Responsible for the DB Access Monitoring Engineering and Operations for both Fiserv commercial and FEDRamp (EFTPS & Education) networks. Promoting awareness of services, managing metrics, governing infrastructure DB security, Payment Card Industry (PCI) Security, support and manage DB Access Monitoring security controls.• Duties include the implementation and deployment of IBM Guardium DAM both in-house and in the cloud. • Experience with the architecture & implementation of IBM Guardium DAM• Proficient in the administration, configuration and maintenance of IBM Guardium DAM as both an access monitoring tool and classification scanning of DBsAs a DAM Engineer, responsible for the design, deployment and administration of 3560+ global IBM Guardium DAM appliances in 14 global in-house and cloud datacenters, including for the IRS and the US Department of Education. Worked with a colleague and IBM Professional Services to complete the migration in 6 months timeframe. This activity was to replace Imperva DAM product, including migrating 3,000+ databases. Close contact with the various teams involved was required, especially for the pre and post-cutover and DB alerting analysis. Responsible for weekly reporting of the global migration status to my direct VP. As a Cyber Security Operations Engineer, my main responsibility is for the IBM Guardium tool being the designated System Matter Expert (SME). Duties include the administration, monitoring and classification scanning of databases for PCI compliance. Secondary responsibilities are to support the following security tools:Cyber Ops Tools: Fortify, IBM Resilient (QRadar) & WebInspectEndpoint Protection apps: IBM Guardium, Crowdstrike, PKWare, Proofpoint DLP, Symantec DLP, TantumIAM apps: CyberArk, HYPR, SailpointMessaging Security: SmartcryptApplication Security: Voltage

Responsible for the Operation Application Protection in both commercial and FEDRamp (EFTPS & Education) networks. Promoting awareness of services, managing metrics, governing infrastructure application security, Payment Card Industry (PCI) Security, support and manage SOA security controls and Web Application Firewalls.• Duties include the edge protection of internet facing web applications utilizing F5 BIG-IQ, BIG-IP and F5 Silverline products, Imperva WAFs & IBM Datapower SOA appliances.• Experience with the BIG-IQ, BIG-IP and F5 Silverline products• Proficient in the administration, configuration and maintenance of Imperva Web Application Firewalls• Proficient in the administration, configuration and domain development of IBM DataPower SOA appliances Responsible for leading a team of Security Engineers tasked with migrating all of the First Data’s internet facing applications in the EMEA, APAC & LATAM regions on to appropriate F5 WAF (cloud-based or in-house). This includes gathering application info, any applicable custom rule sets, whitelists and blacklists. Regular meetings are held with the various regions, their application owners, business owners and SME’s to ensure that the migration is moving along properly. Close contact with the various teams involved is required, especially for the pre and post-cutover false-positive analysis and the final cutover into full protection mode. Responsible for weekly reporting of the global migration status to multiple VPs.

Responsible for Application Infrastructure Protection in both commercial and FEDRamp (EFTPS & Education) networks. Promoting awareness of services, managing metrics, governing infrastructure application security, Payment Card Industry (PCI) Security, support and manage SOA security controls and Web Application Firewalls.• Duties include the edge protection of internet facing web applications, the design and implementation of secure SOAP, XML, RESTful web services (Mutli-Protocol Gateways, Web Service Proxies, XML Firewalls, WS-Security, Mutual SSL, Basic Auth, Token Authentication) in the IBM DataPower SOA appliances, security audits of DataPower domains, security infrastructure testing, administration of Web Application Firewalls.• Proficient in the administration, configuration and domain development of IBM DataPower SOA appliances • Proficient in the administration, configuration and maintenance of Imperva Web Application Firewalls• Experience with the F5 Silverline Web Application Firewall Responsible for the security testing, analysis and verification against the standards set by the Payment Card Industry (PCI) for First Data web-based Applications and Web Services globally. PCI Compliance must be met for all First Data web-based applications & services, so that they can be successfully certified by Auditors of the PCI Industry as being compliant to the strict standards. These standards prevent the various types of penetration vulnerabilities, such as: Cross-site Scripting, SQL Injection, Denial-Of-Service, etc.• Duties include both manual and automated testing of web applications/services. This includes the use of the following tools: IBM Rational AppScan, Paros Proxy and Traffic Viewer.• Experienced in PCI compliance including annual internal and external PCI auditing of multiple payment card and ACH web services. This includes the testing and analysis of web services, documentation of tests, results and proposed solutions.

