Home Professional Resumes Full Consulting Resume
Subscribe:
Feeds allow you to keep up on changes, click this button to watch this site.
Full Consulting Resume PDF Print E-mail
Written by Josh More   
Friday, 29 February 2008 18:26

A PDF version of this document is available on both scribd and locally



Profile
  • Fifteen years technical experience, eight years design, three years business/management.
  • Expertise in customer needs assessment and client project management.
  • Detailed knowledge and experience with system migrations, improving security and reliability.
  • Proactive and structured approach to projects, whether as lead or manager.
  • Accustomed to delivering and supporting quality development in a fast-paced, sales-driven atmosphere.
  • Strong belief in openness and honesty in all personal and business interactions.
  • Dedication to continual self-driven improvement of professional skills.


Experience
November 2004 - present Alliance Technologies Des Moines, IA
Security Consultant: Focus on Business Process and System/Network Security
  • Performed ongoing reviews of all vulnerabilities for key systems belonging to 10+ companies.
    • Proactively monitored coming threats against infrastructure; patched and mitigated as necessary.
    • Reviewed security patches for all systems: Windows, Linux, Solaris and third party applications.
    • Determined and implemented mitigation strategies when patches not available or applicable.
    • Analyzed networks and planned segmentation where it would most reduce scope of attacks.
    • Conducted vulnerability scanning and mitigation as required by the PCI-DSS.
    • Conducted overall security assessments, including data, system, network and personnel.
  • Incident Response Lead - managed isolation, determination and correction of security incidents.
  • Reviewed/analyzed/wrote security policies for companies varying in size from 100-10,000 employees.
  • Analyzed and recommend technologies and vendors for internal and client environments:
    • Intrusion Detection - protecting against known bad network traffic, unusual traffic and access patterns
    • Anti-Malware - protecting against spyware, adware, phishing, trojans, bots, encryption attacks, viruses
    • Configuration Management - providing imaging, updating, privilege lock down, endpoint firewall
    • Spam Management - balancing between legitimate commercial email and undesired email
    • Web Filtering - providing access limitation and monitoring of employee Internet usage
    • Linux Desktops - emphasis on ease of use in educational, corporate and retirement sectors
    • Code Documentation - providing automated API documentation creation, reducing developer burden
    • Collaborative Documentation - enabling documentation of various systems and processes
    • Project Management - focus on lightweight multi-platform systems for use throughout organization
    • Source Control - providing easily-used and reliable code versioning and rollback
  • Analyzed and recommend regulatory compliance against PCI-DSS, HIPAA, FDIC, FFIEC, SOX
  • Designed and deployed Sophos-based anti-malware solution for over 300 protected hosts.
  • Consolidated legacy systems to modern and hardened systems using development/production mirroring.
    • Email, Web, Database, DNS, and DHCP servers - affecting most of the pre-existing infrastructure.
    • Migrated to modern Linux systems, for improved reliability, flexibility and supportability.
  • Implemented network-wide monitoring system of all operational servers and network equipment.
  • Analyzed risks due to departing and transitioning employees.
    • Removed unused user accounts and performed password changes and code rollovers.
    • Performed data recovery and used data inference to determine likelihood of future actions.
    • Continuously reviewed users and access levels, adjusted as roles changed.
  • Developed firewall change request web application to streamline and standardize firewall requests.
  • Monitored use of corporate information on the Internet to maintain awareness of employees' actions.
  • Scheduled deprecation for legacy systems based on increasing risks of aging hardware and systems.
  • Deployed Astaro Security Gateway and Solutionary Network Intrusion Detection System (NIDS).
  • Designed secure DMZ, Internal zones for eventual regulated environment and confidential data.
  • Designed distributed and scalable vulnerability scanning system for multiple class B networks.
  • Ensured that Alliance and clients are in compliance with software licenses for all software in use.
  • Conducted weekly meetings with key department leaders to ensure steady progress on security issues.
  • Performed highly complex data and contract analysis of multi-party code escrow dispute.
Operations Management: Focus on Projects and Internal Improvement
  • Deployed technologies and methodologies to improve operations.
    • Documentation-management systems improved employee communication and process documentation.
    • Version control system allowed more developers to work on one project and provided error recovery.
    • methodology improved efficiency across the operation.
    • Monitoring systems served to move the company in a more proactive direction.
    • Centralized system for software and licensing management, resulting for considerable time savings.
    • Rebuilt internal email lists and related email flow.
    • Extended version control system to serve client needs as well as internal.
    • Analyzed use of internal software licensing, devised standardization and upgrade path.
