Work History

Work History

Senior Network Engineer

Trusted Information Systems

Supported users and resellers of Gauntlet firewall product and related TIS products in all aspects of system and network administration, including OS-related problems, DNS, sendmail, routing, and protocol-level application. Managed the Gauntlet Firewall and related products for all operating systems on which it ships (BSD/OS, SunOS and Solaris, HP/UX, IRIX, Windows NT and Windows 95 [PC Extender]). Participated in consultation-based remote administration and administrative consultation of customer LAN/WAN setups. Managed lab and testing machines, especially as pertains to firewall installation and setup. Conducted training sessions in setup of various platforms (BSD/OS, Solaris, and NT). Drafted, maintained, and reviewed technical documentation pertaining to security of various heterogeneous network configurations with regard to the Gauntlet firewall. Reviewed, maintained, and updated security-related shell scripts, using vi. Provided training, consultation, and mentoring within the department to new members, including security, system and network administration, protocol-level security concerns, and network management in a dynamic, heterogeneous environment. Personally addressed emergency security situations in user base, providing immediate technical response, and took ownership of ticket items that had been escalated for technical or administrative reasons.

Senior Systems Engineer

CyberGuard Corporation

Went on sales calls, met with prospective customers to discuss network needs. In response to RFPs, architected and implemented solutions to customer network security problems. Wrote proposals for engineered network security solutions. Performed demos of CyberGuard'sproducts at trade shows and customer sites. Performed installations of CyberGuard products at customer sites and integrated CyberGuard's products with the rest of the customer's network, including DNS, email, and load balancing. Provided training for customers/resellers in network security and CyberGuard's products. Provided pre-sales and post-sales support to users on both UNIXWare and NT platforms of CyberGuard's products, and associated OS-related problems, DNS, mail, routing, and other protocols. Managed a test/lab network of machines to simulate customer problems and situations. Acted as second-level backup to Technical Support team. Wrote white papers, articles, and technical support documents as needed.

Dec 2008 - Present

Contributing Author and Peer Reviewer

Taylor and Francis

Write and review articles for ISC(2)'s peer-reviewed technical journal. Research and contribute articles to Taylor and Francis' other peer-reviewed journals.

Feb 2012 - Present

Guest Blogger

Crain's Cleveland Business

Write short articles on Information Security-related topics tailored to the needs of business people. 

Jul 2012 - Present

ISSO

ISHPI

Serve as the USCG D17 ISSO and work with the technical staff and program managers to draft, review, approve and disseminate C&A documents for all programs and systems, including General Support Systems (GSS), Major applications (MA), supporting subsystems and Platform IT (PIT). Continuously review, analyze and update USCG system security policies, risk assessments, vulnerability assessments and other documents to ensure that the development of C&A documentation is in compliance with the most recent, appropriate regulations, requirements, legislation and standards. Create system security documentation policies, procedures, risk assessments, vulnerability assessments and other documents for new USCG systems to ensure that the development of C&A documentation is in compliance with the most recent, appropriate regulations, requirements, legislation and standards.

May 2010 - Mar 2011

Sales Engineer, Mid-Atlantic Region

Tenable Network Security

Pre-sales support of Tenable product line. Assist in evaluations; write proposals and white papers; respond to RFPs; write and deliver presentations online and in person. Install, maintain, and use products in a virtual lab setting, using VMWare and other tools. Perform installs, walk-throughs, and training on-site and through desktop sharing application. Attend and present at conferences, shows, and quarterly roundtables. 

Sep 2009 - May 2010

Senior IA Systems Engineer

Capstone Corp.

DoD Contractor in the Information Assurance division within the 93d Signal Brigade (NETCOM). Advise and assist installations in the 93d's AOR (Area of Responsibility) on DoD/Army regulation, policy and best practices to assure information security. Travel within AOR to assist with hands-on issues relating to IA inspections. Respond to RFIs about Army regulation and policy relating to IA. Provide weekly briefings on IA posture to 93d IAPM (IA Program Manager). Provide technical assistance regarding IA tools such as vulnerability scanners, IPS/IDS, and patching utilities to AOR as needed.relationship with McAfee Support personnel. Respond to customer questions and issues. Maintain relationships with McAfee Sales and Support personnel.

