design and configuration.
- Assessed network bandwidth needs and recommended measures to optimize performance.
- Provided technical solutions to address company challenges.
- Built cohesive teams to enhance collaboration and productivity.
- Planned team schedules for weekly downtime to minimize disruptions.
RF Engineer/DTA Engineer
Bangkok Thailand
01.2016 - 01.2018
- Optimized RF performance of UMTS sites by analyzing coverage metrics including RSCP and Ec/lo.
- Optimize to improve Ec/lo (Reduce Pilot Pollution) by improving RSCP of dominant cells.
- Optimized antenna tilts (mechanical & electrical), PCPICH power, and re-direction to reduce interference.
- Performs optimization on missing neighbors, Soft Handover using drive test data.
- Adding missing neighbors (Intra-Frequency, InterFrequency, IRAT, Co-site 2G-3G).
- Rectified coverage issues by swapping sectors and diversity cells at problematic sites.
- Conducted verification of a single site to ensure network performance.
- Perform Post Processing Analysis Results using Actix Analyzer.
- Executed site and area optimization through targeted parameter modifications.
DTE Engineer
Bangkok Thailand
01.2016 - 01.2017
- Executed drive test benchmarking to evaluate network QoS and delivered detailed reports.
- Monitored traffic statistics and analyzed measurement data to generate insightful reports for network performance.
- Conducted comprehensive site surveys to identify network coverage gaps and inform improvement strategies.
- Resolved customer complaints during drive tests to enhance network reliability.
- Perform indoor walk test for coverage in building and report.
- GSM antenna installation, azimuth, E-tilt, M-tilt checking.
- Repeater installation and commissioning configuration.
NOC Officer
NeocomISP Limited (NTC)
01.2014 - 01.2015
- Monitored network performance, identifying and escalating issues for timely resolution.
- Configured, monitored, and troubleshot routers, switches, and firewalls to ensure reliable network operations.
- Monitored MRTG data for customers and providers to ensure network health.
- Monitored alarms on transmission devices to ensure operational integrity.
- Troubleshoot customer network issues.
- Configured routers and switches to maintain optimal connectivity.
- Collaborated with teams to implement network upgrades and enhancements.
- Resolved complex network problems involving multiple vendors or technologies.
- Provided technical support to users, resolving network-related inquiries to enhance user experience.
- Assisted in developing disaster recovery plans for network infrastructure.
- Participated in disaster recovery exercises to test backup plans and procedures.
- Trained junior staff on best practices in network operations procedures.
- Tested applications prior to deployment in production environment.
- Analyzed traffic patterns using packet sniffers such as Wireshark and NetWitness Investigator.
Education
Bachelor's Degree - Computer Science
Royal University of Phnom Penh (RUPP)
Phnom Penh, Cambodia04-2015
Certificate - Window Server 2008 Active Directory, Configuration
Microsoft
06-2013
High School Diploma -
10 January High School
01-2011
Skills
- Team leadership and management
- Cross-functional collaboration
- Strategic planning
- Problem solving
- Emergency response
- Employee onboarding
- Policy development
- Staff training and development
- Task delegation
- Project management
- SIEM management
- Security architecture
- Risk management
- Incident response
- Cybersecurity compliance
- Shift scheduling
- Decision-making
- Vulnerability assessment
Accomplishments
- Canada Bank Top 2nd Audit Rating, 01/01/23
- Champion in Cisco NetRiders Competition (CCENT), 01/01/13
Personal Information
Date of Birth: 02/28/94
References
- Mr. Eung Porhai, CEO SalaCyber, 077 222 033
- Mr. Kelvin Linus, COO at Luckyonline369 Casino, 069 88 7373
Languages
- Khmer, Fluent
- English, Good
Personal Habits
Football, Cycling, Boxing, Running, Gym, Self-development books, Cybersecurity news, research on security solutions, I like to travel to new places and experience new things in life.
Certification
Certification of Completion, Practical Penetration Testing at SalaCyber (2020)
Timeline
Manager IT Security Operation Center
Canadia Bank PLC
01.2023 - Current
Deputy Manager, Cybersecurity
BIC Bank PLC
01.2022 - 01.2023
Senior Manager, Technology Security
Prince Bank PLC
01.2020 - 01.2022
Manager, Technology Security
Prince Bank PLC
01.2019 - 01.2020
IT Specialist
LUCKY369 Online CASINO
01.2018 - 01.2019
RF Engineer/DTA Engineer
Bangkok Thailand
01.2016 - 01.2018
DTE Engineer
Bangkok Thailand
01.2016 - 01.2017
NOC Officer
NeocomISP Limited (NTC)
01.2014 - 01.2015
Bachelor's Degree - Computer Science
Royal University of Phnom Penh (RUPP)
Certificate - Window Server 2008 Active Directory, Configuration
Microsoft
High School Diploma -
10 January High School