Prior to joining Kroll, Elaine was Security Operation Center lead at Natixis, a global investment bank. She was the lead incident responder and assisted the bank throughout the entire incident lifecycle, from containment to eradication and remediation. She led the team conducting forensic acquisition and analysis, malware analysis and provided the IT teams with practical remediation plans. She also built worldwide machine learning detection capabilities by optimizing the application of endpoint detection and response, user and entity behavior analytics, etc.. to the bank’s environment. During this time, she was elected as one of the speakers for BSides Singapore 2020 to educate the audience on how to build their machine learning model for detection monitoring.
Elaine was the technical lead at KPMG from 2013 to 2018, where she led and performed a wide range of technical cyber security services, such as digital forensics and incident response, compromise assessment, malware reverse engineering, red and purple team attack simulations and SCADA security assessments. She has assisted organizations across diverse sectors, including leading banks, oil and gas companies and Fortune 500 conglomerates. She played a pivotal role in establishing KPMG China’s Incident Response practice.
Elaine began her career with DBS Bank as a security engineer. She has extensive expertise in managing network security devices, penetration tests and security information and event management (SIEM).
She holds a BBA in economics and information systems from The Hong Kong University of Science and Technology. She is a Certified Information System Auditor (CISA), a Certified Information Systems Security Professional (CISSP) and a Checkpoint Certified Security Administrator (CCSA). Additionally, Elaine holds the following GIAC certifications: Certified Penetration Tester (GPEN), Exploit Researcher and Advanced Penetration Tester (GXPN), Certified Forensic Analyst (GCFA) and Certified Forensic Examiner (GCFE). Elaine is also an Offensive Security Certified Professional (OSCP) and Splunk Core Certified User. She also holds the AWS Certified Security certification and QualysGuard Certified Specialist – Vulnerability Management certification. Elaine is fluent in English, Mandarin and Cantonese.