SUMMARY 

• Over 30 years of programming experience.
• Full-stack MVC (model/view/controller) expertise, including architectural design and hands-on engineering of the network, operating system (OS), web server, and application layers.
• 15+ years of Ruby development experience, including 6+ years of commercial Ruby on Rails implementations.
• Project and team management experience.
• Hands-on technical expertise.
• Expertise with agile methodologies, including Scrum and Test-Driven Development (TDD).
• Frequent contributor to open-source projects.
• Expertly-qualified with network design, systems administration, and regulatory compliance..
• BASH (Bourne-Again SHell)
• Expect
• PHP
• Perl
• Python
• Ruby (including the Ruby on Rails framework)
• Tcl/Tk (Tool Command Language)

PROFESSIONAL EXPERIENCE

Confidential, Baltimore, MD

Scrum Coach / Process Engineering Consultant

Responsibilities:

• Worked with teams to identify optimal sprint length.
• Modified format of daily stand-up meetings to optimize synchronization of ongoing operations.
• Promoted kaizen through measurable, process-oriented Sprint Goals.
• Adapted Sprint Planning and Sprint Retrospective meetings to focus on continuous improvement using Sprint Goals rather than backlog management.
• Used facilitation techniques to improve team communications and encourage lateral synchronization between processes.
• Empowered teams to be self-organizing through grants of authority and socialization of agile practices.
• Encouraged team members to generate grassroots solutions to process blockers.
• Increased visibility and transparency of daily operations through Scrum artifacts and increased information-sharing.
• Authored policy and procedure documents needed to support new Scrum-related business processes.

Confidential, Lanham, MD

Senior DevOps Developer

Responsibilities:

• Refactored Nagios infrastructure.
• Increased Nagios health checks to cover over 124 business-critical infrastructure services.
• Designed a significant number of custom Nagios Remote Plugin Executor (NRPE) health checks.
• Deployed NRPE commands and package dependencies using a combination of Puppet provisioning and custom deployment scripts.
• Refactored a continuous integration (CI) server based on CruiseControl.rb.
• Rebuilt heavily-customized CI server to use standardized code base and industry best-practices.
• Refactored complex build script into a single simplified Rake task using dependency declarations and basic metaprogramming techniques.
• Split long-running RSpec and Cucumber test suites into 12 discrete test areas for better concurrency and higher testing performance.
• Recommended improvements to unit, functional, and integration tests and methodologies.
• Acted as a servant-leader within the development team, addressing blocked processes and requesting management support for key issues.
• Offered technical coaching and pair programming opportunities to team members.
• Led by example in areas such as Git and Pivotal Tracker integration, complex GitHub work-flows, and test-driven development practices.
• Worked extensively with Memcached, MongoDB, MySQL, Redis, and Resque data stores within a complex federated application.
• Enabled analytics through Extract, Transform, and Load (ETL) of data, including performance of bulk inserts and data-cleansing operations.

Confidential, Baltimore, MD

Geospatial Application Consultant

Responsibilities:

• Developed custom shell scripts, data conversion tools, and ETL pipelines for aggregating public sector data sources.
• Parsed Excel spreadsheets, CSV files, and text documents into raw SQL for import into PostgreSQL and SQLite3 databases.
• Built Sinatra-based Rack middleware for deployment on the Heroku platform.
• Optimized Heroku slug size by capping code base at 256 kilobytes of pre-compiled data.
• Improved SQL query performance by 68% using the Sequel object-relational mapper (ORM) to return tuple-oriented datasets rather than data access objects (DAO).
• Increased web server concurrency by 106% within existing resource constraints.

Confidential, New York, NY

Senior Ruby Technical Team Lead

Responsibilities:

• Developed git-bundle workflow to address limitations in developer repository access.
• Resolved issues related to port contention for Rails 3 applications running under Jenkins continuous integration.
• Simplified graphical user interface (GUI) metaphor and user-facing elements for iPhone-based application.
• Provided architectural suggestions for simplifications and improvements to complex application based on Rails 3, Sass, CSS3, Ember.js, and CoffeeScript.
• Wrote custom rake tasks and library files for parsing Comma-Separated Values (CSV) files into various JavaScript Object Notation (JSON) formats.
• Constructed detailed product backlog on behalf of stakeholders.
• Built cross-functional user stories and sprint estimates for application development, network architecture, systems security, and workflow integration.