• Responsible for the quality testing and verification of the following TeleCheck Services products in both commercial and FEDRamp (EFTPS) networks: TeleCheck Universal Merchant Services Setup (TUMSS), Customer Support Representative system (CSR Screens), Authorization Dashboard Live, ConnectPay Web Enrollment, ConnectPay Merchant Services Tool, ConnectPay Customer Support Tool, ConnectPay ACH Reload & Authentication, ConnectPay Token Pay, STARnet, Horizon Digital Key Creation, Horizon Migration Admin Screen, Horizon Password Reset Page, Horizon Web Service Test Page, Horizon LDAP, Imaging Lookup, Checks-By-Phone, Payment Information Processing (PIPS) Utility, ccScan for Financial Institutions.• Responsible for the quality testing and verification of the following TeleCheck Services Lava Servers: TeleCheck Universal Merchant Services Setup (TUMSS) Servers, Authorization (AUTH) Servers, Electronic Payment Processing Servers (EPPS) and their associated Oracle Databases.• Responsible for the quality testing and verification against the standards set by the Payment Card Industry for all of the TeleCheck Services Web-based Applications and Web Services. PCI Compliance must be met for all First Data web-based Applications & Services, so that they can be successfully certified by Auditors of the PCI Industry as being compliant to their strict standards. These standards prevent the various types of Hacker events, such as: Cross-site Scripting, SQL Injection, Denial-Of-Service, etc.• Duties include creating & performing Test Case/Plans reviews, performing Test Case executions, performing Product Requirements reviews, developing QA schedules, assigning Defect prioritization, approval/rejection of Applications under test, approval/rejection of tests performed by QA colleagues before moving the applications into Production, training colleagues on areas of the system that I have expertise in, mentoring newer colleagues.

As a Google German Language Quality Rater, provided the following services:• Testing and Evaluation of Google web search queries in the german language• Rating of german queries in Google on importance and content• Reporting to Google of german queries that lead to malicious or spam sites• Reviewing and Revising of the Google Rating Guidelines

As a self-employed consultant, provided the following technical services:• PC installation, service and maintenance• Installation of Home Networks• Installation of ISDN and DSL internet connections• Development of Websites• Provided training on Basic PC Usage, Internet Connection, Home Networking• Provided advice on PC, telephone, cell phone, ISP, hardware and software purchases

• Responsible for the daily activities and management of 4 international QuarkDMS QA groups (Germany, India, USA, Singapore) of around 60 employees. Also Responsible for the Quark Mercury CRM QA Germany group.Duties included assigning work, reporting of QA status to Senior Staff, performing Test Case/Plans reviews, performing Test Case executions, performing Product Requirements reviews, developing QA schedules, assigning Defect prioritizations, approving/rejecting QuarkDMS deliverables, setup of Test environments and traveling to the QuarkDMS QA India location to work with teams directly.• Responsible for the 3rd Level Customer Support. Duties include assigning Customer issues that need to be investigated by QA and possibly R&D.• Reported directly to the Vice President of Research and Development, a member of Senior Staff.

• Responsible for the development and execution of Test Cases for the OpenView VantagePoint for Windows product with expertise in the SAP R/3 Smart Plug-In. This product is deployed on Windows NT platforms and performs monitoring and solutions for UNIX and NT networks, specifically Administration, SAP R/3 environments, Databases (Oracle, Sybase, Informix) and Internet applications.• Developed and implemented the SAP R/3 Smart Plug-In Test Cases to ensure the quality and reliability of this product within the OpenView VantagePoint for Windows product.• Developed the Product Requirements and Specifications for the OpenView VantagePoint for Windows SAP R/3 Smart Plug-In.