    • Programmed scripts to merge operations data with billing.
  • Overhauled and organized internal office spaces:
    • Hardware Inventory - determined standards for what to keep, organize remaining stock.
    • Data Center - organized layout of Data Center to maximize emergency repair efficiency.
    • Software Inventory - identified and organized software for media control and license maintenance.
  • Project Manager for:
    • Microsoft Iowa Class Action Settlement reimbursement
    • Replace backup software and rollout of new system
    • Migrated legacy Citrix clients to self-hosted Citrix implementation by rival company
    • PCI compliance for nine-branch local non-profit
    • Migration of web application suite to new hardware and technology refresh
    • Ongoing security improvements in all business divisions
    • Web statistics collection and display system.
  • Managed company-wide documentation effort:
    • Designed and documented operations procedures for many systems and job roles.
    • Classified all servers and server roles, which assisted in emergency recovery and deprecation plans.
    • Rationalized naming conventions, updated all systems to use the same name in all contexts.
  • Overhauled business models:
    • Web hosting - focus on services-provided rather than bundling and guesswork
    • Email hosting - outsourced to business partner running Communigate Pro, migrated existing
    • Anti-Spam - transitioned from Google to TestudoData management, migrated existing
    • Anti-Malware - added service levels, implemented new solution, migrated existing
    • SSL Certificates - simplified offering, saving several thousand dollars annually
  • Designed configuration management / imaging solution for 125 hosts in the banking industry
  • Managed on-call schedule for all network technicians.
  • Overhauled configuration of RADIUS to streamline operations and true-up billing.
  • Company data administrator, performed data analysis, expiration, archiving and centralization.
  • Systems-lead planned and performed data center move: 40+ servers, 100+ employees and 500+ clients.
Sales Engineer: Focus on Client/Partner Need Assessment and Communication
  • Routinely gave presentations on technology and security to the business community.
  • Attended business/social events, representing the company, and brought in several leads each month.
  • Identified buyer and assisted sale of unprofitable portion of our business.
  • Managed the technical and business sides of partnerships.
    • Sophos
    • Astaro
    • Solutionary
    • Postini / Google / TestudoData
    • Microsoft
    • Novell (technical only)
    • Thawte
    • Perimeter
    • Syncsort
  • Performed technical and business reviews preceding acquisitions.
  • Served as technical lead in group of consultative business leaders, tying together numerous industries.
  • Served as research, technical and security lead on RFP response teams for:
    • IT Assessments for governmental institutions
    • Disaster Recovery and Business Continuity Planning for national insurance company
    • Internet-based Disaster Recovery for International, publicly-traded, Fortune 1000 company
    • Entrepreneurial Web Site for Governmental Business
    • Large, scalable content management system for state agency
    • Customer Relationship Management system and knowledge base for national consulting group
    • Vulnerability Scanning solution for federal governmental department
    • Online educational system for state-level governmental department
  • Devised multi-year improvement plans and match solutions to client budget cycles
System Architect and Administrator: Focus on Security and Open Source Technologies
  • Designed and implemented new server standards for core business services.
  • Documented all server configurations, histories, and contracts as well as standardizing operations.
  • Analyzed and implemented security patches on 40+ systems monthly.
  • Developed Linux-based small business server and services, focus on security and email.
  • Designed and led ground-up re-implementation of multi-platform email system:
    • Saved $80,000 yearly through reduced personnel requirements.
    • Reduced call volume by 90%.
    • Reduced spam volume by 95%.
    • Dramatically decreased troubleshooting time.
    • Removed numerous mail loops resulting in faster and more reliable email delivery.
    • Continuously monitored and tuned anti-spam solution for bypass attacks and specific email types.
  • Company-lead for migration and centralization of legacy systems.
    • Migrated legacy and unsupported Linux to modern Enterprise-quality Linux.
    • Migrated numerous IIS-sites to a newly built, standardized and secured IIS system.
    • Migrated various versions of mysql and Oracle instances to secured and recent versions of each.
    • Migrated postgresql services to mysql to reduce development and administration costs.
    • Developed standards for PHP, Ruby, Drupal, Joomla, Moodle and Wordpress hosting.
    • Built Ruby on Rails self-managed hosting platform.
    • Overhauled client-focused web statistics system for accuracy, speed and support of new technologies.
  • Performed complete reimplementation of genetics processing system, focus on security and stability.
  • Assisted with ground-up re-implementation of DNS and DHCP system, improving resilience and stability.
  • Migrated SCO OpenServer installations to both VMWare and new hardware for archival purposes.