Confidential, San Diego, CA

Senior Program Manager

Responsibilities:

• Fulfilled the Product Owner role for four Scrum teams, including participation in backlog grooming, sprint planning, sprint reviews, and sprint retrospectives.
• Worked with stakeholders and internal clients to define functional requirements and key ROI (return on investment) metrics.
• Continuously revised program priorities for each iteration.
• Optimized project budgets across all program activities.
• Mentored less-experienced scrum masters in agile best practices.
• Provided technical advice to architects, programmers, and testers upon request.
• Headed a small tiger team as a hands-on architect/engineer, designing and programming critical “glue” projects required to tie the entire project portfolio together.

Confidential

Senior Ruby on Rails Developer/Architect

Responsibilities:

• Resident Git-ninja: supported complex Git operations outside the normal work-flow.
• Designed a custom access control list (ACL) framework to manage user access to accounting system modules.
• Refactored existing Cucumber features and steps for increased reusability and faster execution.
• Refactored existing RSpec tests to take advantage of shared example groups and increase view and helper isolation.
• Improved specdoc output throughout the test specs.
• Crafted user stories and planned feature release schedules based on story estimates.

Confidential, Goleta, CA

Web Services Architect

Responsibilities:

• Provided capacity planning for the entire application stack, including operating systems, web servers, database engines, and web application frameworks.
• Implemented CouchDB document database, including coding of all design documents, views, and MapReduce functions.
• Parsed JSON documents into Ruby objects for insertion into HAML views.
• Leveraged Google content-delivery network (CDN) for reduced bandwidth costs and faster page loads.
• Hand-coded critical visual elements with CSS3 and jQuery-UI.
• Optimized cache-control headers throughout the site, including development of specialized cache-bypass routes for time-sensitive data.
• Spot-optimized codebase to reduce Heroku slug size.

Confidential

Software Security and Data Interchange Subject-Matter Expert (SME)

Responsibilities:

• Managed a team that included 6 developers and 2 auditors.
• Personally reviewed critical code paths.
• Assessed vulnerability footprints.
• Examined database security models.
• Provided architectural planning and security controls for a large-scale cloud migration.
• Wrote parsers, exporters, and RESTful consumers for JSON and XML data.
• Developed light-weight Sinatra applications for presenting specialized data transformations.

Confidential, Annapolis, MD

ScrumMaster / Senior Development Architect

Responsibilities:

• Provided in Scrum methods, tools, and practices to the development team, senior management, and company stakeholders.
• Designed and implemented a development architecture to support test-driven development and continuous integration.
• Performed integration management and release management in a distributed-code environment.
• Performed hands-on auditing and remediation of legacy code.
• Developed tools for transforming OSINT into PUBS-XML in accordance with the Intelligence Community Standard (ICS) for Publication Metadata.
• Established a security baseline and full-stack auditing process for the OS and application layers of the development and testing environments.
• Wrote extensive formal technical documentation, numerous how-tos, and a series of executive reports covering architecture, coding practices, and design methodologies.
• Provided management with business analysis and in-depth methodologies for gathering OSINT from a wide variety of sources.

Confidential, Westlake Village, CA

Python Programming and Juniper XML Consultant

Responsibilities:

• Created a work breakdown structure, project milestones, and management dashboard for tracking project velocity.
• Managed Scrum processes within a traditional project management framework.
• Implemented a test-driven development (TDD) methodology, including unit testing and continuous integration practices, for all development activities within the project.
• Developed a Python codebase for working with the Firewall Toolkit (FWTK) authentication system.
• Developed a Python package to manage change sets between an authoritative FWTK database and the Juniper SA devices.
• Developed custom XML tools for reading and writing Juniper SA configuration files.
• Developed a screen-scraping application to manage configuration-file transfers through the Juniper SA’s standard web interface.
• Designed quality assurance (QA) test cases for the new software.
• Recommended controls and best-practices for integrating the new tools with organizational PCI DSS compliance efforts.
• Wrote user- and administrator-level documentation, programmer APIs, and management-level reports and whitepapers.

