Hello, My name is Robert Sherwood, and I am information security architect looking for a new position. Please review my resume and contact me if you have an opening in Northern Virginia or the D.C. Metro Area. I have been a contractor (not an independant) for the past three years, so I am comfortable in that environment, but I would be interested in working as a permanent internal security architect/engineer as well. Please contact me to requested a formatted copy of the resume below, or to discuss opportunities. I thank you all, Robert Sherwood -----BEGIN RESUME----- Robert Sherwood sherwood_robertat_private Application Engineering System Architecture Information Security Risk Management Objective To apply my knowledge and experience in Risk Management and Information security to a challenging position in Risk Management, application design and network security. Relevant Experience CryptoKnights, Inc. May 2001- Present Engineer Developed a Pluggable Authentication Module (PAM) for the Solaris operating environment which allowed servers and workstations to verify users against a third party access control product. Tested and documented Entrust GetAccess and Baltimore SelectAccess for use by clients and for internal projects. Tested and documented iPlanet Directory Access Router (iDAR), and a beta version of iPlanet Metadirectory 5.0. Concept Five Technologies Feb 2001-May 2001 E-Security Engineer Developed a secure audit service prototype in Java for a financial network. Created an OCSP requestor. Created ASN.1 and DER encoding classes. Created test environment for Tivoli SecureWay Policy Director and Netegrity SiteMinder, including Delegated Management Services. Served as the technical Liason for Concept Five's alliance with IBM. Key Technologies & Security, Inc. Aug 1999-Jan 2001 Information Security Engineer Designed and developed security application in Java. Created requirements and use cases. Designed a secure architecture for a large-scale financial service called Cash Transit. Assessed and documented the security posture of a large corporate network. Installed and configured of Netscape (iPlanet) LDAP and PKI server products in a Solaris operating environment. Installed BEA's Weblogic on both Solaris and NT platforms. Documented, deployed and administered an internal web based application for the Internal Revenue Service. Created and executed a set of Test Cases and Procedures for the certification of IRS call center software. J. G. Van Dyke & Associates Oct 1998-Aug 1999 Computer Specialist Compared and documented the capabilities of several commercial firewalls, installed and configured J.G. Van Dyke's internal firewall. Performed network security assessments for the Army Material Command, documenting my results and assisting in the creation of Network Security Design Documents. Led informal training in the use of several security tools and applications. Gave demonstrations of security products for potential clients. Best Software, Apr 1998-Oct 1998 Technical Support Representative Provided technical support to corporate clients for a tax calculation program. Smart Dynamics, Mar 1998-Apr 1998 Applications Programmer Wrote applications in the C programming language for Schlumberger handheld smart card readers. Technical Experience Web Servers *Installation, and configuration of Web Servers including Netscape, iPlanet, IIS and Apache. *Integration with LDAP Directory Servers for user authentication. *Integration with PKI for client and server authentication *Integration with application server such as WebLogic. *Intergration with authentication and entitlement servers like getAccess, SelectAccess and SiteMinder. LDAP and Directory Servers *Installation and configuration of iPlanet and Netscape Directories, as well as OpenLDAP *LDAP Java SDK programming. *Schema Extension *LDAP Security *LDIF *Installation and configuration of iPlanet Directory Access Router and iPlanet Metadirectory 5.0 Operating Systems *Unix (Solaris, Linux, *BSD) *Windows NT (MCSE, MCP + Internet) *System Administration and server hardening *Programming modules for the Pluggable Authentication Module (PAM) Framework. Unix System Services *DNS, Bind (v8, and v9) *PAM (Pluggable Authentication Modules) *SMTP (Mail Services) *SSH (Secure Shell) Security Tools and Countermeasures *Scanners: ISS, NetRecon, Satan, Nessus *Firewalls (including VPN): Raptor, Gauntlet, Ipf, NetFilter, ipchains *Intrusion Detection Systems: Intruder Alert *Security Configuration Management: Enterprise Security Manager Database *Managing Oracle, SQL Server, Postgresql, MySQL. *SQL Programming *JDBC Programming PKI *Experience installing and configuring Netscape/iPlanet Certificate Management System. *Experience designing application architectures that take advantage of PKI features such as SSL/TLS, and client certificate authentication. Programming *3+ Years programming C *2+ Years programming Java *JDBC *Java/LDAP SDK *JSSE *JCE *JSP/Servlets *Perl, Python, Shell Scripting *Unix System Services Standards Knowledge *LDAPv3 *IPSec / ISAKMP / ESP / AH *SSL / TLS *PKCS7 / ASN.1 *S/MIME Professional Certifications Microsoft Certified Systems Engineer (MCSE), Microsoft Certified Professional, plus Internet (MCP+I) Education Virginia Military Institute, seven semesters credit earned toward a Computer Science degree. -----END RESUME----- _________________________________________________________________ Get your FREE download of MSN Explorer at http://explorer.msn.com/intl.asp
This archive was generated by hypermail 2b30 : Wed Nov 28 2001 - 12:41:22 PST