Resume
Information Security & UNIX Systems Administration
Driven individual with 14 years of Information Security and Unix Systems administration experience always eager to conquer new challenges. Strong background in directing network operations and managing data centers. Experienced in orchestrating activities that ensures system and personnel performance. Specialization in Unix and network security but with a very wide breadth of technical expertise.
Proficiencies
Hardware: Sun Microsystems (E6500, E5500, E3000, E440, E420, E250, E280R, E220R, V480, V440, V240, V210, 280R, V100, X1, T1 105, T1 AC200, Ultra 60, Ultra 5, Blade 150), HP 9000 (K and V class), Dell Poweredge (2650, 3650), Penguin Computing Relion (1X, 130, 140), Network Appliance (F740, F760, F860, F880), Sun StorEdge A1000 arrays, Cisco PIX and Local Director, APC UPS (Symmetra, Smart UPS series), Exabyte tape libraries, Sun StorEdge tape libraries, 802.11x local and long range.
Operating Systems: Red Hat Linux 6.1-9 and Enterprise Linux, Debian Linux (and derivatives), Slackware Linux 8-9.1, SunOS 4.1.x, Solaris 2.5-10, OpenSolaris SXCE and developer editions, OpenBSD 3.3-3.6, IRIX 5.3-6.2, HP-UX 10i, AIX 3.2.5-4.0, Windows NT/2000/XP/Vista/7.
Software: DNS (bind), DHCP, NFS, NIS, NIS+, Samba, Weblogic 4.51-5, Apache 1.3.12–2.2.14, MRTG, NTP, NNTP, SSH, Sendmail, HP Openmail, Postfix, UUCP, Squid, Snort, Nessus, Nmap, Tripwire, Iptables, PF, Checkpoint Firewall-1 4.0-NG, SecureRemote, Veritas Volume Manager, Veritas NetBackup, Legato Networker, LVM, RAID, bash, csh, tcsh, ksh, shell scripting, sed, awk, PHP, Ruby, MySQL.
Career Accomplishments
Reliant Security
March 2009 - Present
New York, NY
Chief Security Architect
Lead a successful team of engineers through design and implementation of Opensolaris network security appliance. Device has multiple network interfaces dedicated to a virtual machine. Each VM is handling a different PCI domain and separation of duties is handled through virtualization. 1,000+ nodes installed and managed world-wide. Design of management framework and robust tool-set for retail enterprise PCI compliance.
Environment:
1,000+ Opensolaris appliances and central infrastructure made up of a mix of Sun and Intel based hardware. Configuration management using puppet. Management of file integrity, intrusion detection, vulnerability scanning, centralized logging, Splunk, DNS, DHCP, Apache, NTP and mroe.
Key functions:
- Lead engineer for the company
- Project management of complex enterprise deployments
- Development of various management tools using Ruby and Bash
- Expedient problem resolution of level 3 issues
Miva Direct
Jun 2006 - March 2009
New York, NY
Information Systems Security Manager
Management of 400+ Linux and Solaris servers in multiple data centers. Responsible for the implementation of security processes and procedures. Design of Intrusion Prevention architecture. Instrumental in improving team and inter-department communications and documentation standards.
Environment:
400+ servers from varying vendors, Foundry Server Iron load balancers, IBM ISS Proventia G series IPS appliances. Management of DNS, DHCP, NFS, NIS, Samba, Apache, NTP, SSH, LVM, RAID and more.
Key Functions:
- Design of enterprise rollout infrastructure for new server deployments
- Responsible for all aspects of information security
- Management of web application security audits and penetration testing
- Design of reverse proxy farm to handle 8+ million users
- Implementation of Intrusion Prevention and other security measures
Johns Hopkins University
May 2004 - Jun 2006
Baltimore, MD
Senior Systems Administrator
Management of cluster for the Center for Language and Speech processing. Redesign of storage infrastructure to optimize for cluster performance. Planning and execution of annual workshop that seeks to solve problems in the language processing field.