Confidential, San Diego, CA

Ruby on Rails Application Architect/Developer

Responsibilities:

• Converted customer requirements to technical specifications.
• Designed database schema to ensure conformance to third normal form (3NF).
• Developed all models, layouts, templates, views, form helpers, controllers, and custom validations required to instantiate the application.
• Implemented authlogic authentication, and wrote custom authorization methods.
• Performed complex source code merges across multiple git revision control branches.
• Designed and implemented all unit tests, functional tests, and performance tests for the application.
• Implemented reverse-proxy solution to manage a Mongrel web cluster.
• Hand-coded HTML, HAML, and CSS documents for optimal search-engine optimization (SEO) and aesthetic appeal.
• Performed OS, firewall, and application level security audits.
• Performed PCI DSS and SOX compliance assessments.

Confidential

Senior Project Manager

Responsibilities:

• Used Agile methodologies and open-source solutions to realize a $1.2 million cost savings.
• Reduced development cycle by 38% over projections.
• Designed new change management and source control processes.
• Worked closely with stakeholders to ensure milestones reflected earned value throughout the project lifecycle.
• Ensured all project deliverables met strict regulatory compliance requirements.

Confidential

Application Security Consultant

Responsibilities:

• Provided in-depth analysis of PHP security configuration options.
• Detailed potential vulnerabilities in existing Moodle installation.
• Recommended improvements to Apache web server security.
• Suggested additional best-practices for server hardening.
• Outlined avenues for further code auditing.

Confidential, Walnut Creek, CA

Senior LDAP Engineering Consultant

Responsibilities:

• Provided hands-on support for iPlanet and Sun ONE Directory Server products.
• Managed eDirectory on both Novell Netware and SuSE Linux platforms.
• Worked with Java programmers to optimize use of LDAP resources.
• Supported IBM WebSphere conversion from programmatic to declarative security model.
• Key resource for eDirectory DirXML driver upgrade.
• Developed a wide variety of management and support scripts on Linux, Solaris, and Windows platforms.

Confidential, Gaithersburg, MD

Network Management Systems Engineer/Programmer

Responsibilities:

