Senior Officer – IT Infrastructure, Security & Governance at PT. Bank SBI Indonesia (2024-09 – Present)
- Managed IT infrastructure including Linux, Windows Server, virtualization (VMware), storage, and network systems supporting banking operations.
- Perform system hardening in accordance with company SOPs and implement the findings of penetration testing and secure configuration reviews based on internal audit recommendations.
- Monitoring whether the ATM or mobile banking systems are running smoothly or are down, and handling day-to-day technical complaints.
- Checking system logs, restarting services, or running standard commands for quick troubleshooting.
- Managing and Updating Firewall Rules: Determining who is allowed to access the bank's internal network.
- Specific example: Configuring the firewall so that employees from the Customer Service division cannot access the main data server where customer account balances are stored.
- Antivirus/EDR Deployment and Maintenance: Ensuring that all bank employees' laptops, computers at branch offices, and ATM machines have the latest version of antivirus software installed and are functioning properly.
- Vulnerability Patching: If an announcement is made that an operating system (such as the bank's Windows Server) has a new, dangerous security vulnerability, the Security Administrator is responsible for downloading and installing the security patch to prevent it from being exploited by hackers.
- Digital Certificate Management (SSL/TLS): Ensuring the security certificates for the bank's official website and Internet Banking are always renewed before they expire. (If renewal is missed, customers accessing the bank's website will see the alarming warning 'Your connection is not private').
- Privilege Management: Assisting the HR team in creating new accounts with very limited access rights for new employees, or revoking access rights for employees who have recently resigned.
- Maintained system availability up to 99.9%, ensuring stability of core banking services.
- Monitored system performance using tools such as Zabbix and PRTG to prevent downtime.
- Oversaw cybersecurity systems including Firewall, SIEM, IDS/IPS, Endpoint Protection.
- Coordinated incident response and handled security alerts (e.g., brute force attacks, vulnerabilities)
- Developed and reviewed IT policies, IT risk assessments, and security standards aligned with OJK regulations
- Managed Disaster Recovery (DR) processes and conducted regular failover testing. Web application RTGS, SKN, SSSS and HSM BiFast MFA.
- Schedule backup and restore system and server.Proxy, Active Directory, Etc.
- Collaborated with vendors and internal teams to maintain system performance and reliability.
- Received a report from the SOC (Security Operations Center) regarding highly suspicious activity.
- Determining whether it is actually a dangerous cyberattack (a genuine incident) or just a routine system error (a false positive).
- Created and submit the weekly BI-Fast High Availability Monitoring report, the BI-Fast outage report, and the BI-Fast Transaction Success Rate report to the Bank of Indonesia.
- Coordinate with core banking vendors
- Oversee database performance (Oracle / SQL Server)
- Monitor daily batch jobs (EOD – End of Day process)
- Troubleshoot major incidents
- Review slow queries in the production database
- Approve database parameter changes
- Oversee Firewalls
- Oversee SIEM Splunk
- Oversee Endpoint protection systems
- Approve security hardening initiatives
- Coordinate incident response activities
- Oversee Data Loss Prevention (DLP) controls
- Coordinate with SOC in case of brute force attack alerts
- Review vulnerability assessment reports
- Approve remediation actions from penetration testing
Senior Security System Engineer at PT Mastersystem Infotama Tbk (2019-09 – 2024-09)
- Implemented and maintained server security infrastructure (Zscaler, Cisco WSA, Bluecoat, Fortinet Proxy)
- Deployed Hardware Security Module (HSM) for securing sensitive banking data
- Implemented and configured Multi-Factor Authentication (Cisco Duo, VSEC-CMS)
- Designed infrastructure solutions (HLD & LLD) for enterprise and banking clients
- Integrated systems with Active Directory, LDAP, and cloud-based security platforms
- Performed troubleshooting and maintenance for security systems across multiple banking clients (Bank Indonesia, Bank Danamon, etc.)
IT Infrastructure Staff at PT Datanet Indomedia (2017-01 – 2019-01)
Maintenance & Troubleshooting PC Users and Network Configuration
- Installing Linux centos7 for PC Server and Windows Installation. Server 2008/2012, Join Domain User Active Directory on Windows Server 2008/2012, and Group Police Object (GPO), managing user folder access.
- Configuring Cisco 2800 routers and Cisco, Huawei, HP switches
- Configuring the Mikrotik router RB951UI-2HND & Switch Cisco, HP, Huawei.
- Configure GPO (Group Policy Object), create/open, user password, Join Domain Active Directory User on Windows Server 2008 & 2012, Creating email for users, Installing FTP Server and FTP Client, Troubleshoot PC Server/Users, Setting up folder access for Manager, User, Supervisor and Staff.
- Setting (firewall) permit IP and Block IP based on request from the user's superior.Coordinating router.
- FTP Server configuration/maintenance with IT Biznet Vendors and Bank Vendors BCA, UOB, BRI, CIMB, etc Installation of applications and troubleshoot Orlansoft database for the finance section, accounting, procurement.
- Perform remote by system using team viewer and VNC Viewer.
- Carrying out installation & troubleshooting for PC Users, installing printers, scanners, photocopy machine.