Nov 2008 - Mar 2009

Consultant

Palladian Technology

Travel to customer sites and perform deployments of McAfee product line for DoE sites. Install and configure McAfee product line to customer specifications. Train customer on use of McAfee products. Establish customer relationship with McAfee Support personnel. Respond to customer questions and issues. Maintain relationships with McAfee Sales and Support personnel.

May 2007 - Sep 2008

Sr. Systems Engineer

McAfee

Pre- and post-sales support of entire McAfee product line, especially Risk Analysis and Compliance products and IDS products. Assist in evaluations; write proposals and white papers; respond to RFPs; write and deliver presentations. Meet with product management and development staff to help drive product direction. Install, maintain, and use products in a virtual lab setting, using VMWare. Write and test SQL queries to massage and report data. Perform installs, walk-throughs, and training on-site and through desktop sharing application. Write and test comparative analyses of McAfee products versus other companies’ offerings (Tenable, Tripwire, Symantec). Awareness of governmental and DoD regulations such as FISMA, AR 25-1, 25-2, and PCI regulations.

Aug 2003 - May 2007

Tier III Technical Support Analyst, Risk Analysis Division

McAfee

Senior member of the Tier III (highest level) technical support team for risk analysis software and appliances. Support pre- and post-sales customers via phone, email, and desktop sharing in configuration and administration of network scanning engines, web management systems, and databases. Perform installs, walk-throughs, and training on-site and through desktop sharing application. Troubleshoot possible false positive or false negative vulnerabilities, and modify vulnerability checks as required. Write and test SQL queries to massage and report data. Participate in development and project management teams. Use other scanning products such as Nessus and nCircle to compare with results of McAfee product (Foundstone). Document solutions for online knowledgebase (customer-facing and internal). Participate in teams and initiatives to promote world-wide support initiatives for risk analysis and other McAfee products. Attend Development staff meetings as Support representative. Act as dedicated rep for "hot" customers. 

Mar 2001 - Sep 2002

Network Security Analyst

Screen Actors Guild - Producers Pension and Health Plans

Principal member of the IT services team, directing networkadmins in attaining department goals. Responsible for overseeing and administrating all perimeter and internal security procedures of the company. Set security policies for and administered company firewalls and perimeter routers. Designed and architected security systems and networks to protect server farms, including assessing different vendors and penetration testers. Set up user internet access policies and accounts. Drafted company security policy. Monitored and reported on system logs relating to internet access. Set up and maintained VPN between company and various vendors and users. Assisted and consulted in setup and maintenance of ftp, web, and webmail servers for the company. Assisted with preparation of disaster recovery site. Presented proposal (later implemented) for reorganization and renumbering of company's network.

Mar 2000 - Mar 2001

Client Services Manager

Digital Boardwalk

First point of contact for all internal and external (customer) users of Digital Boardwalk's networks and services. Monitored all contracts to ensure that service level agreements and statements of work were being met. Supervised small staff consisting of an intern and two sustaining engineers. Maintained client contact lists, implemented security and escalation policies, implemented user training procedures. Drafted budgets and reported on budgeting needs to VP of Engineering and CFO for approval. Directed heterogeneous customer server hosting network and associated servers and procedures, including DNS, scripts, email, database, load balancing, and backup. Also directed heterogeneous internal network, including DNS, email, and user account administration. Acted as company hostmaster and webmaster. Performed routine maintenance on customer web sites as requested, from simple HTML changes to more complicated ASP coding. Coordinated, implemented, and maintained web site "hit" reporting solutions for customers. Designed and managed the company intranet site, including architecting and implementing a web-based Help Desk application to deal with in-house requests for IS/IT.

Education

Education

C.A.C.I. Language Center

Basic course in Japanese.

USDA Graduate School

Courses in Data Processing while employed by the Executive Office of the President.

Sep 1978 - Jun 1981

Honors

Pittsfield High School

Outstanding Foreign Language Student Award; National Merit Scholarship Finalist; School Newspaper; Senior Quiz Team Captain

Certifications

Certifications
Jan 2007 - Present

Security+

CompTIA
Jun 2005 - Jun 2014

CISSP

ISC(2)
Jun 2000 - Jun 2002

Microsoft Certified Professional

Microsoft

Security Clearance

DoD Secret Clearance, Dec 2009 - Present

Interests

Musical performance, speculative fiction, fiber art