I am an IT security professional with over 20 years of experience. My career objective is to work as a senior information security expert with a technical focus. My ideal work environment allows me to be a bridge between technical and non-technical teams, and to solve real-world business problems through the application of technical skills, creativity, and hard work.
My experience and interests are in the areas of corporate IT security, web application security, and information risk management.
October 2014 to Present
Responsible for architecture, strategy, subject matter expertise, and project management for a wide range of IT security projects. Demonstrated technical leadership in key projects, including web security scanning and penetration testing, bug bounty program, cloud security risk assessments of third party vendor, incident response, authentication, and Public Key Infrastructure (PKI). Experience in developing and presenting security training materials, development of technical standards and practices, and creation of security strategies and roadmaps.
August 2000 to October 2014
Subject matter expert responsible for security architecture, strategy, and project management. Provided technical leadership in key projects, including web application security, vendor risk assessments, security evaluation of Software as a Service (SaaS) providers, security scanning, cloud security, Identity and Access Management, Service Oriented Architecture, authentication strategy development and execution, and Public Key Infrastructure. Experience in developing and presenting security training materials, development of technical standards and practices, and creation of security strategies and roadmaps.
February 1998 to August 2000
Responsible for administration of Unix-based web and LDAP servers, and for development of Intranet web applications. Experience with web server configuration and maintenance, web page design and programming, shell scripting, web security, and process documentation.
December 1991 to February 1998
Responsible for the installation, configuration, troubleshooting, and support of all computer hardware and software. Network administration of Windows, Novell, and Linux servers, and with Windows-based workstations.