• Programming Languages: AWK, CoffeeScript, ECMAScript, Ember.js, Expect, JavaScript, jQuery, jQuery-UI, Perl, PHP, Python, Puppet, Ruby, Ruby on Rails (RoR), REXX, Tool Command Language (Tcl/Tk), Structured Query Language (SQL), Stream Editor (sed), xUnit
• Markup Languages: AsciiDoc, Cascading Style Sheets (CSS), HTML Abstraction Markup Language (HAML), Hypertext Markup Language (HTML), eXtensible Markup Language (XML), Implementation Profile for Intelligence Publications: XML Encoding (PUBS-XML), JavaScript Object Notation (JSON), Markdown, POD, RDoc, Textile, YARD, Yet Another Markup Language (YAML), txt2tags
• Unix Shell Scripting: Bourne shell (sh), Bourne-Again shell (bash), Korn shell (ksh), C shell (csh)
• Software Design/Management: Bazaar (Bzr), Behavior-Driven Development (BDD), GIT Distributed Version Control System (GIT), GitHub, Gitorious, Concurrent Versioning System (CVS), Launchpad, Mercurial (Hg), Monotone, Revision Control System (RCS), Source Code Control System (SCCS), Subversion (SVN), Systems Development Life Cycle (SDLC), Test-Driven Development (TDD), Unified Modeling Language (UML)
• Project Management Methodologies: Agile Unified Process (AUP), Open Unified Process (OpenUP), Rational Unified Process (RUP), Scrum, Systems Development Life Cycle (SDLC), Extreme Project Management (XPM)
• Legal and Standards Compliance: Payment Card Industry Data Security Standard (PCI DSS), ISO 17799 / BS 7799, California SB 1386, Sarbanes-Oxley Act (SOX), Gramm-Leach-Bliley Act (GLBA), Federal Computer Fraud and Abuse Act, Federal Information Security Management Act (FISMA), Electronic Communications Privacy Act (ECPA), Title 21 Code of Federal Regulations (21 CFR Part 11), Health Insurance Portability and Accountability Act (HIPAA), Federal Information Processing Standard 140 (FIPS-140), Open Source Security Testing Methodology Manual (OSSTMM), Control Objectives for Information and Related Technology (COBIT)
• Firewalls: Check Point (often misspelled Checkpoint), Nokia IP appliances, Gauntlet, Cisco PIX, Juniper NetScreen, Juniper SA Series SSL VPN Appliance, Juniper Secure Services Gateway, Microsoft ISA, Sidewinder, SunScreen, ipchains, iptables, netfilter
• Intrusion Detection Systems (IDS): Sourcefire, Snort, PortSentry, Tripwire, DenyHosts, Samhain, CyberCop
• Network Vulnerability Scanners: Nessus, Nmap, CyberCop, SAINT, SARA, Whisker, Nikto, AirSnort, Kismet, Retina
• Other Network Security: Virtual Private Networks (VPNs), Public Key Infrastructure (PKI), Advanced Encryption Standard (AES), Secure Sockets Layer (SSL), Transport Layer Security (TLS), Wired Equivalent Protocol (WEP), Wi-Fi Protected Access (WPA, WPA2)
• Network Operating Systems: Unix (includes Solaris, Linux, OpenBSD, FreeBSD, Irix, AIX, and Tru64), Windows NT, Windows XP, Windows 2000, Windows 2003, Novell Netware, Cisco IOS
• Network Interfaces: Ethernet, Fast Ethernet, Gigabit Ethernet, Asynchronous Transfer Mode (ATM), Frame Relay, SONET, Multi-Protocol Label Switching (MPLS)
• Routing Protocols: RIP/RIPv2, EIGRP, OSPF, BGP, IPSec
• Web Technologies: Apache Web Server, Common Gateway Interface (CGI), Microsoft Internet Information Server (IIS), Mongrel and Mongrel Cluster, Nginx, PHP Hypertext Preprocessor, Phusion Passenger, WEBrick, Thin, Unicorn
• Load-balancing: Apache mod proxy, Nginx Upstream, HAProxy, Alteon, Foundry, ArrowPoint, Cisco LocalDirector, F5 BigIP, Top Level
• NoSQL Database Systems: CouchDB, MongoDB, Redis, Riak
• Relational Database Management Systems (RDBMS): MySQL, PostgreSQL, SQLite, SQL Server, Oracle, DB2
• Email Servers and Mail Transport Agents: Exchange, Postfix, Qmail, Sendmail, TMDA with OFMIPD
• Encryption and Hash Algorithms: Advanced Encryption Standard (AES, AES-128, AES-256), Message-Digest Algorithm 5 (MD5), Secure Hash Algorithm (SHA), Digital Signature Algorithm (DSA), ElGamal, Diffie-Hellman, Data Encryption Standard (DES), Triple-DES, RSA, Blowfish, CAST, Elliptic Curve
• Encryption Tools: Encrypting File System (EFS), Encrypted File System (EncFS), Loop-AES, Device Mapper Crypto Target (dm-crypt), Pretty Good Privacy (PGP), PGP Whole Disk Encryption (PGP WDE), GNU Privacy Guard (GPG), TrueCrypt, Vormetric Database Encryption Expert, Protegrity Defiance Data Protection System (Defiance DPS)
• Directory Services: Domain Name Service (DNS), Lightweight Directory Access Protocol (LDAP), Novell Directory Services (NDS), Novell DirXML, Novell Identity Manager (IDM), Microsoft Active Directory (AD), Sun ONE Directory Server, Sun ONE Identity Manager (formerly Waveset), Red Hat Directory Server, OpenLDAP Directory Server
• Barcode Symbologies: DataMatrix, QR Code, Aztec Code, Aztec Runes, PDF417, Code 39, Code 93, Code 128, UPC-A, PostNet, EAN-13