Environment:
100+ Dual 2.4Ghz IBM x335 cluster nodes managed by Sun Grid Engine 6. 40+ SunBlade 150 workstations, 19TB of total storage capacity. BlueArc Titan file server, Dell 2650 NFS servers, Sun Netra V100, V120 and X1. Managed all aspects of IT infrastructure including DNS, DHCP, NFS, NIS, Samba, Apache, NTP, SSH, LVM, RAID, switching, router setup, firewall using Shorewall and netfilter.
Key Functions:
- Management of network and computing resources for yearly workshop
- Responsible for all IT security, research and purchasing decisions
- Supervision of 2 jr. Systems Administrators
- Maintenance and administration of 100+ Linux cluster
- Re-design of centralized storage infrastructure
Visilinx
Feb 2000 – Mar 2004
Dallas, TX
Senior Platform Architect
Responsible for the administration of 60+ Solaris and 25+ Linux servers. Design of corporate network infrastructure from the ground up. Lead the Implementation of two regional data centers. Planned and executed two data center moves. Setup and maintenance of all UNIX (Solaris/Linux) servers. Instrumental in determining hardware and software platform supporting convenience stores with 1000+ locations. Responsible for crafting and maintaining information security policy as well as performing internal security audits.
Environment:
60+ Sun Servers ranging from E440’s down to V210’s and T1 AC200’s. 25+ Linux servers on various Intel platforms. Network Appliance filers used for Oracle database storage. Managed DNS, DHCP, NFS, Samba, Weblogic, Apache, MRTG, NTP, SSH, Sendmail, Postfix, Squid, Checkpoint Firewall-1 4.1-NG, SecureRemote, LVM, RAID.
Key Functions:
- Team lead of UNIX department
- 24/7 on call hardware and software support
- Firewall-1/VPN-1 and SecureRemote implementation
- Implementation of Network Appliance filers
- Concept and Design and of new NOC
- Migration from MS Exchange to Sendmail and HP Openmail
- Day to day administration of all UNIX systems (85+ servers)
- Development and Pre-sales liaison
- Implementation of custom corporate intranet using PHP/MySQL
Advance Paradigm (Contract Assignment)
Jan 2000 - Mar 2000
Dallas, TX
Senior Unix Systems Administrator
Support and maintenance of high availability website doing on-line business with pharmaceuticals. Supporting all back end systems of website, Oracle Servers, transaction servers and more. Closely interfacing with DBAs to insure optimum performance. Responsible for site wide backups using Veritas NetBackup.
Environment:
150+ Sun Servers ranging from E6500’s to E440’s in 2 data center locations. A1000 and D1000 disk arrays. Veritas NetBackup and Sun StorEdge L100 Library. Managed DNS, DHCP, NFS, Apache, LVM, RAID.
Key Functions:
- Wrote backup policies and procedures
- Upgrade and re-implementation of backup server
- Maintenance of high availability production environment
- Securing of Solaris server environment and website
- Closely interfacing with DBAs to ensure effective operation
A.B Watley Group
June 1999 - Jan 2000
Allen, TX
Senior UNIX Systems Administrator
Maintenance of all UNIX servers and workstations in the main office and all remote offices and co-lo facilities. Re-design of internal UNIX server setup. Migration of stock trading application from large (150) NT cluster to Sun based hardware.
Environment:
50+ Sun Servers ranging from E6500’s to E440’s and 150+ clustered NT servers in 3 data center locations and several remote offices. A1000 disk arrays and solid state storage for Oracle databases. Managed DNS, DHCP, NFS, Apache, FTP service, NTP, NNTP, RAID.
