Cover photo
Drexx Laggui
Works at L&A INC (PH), L&A LLC (US), L&A LLP (SG)
Lives in Philippines
159 followers|3,878 views


Have him in circles
159 people
Jesus M. Zulueta's profile photo

Drexx hasn't shared anything with you.

People are more likely to share with you if you add them to your circles.

Have him in circles
159 people
Jesus M. Zulueta's profile photo
IT Auditor, Penetration Tester, Forensic Analyst
  • L&A INC (PH), L&A LLC (US), L&A LLP (SG)
    IT Auditor, Penetration Tester, Forensic Analyst, present
Basic Information
With regards to my expertise, computer forensics (as per Rules of Court on Electronic Evidence) is but one of the specialized professional services my company [1] offers. The others are penetration testing (as per PH Central Bank's BSP Circulars 542, 511, and 510 [2]; and Payment Card Industry - Data Security Standard [3] compliance requirements), information security management system consulting (ISMS; as per the COBIT and ISO/IEC 27001 standards), IT service management consulting (ITSM, as per COBIT and ISO/IEC 20000 standards), evaluation and assurance consulting (i.e. source code audits, as per ISO/IEC 15408 and 18045 standards), and specialized training courses. 

Penetration Testing is professional hacking, as the words "ethical hacking" is too glitzy, self-centered, and prone to misinterpretation. It's my company's bread-and-butter, and so far we've been extraordinarily successful in testing Internet banking systems, from hijacking routers, to compromising online remittance systems, gaining administrator access to databases, to doing CA/SA fund transfers, and others.

I am a Certified Information Systems Auditor (CISA), and a Certified Information Systems Security Professional (CISSP). Also, I'm one of the Board Of Directors of the Association of Certified Fraud Examiners [4], which is the Philippine chapter of I have also been a member of the Board of Directors in ISACA Manila, the local chapter of ISACA (Information Systems Audit and Control Association) [5].

As an information systems auditor, I have been recently called as an expert witness in the Singapore Internation Arbitration Centre [6]. I have also been a guest speaker in the US Embassy of the Philippine's Overseas Security Advisory Council (OSAC) [7], on the topic of Corporate Espionage. On the local front, I've also been a guest speaker of the American Chamber of Commerce of the Philippines [8], the Management Association of the Philippines [9], the Information Systems Security Society of the Philippines (ISSSP) [10], the Institute of Internal Auditors - Philippines [11], the De La Salle University, Graduate School of Business [12], and the Ateneo Information Technology Institute (now: Ateneo Graduate School of Business) [13]. I have also been invited as a repeat speaker on topics relating to bank fraud and electronic warfare by the Bankers Institute of the Philippines [14], and the major ATM networks which are BancNet [15] and MegaLink [16]. I have also toured the Asia-Pacific region with IBM as a speaker on information security management topics [17]. All subject matters are focused on information security and information systems audit. 

Recently, I have been a guest panelist to help inform the general public about the electoral risks surrounding the new COMELEC Automated Election System, on international ABS-CBN News Channel (ANC) TV's "e-LEKSYON Electoral Risks Forum" [18], as well as for NAMFREL (National Citizen's Movement for Free Elections) [19] in their February 2010 regional assembly.

Previously, I was a Product Management Engineer of Check Point Software Technologies (NASDAQ: CHKP) [20], an Israeli company that is the world-leader in network security firewalls. One of my assignments back then was to be one of the engineers that worked on getting our software audited and accredited by the US government, to pass evaluation and assurance tests [21] by their National Security Agency auditors [22], so that our products can be sold to North American government agencies, as well as to European Community, S. Korean, Australian, and Singapore ministries.

I was hired by Check Point Software because of my previous experiences in the network security field when I was a Senior Systems Engineer with the professional services group of Sun Microsystems Philippines [23].

My full professional profile is posted in the Internet, and can be found in . Included there is a list of people who belong to our network of professionals, as well as recommendations I have received from my international colleagues in the business.

[23]; formerly called PSPI

Map of the places this user has livedMap of the places this user has livedMap of the places this user has lived
Nigeria, USA, Philippines, Singapore - Africa, N. America, Europe, Asia