Kirk Larsen

  • San Jose CA

Work History

Work History
2010 - Present

Founder

KSL Product Development
Passionate about Software Development, Innovation, and Rapid Prototyping. Driven to build great software, through great software engineering. • Custom software development • Secure web development • Security and virtualization consulting Developed a PayPal and OAuth enabled HIPPA compliant WordPress for a non-profit Girls Camp registration web site using Gravity Forms
2011 - 2014

Senior Programmer/Analyst

Hedge Trackers
Managed: • All production releases • Performance and monitoring on production • Joint work implementing SSAE-16 type II (for Sarbanes-Oxley) Designed and or implemented: • Re-architected server infrastructure from physical servers to a VMware virtualized environment that scaled on-demand in development and production • Created a continuous Integration & Build Server (Bamboo) • Created Linux virtual machines to run highly performance optimized and secure Tomcat instances using a hardware load balancer • A performance tuned a production PostgreSQL virtual machine and wrote monitoring scripts • Added features to Capella, a financial web based SaaS application that replaced a legacy Real Basic desktop application • Designed integration between Hedge Trackers Active Directory and both Capella application accounts and the Linux virtual machine shell accounts
2006 - 2011

Senior MTS

VMware
Kirk joined VMware January 2006, he was one of the founding members of the VMware Product Security team in R&D. This group was responsible for the security of all VMware products and later integrated into the office of the CTO at VMware. Kirk was primarily responsible for the vulnerability reporting and response work that was done at VMware.  He worked with independent security researchers, security companies and auditors who find security vulnerabilities in VMware products. Kirk established the practice of releasing security advisories at VMware, so that customers were more aware of security patches. He also established the practice of putting CVE information into Knowledge Base Articles and patch release documentation. Kirk helped define the VMware Product Security Policy, which is a a standard set of best practices for all of VMware Research and Development to achieve product releases that are secure out of the box and meet industry compliance standards. Kirk contributed to the existing set of industry standard security best practice documentation around securing virtual machine products including: vSphere 4.0 Security Hardening Guide, VMware Infrastructure 3 Architecture, VMware Infrastructure 3 Security Hardening white papers, He also made a significant contribution to the Department of Defense Security Technical Implementation Guides (STIG) for ESX.
2000 - 2005

System Engineer

The SCO Group
Worked on Linux Kernel Personality (LKP) project, it is a UNIX subsystem that allows a UNIX platform to run Linux binaries unmodified. Created a system call test suite that tested Linux system calls on a UNIX kernel. Performed white box and black box testing for LKP. Worked with major ISVs like Oracle, IBM, SUN, Informix, and Sybase to support major applications running through LKP and to resolve customer issues. Trained sales engineers on LKP internals. Attended Oracle world, Linux world, SCO Forum and Cebit in Hannover, Germany as a company representative to answer complex technical questions.

Education

Education
2000

B.S.

University of California, Santa Cruz

Skills

Skills

Mac OS

Solaris

SaaS

Compliance

Application Security

Perforce

Object Oriented Design

Network Security

Software Documentation

High Availability

Apache

System Architecture

Linux Kernel

RedHat

Databases

Technical Support

TCP/IP

Architecture

Bash

Hardware

RCS

x86 Assembly

CSS

HTML

ClearCase

Shell Scripting

VMware Infrastructure

Cloud Computing

Ubuntu

CVS

Virtualization

Open Source

Computer Security

XML

Security

Software Development

C

Java

Distributed Systems

Software Engineering

VMware

Operating Systems

Linux

Unix