A PDF version of this document is available on both scribd and locally

• Fifteen years technical experience, eight years design, three years business/management.
• Expertise in customer needs assessment and client project management.
• Detailed knowledge and experience with system migrations, improving security and reliability.
• Proactive and structured approach to projects, whether as lead or manager.
• Accustomed to delivering and supporting quality development in a fast-paced, sales-driven atmosphere.
• Strong belief in openness and honesty in all personal and business interactions.
• Dedication to continual self-driven improvement of professional skills.

• Performed ongoing reviews of all vulnerabilities for key systems belonging to 10+ companies.
  • Proactively monitored coming threats against infrastructure; patched and mitigated as necessary.
  • Reviewed security patches for all systems: Windows, Linux, Solaris and third party applications.
  • Determined and implemented mitigation strategies when patches not available or applicable.
  • Analyzed networks and planned segmentation where it would most reduce scope of attacks.
  • Conducted vulnerability scanning and mitigation as required by the PCI-DSS.
  • Conducted overall security assessments, including data, system, network and personnel.
• Incident Response Lead - managed isolation, determination and correction of security incidents.
• Reviewed/analyzed/wrote security policies for companies varying in size from 100-10,000 employees.
• Analyzed and recommend technologies and vendors for internal and client environments:
  • Intrusion Detection - protecting against known bad network traffic, unusual traffic and access patterns
  • Anti-Malware - protecting against spyware, adware, phishing, trojans, bots, encryption attacks, viruses
  • Configuration Management - providing imaging, updating, privilege lock down, endpoint firewall
  • Spam Management - balancing between legitimate commercial email and undesired email
  • Web Filtering - providing access limitation and monitoring of employee Internet usage
  • Linux Desktops - emphasis on ease of use in educational, corporate and retirement sectors
  • Code Documentation - providing automated API documentation creation, reducing developer burden
  • Collaborative Documentation - enabling documentation of various systems and processes
  • Project Management - focus on lightweight multi-platform systems for use throughout organization
  • Source Control - providing easily-used and reliable code versioning and rollback
• Analyzed and recommend regulatory compliance against PCI-DSS, HIPAA, FDIC, FFIEC, SOX
• Designed and deployed Sophos-based anti-malware solution for over 300 protected hosts.
• Consolidated legacy systems to modern and hardened systems using development/production mirroring.
  • Email, Web, Database, DNS, and DHCP servers - affecting most of the pre-existing infrastructure.
  • Migrated to modern Linux systems, for improved reliability, flexibility and supportability.
• Implemented network-wide monitoring system of all operational servers and network equipment.
• Analyzed risks due to departing and transitioning employees.
  • Removed unused user accounts and performed password changes and code rollovers.
  • Performed data recovery and used data inference to determine likelihood of future actions.
  • Continuously reviewed users and access levels, adjusted as roles changed.
• Developed firewall change request web application to streamline and standardize firewall requests.
• Monitored use of corporate information on the Internet to maintain awareness of employees' actions.
• Scheduled deprecation for legacy systems based on increasing risks of aging hardware and systems.
• Deployed Astaro Security Gateway and Solutionary Network Intrusion Detection System (NIDS).
• Designed secure DMZ, Internal zones for eventual regulated environment and confidential data.
• Designed distributed and scalable vulnerability scanning system for multiple class B networks.
• Ensured that Alliance and clients are in compliance with software licenses for all software in use.
• Conducted weekly meetings with key department leaders to ensure steady progress on security issues.
• Performed highly complex data and contract analysis of multi-party code escrow dispute.

• Deployed technologies and methodologies to improve operations.
  • Documentation-management systems improved employee communication and process documentation.
  • Version control system allowed more developers to work on one project and provided error recovery.
  • methodology improved efficiency across the operation.
  • Monitoring systems served to move the company in a more proactive direction.
  • Centralized system for software and licensing management, resulting for considerable time savings.
  • Rebuilt internal email lists and related email flow.
  • Extended version control system to serve client needs as well as internal.
  • Analyzed use of internal software licensing, devised standardization and upgrade path.
  • Programmed scripts to merge operations data with billing.

