|
||||||||
|
Summary of Professional ExperienceFreelance Consulting (2 BYTE CONSULTING - Jan 2003 to Present)VPN and infrastructure re-design - Jun 2006 - Aug 2006Served as the primary consultant on a project to simplify and secure a networking environment including numerous firewall and VPN devices. Chris joined this project to alleviate immediate problems with the VPN infrastructure and was asked to expand the scope to a complete redesign of the access and security technologies deployed within the customer's organisation.High Performance Cluster - Apr 2006 - Ongoing...Provide OS level implementation and on-going support to of a 48 node high performance cluster. Chris joined the team of a local university research group to take their cluster from a rack full of bare bones hardware to a scalable and manageable computing resource. Based on Linux and modern cluster management software, this cluster is in active use for military funded high energy materials research.Manage the development of legacy software updates - Feb 2006 - Jul 2006Managed the development of custom additions to legacy software for a local interpreters company. Chris served as the project manager from the discovery phase, though requirements definition, and finally implementation and acceptance of the modifications to the customer's existing legacy software.Manage the development of custom survey management software - Feb 2006 - Ongoing...Due to his experience in the software development life cycle, Chris was called on to assume a project management role for ongoing development of a Java based survey management system. Responsibilities include co-ordination of tasks for a team of two programmers, a DBA, and a small group of testers. Chris is also responsible for managing the project plan and feature evolution through the life cycle of the software.High Availability Cluster - Jan 2006 - Aug 2006Designed an implemented a linux based high availability cluster including heartbeat monitoring, shared disks and high availability network resource. Chris designed the server environment and managed the migration from the existing production systems to the new high availability environment.Linux "Wargames" LiveCD - Jul 2005 to Ongoing...Based on some of the work from the UNIX "Wargames" project, Chris has consulted on the vision and implementation of a Live CD version to allow laboratory use of security related tools and training environments. This project includes elements of security training, Linux LiveCD development, machine virtualization, software packaging and integration.Production systems support (HR Consulting) - Jun 2004 - Ongoing...Provide ongoing support for development and production Linux servers in an uptime critical environment. Chris is responsible for the ongoing life cycle of Linux servers including vendor upgrades, weekly spot checks, and on-call support.Network Monitoring Appliance - March 2004 to Dec 2005Served as the project lead for the development of a hardened Linux based appliance for the delivery of an off-the-shelf network monitoring product. The appliance architecture uses IPSec VPN technology to enable secure internet communication to a central management console, as well as customised hardening of the Linux kernel, implementation of a file integrity monitoring system, and mandatory role based access control tuned to the specific needs of the installed application. Chris has led this project from the requirements phase through several rounds of development before handing off the project to an internal team staffed by the customer.Gas Sensor Firmware Development - March 2004 to Sept 2004Developed changes to firmware for an industrial gas sensor. Worked with a small team to develop a modbus communications module for a sensor device built around an 8051 based micro-controller. This project included witting firmware updates and testing them for interoperability with other modbus devices.ISP Server Management System - March 2004 to April 2004Participated in the design and implementation of an automated account management system for an ISP based on server agents, a MySQL backend, and a PHP based front-end. Chris was responsible for the database design and interoperability with the existing applications in the customer’s environment. This project brought together capabilities from diverse server OS components and software into a single web based front-end and MySQL based backend management system.UNIX "Wargames" - Jan 2004 to Dec 2004Designed and implemented live “war game” scenarios as part of an online security training course. This project included two Unix challenges and one advanced TCP/IP challenge. Chris was part of a two man team that developed and now maintains these war game servers which challenge students to demonstrate learning and skills in topics such as debugging, exploit development, password recovery, covert channels, and port knocking.Car Wash Firmware Development - Apr 2003 to Aug 2003Developed a set of critical bug fixes to a car wash controller system with running washes deployed across north america. Chris was responsible for witting and testing changes to a QNX based real-time system that was exhibiting a number of potentially dangerous failures.Production systems support (Retail Bookstore) - Jan 2003 - Ongoing...Deployed and continue to support servers, backup systems, and VPN devices for a growing chain of bookstores. Originally brought on to migrate the bookstore management system from NT to Linux, Chris has retained a key support role in all of the server and access systems in use by the bookstore as they continue to open new locations across Canada.Developer & Security Engineer (JETNET INTERNETWORKING SERVICES INC. - 1999 to 2003)IDS design and deploymentTested, installed, and supported IDS systems based on ISS RealSecure Network. Chris was responsible for the selection of IDS technologies, pilot implementations in the lab, installation at customer premises, and ongoing support of the monitoring team. His detailed knowledge of real-world security threats as well as an in-depth understanding of what constitutes expected network traffic in the context of each individual customer was key to effective monitoring and response to messages and alerts from the IDS tools.Security Incident ResponseResponded to a set of security incidents at a customer site with customised IDS and traffic logging. Chris was called upon to investigate and articulate a response to a serious ongoing security incident in a mixed Linux and Windows NT environment. He rapidly deployed monitoring probes to multiple locations within the enterprise running customised Snort and TCPDump rules designed to isolate the nature and source of the illicit activity. A detailed report of findings was then produced to explain where the customers’ security policy had failed and what configuration steps and technology were appropriate to prevent a similar incident in the future.Vulnerability assessment design and deploymentConsulted on the design and implementation of an enterprise level continuous vulnerability assessment system based on ISS Internet Scanner and Nessus. Chris provided valuable input in the planning phases of the system including technology recommendations, development of supporting infrastructure for centralised reporting, and efficient scheduling and rotation of scans. His detailed low-level security knowledge was later called upon to offer support for interpreting the output from the assessment system and providing recommendations based on the details of the reports.Development of a patented security monitoring infrastructureLed the design and implementation of a security activity manager and associated collector agent devices. Over a two year period Chris led a small development team in the requirements analysis and prototype implementation of a distributed security management system. The system allows for a MSSP to collect log and event data from a wide range of security and network related devices and then filter, correlate, and securely deliver that information to a central management site for real time alerting as well as historical reporting. A patent was filed (CIPO App #2390444, USPTO App #20030061346) for this system entitled “METHOD AND APPARATUS FOR SECURE DISTRIBUTED MANAGED NETWORK INFORMATION SERVICES WITH REDUNDANCY”. |
|||||||
|
||||||||