  • Created emergency disaster recovery servers for failing but critical clients' legacy servers.
  • Configured custom monitoring for troubleshooting trend analysis and alerting.
  • Rebuilt PGP-based encryption system for FTP transfers of HIPAA-controlled information.
  • Maintained legacy services for backups, email, network connection sharing and monitoring.
  • Configured eDirectory to support Free Radius and replace internal stand-alone RADIUS implementation.
  • Set up traffic shaping and multi-routing on Linux-based network appliance.
  • Installed and maintained CRM system to provide sales metrics for executives.
  • Designed and implemented multi-server virtualized web/db system with data synchronization and failover.
Development Consultant: Focus on Maintainability, Scalability and Security
  • Worked with third parties and partners to line up resources for integrating development.
  • Designed and managed development of web-based file transfer system.
  • Designed system upgrade and deployment strategy for growing Internet-based service business involving:
    • Clustering for reliability and scalability
    • Low initial investment which only increases with increased revenues
    • Low cost and scalable NAS connectivity
    • Migration to supported operating system and databases, for improved performance and security
  • Deprecated, standardized and implemented existing and new technologies to better support developers.
  • Designed and implemented version control systems for both documentation and code management.
  • Extended internally-developed Linux appliance to support traffic routing and advertising opportunities.
  • Designed secure web services for large multi-national companies.
  • Designed source control, bug tracking and inline-documentation system for local development firm.
  • Completely overhauled unsynchronized dev/test/prod systems to force future synchronization.
January 2008 - present SANS
SANS Instructor: Management 414 - CISSP Mentor Session
  • Taught students the ten domains of Information Security to prepare them for the CISSP exam.
  • Placed emphasis on practical security concerns within their respective professional environments.
  • Added additional teaching of test taking, studying and memorization techniques.
December 2005 - Present Pearson Educational and O'Reilly Press Des Moines, IA
Technical Editor: Focus on Security and Technical Accuracy
  • Novell Cluster Services for Linux and NetWare
  • FreeBSD 6 Unleashed
  • X Power Tools
May 1999 - November 2004 Clement Claibourne LC / Mail Services LC Des Moines, IA
Web Developer / Product Manager
  • Migrated workstations to open standards, then to Linux systems, reducing licensing liability.
  • Designed, implemented and administered Linux based products and solutions, providing:
    • Web interfaces for the on-line viewing, editing, and printing of statements and letters.
    • Web-based interface to third party command-line based systems.
    • Ability to pay on-line via existing e-commerce vendors.
    • Optional inclusion of content-aware banner advertisements.
    • Extensive customizations to allow clients and clients' customers to re-brand systems.
    • Simple creation of buttons and banners for system branding.
    • Web-based management console.
  • Dramatically improved security via strong authentication and seamless logins.
  • Designed websites for Clement Claibourne, Mail Services and several clients.
Security Analyst
  • Dramatically improved security by implementing strong authentication and system standards.
  • Ensured products' technical compliance with the GLBA (Graham-Leach-Bliley Privacy Act) and HIPAA.
  • Devised password, role, and data management policies for improved security and privacy.
  • Determined firewall and routing rule sets for various clients' needs.
  • Designed, implemented and administered Linux based products and solutions, providing:
    • Secure authentication for varied user levels with seamless connection to third party systems.
    • Disaster recovery redundancy with automated synchronization to production systems.
    • "Self Aware" systems to help automate security maintenance.
    • Virtual LAN access to client networks.
    • Interoperability with clients' networks via different proprietary VPN software.
  • Designed and oversaw development of multi-platform and multi-algorithm encryption/decryption system.
  • Designed policies for the secure handling of sensitive customer data.
Systems Architect / Product Manager
  • Transitioned from SCO Unix to joint Linux and Windows systems for considerable cost savings.
  • Created customized Linux distributions based on Red Hat Linux technology.
  • Designed, implemented and administered Linux based products and solutions, providing:
    • Automated file transfer, conversion, and processing.
    • Complete email handling system, internal and external for universal access.
    • Internal code and documentation maintenance.
    • Development and support issue tracking.
    • Automatic data compression, regaining 90% of system resources.
  • Researched, installed, and configured tools to aid business processes, resulting in large operations savings.
    • Collaborative Documentation
    • Project and Version Management
    • Automated Product Installation
  • Increased reliability by upgrading a home-brew system to a standardized Linux distribution.
  • Designed and oversaw development of Windows-based print archival system.
  • Merged diverse networks together following acquisition by Mail Services LC.
  • Managed 20 Linux-based Internet-connected servers and 40+ SCO Unix-based LAN-connected servers.