• Overhauled and organized internal office spaces:
  • Hardware Inventory - determined standards for what to keep, organize remaining stock.
  • Data Center - organized layout of Data Center to maximize emergency repair efficiency.
  • Software Inventory - identified and organized software for media control and license maintenance.
• Project Manager for:
  • Microsoft Iowa Class Action Settlement reimbursement
  • Replace backup software and rollout of new system
  • Migrated legacy Citrix clients to self-hosted Citrix implementation by rival company
  • PCI compliance for nine-branch local non-profit
  • Migration of web application suite to new hardware and technology refresh
  • Ongoing security improvements in all business divisions
  • Web statistics collection and display system.
• Managed company-wide documentation effort:
  • Designed and documented operations procedures for many systems and job roles.
  • Classified all servers and server roles, which assisted in emergency recovery and deprecation plans.
  • Rationalized naming conventions, updated all systems to use the same name in all contexts.
• Overhauled business models:
  • Web hosting - focus on services-provided rather than bundling and guesswork
  • Email hosting - outsourced to business partner running Communigate Pro, migrated existing
  • Anti-Spam - transitioned from Google to TestudoData management, migrated existing
  • Anti-Malware - added service levels, implemented new solution, migrated existing
  • SSL Certificates - simplified offering, saving several thousand dollars annually
• Designed configuration management / imaging solution for 125 hosts in the banking industry
• Managed on-call schedule for all network technicians.
• Overhauled configuration of RADIUS to streamline operations and true-up billing.
• Company data administrator, performed data analysis, expiration, archiving and centralization.
• Systems-lead planned and performed data center move: 40+ servers, 100+ employees and 500+ clients.

• Routinely gave presentations on technology and security to the business community.
• Attended business/social events, representing the company, and brought in several leads each month.
• Identified buyer and assisted sale of unprofitable portion of our business.
• Managed the technical and business sides of partnerships.
  • Sophos
  • Astaro
  • Solutionary
  • Postini / Google / TestudoData
  • Microsoft
  • Novell (technical only)
  • Thawte
  • Perimeter
  • Syncsort
• Performed technical and business reviews preceding acquisitions.
• Served as technical lead in group of consultative business leaders, tying together numerous industries.
• Served as research, technical and security lead on RFP response teams for:
  • IT Assessments for governmental institutions
  • Disaster Recovery and Business Continuity Planning for national insurance company
  • Internet-based Disaster Recovery for International, publicly-traded, Fortune 1000 company
  • Entrepreneurial Web Site for Governmental Business
  • Large, scalable content management system for state agency
  • Customer Relationship Management system and knowledge base for national consulting group
  • Vulnerability Scanning solution for federal governmental department
  • Online educational system for state-level governmental department
• Devised multi-year improvement plans and match solutions to client budget cycles

• Designed and implemented new server standards for core business services.
• Documented all server configurations, histories, and contracts as well as standardizing operations.
• Analyzed and implemented security patches on 40+ systems monthly.
• Developed Linux-based small business server and services, focus on security and email.
• Designed and led ground-up re-implementation of multi-platform email system:
  • Saved $80,000 yearly through reduced personnel requirements.
  • Reduced call volume by 90%.
  • Reduced spam volume by 95%.
  • Dramatically decreased troubleshooting time.
  • Removed numerous mail loops resulting in faster and more reliable email delivery.
  • Continuously monitored and tuned anti-spam solution for bypass attacks and specific email types.
• Company-lead for migration and centralization of legacy systems.
  • Migrated legacy and unsupported Linux to modern Enterprise-quality Linux.
  • Migrated numerous IIS-sites to a newly built, standardized and secured IIS system.
  • Migrated various versions of mysql and Oracle instances to secured and recent versions of each.
  • Migrated postgresql services to mysql to reduce development and administration costs.
  • Developed standards for PHP, Ruby, Drupal, Joomla, Moodle and Wordpress hosting.
  • Built Ruby on Rails self-managed hosting platform.
  • Overhauled client-focused web statistics system for accuracy, speed and support of new technologies.
• Performed complete reimplementation of genetics processing system, focus on security and stability.
• Assisted with ground-up re-implementation of DNS and DHCP system, improving resilience and stability.
• Migrated SCO OpenServer installations to both VMWare and new hardware for archival purposes.
• Created emergency disaster recovery servers for failing but critical clients' legacy servers.
• Configured custom monitoring for troubleshooting trend analysis and alerting.
• Rebuilt PGP-based encryption system for FTP transfers of HIPAA-controlled information.
• Maintained legacy services for backups, email, network connection sharing and monitoring.
• Configured eDirectory to support Free Radius and replace internal stand-alone RADIUS implementation.
• Set up traffic shaping and multi-routing on Linux-based network appliance.
• Installed and maintained CRM system to provide sales metrics for executives.
• Designed and implemented multi-server virtualized web/db system with data synchronization and failover.

