Expert in web application security in compliance with Federal standards expected of banks.
Experience with full Software Development Life Cycle (SDLC).
Experience with a wide variety of programming languages and platforms.
Quick and enthusiastic learner.
Excellent documentation and communication skills.
Excellent problem-solving skills.
BrainBench.com, 2007 (Transcript ID#: 6345966)
Security Skills Award
Brookhaven College, 2006
Farmers Branch Police Academy, 2004
Farmers Branch Fire Department, 2006
January 2007 to Present
Analysis, design, specification, construction and implementation of multiple small projects.
Worked with: ASP.NET 2.0/VB.NET, AJAX, classic ASP/VBScript, SQL Server 2005, and Perl.
Currently working on prototype of new ASP.NET 2.0 web site for prospective customer.
Ported UNIX shell scripts to Perl for Radius server migration from UNIX to Windows.
Evaluated and suggested improvements to the security of the company web site.
“Inventory System” for tracking assignments of laptops and other equipment to students.
For the “Kintock Project,” I created ASP.NET web service to interface with third-party training system using client Perl source code as specification.
“Mentoring Queue” for automatically assigning and scheduling, then tracking and rescheduling phone calls etc. with students. The sales department was so proud of this tool that they demonstrated it to prospective customers.
“Support Queue” for keeping notes and logging billable time spent helping students with technical problems.
(contractor at Business Access)
October 2006 to January 2007
Closed 22 issues (bugs and enhancement requests) in 2.5 months.
Worked with: ASP.NET/VB.NET and classic ASP/VBScript web pages, SQL Server 2000 stored procedures.
SQL queries for reports against MS SQL Server 2000 database.
(contractor at ChoicePoint)
July 2006 to September 2006
Bug fixes and minor changes to classic ASP web sites.
Enhance C# .NET program to automatically email data in encrypted .ZIP files.
Write a tool in C# (using Regex regular expressions) to scan classic ASP code for common security mistakes.
Security analysis of design and implementation of classic ASP web sites.
Develop SQL queries for reports against MS SQL Server 2000 and Oracle 8i databases.
(the Business Center team)
February 2000 to July 2006
Researched and documented project requirements, designs, and specifications.
Estimated and tracked project effort and progress. Developed Excel templates for estimating and tracking projects. These templates came to be used by the whole team.
Researched and suggested new techniques and technologies to improve the functionality, performance, and security.
Worked with information security personnel to eliminate or mitigate risks in compliance with corporate policies and standards while still meeting business requirements.
Took turns carrying the team on-call pager and handling Production outages and issues.
Interviewed contractors to screen for skills and experience.
Technical design, specifications, and implementation of enhancements to document system (SQL).
InstantDocs enhancement: iterating pages (SQL, VB).
InstantDocs performance enhancement of Spider_XC and its interface to DB/2 on AS/400 (SQL, VB).
InstantDocs enhancement: automatic overflow of one form to another and automatic addition of next form to document list (SQL, VB).
Enhanced ASP code and VB6 components to keep an “audit log” of every page a user visits.
Modified database and T-SQL stored procedures to keep an audit log of security administration activities (i.e.: create, edit, deactivate, or reactivate users).
Wrote Banshee daemon to email users if their accounts are about to be disabled due to account inactivity. (VB, SQL)
Wrote Perl 5 script to take data extracts from SQL Server, modify formatting and FTP to UNIX system.
InstantDocs enhancement: multi-line text fields that cause page to repeat. (VB, SQL)
Developed reusable framework for scripted database releases. (VBScript, SQL, Windows CMD scripting)
Designed and implemented secure PDF delivery via web site. (HTTP, ASP)
Modified C++ DLL to read input from XML string and return results in XML string.
Wrote VB6 component to manage session logins and logouts. This component balanced security with convenience and complied with corporate security standards. Without storing the session ID in a persistent cookie, it limited each user to logging in once at a time, yet allowed the user back into the system if he closed his browser without logging out.
C++ maintenance work in Borland C++ and MS Visual C++ for desktop applications "Quoter 2000" and "Money Q."
Wrote a Perl 5 script to scan VB projects for known problems (e.g.: missing error traps in public methods of DCOM classes, or binary compatibility not enabled).
Wrote DCOM component in VB6 to replace built-in "session variables" feature of MS IIS in order to allow similar functionality in a load-balanced pool of web servers. Also wrote compatibility code to minimize changes to existing ASP pages.
Converted screens from VB5 desktop application to ASP web pages and VB6 DCOM components for"Quoter Xpress."
Wrote Perl 5 scripts to help myself better analyze the VB code and HTML pages written by others.
