Koh You Liang
Application/Game Security Engineer
Hailing from the lively city of Singapore, You Liang is a dedicated and resourceful individual with a keen interest in technology. Graduating with an Environment and Information Studies degree from Keio University, You Liang had the opportunity to develop a skillset under the guidance of Jun Murai and Keiji Takeda in the esteemed WIDE Project’s Internet Research Lab. With a modest yet noteworthy background, You Liang started as a Security Engineer at LINE, combating cyber threats. Later, a position was embraced as a Team Lead in a startup, where guidance was provided to a group of enthusiastic engineers. Expanding horizons, You Liang explored the consulting world as an end-to-end consultant in PwC Japan’s Red Team. Currently, as a Senior Deputy Manager, responsibilities include diligently conducting hands-on workshops, ensuring the safety and enhancement of security processes for all 96 subsidiaries, and remaining up-to-date with the latest threat intelligence. There’s more to You Liang than meets the eye. With a genuine curiosity for life, interests span across various activities – from discovering new places and dabbling in music composition to experiencing adrenaline-fueled extreme sports. Embark on a journey to uncover the multifaceted world of You Liang and find inspiration along the way!
- Location
- Setagaya-ku, Tokyo, Japan
- hello@kohyouliang.com
- kohyouliang
Experience
– present
Founder & CEO at Isopach Pte. Ltd.
Highlights
- VAPT / Social Engineering / Source Code Audit
- Consulting
– present
Senior Deputy Manager at Sompo Holdings Inc.
Highlights
- Red Team Lead
- Security Workshops / Tech Talks / Lead Penetration Tests / Vulnerability Research
–
Senior Associate at PwC Japan
Highlights
- Application/Mobile/API Pentesting and Vulnerability Assessments for clients
- Red Team
– present
Security Researcher at Synack Red Team
Highlights
- Web Application and Host Infrastructure Pentesting
–
Security Team Lead at 3-shake Inc.
Highlights
- Application/Network/Infrastructure Pentesting and Vulnerability Assessments for clients
- Mobile Vulnerability Scanner Development
- Training engineers on security practices and skillsets
–
Application/Game Security Engineer at LINE Corporation
Highlights
- Internal security pentesting and risk assessments, doing both Blackbox and Whitebox testing
- Developed CI tool for automatic scanning of binaries on build
- Bug bounty report reviewing, PR recruitment support
- Reverse engineering of third-party cheat tools to prevent cheats and ban players
Volunteer
–
Student Leader at AcademyCamp
Highlights
–
International Volunteer at Ashinaga
Highlights
Education
– present
Master in Media and Governance from Keio University with GPA of 3.6
Courses
- Cyber Informatics
- Cybersecurity Law
- Scanner Testing False Positive Rate Correlation to Vulnerability Type
–
Bachelor in Information Technology from Keio University with GPA of 3.4
Courses
- Cyber Security
- Economics
Awards
3rd at Cyber SEA Games 2021 from SEA Games
Arena International Master from Fédération Internationale des Échecs
73rd at HTB Business CTF 2021 from Hack The Box
21st at Hack-A-Sat 2 Qualifiers from US Air Force and Department of Defense
35th at FAUST CTF 2021 from FAU Erlangen-Nürnberg
36th at DEF CON CTF Qualifier 2021 from Order of the Overflow
5th at STACK the Flags from GovTech Singapore
18th at Hack-A-Sat Qualifiers from US Department of Defense
Finalist at ISITDTU CTF from Duy Tân University
Winner at Red Alert ICS CTF from NSHC and PwC Japan
2nd at OpenCTF from Neg9
Finalist at BCTF from DEFCON China
Writeups
CVE-2022-46330 by Me
CVE-2021-33897 by Me
CVE-2021-4144 by Me
CVE-2021-4144 by Me
Bachelor Thesis by Research Gate
References
Koh-san is a skilled security engineer who is open and easy to talk to. I have worked with him for a long time, both when we both were students, as members on the same team and as his team leader. He has exceptional problem solving skills, is easy to ask for help, and learns quickly. His ability to think outside the box and offer new insights are extremely valuable. He is an exceptional engineer and it has always been a pleasure working with him. I would highly recommend it!
Languages
- English
- Fluency: Native speaker
- Japanese
- Fluency: Native speaker
- Mandarin Chinese
- Fluency: Business level
Skills
- Web Application Security (OSWE, Burp Suite Certified Practitioner)
- Level: MasterKeywords:
- Penetration Testing (OSCP, CRTE)
- Level: MasterKeywords:
- Game Security
- Level: IntermediateKeywords:
- Automation
- Level: IntermediateKeywords:
Interests
- World Travel
- Keywords:
- Extreme Sports
- Keywords: