Summary

  • Executive Leadership experience for a Cyber Security company
  • Extensive experience in Network Security implementation and management
  • Frequently participate in Penetration Testing and Vulnerability Assessment - usually as the lead "pen-tester" - and in Incident Response
  • Have discovered, researched, and disclosed numerous vulnerabilities in both networking appliances and operating systems/applications services
  • Have maintained and developed backend databases, using: MySQL, SQLite, PostgreSQL, Microsoft SQL Server, and Alchemy in addition to maintaining and developing front-end web applications using PHP/HTML
  • Experienced in both proprietary and open source applications - participating in the development of many open source applications
  • Long-term programming experience with multiple interpreted and compiled languages (PHP, JavaScript, Perl, Ruby, Python, C/C++, etc)
  • Have provided hardware installation and support
  • Managed many projects - including in professional capacities, educational settings, and freelance operations
  • Team Lead on technical projects
  • Training of new employees and lesson plan development

Skills

Certifications Held
  • Certified Ethical Hacker
  • Certified Penetration Tester
  • Certified Network Defense Architect
  • Security+
  • Linux+
Trained for Certifications
  • OSCP
  • Cisco (CCNA)
  • Red Hat (RHCE)
  • Network+
  • A+
Proficiencies
  • Linux (Kernel 2.4 - Current)
  • Microsoft Windows (95 - Current)
  • Apple macOS
  • BSD & Sun Solaris systems
  • Microsoft Office (Word, Excel, Powerpoint, Project, etc)
  • Open Office

Experience

WraySec, LLC
Remote, and International
September 2015 – Present
Chief Executive Officer
  • Manage geographically disperse Cyber Security startup
  • Provide executive leadership and company vision
  • Engage with clients for product and service scoping and delivery
  • Coordinate with internal teams for project execution
  • Services include:
    • Security Engineering
    • Intrusion Detection
    • Incident Response
    • Vulnerability Assessment
    • Penetration Testing
    • Red Teaming
    • Cyber Exercises and Training
    • And Other Cyber Security Services
  • Products include:
    • Offensive Security Assessment Tools
    • Cyber Exercise and Training Platforms
    • Cyber Exercise and Training Curriculum
ICF International
Remote, and the Baltimore, MD
February 2016 – September 2017
Technical Specialist – Offensive and Cloud Security
  • Provided offensive security expertise
  • Managed project team of engineers and developers
  • Directed project planning, tasking, and management
  • Coordinated across multiple teams and organizations
  • Engineered cyber security, tools, and mechanisms
  • Developed training curriculum for new hires
Axxum Technologies
Remote, and the Washington, D.C. areas
May 2015 - February 2016
Penetration Testing Manager
  • Manage a remote penetration testing and vulnerability assessment team
  • Direct project planning, tasking, and management
  • Coordinate with client for engagement scoping and delivery
  • Develop internal security policies and procedures
  • Liaison with internal teams for vulnerability management
  • Deliver weekly and monthly reports and briefings for executive leadership
  • Perform threat emulation during assessments (red team)
  • Develop training curriculum for new hires
  • Coordinate and train new hires
iSIGHT Partners
Remote, Lancaster, PA, and the Washington, D.C. areas
October 2012 - May 2015
Cyber Exercise Engagement Lead (January 2014 - May 2015)
  • Lead cyber exercise and training engagements
  • Engaged potential clients and solicited sales
  • Managed customer delivery team of approximately seven individuals
  • Coordinated with clients for exercise planning and delivery
  • Planned and created cyber exercise training and scenarios
  • Delivered exercises to cyber warfare operators and industry professionals
  • Integrated real-world products and technologies into exercise environments
  • Performed adversarial activity during engagements (red team)
Cyber Exercise Engineer and Researcher (October 2012 - January 2014)
  • Engineer cyber warfare simulation platforms and environments
  • Plan and create cyber exercise training and scenarios
  • Deliver exercises to cyber warfare operators and industry professionals
  • Coordinate with clients for exercise planning
  • Integrate real-world products into exercise environments
  • Participate in cyber warfare exercises and games
  • Research current cyber security threats and technologies
  • Develop offensive automation tools and frameworks
  • Maintain, update, and deploy large code bases
  • Test and audit current and new projects
  • Perform system, network, and security administration
Maryland Defense Force
Baltimore, MD - Washington, D.C. areas
May 2013 - May 2017
Warrant Officier
  • Perform Vulnerability Assessments and Penetration Testing
  • Provide Cyber Security Training
  • Support Maryland: Defense Force, Army National Guard, and Air National Guard
Community College of Baltimore County
Baltimore, MD
August 2010 - January 2015
Adjunct Professor School of Applied and Information Technology, Network Technology
  • Teach multiple information security and networking classes
  • Develop lesson plans and exams
  • Deliver class lectures
  • Administer class laboratory exercises
  • Design semester projects focusing upon real-world applications
  • Support, motivate, and assist students
ICF International
Baltimore, MD
October 2007 - October 2012
Network Security Engineer and Researcher (March 2009 - October 2012)
  • Research new projects
  • Test new tools and methodologies
  • Develop intrusion detection systems, tools, and mechanisms
  • Plan and create security solutions
  • Test and audit current and new projects
  • Direct project planning, tasking, and management
  • Maintain, update, and deploy large code bases
  • Integrate solutions into large production environments
  • Engineer network security plans and goals
  • Develop training curriculum for new hires
  • Coordinate and train new hires
Senior Network Security Analyst (October 2007 - March 2009)
  • Real-time analysis of network traffic to detect intrusions and vulnerabilities
  • Coordinated network incident handling with sites world-wide
  • Managed and developed intrusion detection system signature and rule sets
  • Released situation awareness reports
  • Developed intrusion detection systems, tools, and mechanisms
  • Tested new tools and methodologies
  • Advised clients of security risks
  • Engineered network security plans and goals
  • Developed training curriculum for new hires
  • Coordinated and trained new hires
Constellation Energy Group
Baltimore, MD
August 2006 – October 2007
Level II- IT Support Technician
  • Provided level II technical support
  • Reviewed large scale technical issues
  • Liaison between multiple departments and support center
  • Developed and maintained new hire training schedule and information
  • Managed technical projects and supporting teams
  • Created support tools
  • Authored documentation of knowledge bases and training materials
  • Maintained knowledge bases used within support center and multiple support units
HI–Tech Processing Services
Baltimore, MD
August 2005 - August 2006
Network Administrator / Tech Supervisor / Security Engineer
  • Managed public PC repair shop
  • Developed processes for new projects and work
  • Serviced and supported internal computers, printers, and phones
  • Secured internal computers, printers, and telecommunication systems
  • Evaluated technologies for implementation throughout the organization
  • Created and maintained multiple databases
  • Designed and developed Intranet site for corporate communications
  • Managed multiple production and public web servers
  • Monitored multiple production and DMZ servers - as well as Firewalls and Network Intrusion Prevention Systems
Freelance/Consulting
Baltimore, MD - Washington, D.C. Areas
June 2002 - September 2015
  • Implementation and development of security solutions
  • Network Design and management
  • Application and solution development
  • Support computers, printers, and telecommunication systems

