Technical Skills:

• In-depth experience with a wide range of information technologies, including application, system, and network architecture, data integrity/privacy, disaster recovery/business continuity, lifecycle management, and performance monitoring.
• Extensive experience with distributed and high-availability architectures and implementation of current best practices in security and project management services.
• Security Details: Network scanning Qualys, Rapid 7, etc. , application design best-practices Java and .Net , network and system based IDS/IPS Snort, TippingPoint, OSSEC, Tripwire , firewalls, CIRT development and implementation, and Windows and Linux/Unix hardening.
• Systems: VMware, Linux, Solaris, Windows
• Database Management Systems: MS SQL Server, MariaDB/MySQL, Redis, Mongo
• Networking: Arista, Cisco, Juniper, Rugged, load-balancing, clustering, TCP, DNS, SSL, SSH, BGP, HSRP, 802.11, RADIUS, 802.1x
• Programming / Scripting Languages: Python, C , min. C/C and Java

Work Experience:

Confidential

Manager of Launch and Mission IT

• Successfully supported over 17 low earth orbit and geosynchronous space launches, multiple rendezvous with the International Space Station as well as all vehicle recovery operations.
• Created and staffed the Launch and Mission IT team, embedding SysAdmins and Technicians in with launch operations and engineering groups to ensure alignment with customer needs and rapid response to requirements.
• Team is responsible for designing, implementing, and managing technology across all SpaceX launch sites, Mission Control, Ground Stations, and Vehicle Recovery assets.
• Tightly integrated design and operations with SpaceX InfoSec to ensure assets maintained expected levels of availability, confidentiality, and integrity.
• Architected and deployed commercial launch networks ensuring high-availability for customer telemetry internal and external while also implementing strong segregation between customers and SpaceX assets.
• Assisted Physical Security with design and implementation of robust, multi-tier access control and monitoring of critical data processing locations at the Cape Canaveral launch site.
• Supported internal and external auditors in preparation for implementation of ISO and NIST policies across critical launch and mission applications, networks and systems.
• Primary architect for secure, electronic procedures system eProcs used during all SpaceX launch, mission, and recovery operations.
• Primary architect and administrator of Solaris/ZFS-based network storage 1 Petabyte used for all launch and mission data including audio, logs, telemetry, and video.

Confidential

IT Security Engineer

• Project manager and lead security engineer on multiple high-profile projects including a unified end-point, network access control, and data loss/leakage prevention.
• Coordinated with and led InfoSec efforts across various departments, both technical and non-technical, ensuring appropriate buy-in and resource allocation focus was always on implementation quality and client satisfaction.
• Worked with internal auditors on findings analysis and associated remediation efforts.
• Performed IDS/IPS mitigation/response and vulnerability scanning in support of internal and PCI requirements.

Confidential

Managing Partner, Security and Networks

• Audit client IT systems and internal control processes IAW ISO-17799/2700X based standards. Also utilized industry-accepted risk management practices such as COBIT for Risk .
• Reviewed existing procedures and guidelines, updating where necessary to maintain client compliance with assorted regulations HIPAA/PCI and industry best practices NIST/OWASP .
• Lead project manager on design/procurement of quantified risk assessment system and capability maturity model pilot program for Hillsborough County Board of County Commissioners. Also worked closely with the Security Operations team on Arcsight deployment and configuration base-lining .
• Perform penetration testing and code reviews on client systems and applications including various web services, IIS, and Apache/Tomcat systems.
• Worked with clients to implement enterprise-wide IDS/IPS systems utilizing a combination of commercial TippingPoint, Tripwire and open-source Snort, OSSEC systems. Responsible for providing upper-tier support to client operations teams regarding alerts, maintenance, etc.

Confidential

IT Security Manager

• Report to Confidential CISO as primary application security manager for U.S. IT Security Services team.
• Coordinated with and obtained buy-in from line of service stakeholders allowing for development of firm-wide plan for detection, categorization and remediation of application and system level vulnerabilities.
• Worked closely with lines of service Tax, Advisory, Federal, etc. to develop/update secure application development standards standards loosely based on OWASP and ISO 17799 .
• Utilized various security assessment tools commercial, open-source, and custom to audit both internal and external applications and infrastructures.

Confidential

Security Consultant

• Last Relationship was with Verizon:
• Perform penetration testing against web-enabled target environments using tools such as WebInspect, AppScan, Paros, Ethereal, stunnel, nmap, and others.
• Provide security and technology expertise to unit managers and lead developers specific to audit controls and remediation.
• Project manage and in most cases implement various security architectures such as IDS/IPS systems, firewalls, and anti-virus/malware products.
• Previously worked with Sprint/Nextel Network Disaster Recovery
• Performed contract and project management duties associated with new Sprint/Nextel effort to consolidate national DR vendors.
• Designed and secured resource monitoring and management application used to track power generators in use at cell sites throughout the South during emergencies.
• Application received updates from refueling vendors, estimated runtime remaining on active assets, and alerted appropriate contract personnel when necessary.
• Successfully managed several emergency refueling assets during one of the most active hurricane seasons in modern history.

Confidential

Vice President, Technical Operations

• UNX is an agency broker/dealer whose mission is to enhance trading performance and productivity by providing electronic trading solutions for institutional investors.
• Reported to the Chief Operations Officer and the Chief Technology Officer
• Held Series 7, 24, and 55 licenses. Licenses not required as part of job but decided to obtain in order to better understand the industry and environment.
• Designed and implemented secured, web- enabled infrastructure and network supporting 150 million dollars in principle equity transactions daily. Included class A data center, redundant fiber, power and HVAC systems, geographically separate 'hot' backup site, and various code review and design validation processes.
• Strong leadership and excellence in team building resulted in product platforms having less than five minutes of downtime a year despite operating in a fluid, cloud/software-as-a-service environment.
• Lead position on corporate disaster recovery and CIRT teams. Spearheaded creation, maintenance, and regular testing of business continuity and security incident response plans.