SUMMARY

• I am looking for an opportunity where I can continue to apply my experience and knowledge of security best practices, architecture, vulnerability assessment, and penetration testing. I’ve used a variety of tools and techniques for identifying risks, and have successfully built strong partnering relationships with business and technology departments for mitigating security related risks.

TECHNICAL SKILLS

Development: C#, VB, VB.NET, T - SQL, Javascript, VBScipt, ADO, COM+, ASP, SSIS, XML, XSLT, DHTML

Security Tools: NMAP, NESSUS, Backtrack, Paros, Web Proxy, netcat, QualysGuard, Kismet, ethereal, NetStumbler, L0phtcrack, Sam Spade, SATAN, Rainbow Crack

PROFESSIONAL EXPERIENCE

Confidential

Senior Software Developer

Responsibilities:

• Developed data extracts based on specific business requirements using SSIS, C#, VB.NET, T - SQL, and PL/SQL which resulted in the successful migration of business processes to Confidential systems.
• Created documentation for the transferring of specific knowledge concerning the implementation of the Confidential applications.
• Resolved application failures, returning to normal operation, through troubleshooting failures and determining an appropriate solution.

Confidential

Senior Software Developer

Responsibilities:

• Reduced the costs associated with the support of the Actimize application by co-developing data processing automation scripts.
• Developed new sources of data for the Actimize application, gathered business requirements, validated data sources through data analysis and developed data import processes using SSIS, C#, and VB.NET. This resulted in new insider fraud investigation and undisclosed savings for the bank.
• Resolved application failures, returning to normal operation, through troubleshooting failures and determining an appropriate solution.

Lead Security Architect and Penetration tester

Confidential

Responsibilities:

• Assessed systems for security compliance and known vulnerabilities using a variety of tools and techniques and partnered with business and technology departments to mitigate risks increasing the security posture of the bank. related vulnerabilities and deficiencies, penetration testing at the OS and application layers - testing for known vulnerabilities, code review, security related risk assessment and mitigation
• Authored security standards for OS and database hardening.
• Met regulatory compliance requirements by assessing numerous bank systems storing or processing credit card, financial, and personally identifiable information (specifically - PCI, SOX and GLBA), identifying security deficiencies and ensuring sufficient mitigation of risks.
• Scored applications based on specific experience and knowledge of bank systems and the environment to determine the level of effort needed to test individual applications which directed the larger effort to the higher risk and more critical systems, while reducing the overall work load.
• Developed standard tools distribution media for consistency in security assessments and penetration tests
• Worked with architects, engineers and implementation teams to determine security requirements and ensured that new technology implementations (SSO, DMZ, wireless, VOIP) met security policies and standards, mitigated known vulnerabilities and risks and improved the overall security around bank assets.

Confidential, Seattle, WA

Senior Web/ASP Developer

Responsibilities:

• Rewrote and upgraded the user login and registration for new functionality increasing the security and flexibility of the site.
• Developed cached XSLTemplate for merging XML documents using XSLT and the Microsoft MSXML 3.0 and 4.0 processors.

Confidential

Senior ASP Developer

Responsibilities:

• Developed user security and shopping cart for website using ASP, VB, SQL Server, ADO, DHTML, and Javascript.
• Improved database update code and dramatically improved database performance.

Confidential

Senior ASP Developer

Responsibilities:

• Developed affiliate websites based on Confidential .com code base for Motorola and Ericsson, along with many proof of concept sites which were not sold.
• Added functionality to the Confidential .com website that allowed for rebranding of the site, which lead to the sales of affiliate site and a substantial influx of investor based capital.
• Developed internal web application that maintained the Confidential .com and affiliate web site content.

Confidential, Renton, WA

Lead Web/Application Developer

Responsibilities:

• Created Red Tag trend reports for 737X, which increased visibility and focus on reduction of Red Tags.
• Lead a process improvement initiative which lead to the creation of the LCCR web site for 737/757 programs, automating a paper process and allowing management visibility into incidental changes.
• Successfully managed the creation of the LCCR web site, gathering and documenting requirements and ensuring completion within project timelines.
• Developed and maintained the 737/757 Interchangeability & Replaceability (I&R) Web Site, which served as a single repository for all 737/757 I&R Plans, increasing efficiency and reducing confusion over plan versions.
• Developed reporting applications for the LCCR Team that improved turn-around and processing time within the Manufacturing Engineering department.