Current Status: RT @natrin: @wrayjustin presenting a great talk on Cyber Exercises to #netDE #IEEE at #udel #cyberwarfare #hack http://t.co/GLrE3Sws
Google+ | LinkedIn | Public Key | Blog RSS | Interesting News RSS | Twitter RSS | Buzz RSS

Justin M. Wray

185 Jonathan Way North, York, PA 17356717-916-5066


SUMMARY

  • Extensive experience in Network Security implementation and management

  • Frequently participate in Penetration Testing and Vulnerability Assessment - usually as the lead "pen-tester" - and in Incident Response

  • Have discovered, researched, and disclosed numerous vulnerabilities in both networking appliances and operating systems/applications services

  • Have maintained and developed backend databases, using: MySQL, SQLite, PostgreSQL, Microsoft SQL Server, and Alchemy in addition to maintaining and developing front-end web applications using PHP/HTML

  • Experienced in both proprietary and open source applications - participating in the development of many open source applications

  • Long-term programming experience with multiple interpreted and compiled languages (Perl, Ruby, Python, C/C++, etc)

  • Have provided hardware installation and support

  • Managed many projects - including in professional capacities, educational settings, and freelance operations

  • Team Lead on technical projects

  • Training of new employees and lesson plan development


SKILLS

Certifications Held

  • Linux+

  • Security+

  • Certified Ethical Hacker

  • Certified Penetration Tester


Trained for Certifications

  • A+

  • Network+

  • Cisco (CCNA)

  • Red Hat (RHCE)


Proficiencies

  • Linux 2.4 kernel through 3.2, and OSX

  • Windows 98 through Windows 7/2008

  • Sun Solaris systems

  • Microsoft Word

  • Open Office



EXPERIENCE

ICF International
Baltimore, MD

October 2007 - Present


Network Security Engineer and Researcher (March 2009 - Present)

  • Research new projects

  • Test new tools and methodologies

  • Develop intrusion detection systems, tools, and mechanisms

  • Plan and create security solutions

  • Test and audit current and new projects

  • Direct project planning, tasking, and management

  • Maintain, update, and deploy large code bases

  • Integrate solutions into large production environments

  • Engineer network security plans and goals

  • Develop training curriculum for new hires

  • Coordinate and train new hires

Senior Network Security Analyst (October 2007 - March 2009)

  • Real-time analysis of network traffic to detect intrusions and vulnerabilities

  • Coordinated network incident handling with sites world-wide

  • Managed and developed intrusion detection system signature and rule sets

  • Released situation awareness reports

  • Developed intrusion detection systems, tools, and mechanisms

  • Tested new tools and methodologies

  • Advised clients of security risks

  • Engineered network security plans and goals

  • Developed training curriculum for new hires

  • Coordinated and trained new hires


Community College of Baltimore County
Baltimore, MD

August 2010 - Present


Adjunct Professor
School of Applied and Information Technology, Network Technology

  • Teach multiple information security and networking classes

  • Develop lesson plans and exams

  • Deliver class lectures

  • Administer class laboratory exercises

  • Design semester projects focusing upon real-world applications

  • Support, motivate, and assist students


Constellation Energy Group
Baltimore, MD

August 2006October 2007


Level II- IT Support Technician

  • Provided level II technical support

  • Reviewed large scale technical issues

  • Liaison between multiple departments and support center

  • Developed and maintained new hire training schedule and information

  • Managed technical projects and supporting teams

  • Created support tools

  • Authored documentation of knowledge bases and training materials

  • Maintained knowledge bases used within support center and multiple support units


Piraeus International
Baltimore, MD

September 2006 - December 2007


Security Consultant/Network Administrator

  • Designed and implemented security solutions

  • Provided consultation on it business solutions

  • Designed, implemented, and maintained infrastructure

  • Secured and serviced multiple Windows and Linux servers

  • Created incident responses and provided security monitoring


HITech Processing Services
Baltimore, MD

August 2005 - August 2006


Network Administrator / Tech Supervisor

  • Managed public PC repair shop

  • Developed processes for new projects and work

  • Serviced and supported internal computers, printers, and phones

  • Secured internal computers, printers, and telecommunication systems

  • Evaluated technologies for implementation throughout the organization

  • Created and maintained multiple databases

  • Designed and developed Intranet site for corporate communications

  • Managed multiple production and public web servers

  • Monitored multiple production and DMZ servers - as well as Firewalls and Network Intrusion Prevention Systems


Freelance/Consulting
Baltimore, MD -Washington, D.C. areas

2002 - Present


  • Implementation and development of security solutions

  • Network Design and management

  • Application and solution development

  • Support computers, printers, and telecommunication systems


FEATS

  • Discovered a remote denial of service vulnerability in multiple consumer and SOHO network perimeter devices [Security Focus Bids: 15870, 15869, 15864, 15861]

  • Discovered multiple Undisclosed Vulnerabilities

  • Involved in development of multiple projects - including Metasploit, Lak-IPS/Snort, BackTrack, PBNJ, and OpenPKI

  • Contributed to community college curriculum in the area of information security

  • Participate in improvement of CyberWatch (collaboration between multiple two-and-four year colleges to standardize information security coursework, degrees, and certifications)

  • Served as guest lecturer in college-level information security courses

  • Develop information security labs, lectures, and curriculum for two-and-four year colleges

  • Presented numerous speeches to the likes of the National Science Foundation and Military Cyber Security Conference

  • Participate on both offensive and defensive teams in cyber exercises and competitions


EDUCATION

Associates of Applied Sciences Degree (A.A.S)
Community College of Baltimore County, Baltimore, MD

Relevant Coursework

  • Data Communications

  • Network Security & Independent Project on Security Engineering

  • Network Defense/Counter-Measures

  • Cisco (CCNA)

  • Advanced LAN Administration

  • PC Troubleshooting / PC Repair

  • Introduction to Programming

  • Object-Oriented Programming

  • C/C++

  • Linux Administration



AWARDS

  • 2012: Team Captain, Global CyberLympicsTeam ICF

  • 2011-2012: North American Champions, Global CyberLympics

  • 2009-Present: Red-Cell member, Mid-Atlantic Collegiate Cyber Defense Competition

  • 2009: Silver Medal Red-Cell Winner of Cyber Dawn Exercise (Haymarket, VA)

  • 2008: Gold Medal Winner, Mid-Atlantic Collegiate Cyber Defense Competition (Lancaster, PA)

  • 2007: Silver Medal Winner, Mid-Atlantic Collegiate Cyber Defense Competition (Hunt valley, MD)

  • 2006: Bronze Medal Winner, Mid-Atlantic Collegiate Cyber Defense Competition (Lancaster, PA)

  • 20052008: Team Captain, Collegiate Cyber Defense Team, Community College of Baltimore County


Download Resume