SUMMARY:

• I am a highly motivated technical leader experienced in the design of high security systems and networks.
• A self - starter, adept at moving into new areas and extrapolating existing experience to quickly use new and existing technology to provide innovative solutions.
• A team player skilled in leading and motivating talented, high performance, teams.

TECHNICAL SKILLS:

Operating Systems: Unix (Solaris, AIX, HPUX, IRIX, FreeBSD, OpenBSD), Linux (Gentoo, Redhat/Fedora, BYOLinux, LFS, Slackware, Debian, SUSe), Windows (All Versions), DOS, Novell, Cisco IOS

Languages/Technologies: Shell Scripting (korn, csh, bash), Powershell, C/C++, Visual Basic/VBA, Perl, PHP, ASP, Javascript, Java, x86Assembler, HTML, XML, ColdFusion, SOAP, XHTML, Go

Database Technologies: MySQL, MSSQL, Oracle, Access, Visual Foxpro, Mongo, hadoop, Redis.

Hardware: Cisco Switches, Routers and Firewalls; IBM, HP, and Dell Enterprise grade Servers and Workstations, Fiber optic switching equipment, SAN, NAS, and DASD storage devices EMC VMAX.

Directory Services: LDAP, Windows Active Directory, Novell E-Directory

Security Tools/Technologies: Cisco ASA/PIX, Bluecoat proxy, Websense Proxy, Proofpoint, Darktrace, Vontu, Sophos, IPS/IDS management, Snort, Iptables, IPFW, Netfilter, Arcsight, McAfee Anti-Virus, Symantec Anti-virus and IDS/IPS systems; Websense DLP.Identity Management and Federation, Ping, Okta, NetIQ, ADFS, Nessus, Qualys, Nmap, Maltego, Metasploit, SplunkCloud Technologies: Cloud Lock, GAT, Google Code, Google for work, Azure, AWS, chef

PROFESSIONAL EXPERIENCE:

Confidential

Senior Security Architect

Responsibilities:

• Lead effort to re-architect Identity and Access Management Program.
• Developed Threat Intelligence and Correlation Capability
• Created Threat and Vulnerability Management Program
• Architected Data Security Program and Methodology for big data analytics. Developed strategy and roadmap. Began implementing initial phases.
• Developed Ground Up Policy Framework.
• Mentored and supported junior members of the team in their .

Confidential

Security Architect

Responsibilities:

• Worked on location at the customer site in Montpelier, VT
• Worked with client to review and redesign their architecture to improve their overall security posture
• Improved incident response processes procedures, and capabilities
• Developed structure and organization by implementing a daily incident review process
• Improved architectural design and review process to include security reviews and architecture
• Guided the client in the development of a Cyber-Security Operations capability
• Began developing a threat intelligence program
• Mentored junior members of the security team to improve overall team capabilities
• Improved forensic examination capabilities

Confidential

Senior cybersecurity Engineer

Responsibilities:

• Advised NATO on the design and implementation of their cyber-security infrastructure
• Designed and built the Confidential implementation of the DHS ECS program.
• Designed and constructed the Confidential International Cybersecurity Operations Center in the United Kingdom.
• Designed and constructed the Confidential International Cybersecurity Operations Center in Australia.
• Voting member of the Confidential International Security Standing Commitee
• Provided expert system engineering skills and developed and deployed tool suites as a member of a highly skilled team of information security experts.
• Developed a rapid deployment sensor platform to enable collection of critical network security information in urgent tactical scenarios.
• Designed and built a high performance computing cluster to host a Mongo database
• Managed, monitored and maintained a global grid of sensitive information collection systems.
• Provided system administration and development support to CTAI member analysts.
• Provided thought leadership to Information Security personnel and leadership in the execution of their various missions.
• Provided management and mentoring of system engineering staff.
• Developed a high security enclave and lab environment for CTA&I analysts to work within
• Designed and constructed an Oracle cluster environment for a special project
• Provided engineering and design support for a cyber range emulation project
• Current Clearance

Confidential

AIX/Unix Custom Server Support

Responsibilities:

• Monitor and maintain the health and security of approximately 500 AIX and Linux servers.
• Provide AIX support to internal and external customers of IBM.
• Wrote custom code to securely wipe ITAR data from AIX systems in a manner compliant with DOD standards
• Developed custom scripts to monitor AIX file systems.
• Support and maintain non-standard and experimental IBM hardware, virtual hosts, and HACMP clusters.

Confidential

Information Systems Security Engineer

Responsibilities:

• Designed, developed secured and maintained a Microsoft Windows Active Directory Domain.
• Secured and managed the Novell network that preceded the Windows Active Directory Network.
• Refined information systems audit policies and procedures and conducted IT audits of financial and medical institutions.
• Wrote Microsoft Windows and Unix/Linux utilities for use in vulnerability assessments
• Conducted penetration testing activities against financial institutions.
• Developed a database driven security management solution.
• Managed wide area network consisting of 5 offices throughout the state of Vermont.
• Provide security expertise to the firm’s customers.

Confidential

Lead Developer/Instructor

Responsibilities:

• Developed and instructed 2 DOD information security courses. These courses were open to all branches of the military as well as civilian government employees, such as the FBI and CIA.
• Scripted a custom web retrieval and differential analysis agent to monitor threat activity in support of Vermont Emergency Operations Center for 2000 Summit of the Americas.
• Crafted custom exploit payloads in support of Vermont Army National Guard Vulnerability Assessment Team during evaluation of DOD non-classified systems.
• Performed “red team” hacker activities in support of Vermont Information Operations Operational Experience Course.
• Programmed Flash action script courseware for Vermont National Guard Incident Response Handler Course.