Key Functions:
- Re-design and maintenance of all internet related services (mail/web/dns/ftp/news/ntp etc)
- Top level Unix support for internal developers
- Migration of corporate network from Static IP assignment scheme to DHCP
- Securing of internal network and Unix servers
- Minor Windows NT administration
Dataprotect (Contract Assignment)
March 1999 - June 1999
Munich, Germany
Senior Information Security Consultant
Network scanning and penetration for large corporate clients. Security Auditing and Recommendation of secure solutions. Complete setup of internal mail, www, dns, ftp, and news servers. Development of an E-Commerce transaction system that utilizes mobile phones (using SMS on the GSM Network) for authentication.
Environment:
Dependent on client location. Performed security evaluations of various sizes of networks and data centers.
Key Functions:
- Implementing and securing web servers for secure transactions
- Standardizing client Information Security Policy
- Design and installation of all internal UNIX servers
- Network scanning and penetration
- Design and implementation of network security measures
i2 Technologies
June 1998 - March 1999
Dallas, TX
Information Security Officer and Sr. UNIX Administrator
Administration of large corporate UNIX infrastructure in a high availability environment. Responsible for designing and implementing worldwide information security policy for the entire corporation. System performance tuning and maintenance of all UNIX servers; Solaris, AIX, HP/UX, Linux. Project Manager for implementation of new e-mail solution migrating from UUCP to SMTP, which included major network redesign.
Environment:
200+ Sun Servers E6500’s to E250’s, HP 9000 V-Class, Network Appliance filers used for Oracle database storage. Sun Enterprise Tape Library 4/1000. Managed DNS, NIS, DHCP, NFS, Apache, MRTG, NTP, SSH, Sendmail, UUCP, RAID.
Key Functions:
- Maintenance of all UNIX servers
- Contact person in case of security breaches
- Ensuring adherence to Information Security Policy
- UUCP and SMTP (Sendmail) configuration
- High level support for corporate clients
- IBM E-Commerce certification of corporate website
Softronic AB
October 1997 – June 1998
Stockholm, Sweden
S-E Banken and Trygghansa
Information Systems Engineer and Security Analyst
UNIX and network administration of a large corporate network containing 200+ servers and 14,000+ end users. Joined the 2 large corporate of SE Banken and Trygghansa after a corporate merger. Administrations all in house UNIX systems, including all UNIX services; DNS, Sendmail, NIS, Apache, etc. as well as TCP/IP configuration on ethernet and token ring. Managing of all firewalls and their configurations. Responsible for analyzing internal and external network security and deciding of appropriate action.
Ericsson
Unix Consultant and Network Security Specialist
Initial setup and production start of development network allowing Internet users to dial regular phone subscribers from the web using VoIP. Configuration of workstations and servers to interface with telephone switches and communications/telco equipment. Setup of Cisco PIX Firewall.
Patent och Registreringsvärket
Network Security Specialist
Consulting on the implementation of an image retrieval system with images stored on tape for secure transmission on the Internet. The images on tape were scanned images of original patents. Analyzing of current network architecture and proposal on how to enhance the configuration to allow the secure transmission that was required.
Sugen Incorporated
Redwood City, CA
June 1997 - November 1997
Information Systems Engineer
Administration of a large network including a wide breadth of operating systems including Windows95/3.1, MacOS, DEC/OSF1, Digital UNIX, SunOS, Solaris, IRIX, Linux, BSD, BSDi and FreeBSD. Responsible for the performance tuning and optimization of the entire network. Principal duties included UNIX system administration on all the UNIX workstations and servers. Segmenting the network in a switched environment employing numerous network monitoring tools and analysis software applications. Maintaining optimal network performance at all times.
Internoc
San Antonio, Texas
April 1996 - February 1997
UNIX Systems Administrator
Responsible for the day-to-day systems administration of eight Internet service providers. Administration of 50+ UNIX systems and modem pools supporting 8,000+ dial-up users. Setup and maintenance of sendmail, DNS, FTP, Apache and shell servers and securing these servers. Installation of Tripwire intrusion detection system. 24/7 on-call support for data center issues.
Education
1995, Computer Science, The Media School of Nacka, Stockholm, Sweden
1994, Technical Engineer, Platenskolan, Motala, Sweden
References
Available upon request.