Hello, I am looking for a security-related position in Austin, Texas. I have broad experience with various technologies and can work with both upper management and techies to solve problems. Below is a quick summary of my background and feel free to contact me with any questions. Brent Stackhouse brentstackhouseat_private InfoSec Specialist - Audits, Policies, Firewalls, VPNs, IDS OBJECTIVE Security is a people problem as much as a technical one and good policies and procedures are critical for success. My passion for security coupled with excellent communication skills and creative thinking will benefit any company that considers security to be a critical need. TARGET JOB Target Job Title: Security Architect Alternate Target Job Title: Security Engineer Desired Job Type: Employee Desired Status: Full-Time Desired Salary: 90,000.00 USD Per Year Site Location: No Preference Description of my perfect job: My ideal job would have various technical (and supervisory, if necessary) responsibilities which would take advantage of my broad experience. Focusing on one area for too long (e.g., three months on intrusion detection alone) is not my ideal since I like a variety of challenges. Career Level: Mid Career (2+ years of experience) Date of Availability: Immediately TARGET COMPANY Company Size: No Preference Category: Other Description of my ideal company: Any company that views information security as a requirement for success. TARGET LOCATIONS Relocate: No US-TX-Austin WORK STATUS US I am authorized to work in this country for any employer. EXPERIENCE 9/2001 - Present CONFIDENTIAL Austin, Texas Network Security Specialist - Tuned and managed Cisco Secure IDS using the Cisco Secure Policy Manager, including responding to alarm events as needed and reviewing IDS logs daily. - Reconfigured and upgraded Cisco Secure IDS from the UNIX Director to the Cisco Secure Policy Manager, and upgraded all IDS 4230 sensors. - Set up and managed Cisco PIX firewalls for perimeter security. - Configured, documented, and maintained iptables firewalls for the QA network. - Helped write and maintain security policies and acted as a leading technical member of the Security Team. - Secured and managed Red Hat and Debian Linux machines running custom banking application code. 1/2001 - 6/2001 SiteStuff, Inc. Austin Security Engineer *SiteStuff is a startup and I was laid off in mid-June; thus, the short time of employment* - Configured and deployed Cisco PIX 525 firewalls in a failover configuration which saved SiteStuff the expense of oursourcing firewall administration to Exodus and provided maximum uptime for SiteStuff’s critical e-commerce site. - Evaluated Network ICE’s ICEpac and BlackICE Agent network intrusion detection management software and CyberSafe’s Centrax host intrusion software. - Developed methodology for locking down Windows NT/2000 and Solaris servers. - Created and led the Security Policy Team, consisting of upper managers; successes included a signed Acceptable Computer Use policy for all employees and a standard login banner for all computers. - Deployed an enterprise anti-virus solution with McAfee ePolicy Orchestrator (including GroupShield for Exchange, NetShield for NT/2000, and VirusScan) which greatly reduced anti-virus management costs and made new virus threats, like the Kournikova virus, irrelevant. 8/2000 - 1/2001 2ndWave Austin/TX System Security Analyst - Created and maintained security policies, especially those relating to customer servers at co-location facility. - Set up and/or maintained seven VPN tunnels on Check Point VPN-1 and Cisco PIX and administrated 5 Check Point (Solaris and Nokia platforms) and Cisco firewalls. - Architected remote access VPN solution using Check Point VPN-1, Check Point SecuRemote, Cisco Secure ACS, and CRYPTOcard key fobs for strong authentication; this was rolled out to not only our Austin employees, but our remote employees in New York and Los Angeles with great success. - Recommended and purchased security infrastructure products such as ISS RealSecure running on Nokia appliances, ISS Internet and System Scanners, and Tripwire. 