F2F Class Notes 8th March (Joseph)

*Greetings*

My name is Roxie Xia, I was born and raised in Shanghai and have had a long interest in Japanese. In fact, I was a Japanese translator for about 4 years.
However, I thought that my Japanese skill alone was not enough, so I got a job at a Japanese company which provided information security services to their clients.
The company is very famous in Japan. When Sony and Mitsubishi Heavy Industries suffered an information leakage incident several years ago, the Japanese television media invited our CEO to explain to the public what information leakage is and why it affects all people and companies.
Over 3 years, this company trained me and taught me penetration testing. I have experience with e-commerce websites, banking websites and hotel booking websites. I also went on business trips to Japan for onsite testing multiple times.
In my second year in the company I was promoted to a test group leader. For about 2 years I regularly led a team of 10 to complete pen-tests.
Unfortunately, this company decided to leave the China market and closed their Shanghai branch, for this reason I had to leave the company.
After that, I joined to IBM for one year to help them complete their HSBC SaaS (Security as a Service) project.
Because I wanted to further improve my information security knowledge, I decided to join EY.
For the first several months I completed around 5 pen-test projects but then I was moved into EY’s vulnerability management project for their client L’Oreal China and have been working their since April last year.
If you don’t mind, I will give you more information about my work experience and skill set in Chinese.

My name is Roxie Xia. I was a Japanese translator for about 4 years.
But I thought only a language skill is not enough, so I went to a Japanese company which provided information security services to clients.
This company is very famous in Japan. When Sony and Mitsubishi Heavy Industries occurred information leakage incident several years ago, the Japanese news medias invited our head to explain to the public what is the information leakage and why information leakage should be paid attention by each person and company.
I learnt penetration test skill in this company. I tested e-commerce websites, banking websites and hotel booking websites. I also went to Japan for a business trip for onsite testing each year.
I was promoted as a test group leader in 2nd year. I can lead about 10 testers to finish a large pen-test project.
But unfortunately, this company decided to leave the China market and closed the Shanghai branch for some reasons.
Then, I joined to IBM with HSBC SaaS (Security as a Service) project.
When the HSBC project completed one year later, my boss can’t find any other information security projects for me.
But since I wanted to improve my information security knowledge, so I decided to join EY.
I did some pen-test projects in the first several months. Then I joined L’Oreal China’s vulnerability management project since April last year.
If you don’t mind, I will explain the job details in Chinese later.