Profile
Cybersecurity professional with 11+ years in healthcare IT — RIS/PACS server administration
(Windows Server 2008–2019, Hyper-V), Nessus-based vulnerability management for SingHealth and MINDEF,
and PHI/HIPAA compliance. Actively building offensive security expertise through CEH and hands-on
TryHackMe CTF engagements: completed full VAPT assessments with CVSS 3.1 & 4.0 scoring, chained
privilege escalation paths, and produced professional pentest reports. Seeking a Junior Penetration
Tester or Security Analyst role where deep system-level expertise meets offensive security skills.
Work History
Parkway Hospitals Singapore
Sep 2023 – Sep 2025
Imaging IT Specialist
- Maintained 99% uptime for radiology infrastructure (Vue RIS/PACS, Infinitt CPACS) across multiple hospital sites; administered Windows Server 2019 on bare-metal and Hyper-V with OS hardening and patch management
- Led secure rollout of 4 clinical AI platforms (Sensecare, Annalise, Teamplay, Radimatrics); enforced authentication and authorisation policies for 200+ radiology staff
- Monitored DICOM/HL7 network traffic for anomalies; ensured cross-site interoperability and PHI compliance
Philips Enterprise Diagnostic Informatics (EDI) — APAC
Aug 2019 – Apr 2022
IT Specialist (RIS/PACS) — ASEAN
- Managed mission-critical RIS/PACS infrastructure for SingHealth and MINDEF on Windows Server 2008/2012 (physical and Hyper-V); L1/L2 troubleshooting and preventive maintenance
- Executed Nessus vulnerability scans and OS hardening for defence-grade imaging environments; maintained DICOM/HL7 compliance and PHI protection
- Root cause analysis for complex enterprise failures; 24/7 on-call rotation
Carestream Health Singapore
Nov 2018 – Jul 2019
IT Executive (RIS/PACS) — ASEAN
- Installed and administered RIS/PACS (Windows Server 2008/2012) for hospital sites; managed L1/L2 troubleshooting, incident escalation, UAT cycles, and after-hours on-call support
Biz-Partner Group Co., Ltd — Myanmar
Feb 2015 – Sep 2018
Project Manager & Senior Service Engineer
- Full installation and commissioning of medical imaging systems (DR, CR, X-Ray, Ultrasound) across Myanmar hospitals; DICOM/HL7 integration with existing PACS/EMR environments
- Led project teams from kick-off to client acceptance; managed subcontractors, timelines, and stakeholder communication
Key Projects
TryHackMe CTF Engagements — HackPark & Mr. Robot
Feb–Mar 2026
- HackPark: Exploited CVE-2019-6714 (BlogEngine.NET RCE) via Metasploit; escalated to SYSTEM via insecure scheduled task (WinPEAS)
- Mr. Robot: WordPress brute force → theme editor PHP reverse shell → MD5 crack → SUID nmap privesc to root
- Produced full VAPT reports for both targets: 8 findings, CVSS 3.1 vectors, evidence, remediation guidance
CyberGuard — Cybersecurity Awareness Platform
Feb–Mar 2026
- Designed and built a full-stack security awareness game with 58+ missions across 4 age groups (kids to seniors)
- Implemented XP progression, badge system, difficulty tiers, hobby-matched scenarios, and real-time leaderboard via Supabase
- Deployed on Cloudflare Pages with custom domain — live at cyberguard.ivanthan.uk
Home Cybersecurity Lab & Automation Server
Sep 2025 – Present
- Built Proxmox hypervisor on Dell OptiPlex with Kali Linux VM for penetration testing and malware analysis
- Deployed self-hosted n8n automation server via Docker with Cloudflare Tunnel for secure remote access
Referees
Mr. Aung Kean Boon Jonathan
Asst Manager, Parkway Radiology
jonathan.aung@parkwayradiology.com.sg
Mr. Arshad Jamal
Service Manager, Philips EDI
arshad.jamal@philips.com
Mr. Sithu Aung
CEO, Biz-Partner Group Co., Ltd
ceo@bpgmyanmar.com
Mr. Michael Chua
Offensive Security & AI Researcher | Founder, REDFACE Research
mike@redfacers.com