Professional Background

• Adam has been providing security solutions to backbone providers and large regional internet service providers for more than 14 years.
• He is equally at home with the management, research, engineering, and operational scopes.
• His recent experience has provided him with security and network implementation, auditing as well as management opportunities.
• His core competencies include: policy and risk management, security and network planning, design and implementation, enforcement and system administration, network and security intelligence, correlation and vulnerability management.

Future

Adam's current aspiration is to move away from hardware based policy implementation and take a more active role in the management of the security policy of the organization helping you reach your business goals as securely as possible.

Personal Background

• Never one to languish about, some of his current extracurricular activities include: Psychology, pinball and antique electronics restoration and repair, High performance vehicle modification and maintenance, home theater systems integration and centralization, implementation of next generation IPTV, acoustical engineering, audio production, beating BattleToads, and much more.
• He is currently engineering custom embedded systems to replace many of the systems in the GM Global Architecture allowing better customization and interaction with open systems like Android. This is also to further his research into the security of the telematics and infotainment systems.
• Adam is a fairly a-typical ENTP type personality.

Professional Experience

Confidential

Network and Security Consultant

• Worked with his clients to provide business minded, ad-hoc solutions, and deployed world class network and security services.
• Working for such companies as Microsoft, Healthsmart, Warner Brothers and others. Provided solutions for day to day operational assistance, special projects and investigations.
• Worked with Brocade Jetcore and ADX server load balancers, F5 BigIP Load Balancers, Brocade MLX-4 and MLX-8 series switches in a layer 3 configuration, and the current line of Brocade access switches Cisco Nexus series, Catalyst 65xx, 3750 switches, Cisco 7204 core routers., Juniper SSG and SRX firewalls, Cisco ASA Firewalls, Palo Alto Network Firewalls, 10G Ethernet,
• Worked in a massive network comprised of Juniper Junos, and Cisco Nexus, routers providing for daily care and maintenance.
• Deployed a solution based around the brocade ADX series to replace the aging Jetcore hardware platform.
• Redesigned and redeployed a new Juniper SA VPN infrastructure.
• Worked with the vendor to provide a deep-dive investigation of the issue of intermittent connectivity to some vips on the production SLB.
• Designed and deployed the next generation security architecture based on Palo Alto Networks 5050 for the production web farm.
• Designed and deployed the next generation monitoring solution based on Cacti, and Nagios.
• Deployed a replacement for the aging Juniper IVE VPN using the latest offering from Juniper, the SA2500
• Designed a new all-purpose authentication infrastructure based on Kerberos, TACACS and Radius.
• Designed an environmental indication system which utilized microprocessors in order to nonverbally indicate system health such as turning the ambient lighting red.

Confidential

Senior Security Consultant

• Worked as a senior consultant for a global consulting firm. Performed network security assessments and deployed next generation security solutions for numerous global scale clients, helping to audit the infrastructure and remediate reported vulnerabilities.
• Worked primarily with network auditing tools such as nmap, Paros, Burp, Qualys, Nessus, Metasploit Framework, Rainbow Tables, Nikto, Snort, TCPDump, and various other scraps of code, hacks and scripts.
• Worked in a variety of environments in terms of structure and architecture. Also audited every piece of production gear imaginable Sandvine, Juniper routers and firewalls, Checkpoint. Almost anything that appears in a standard enterprise environment
• Worked with the clients to identify and define needs not addressed by the current security policy.
• Lead the direction the team would take to approach the current given objective both technically and strategically.
• Formally reported the current state of security for the client and proposed solutions to develop new business and grow the client relationship.
• Developed project plans, and managed the team of 3 to 5 consultants, from execution to project completion.
• Acted as an engagement manager. Was responsible for directing all engagement activities, and resources, while continuing to maintain budgetary compliance.
• Worked with many big name clients, many of which I am still in touch with to this day. Clients such as BellSouth now AT T , Sprintlink, Sprint Wireless, Time Warner Cable, Canon USA, Discover Financial, San Diego County Government.
• Performed many tasks penetration testing, network auditing, forensics and incident response, firewall administration, in almost every capacity advisory, deployment, operations and engineering.
• Worked to implement an automated report methodology based in shell scripts and python to allow for the extremely efficient reading of security reports and generation of custom client reports.

Confidential

Network Security Engineer

• Provided the security for the various tools required to provision the 3.9 million customer cable modems on the Cox Communications network. This included: DHCP, NTP and TFTP.
• Responsible for the build, design and implementation of new networks for vertical services as integrated within the central IP product.
• Worked primarily with Juniper Netscreen Firewalls, Foundry Big Iron, and Fastiron switches, FreeBSD running a variety of services, such as Snort, Apache, Mysql, as well as a bevy of custom designed scripts, open source software, tools and telemetry.
• Worked with Cisco GSR and OSRs which were aggregated to Cisco Catalyst data center switches. These machines were configured with HSRP and used OSPF as the IGP and of course VTP and spanning tree.
• Designed, engineered, configured and deployed a carrier class nationwide backbone. Including the design and implementation of the entire security infrastructure,
• Engineered a security infrastructure to help to secure the pre-existing classes of networks, such as internal Network Operations Center networks and Information Technology networks.
• Administered a vast network of firewalls. Including deployment and troubleshooting of hardware, software, and rule design and optimization in a large-scale production network, utilizing Netscreen. Checkpoint and Cisco PIX Firewalls.
• Deployed and maintained a company wide TACACS Authentication system, including configuring the servers, adding users, writing custom scripts and software to make the software self-service.
• Designed and deployed a nationwide customer facing VoIP installation. I was responsible for all aspects of the project ranging from advising on the initial equipment requirements to physically installing the security architecture required to insure compliance with corporate security policy.
• Developed and maintained the a custom version of a bug tracking system for use as a departmental ticketing system in PHP.
• Developed a secure restricted bastion host using FreeBSD and Dialog.

Confidential

Senior Engineer, Network Security Network Operations Center

• Responsible for the state of security within the organization in an on-call 24x7 basis. Responded to situations on a on-call basis. Acted as a liaison between the Network Security Department and the Network Operations Center. Responsible for all policy changes with respect to both departments and tracked, informed, educated and insured compliance with current security policy.
• Largely worked with FreeBSD using ipfw as the firewall platform of choice.
• These systems were implemented in front of large-scale networks such as the regional call centers and back end administration networks. Cisco routers were used at the core, and aggregated to Foundry Big Iron 4000, 8000 and the FWS24 2G workgroup switches with spanning tree protocol. OSPF was the IGP of choice and BGP was run on the exterior.
• Worked to troubleshoot and repair a large-scale corporate network consisting of more than 10 different call centers, with each call center having a staff of 1,000-2,000 employees. Defined new security policy and enforced existing policies within the organization.
• Protected the interior 'trusted' network from the 1.2million users on the customer networks as well as from the internet as a whole.
• Recognized the need for a senior engineer and pioneered the position which is still filled in the organization today
• Acted as a project manager for large multi department affecting security engagements, managing the security teams communication within the department and company as a whole
• Assisted in all projects as hands or eyes and ears, to aid deployment of new networks and/or services as well operations of existing networks and services.
• Trained the NOC and other departments in the proper procedures, and use of the network facilities throughout the organization.