Education

Associates of Applied Sciences Degree (A.A.S)

Community College of Baltimore County, Baltimore, MD

Relevant Coursework:
  • Data Communications
  • Network Security & Independent Project on Security Engineering
  • Network Defense/Counter-Measures
  • Cisco (CCNA)
  • Advanced LAN Administration
  • PC Troubleshooting / PC Repair
  • Introduction to Programming
  • Object-Oriented Programming
  • C/C++
  • Linux Administration
Diploma, Computer Science

Sparrows Point High School, Baltimore, MD

Relevant Achievements:
  • Completed a technical diploma program in Computer Science
  • Work-Study program, worked full-time while attending high-school
  • Dual-Enrollment program, attended college and high-school concurrently
  • Assisted in the repair and maintenance of school computer systems

Feats

  • Discovered a remote denial of service vulnerability in multiple consumer and SOHO network perimeter devices [Security Focus Bids: 15870, 15869, 15864, 15861]
  • Discovered multiple Undisclosed Vulnerabilities
  • Involved in development of multiple projects - including TeamSploit, Unsploitable, CoSing Coin, Metasploit, Lak-IPS/Snort, BackTrack, PBNJ, and OpenPKI
  • Contributed to community college curriculum in the area of information security
  • Participate in improvement of CyberWatch (collaboration between multiple two-and-four year colleges to standardize information security coursework, degrees, and certifications)
  • Served as guest lecturer in college-level information security courses
  • Develop information security labs, lectures, and curriculum for two-and-four year colleges
  • Presented numerous speeches to the likes of the National Science Foundation, Institute of Electrical and Electronics Engineers, and Military Cyber Security Conference
  • Participate on both offensive and defensive teams in cyber exercises and competitions

Awards

  • 2014 - 2017:
    Technical Lead, Maryland National Guard Cyber Defense Team (Baltimore-Washington Metropolitan Area, U.S.)
  • 2015:
    10 Years Participation (Blue, Red, and White-Cell), Mid-Atlantic Collegiate Cyber Defense Competition (Mid-Atlantic Areas, U.S.)
  • 2012 - 2015:
    White-Cell and Challenge Creator, National Cyber League (United States)
  • 2012 - 2015:
    Gold Team and Exercise Operations, Mid-Atlantic Collegiate Cyber Defense Competition (Mid-Atlantic Areas, U.S.)
  • 2013
    World Champion, Symantec Cyber Readiness Challenge World Championship (Las Vegas, NV)
  • 2013
    Gold Medal Winner, Symantec Cyber Readiness Challenge Championship Qualifications (Dallas, TX)
  • 2012
    Bronze Medal Winner, MITRE-STEM CTF (Adelphi, MD)
  • 2011 - 2012
    Runners Up International Champions, Global CyberLympics (Chantilly, VA)
  • 2011 - 2012
    North American Champions, Global CyberLympics (Miami, FL)
  • 2009 - 2012
    Team Captain, Team ICF (International)
  • 2009 - 2012
    Red Cell Member, (1st Place, 2010-2012), Mid-Atlantic Collegiate Cyber Defense Competition (Mid-Atlantic Areas, U.S.)
  • 2011
    Champion, Maryland Cyber Challenge and Conference (Baltimore, MD)
  • 2009
    Silver Medal Winner (Red-Cell), Cyber Dawn Exercise (Haymarket, VA)
  • 2008
    Gold Medal Winner (Blue-Cell), Mid-Atlantic Collegiate Cyber Defense Competition (Lancaster, PA)
  • 2005 - 2008
    Team Captain, Collegiate Cyber Defense Team, Community College of Baltimore County (Mid-Atlantic Areas, U.S.)
  • 2007
    Silver Medal Winner (Blue-Cell), Mid-Atlantic Collegiate Cyber Defense Competition (Hunt valley, MD)
  • 2006
    Bronze Medal Winner (Blue-Cell), Mid-Atlantic Collegiate Cyber Defense Competition (Lancaster, PA)

Download Resume »