Si Hao (in grey) is in a discussion with his colleagues. 

Imagine a world where you have to protect a big treasure chest from sneaky pirates—only these pirates are tricky emails trying to steal important information 

Si Hao is our IT Security Manager, and his role is all about understanding how people act online and staying ahead of the latest cyber threats. His day is packed with planning and running fake phishing attacks to test if employees can spot these tricky emails. He designs realistic phishing emails, sends them out, and then checks how many employees clicked on them or reported them. By analyzing these results, Si Hao finds areas where employees might need more training, helping them become better at spotting and avoiding these scams. 

To create these phishing simulations, Si Hao keeps up with new cybersecurity threats and trends. He crafts phishing content that is engaging and relevant to what employees are interested in. For his colleagues, Si Hao offers some simple but crucial tips to avoid falling for phishing scams, which he remembers with the acronym SUNDAE:  

  • Spelling errors or bad grammar 

  • Urgent or threatening Message 

  • Never click on suspicious links  

  • Do not trust unknown email sender 

  • Attachments can be malicious 

  • Email signature could be fake 

 

What Si Hao enjoys most about working at Singapore Pools is the supportive work environment and the opportunities for personal growth. The company’s commitment to employee welfare is evident through initiatives like the staff volunteerism events, which allow employees to volunteer and give back to the community.  

One memorable part of Si Hao’s job is receiving positive feedback from employees after his training sessions. Despite being seen as the "bad guy" for his phishing campaigns, he’s proud to see his colleagues becoming more aware and skilled at avoiding cyber threats.