Khong Kong
@khongkong
Senior cybersecurity and IT security leader with 20+ years driving governance, ISO27001/NIST/PCI DSS compliance, and secure cloud delivery.
MalaysiaWhat I'm looking for
I’m a senior cybersecurity and IT security professional with over 20 years of experience across telecommunications and financial services. I’m known for structured, results-driven leadership and a pragmatic approach to security program delivery, with a strong ability to align technical initiatives with business strategy.
In my current role as Cybersecurity Project Manager at U MOBILE SDN BHD, I’ve developed and implemented enterprise-wide application security standards and secure development practices. I review and enhance security architecture for applications, APIs, and cloud deployments, lead penetration testing and vulnerability assessments, and roll out controls to ensure compliance with ISO 27001, NIST, and PCI DSS. I also integrate automated code scanning (SonarQube) into CI/CD pipelines, deploy Microsoft Intune (MDM) and enterprise-grade EDR, and support vendor sourcing and tender evaluation for cybersecurity solutions.
Previously, as IT Security Manager at Prudential Services Asia, I provided regional managed cybersecurity assurance across 11 APAC markets and led vulnerability management and application security operations. I standardized static code review processes, developed regional cybersecurity strategies covering cloud security, DevSecOps, and DLP, and expanded network discovery and vulnerability scanning to strengthen proactive risk identification. Earlier at AIA Berhad, I directed governance, risk, and security assessments for enterprise applications and infrastructure, enhanced secure SDLC processes, and drove audit remediation for regulated systems—always with a focus on measurable assurance and durable security outcomes.
Experience
Work history, roles, and key accomplishments
Cybersecurity Project Manager
U Mobile Sdn Bhd
Feb 2021 - Present (5 years 3 months)
Developed and implemented enterprise-wide application security standards and secure development practices, strengthening security architecture for applications, APIs, and cloud deployments. Led penetration testing and vulnerability assessments, rolled out Microsoft Intune (MDM) and enterprise EDR, integrated SonarQube into CI/CD pipelines, and supported vendor sourcing/tender evaluations for secur
IT Security Manager
Prudential Services Asia Sdn Bhd
Apr 2015 - Jul 2019 (4 years 3 months)
Provided regional managed cybersecurity assurance across 11 APAC markets, delivering governance oversight and technical leadership. Led vulnerability management and application security operations (including WAF management and code reviews), standardized static code review processes, and developed regional strategies covering cloud security, DevSecOps, and DLP.
IT Security Assistance Manager
AIA Berhad
Nov 2008 - Mar 2015 (6 years 4 months)
Directed governance, risk, and security assessments across enterprise applications and infrastructure, including penetration testing, secure code reviews, and audit remediation for regulated systems. Led vendor evaluation and secure design integration for major IT projects, improved secure SDLC processes, and remediated high-risk vulnerabilities in internet-facing applications.
Education
Degrees, certifications, and relevant coursework
University of South Australia
Master of Business Administration, Business Administration
Earned an MBA in 2009 from the University of South Australia.
Campbell University
Bachelor of Computer Science and Mathematics, Computer Science and Mathematics
Earned a Bachelor of Computer Science and Mathematics in 1999 from Campbell University.
Availability
Location
MalaysiaAuthorized to work in
Job categories
Skills
Interested in hiring Khong?
You can contact Khong and 90k+ other talented remote workers on Himalayas.
Message KhongFind your dream job
Sign up now and join over 100,000 remote workers who receive personalized job alerts, curated job matches, and more for free!