8/1999 - 7/2000 National Instruments Austin/TX UNIX System Administrator - Deployed ISS RealSecure NIDS and ISS System Scanner on both Sun Solaris and Windows NT systems residing on a high-security Internet segment and communicated incident and vulnerability information to I.T. management. - Initiated a security awareness thrust within I.T. and began identifying primary information security vulnerabilities. - Performed as Technical Lead on evaluation between ISS System Scanner and Tripwire, and Project Lead on both SSH Deployment and Site Monitoring Tools Migration projects. - Scanned critical business systems regularly with Nessus and nmap and evaluated SecureLogix TeleSweep which is a commercial war-dialer that searches for rogue modems. - Supported about 30 core business servers (mostly Sun Enterprise-class, up to 6500), including Oracle database, web, search engine, FTP, mail, and DNS servers. 10/1997 - 8/1999 Texas Association of School Boards Austin/TX UNIX System Administrator - Administrated perimeter servers, including Secure Computing’s Sidewinder application proxy firewall and a Sun Ultra Enterprise 3000 running Netscape Enterprise Server, ISS RealSecure, and Verity Information Server. - Performed security audits of perimeter servers using ISS System and Internet Scanners and sealed security holes as needed. - Responded to penetration attempts logged by either ISS RealSecure or the Sidewinder by tracking source IP addresses to domains, if possible, and notifying domain contacts of the attempts (at least one resulted in an FBI investigation and involved servers in Canada and Germany) – at least 75% of the contacts resulted in a positive response from the domain admin acknowledging that they had either been cracked or a user had violated their Acceptable Use Policy. - Acted as backup UNIX Systems Administrator for TASB’s Policy Services group (30 SPARC workstations) running a proprietary application with an Oracle back-end on Sun SPARC servers. 7/1997 - 10/1997 Photodex Corporation Austin/TX Database Developer/Administrator (Note – I had previously worked with Photodex as a consultant in the same technical capacity, thus the apparently short term of employment shown here) - Programmed a module that generated e-mails to Photodex customers based on more than fifteen different, user-provided criteria. - Improved stability and functionality of the core business database in MS Access 97 by redeploying it with a client-server architecture using run-time versions of Access, instituting workgroup security, and reprogramming the user interface and backend modules as necessary using Visual Basic for Applications. 10/1995 - 7/1997 Eaton Corporation Austin/TX Access Database Developer - Created a database application in MS Access 2.0 (later migrated to 7.0) that was later recognized as exceptional by Eaton Corporation’s CEO because of its user-friendly interface and applicability to other business sectors. Key features included printable forms, a client-server architecture, a custom report generator, and workgroup security. - Assisted in administrating the UNIX servers (SunOS 4.x and Solaris 2.x) for the Engineering Group and performed basic tasks such as account administration and basic troubleshooting. 9/1994 - 7/1995 SEMATECH Austin/TX PC Support Coordinator - Negotiated support call priorities with customers as the primary PC Support liaison and tracked support technicians’ performance via MS Excel. - Assembled existing inventory data in MS Access and created forms and reports for further tracking of inventory. 6/1993 - 9/1994 Lotus Development Corporation Austin/TX Technical Support Rep. - Solved technical support requests for Lotus 1-2-3, Approach, and Organizer by querying a proprietary knowledge-base, duplicating error conditions, walking customers through corrective actions, and escalating calls as necessary. - Presented information to fellow technicians on various difficult topics including database functions in 1-2-3. EDUCATION 9/2000 Check Point 2000 CCSA/CCSE US-TX-Houston Certification 6/2000 SANS GCIH US-TX-Austin Certification SANS GIAC Incident Handling/Hacker Tools, recertified, 5/2002 4/2000 SANS GSEC US-TX-Austin Certification SANS GIAC Essentials, recertified - 4/2002 4/1998 Sun Solaris Certified Administrator US-TX-Austin Certification 12/1988 Wheaton College US-IL-Wheaton Bachelor's Degree Social Science, 3.1/4.0 SKILLS Firewall Administration, Expert, Currently used 4 years Policy Development, Intermediate, Currently used 2 years Intrusion Detection, Expert, Currently used 4 years Vulnerability Assessment, Expert, Currently used 4 years Host Hardening, Expert, Currently used 3 years VPNs, Expert, Currently used 2 years Incident Handling, Intermediate, 2 years __________________________________________________ Do You Yahoo!? Yahoo! - Official partner of 2002 FIFA World Cup http://fifaworldcup.yahoo.com
This archive was generated by hypermail 2b30 : Wed Jun 12 2002 - 13:30:40 PDT