Yihsin Lai


[email protected]

+886978777521

Hi, I’m Troy, an engineer specializing in systems, networking, and security.

I am looking for the roles of senior system engineer or site reliable engineer.


工作經歷


System Engineering specialist  •  Taiwan Stock Exchange Co., Ltd. 

Jan 2022 - Present  |  Taipei, Taiwan

  • Designed AWS architecture using ELB, EC2, RDS, and Route 53 to deploy a website for TCX for its clients.

  • Used Docker to set up a log system with ELK services and utilized tools (e.g., Winlogbeat, Metricbeat, Filebeat) to monitor the thresholds of Windows and Linux systems, notifying and responding to alerts within 15 minutes in serious situations.

  • Dedicated to IoC (Infrastructure as Code) to automate daily tasks using Ansible, PowerShell, and shell scripts.

  • Configured VMs on hypervisors (e.g., VMware ESXi, Hyper-V), set up VLANs and trunking on L2 and L3 switches, and also configured firewall policies on Palo Alto, FortiGate.

  • Secured access to sensitive hosts with 2FA/MFA by IAM tools (Cyberark), following zero-trust principles.

  • Patched by AD and WSUS for specific hosts based on regularly information about security vulnerability.

Cybersecurity Engineering specialist,  •  Taipei Stock Exchange Co., Ltd. 

Apr 2021 - Jan 2022  |  Taipei, Taiwan

  • Introduced Apple Business Manager (ABM) with Azure AD and Intune policies to control new devices for compliance.

  • Managed security equipment, including DDOS, WAF, DAM, DLP, HIDS, EDR, and Anti-Virus. To keep them working functionally.

  • Adjusted malware significance in EDR and anti-virus systems (e.g., based on hash values) according to security intelligence.

  • Adjusted DDoS and WAF defense rules or temporarily blocked source IPs in response to malicious attacks.

  • Monitored CVE issues, assessed devices vulnerable to these threats, and implemented mitigation solutions.

Team Leader  •  Kung Mao Computer Tech Co., Ltd. 

Apr 2018 - Mar 2021  |  Taichung, Taiwan

  • Led a four-person team serving 200 companies, and built complete infrastructure solutions for our customers, including firewalls, routers, switches, servers, storage, and NAS.

  • Focused on system virtualization and high-availability (HA) architecture for key equipment using Hyper-V and VMware ESXi. After implementing the system, reduced the RTO from 5 days to 4 hours using snapshots and backup tools, increasing reliability by 30 times.

  • Assessed the entire system information, network topology, and account/password inventory.

  • Assisted customers with implementations in Public Cloud (Azure O365), Private Cloud (NAS), email systems, and ERP systems.

  • Analyzed and monitored log traffic (MS Events, Syslog), prevented ransomware attacks, and patched vulnerabilities in Microsoft systems.

  • Notified clients of recent cybersecurity incidents, provided updates on vulnerabilities, and recommended relevant information security products. After implementing these solutions, maintenance frequency was reduced by 50% on average.

IT Specialist  •  Cota Commercial Bank

July 2013 - Mar 2018  |  Taichung, Taiwan

  • Resolved daily IT issues for the department and branch units using troubleshooting skills (e.g., ping, tracert, CIFS, NFS)

  • Installed and configured various IT equipment, including firewalls, routers, switches, storages, printers, UPS systems, and PCs.

  • Responsible for Active Directory (AD) services, including domain account management and Group Policy Object (GPO) administration.
  • Regularly tested the disaster recovery (DR) site plan and provided optimization reports.
  • Generated monthly information security reports, reviewed attack types on service hosts, and recommended solutions for mitigating vulnerabilities.
  • Conducted social engineering training to reinforce information security concepts.

學歷


National Cheng Kung University 

Bachelor of Computer Science and Information Engineering   •  Sep 2008 - Jun 2012

技能


  • Server hardware maintenance (IBM, Lenovo, HP), 
  • Palo Alto, FortiGate,
  • Hypervisor:VMware, Hyper-V
  • Red hat, Linux,
  • Switch, Router.
  • Docker, Grafana, DHCP, DNS, NFS, Cluster, High Availability, SMTP, LDAP, GPO.
  • Shell scripts: PowerShell, Bash, Shell Script, Python, Ansible. 
  • License: MCSA, MCP, AZ-900, DP-900, AI-900, CEH, CCNA,RHCSA,RHCE.

語言


  • Chinese - Native
  • English - Professional