Extracted field formatting and position information from JetForm 5.1 forms. Wrote a Perl 5 script to capture field information from Java applet code generated by JetForm 5.1 and output SQL code to save that information in a database.
Wrote a VB6 utility to re-insert the above fields back into a PDF generated from the JetForm documents.
Wrote front-end ASP pages for the user-interface of the InstantDocs system.
Wrote stored procedures in Microsoft T-SQL to support querying capabilities of the front-end.
(Manufactured Housing Division)
June 1997 to February 2000
Use Clipper 5.2, JetForm Design 4.2, and pcAnywhere to maintain and support e-form software "DocPrep," which is installed at 18 branch offices and 20 retailers around the country.
Wrote a utility in Turbo C and a script in AWK to stage scheduled updates of software and e-forms at branch offices via NetWare WAN.
Documented the necessary steps of installing and upgrading DocPrep at branch and retailer sites in a checklist style.
Initiated, designed, and used Visual Basic 5.0, Clipper 5.2, and InstallShield Pro 5.1 to write a host (Clipper) and client (VB5) for retailers to receive software upgrades via modem. This project "A-Update" was inspired by Symantec's Live Update utility, which it distributes with all of its software.
Wrote programmer and support documentation for each of the three parts of A-Update.
Used VB5 and AWK to add error-logging code to every subroutine of every module of a large existing application "Title Tracker." Then worked closely with a beta site to debug and stabilize the application.
Used the same technique to add debugging to and stabilize another existing VB5 application, the "Repossession Management System" (RMS).
Documented common RMS and Title Tracker support issues and how to resolve them.
Converted RMS database from MS Access 97 (using JET) to MS SQL Server 7.0 (using ODBC). In the process I was forced to rewrite a great deal of database code and SQL statements that were optimized for JET.
Created an ASP web interface that allows the general public to browse repossessed homes available for sale (http://www.ahfresalecenter.com).
Flew to Portland, OR for two days to offer technical assistance in the process of determining the value of repossessed homes in that region. As a result, changes made to the database and the software allowed for the collection and processing of the needed information in time for an urgent executive deadline.
(contractor at Northrop Grumman)
Level 1 Help Desk Representative
April 1997 to May 1997
Night-shift Level 1 help desk.
Programmer, Technical Support
November 1996 to April 1997
Used Linux, Apache, HTML, FlagShip (a Clipper compiler for UNIX), C, and Bourne Shell to develop back-end CGI software for WorkGroup Solutions' on-line shopping mall.
Used HTML, Clipper/FlagShip, and AWK to develop CGI programming tools for use with FlagShip. My efforts contribute to Webkit, a free package, and WEBworx, a product of WorkGroup Solutions, Inc.
Used Linux, Apache, HTML, Clipper, C, and Bourne Shell to develop web shopping mall and web programming tools.
Technical support for Linux and FlagShip by telephone and e-mail.
Programmer/Analyst, Systems & Network Administrator, Private Investigator
June 1991 to October 1996
Designed, implemented in Clipper 5.0, and maintained comprehensive work-flow software to run every aspect of the business. Software was used almost exclusively from 1992 to 1999.
Designed, implemented in Clipper 5.0, and maintained a mission-critical, modem-based transaction server and client software with which The Integrity Center was earning 70% of its gross revenue when I left in 1996.
Used Clipper 5.0 to customize and integrate third-party accounting system (Accounting for Clipper) with the company's work-flow system.
Administered LAN of six Linux servers, a NetWare 3.11 server, four application servers, a Linux database server (Empress), a Windows NT 3.51 database server (Oracle 7.2), and 15 workstations (DOS, Windows 95, and Linux).
Used Clipper 5.0 to write a program to call Equifax via modem and request and receive personal credit records. This program was fully integrated with the company's work-flow software.
Set up a dedicated Internet connection using Linux, TCP/IP, and TCL (Expect).
Built an Internet firewall using Linux, TCP/IP, C and AWK.
Maintained network security and investigated any potentially hostile activities. Wrote AWK scripts for real-time analysis of system, web server, and firewall logs to detect hostile or unusual activity.
Set up and managed Netscape Commerce and CERN web servers.
Used C to enhance the activity logging of CERN web server, allowing marketing to get e-mail addresses and find out what links on what other web sites brought people there.
Redesigned entire work-flow system using a client-server paradigm, Visual Basic 4.0/5.0, and Oracle 7.2.
Used Perl 5 and SQL to migrate Clipper data on NetWare server to Empress RDBMS on Linux server.
Used SQL and PL/SQL to import and restructure Clipper data on NetWare server to Oracle 7.2.
Fall 1989 - Spring 1992
Minor: Computer Science