Pre-sales Support
  • Developed proof-of-concept systems for sales endeavors. Production systems build after sale closed.
  • Developed traveling demonstration systems for sales people to use at trade shows.
  • Accompanied Sales to demonstrate systems and answer technical questions.
2000 - present Community Involvement
Security and Open Source Community Leadership:
  • Host and run meetings as President of the local Linux Users' Group.
  • Head of Cyber division of Iowa's branch of Infragard an FBI-vetted business/government collaboration.
  • Hosted and ran meetings as President of the local Virtualization Users' Group.
  • Attend local monthly meetings as a security and technical community representative:
    • Agile Users Group, Iowa Bloggers, Information Systems Security Associations (ISSA)
Security and Open Source Community Presentations:
  • May 2009 - Internal presentation on the features of the new GroupWise 8 email system
  • April 2009 - Presentation on Web Application Security to Des Moines Web Geeks
  • March 2009 - Presentation on Virtualization Security to ISSA
  • March 2009 - Presentation on Linux Security to Infragard
  • April 2008 - Presentation on Web 2.0 in Business to Johnston Chamber of Commerce
  • February 2008 - Presentation on Security Policy to Information Systems Audit and Control Association
  • February 2008 - Interviewed on Workplace Productivity by The Juice
  • January 2008 - Presentation on OSX Security to the Des Moines Mac Users Group
  • January 2008 - Presentation on SQL Injection and Cross Site Scripting to the Iowa Ruby Users Group
  • January 2008 - Presentation on Certification and Information Warfare to Infragard.
  • September 2007 - Ran several sessions at Bar Camp
    • Linux Paradigms
    • Monitoring Best Practices
    • How to Promote Yourself on Web 2.0
    • Job Searches in the New Economy
  • May 2007 - Presentation on Web 2.0 in Business to the Iowa IT Legal Administrators
  • November 2006 - Guest-lectured at DMACC Linux Administration Class
  • August 2006 - Presentation on Technology for Entrepreneurs for Transition Capital Management
  • June 2006 - Presentation on wiki at the Central Iowa Linux Users Group
  • June 2005 - Presentation on Certifications at the Central Iowa Linux Users Group
  • April 2005 - Presentation on Linux in Schools at Iowa Training Days
Open Source Community Service: Systems Architect / System Administrator / Web Developer
  • Limited free technology and security consulting for community entrepreneurs.
  • Designed and maintained a server which provided web, database and email functions for nonprofits.
  • Created, designed and managed various community driven projects and websites:
    • Theater Management - atatk.sf.net ('04).
    • Convention Planning - www.demicon.org (website '00-'03, codebase '00-'08)
    • Training for Unix Administrators - trouble-maker.sf.net ('04)
  • Designed and implemented a kiosk system with speech synthesis to aid visually-impaired attendees.
  • Designed multi-user convention management system including kiosk and Palm (PDA) operation modes.
  • Migrated associates from Windows to Linux for improved stability, security and performance.
Nov. 1996 - May 1999 Grinnell College Grinnell, IA
Technical Support: User Consultant / Help Desk Technician
  • Analyzed applications for network inclusion, with a focus on stability and security.
  • Audited existing applications for adherence to security requirements.
  • Secured Windows and Macintosh systems against unauthorized users and malicious applications.
May 1998 - Aug. 1998 University of Notre Dame Notre Dame, IN
Academic Research: Intern in High Energy Physics
  • Programmed system to aid high-energy particle analysis.
  • Trained other interns in the use of the Unix operating systems.


Education and Certifications
  • CISSP - Certified Information Systems Security Professional
  • GIAC-GCIH - GIAC Certified Incident Handler (in progress)
  • GIAC-GSLC - GIAC Security Leadership Certification
  • RHCE - Red Hat Certified Engineer
  • NCLP10 - Novell Certified Linux Professional 10
  • ACE - Astaro Certified Expert
  • 504 Hacker Techniques, Exploits and Incident Handling Class
  • Engineer Training, achieved Astaro Certified Engineer certification
  • May - 2008 - Attended Microsoft Licensing training
  • January 2008 - Taught SANS 414 CISSP Prep Class
  • December 2007 - Attended Compellent SAN Administration Class
  • 512 Management class
  • Advanced Administration Class
  • Bachelors degree in Physics, conferred by Grinnell College
  • High Energy Physics Internship, University of Notre Dame
Last Updated on Monday, 11 May 2009 02:06
 
Social Bookmarks: These icons link to social bookmarking sites where readers can share and discover new web pages.