Resume
Computer Skills
Programming Languages: PHP, HTML, SQL, Python, Javascript, Perl, Ruby, Rails.
Operating Systems: Linux, UNIX, Mac OS X, Windows XP/2000/7, Windows Server 2003/2008.
Operations/Systems Management: Chef, Nagios, Munin, Virtualized Environments.
Server Applications: Nginx, Gunicorn, HAProxy, BigCouch (CouchDB), ElasticSearch, Apache TrafficServer, Zimbra Enterprise Mail Server.
Information Security
Security Skills: Malware/Virus Analysis, Reverse Engineering, Social Engineering, Lock/Safe Manipulation.
Industry Compliance Knowledge: HIPAA, ISO 27799, Payment Card Industry (PCI).
Toolsets: NMap, Nessus, Metasploit, Wireshark, p0f, OWASP, Paros, Browser-Integrated Debug Tools (ex: FireBug), Custom Written Scripts.
Employment History
Operations
CyByL Technologies, Inc.
February 2011-Present
Sole Systems Administrator for an Information Security Startup.
Projects:
- Implemented monitoring and alerting using Munin + Nagios.
- Sourced hosting (virtual and physical) worldwide for distributed data collection engine.
Achievements:
- Built infrastructure from scratch with standardized configurations and automated, role-based provisioning using Chef.
- Supported company-wide email, calendaring, and collaboration systems for over 50 end-users in 3 countries using Zimbra.
Security Analyst
Freelance
November 2008-October 2010
Projects:
- Provided on-site risk analysis and red-team/blackbox penetration testing for multiple clients and locations worldwide.
- Analyzed malware samples by decompiling, process tracing within virtual environments, and network traffic capture and analysis to attempt to identify bot herders or command-and-control servers.
Achievements:
- Designed and implemented custom scanning system to identify potential malware in automated webcrawls.
Technical Analyst - Security
State Farm Insurance
February 2006-November 2008
Responsible for performing and coordinating security tests of environments, applications, and physical facilities both internally and at vendor facilities.
Projects:
- USB Switchblade: Modified the malicious USB device project codebase to add support for user identification and client/server capabilities.
- Built honeypot cluster for automated malware collection and analysis.
- Reverse engineered RFID signal to derive encoded numerical ID.
- Modified RFID cloner software to brute force ID numbers based on a known good ID.
- Wrote training materials for security awareness for various business areas.
- Analyzed new and existing malware for actor attribution and IDS/Anti-Virus rule generation.
Achievements:
- Documented vulnerabilities for both analyst and manager consumption, recommended possible mitigation.
- Built flexible lab environment for training, experimentation and malware analysis. Windows, Linux, Unix, and Cisco platforms.
Student Worker - Telecommunications
Illinois State University
November 2001-May 2002
Projects:
- Maintained lab environment for Cisco network prototyping.
- Wrote automated PHP scripts to maintain switch configuration.
- Worked with network engineers to complete the University Infrastructure Upgrade Project from token ring to ethernet.
- Maintained equipment inventory for infrastructure upgrade project.
Intern - Assembly and Logistics Technology
Caterpillar Tractor, Inc.
May 2000-August 2001
Projects:
- Designed and implemented a PHP based wizard interface for selecting appropriate leak detection techologies.
- Designed and implemented a PHP based content management system that accommodated role-based access control and document confidentiality classifications.
- Wrote JCL routines to extract warranty claim information and analyze it with various artificial intelligence technologies.
Achievements:
- Designed, built, configured, and administered one of the first production Linux servers at Caterpillar.
Technical Support Representative
MTCO Communications, Inc.
April 1999-May 2000
Projects:
- Designed and built server infrastructure for Windows Media and Real Audio streaming servers.
- Assisted customers with dial-up and DSL Internet account setup and troubleshooting.
Achievements:
- Learned best practices for UNIX system administration by shadowing senior administrators.
Last modified 1 December 2011.