• Worked with third parties and partners to line up resources for integrating development.
• Designed and managed development of web-based file transfer system.
• Designed system upgrade and deployment strategy for growing Internet-based service business involving:
  • Clustering for reliability and scalability
  • Low initial investment which only increases with increased revenues
  • Low cost and scalable NAS connectivity
  • Migration to supported operating system and databases, for improved performance and security
• Deprecated, standardized and implemented existing and new technologies to better support developers.
• Designed and implemented version control systems for both documentation and code management.
• Extended internally-developed Linux appliance to support traffic routing and advertising opportunities.
• Designed secure web services for large multi-national companies.
• Designed source control, bug tracking and inline-documentation system for local development firm.
• Completely overhauled unsynchronized dev/test/prod systems to force future synchronization.

• Taught students the ten domains of Information Security to prepare them for the CISSP exam.
• Placed emphasis on practical security concerns within their respective professional environments.
• Added additional teaching of test taking, studying and memorization techniques.

• Novell Cluster Services for Linux and NetWare
• FreeBSD 6 Unleashed
• X Power Tools

• Migrated workstations to open standards, then to Linux systems, reducing licensing liability.
• Designed, implemented and administered Linux based products and solutions, providing:
  • Web interfaces for the on-line viewing, editing, and printing of statements and letters.
  • Web-based interface to third party command-line based systems.
  • Ability to pay on-line via existing e-commerce vendors.
  • Optional inclusion of content-aware banner advertisements.
  • Extensive customizations to allow clients and clients' customers to re-brand systems.
  • Simple creation of buttons and banners for system branding.
  • Web-based management console.
• Dramatically improved security via strong authentication and seamless logins.
• Designed websites for Clement Claibourne, Mail Services and several clients.

• Dramatically improved security by implementing strong authentication and system standards.
• Ensured products' technical compliance with the GLBA (Graham-Leach-Bliley Privacy Act) and HIPAA.
• Devised password, role, and data management policies for improved security and privacy.
• Determined firewall and routing rule sets for various clients' needs.
• Designed, implemented and administered Linux based products and solutions, providing:
  • Secure authentication for varied user levels with seamless connection to third party systems.
  • Disaster recovery redundancy with automated synchronization to production systems.
  • "Self Aware" systems to help automate security maintenance.
  • Virtual LAN access to client networks.
  • Interoperability with clients' networks via different proprietary VPN software.
• Designed and oversaw development of multi-platform and multi-algorithm encryption/decryption system.
• Designed policies for the secure handling of sensitive customer data.

• Transitioned from SCO Unix to joint Linux and Windows systems for considerable cost savings.
• Created customized Linux distributions based on Red Hat Linux technology.
• Designed, implemented and administered Linux based products and solutions, providing:
  • Automated file transfer, conversion, and processing.
  • Complete email handling system, internal and external for universal access.
  • Internal code and documentation maintenance.
  • Development and support issue tracking.
  • Automatic data compression, regaining 90% of system resources.
• Researched, installed, and configured tools to aid business processes, resulting in large operations savings.
  • Collaborative Documentation
  • Project and Version Management
  • Automated Product Installation
• Increased reliability by upgrading a home-brew system to a standardized Linux distribution.
• Designed and oversaw development of Windows-based print archival system.
• Merged diverse networks together following acquisition by Mail Services LC.
• Managed 20 Linux-based Internet-connected servers and 40+ SCO Unix-based LAN-connected servers.