• Responsible for the management of a System Quality Assurance team of 5 employees responsible for the development and execution of Product Test Cases for the Wrenchead.com auto parts ordering systems. This product was being deployed using the following: Windows 95, Windows 98, Windows Me, Windows NT and Windows 2000. Also deployed as a Web based front end using Windows NT or Windows 2000 on the back end.• Duties included assigning work, reporting of Wrenchead status to the Director of R&D, performing Test Case/Plans reviews, performing Test Case executions, performing Product Requirements reviews, developing QA schedules, assigning Defect prioritizations, approving/rejecting Wrenchead deliverables, and setup of Test environments.• Developed the Product Requirements and Test Cases for the Wrenchead Lite, Wrenchead Manager Pro and Vision product lines. These test cases are implemented to ensure the quality and reliability of these different types of auto parts ordering systems.

• Responsible for the development of System Test Procedures for the SunGard OCTAGON Options & Futures Brokerage application deployed using the following operating systems: Windows NT, HP-Unix, Sun Unix, AIX Unix, and Vax/VMS.• Responsible for the release of new/upgraded software modules and the software builds of all product modules & releases. This involves 3 different versions of Octagon maintained on 8 different Vax/VMS & Unix systems in the USA, Great Britain, Germany and Australia.• Developed System Test Procedures for Margins Trading, End-of-Day Trading and Account Management applications of the OCTAGON program. • Experienced testing: Margins Trading, End-of-Day Trading, Account Management, Exchange Management, User Security Management, Contracts Management, Options Trading, Partial Deal Amendments and Menu Maintenance.

• Responsible for the development of Product Requirements, Product Specifications and Product Test Cases for the Clinical Systems department of Abbott Laboratories. These products were being deployed using the following operating systems: HP-UX, VAX VMS/ESA, VAX OpenVMS, Windows 95 and Window NT.

• Responsible for the development and the implementation of Product Test Procedures for the Compaq Presario and Proliant computers.• Developed and implemented test procedures for third-party products offered by Compaq. These third-party products include Monitors, Network Cards, Video Cards, SCSI, PCI and EIDE Hard Drives. This resulted in a more precise definition of testing and also broadened of the scope of testing.• Experienced in the following Operating Systems used for testing: MS DOS, MS Windows 3.x, MS Windows 95/98, MS Windows NT 3.51, MS Windows NT 4.0 Workstation and Server, IBM OS/2 2.11, IBM OS/2 Warp 3.0, IBM Warp 3.0 Connect, IBM OS/2 Warp 4.0, SCO OpenDesktop 3.0, SCO OpenServer 5.0, SCO UnixWare 2.1, Novell UnixWare 1.1, Sun Interactive Unix 4.1, Sun Solaris 2.4 & 2.5, QNX 4.2x, LynxOS 2.x, Intel iRMX for PCs 2.1, NeXT OS 3.3, Novell NetWare 3.1x and 4.11.

Responsible as Software Quality Assurance Engineer for the development, the writing and the implementation of product requirements, product test procedures and quality assurance guidelines for MS DOS, MS Windows and IBM OS/2-based products of Diehl ISDN. Additionally, responsible as a Network Engineer for the installation, maintenance and upgrades of Novell NetWare 3.x, Personnel NetWare 1.0, IBM OS/2 LAN Server 3.0 and MS Windows for Workgroups 3.11.

Responsible as Software Quality Assurance Engineer for the development, writing and implementation of Product Requirements, Product Test Procedures and Product Tests for UNIX-based products developed by Planring Informatik. In my function as Systems Engineer, I was responsible for the installation, maintenance and upgrades of software and hardware for UNIX and Novell networks.

Responsible for the development and the implementation of software and hardware quality assurance test procedures for digital and fiber optic SONET telecommunications Digital Loop Carrier products.

• In January 1988 promoted to Liaison Engineer. Responsible for the coordination and approval of design and production changes between the Hardware Engineering Department and the Manufacturing Engineering Department. • In February 1986 hired on as a Lab Test Engineer. Responsible for the testing, maintenance and upgrades of the Telenova Federal Systems Digital PBX.