A PDF version of this document is available on both scribd and locally

• Fifteen years experience in technical support and eight years in IT design and development.
• Expertise in customer needs assessment and client communication.
• Detailed knowledge and experience with system migrations, improving security and reliability.
• Proactive and structured approach to projects.
• Accustomed to delivering and supporting quality development in a fast-paced, sales-driven atmosphere.
• Strong belief in openness and honesty in all personal and business interactions.
• Dedication to continual self-driven improvement of professional skills including achieving and maintaining the RHCE, NCLP, CISSP, and GIAC-GSLC certifications.

• Performed ongoing reviews of all vulnerabilities for key systems belonging to multiple companies.
• Proactively monitored coming threats against infrastructure; patched and mitigated as necessary.
  • Reviewed security patches for all impacted Windows and Linux systems.
  • Reviewed patches and updates for third-party software used on all systems.
  • Suggested mitigation strategies when patches not available or applicable.
  • Suggested network segmentation where it would most reduce scope of attacks.
• Incident Response Lead - handled isolation, determination, correction, and communication of:
  • Denial of Service attacks
  • Remote Code Execution attacks
  • Privilege Escalation attacks
• Reviewed and analyzed all security policies for:
  • International, publicly-traded, Fortune 1000 company
  • National, multiple-location, privately-held health care company
• Analyzed and recommend technologies and vendors for internal and client environments:
  • Intrusion Detection - protecting against known bad network traffic, unusual traffic and access patterns
  • Anti-Malware - protecting against spyware, adware, phishing, trojans, bots, encryption attacks, viruses
  • Configuration Management - providing imaging, updating, privilege lock down, endpoint firewall
  • Spam Management - balancing between legitimate commercial email and undesired email
  • Web Filtering - providing access limitation and monitoring of employee Internet usage
  • Linux Desktops - emphasis on ease of use in educational, corporate and retirement sectors
  • Code Documentation - providing automated API documentation creation, reducing developer burden
  • Collaborative Documentation - enabling documentation of various systems and processes
  • Project Management - focus on lightweight multi-platform systems for use throughout organization
  • Source Control - providing easily-used and reliable code versioning and rollback
• Consolidated legacy systems to modern and hardened systems using development/production mirroring.
  • Email, Web, Database, DNS, and DHCP servers - affecting most of the pre-existing infrastructure.
  • Migrated older servers to modern Linux systems with long support contracts, for improved reliability.
• Performed periodic vulnerability scanning of internal and client-owned systems.
• Implemented network-wide monitoring system of all operational servers.
• Analyzed risks due to departing employees.
  • Removed unused user accounts.
  • Used data inference to determine likelihood of future actions.
  • Performed data recovery as needed.
  • Performed password changes and code rollovers as necessary.
• Performed and analyze results of vulnerability scans and penetration tests, build plans for risk mitigation.
• Analyzed and recommend compliance options for:
  • PCI-DSS - Payment Card Industry Data Security Standard
  • HIPAA - Health Insurance Portability and Accountability Act
  • FDIC - Federal Deposit Insurance Corporation
  • FFIEC - Federal Financial Institutions Examination Council
  • SOX - Sarbanes-Oxley Act
• Conducted both tactical and strategic reviews of PCI-DSS for two affected products and hosting concerns.
• Developed firewall change request web application to streamline and standardize firewall requests.
• Monitored use of corporate information on the Internet to maintain awareness of employees' actions.
• Scheduled deprecation for legacy systems based on increasing risks of aging hardware and systems.
• Designed distributed and scalable vulnerability scanning system for multiple class B networks.

• Taught students the ten domains of Information Security to prepare them for the CISSP exam.
• Placed emphasis on practical security concerns within their respective professional environments.
• Added additional teaching of test taking, studying and memorization techniques.

• Novell Cluster Services for Linux and NetWare, FreeBSD 6 Unleashed, X Power Tools

• Dramatically improved security by implementing strong authentication and system standards.
• Ensured products' technical compliance with the GLBA (Graham-Leach-Bliley Privacy Act) and HIPAA.
• Devised password, role, and data management policies for improved security and privacy.
• Determined firewall and routing rule sets for various clients' needs.
• Designed, implemented and administered Linux based products and solutions, providing:
  • Secure authentication for varied user levels with seamless connection to third party systems.
  • Disaster recovery redundancy with automated synchronization to production systems.
  • "Self Aware" systems to help automate security maintenance.
  • Virtual LAN access to client networks.
  • Interoperability with clients' networks via different proprietary VPN software.
• Designed and oversaw development of multi-platform and multi-algorithm encryption/decryption system.
• Designed policies for the secure handling of sensitive customer data.

• Host and run meetings as President of the local Linux Users' Group.
• Host and run meetings as President of the local Virtualization Users' Group.
• Attend monthly Iowa Blogging meetings as a security and technical community representative.
• Involved with Homeland Security through InfraGard - an FBI-vetted business/government collaboration.

• February 2008 - Presentation on Security Policy to Information Systems Audit and Control Association
• February 2008 - Interviewed on Workplace Productivity by The Juice
• January 2008 - Presentation on OSX Security to the Des Moines Mac Users Group
• January 2008 - Presentation on SQL Injection and Cross Site Scripting to the Iowa Ruby Users Group
• January 2008 - Presentation on Certification and Information Warfare to Infragard.
• September 2007 - Ran several sessions at Bar Camp
  • Linux Paradigms
  • Monitoring Best Practices
  • How to Promote Yourself on Web 2.0
  • Job Searches in the New Economy
• May 2007 - Presentation on Web 2.0 in Business to the Iowa IT Legal Administrators
• November 2006 - Guest-lectured at DMACC Linux Administration Class
• August 2006 - Presentation on Technology for Entrepreneurs for Transition Capital Management
• June 2006 - Presentation on wiki at the Central Iowa Linux Users Group
• June 2005 - Presentation on Certifications at the Central Iowa Linux Users Group
• April 2005 - Presentation on Linux in Schools at Iowa Training Days

• Analyzed applications for network inclusion, with a focus on stability and security.
• Audited existing applications for adherence to security requirements.
• Secured Windows and Macintosh systems against unauthorized users and malicious applications.

• GIAC-GSLC - GIAC Security Leadership Certification
• NCLP10 - Novell Certified Linux Professional 10
• RHCE - Red Hat Certified Engineer
• CISSP - Certified Information Systems Security Professional

• December 2007 - Attended Compellent SAN Administration Class
• February 2007 - Attended SANS 512 Management class
• December 2005 - Attended N-Able Advanced Administration Class

• Bachelors degree in Physics, conferred by Grinnell College
• High Energy Physics Internship, University of Notre Dame