• Developed proof-of-concept systems for sales endeavors. Production systems build after sale closed.
• Developed traveling demonstration systems for sales people to use at trade shows.
• Accompanied Sales to demonstrate systems and answer technical questions.

• Host and run meetings as President of the local Linux Users' Group.
• Head of Cyber division of Iowa's branch of Infragard an FBI-vetted business/government collaboration.
• Hosted and ran meetings as President of the local Virtualization Users' Group.
• Attend local monthly meetings as a security and technical community representative:
  • Agile Users Group, Iowa Bloggers, Information Systems Security Associations (ISSA)

• May 2009 - Internal presentation on the features of the new GroupWise 8 email system
• April 2009 - Presentation on Web Application Security to Des Moines Web Geeks
• March 2009 - Presentation on Virtualization Security to ISSA
• March 2009 - Presentation on Linux Security to Infragard
• April 2008 - Presentation on Web 2.0 in Business to Johnston Chamber of Commerce
• February 2008 - Presentation on Security Policy to Information Systems Audit and Control Association
• February 2008 - Interviewed on Workplace Productivity by The Juice
• January 2008 - Presentation on OSX Security to the Des Moines Mac Users Group
• January 2008 - Presentation on SQL Injection and Cross Site Scripting to the Iowa Ruby Users Group
• January 2008 - Presentation on Certification and Information Warfare to Infragard.
• September 2007 - Ran several sessions at Bar Camp
  • Linux Paradigms
  • Monitoring Best Practices
  • How to Promote Yourself on Web 2.0
  • Job Searches in the New Economy
• May 2007 - Presentation on Web 2.0 in Business to the Iowa IT Legal Administrators
• November 2006 - Guest-lectured at DMACC Linux Administration Class
• August 2006 - Presentation on Technology for Entrepreneurs for Transition Capital Management
• June 2006 - Presentation on wiki at the Central Iowa Linux Users Group
• June 2005 - Presentation on Certifications at the Central Iowa Linux Users Group
• April 2005 - Presentation on Linux in Schools at Iowa Training Days

• Limited free technology and security consulting for community entrepreneurs.
• Designed and maintained a server which provided web, database and email functions for nonprofits.
• Created, designed and managed various community driven projects and websites:
  • Theater Management - atatk.sf.net ('04).
  • Convention Planning - www.demicon.org (website '00-'03, codebase '00-'08)
  • Training for Unix Administrators - trouble-maker.sf.net ('04)
• Designed and implemented a kiosk system with speech synthesis to aid visually-impaired attendees.
• Designed multi-user convention management system including kiosk and Palm (PDA) operation modes.
• Migrated associates from Windows to Linux for improved stability, security and performance.

• Analyzed applications for network inclusion, with a focus on stability and security.
• Audited existing applications for adherence to security requirements.
• Secured Windows and Macintosh systems against unauthorized users and malicious applications.

• Programmed system to aid high-energy particle analysis.
• Trained other interns in the use of the Unix operating systems.

• CISSP - Certified Information Systems Security Professional
• GIAC-GCIH - GIAC Certified Incident Handler (in progress)
• GIAC-GSLC - GIAC Security Leadership Certification
• RHCE - Red Hat Certified Engineer
• NCLP10 - Novell Certified Linux Professional 10
• ACE - Astaro Certified Expert

• 504 Hacker Techniques, Exploits and Incident Handling Class
• Engineer Training, achieved Astaro Certified Engineer certification
• May - 2008 - Attended Microsoft Licensing training
• January 2008 - Taught SANS 414 CISSP Prep Class
• December 2007 - Attended Compellent SAN Administration Class
• 512 Management class
• Advanced Administration Class

• Bachelors degree in Physics, conferred by Grinnell College
• High Energy Physics Internship, University of Notre Dame